$ rpki-client -vvf rpki-rsync.idnic.net/repo/04ca5868-57e9-49b9-bfe1-48d78334a18c/0/3130332e3136392e3133382e302f32332d3234203d3e20313432333433.roa File: 3130332e3136392e3133382e302f32332d3234203d3e20313432333433.roa (raw, json) Hash identifier: XAMucgwFmTucBgKdR7YCgdXStPYQxjx/K+G2Z2xF+TI= Subject key identifier: F2:5B:FF:92:3F:02:3A:16:81:70:F1:EC:2D:17:C5:5D:20:9C:A6:FC Certificate issuer: /CN=7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9 Certificate serial: 3C9CA637148935678820EFE71C976105CB3A6DC4 Authority key identifier: 7E:F6:6B:48:8E:E4:8E:57:1B:83:7D:2B:30:F0:B5:CF:51:EC:FA:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/04ca5868-57e9-49b9-bfe1-48d78334a18c/0/3130332e3136392e3133382e302f32332d3234203d3e20313432333433.roa Signing time: Sun 03 May 2026 02:11:01 +0000 ROA not before: Sun 03 May 2026 02:06:01 +0000 ROA not after: Sun 02 May 2027 02:11:01 +0000 asID: 142343 IP address blocks: 103.169.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/04ca5868-57e9-49b9-bfe1-48d78334a18c/0/7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9.crl rsync://rpki-rsync.idnic.net/repo/04ca5868-57e9-49b9-bfe1-48d78334a18c/0/7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:9c:a6:37:14:89:35:67:88:20:ef:e7:1c:97:61:05:cb:3a:6d:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9 Validity Not Before: May 3 02:06:01 2026 GMT Not After : May 2 02:11:01 2027 GMT Subject: CN=F25BFF923F023A168170F1EC2D17C55D209CA6FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ad:f8:ad:cc:31:12:a1:0d:30:c5:7a:68:59: 01:b7:f6:c6:93:27:87:f6:2b:75:53:6f:a5:8e:6e: 7f:26:dd:9d:86:d3:93:33:30:67:56:42:ba:57:c0: c8:93:d3:9f:4e:29:90:b5:b5:2f:14:af:51:e1:0d: 4a:44:ef:7b:38:ea:51:b2:3f:b4:76:30:2e:f6:1f: cc:82:6b:52:08:55:b6:dc:fe:3c:5c:5b:84:fb:fb: c3:e6:2d:cf:66:5a:36:7c:47:65:82:3e:68:74:3e: 2a:9a:da:dd:8c:71:70:e1:19:1e:60:b8:b7:82:90: d3:d9:7e:c9:7c:fe:a2:ac:f6:2f:c3:09:54:57:5e: 25:24:5b:07:1e:7a:be:bd:cb:90:d1:0b:b8:3f:2c: 17:90:00:1f:cb:17:3a:e1:42:bf:07:82:78:55:8d: 2f:ee:87:6b:67:ac:21:ab:3b:3a:0a:b2:a0:b1:74: ae:25:8f:a8:2f:6b:a7:1a:f5:52:45:f8:1b:28:c1: 56:1b:66:fb:dc:6b:2e:c5:96:46:85:2c:bc:6f:47: df:61:f3:87:0f:3d:a8:cc:8d:d4:57:6e:26:02:c4: 42:81:0f:8e:c2:4e:4f:c0:1c:42:e3:b9:45:67:82: 03:c7:3a:5a:80:1a:52:3e:78:ed:8b:db:8f:c9:69: 3b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:5B:FF:92:3F:02:3A:16:81:70:F1:EC:2D:17:C5:5D:20:9C:A6:FC X509v3 Authority Key Identifier: keyid:7E:F6:6B:48:8E:E4:8E:57:1B:83:7D:2B:30:F0:B5:CF:51:EC:FA:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/04ca5868-57e9-49b9-bfe1-48d78334a18c/0/7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7EF66B488EE48E571B837D2B30F0B5CF51ECFAF9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/04ca5868-57e9-49b9-bfe1-48d78334a18c/0/3130332e3136392e3133382e302f32332d3234203d3e20313432333433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.138.0/23 Signature Algorithm: sha256WithRSAEncryption 75:05:bf:a0:d9:83:c4:e6:95:30:48:d1:98:66:af:f5:1d:43: d2:f8:aa:9a:08:f0:4d:41:e0:a8:a3:38:53:be:d4:c2:bd:d7: 37:14:97:87:4b:a5:5c:14:3f:d4:57:17:0c:4a:0e:7d:52:b8: b2:0b:b0:b3:99:78:3b:b4:bc:08:5c:d8:3d:28:e2:47:d1:45: 7c:36:73:c3:fd:38:3f:44:c1:8e:e4:a6:b1:1c:88:2d:a2:fe: 15:14:6b:1a:59:9c:7f:85:51:67:9e:47:f9:2e:0b:7e:40:19: b8:59:ca:b5:b6:ed:4d:62:6e:f4:8b:60:59:0f:76:95:73:89: 56:e7:c3:d4:d1:0d:21:10:2b:bb:00:80:82:44:55:b7:c9:cd: b5:ba:ae:f0:a1:d9:34:17:6b:02:45:55:90:30:32:33:83:74: 2e:a4:4e:04:19:82:75:0e:f7:cc:65:37:d0:56:20:f6:df:17: b4:7b:9a:0a:ee:68:33:af:b9:a4:cd:28:a5:1b:17:e7:d5:31: 70:eb:17:e2:66:fb:87:5f:8f:a4:35:3b:3d:3b:e9:8d:c0:9d: 63:3c:7b:1f:6c:9c:6b:ab:32:13:83:b5:12:72:24:2f:6a:0d: 2f:2f:dc:2d:2b:7e:3d:f2:f8:8e:07:7a:6f:d6:05:f3:8a:0f: 30:7d:8d:74 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPJymNxSJNWeIIO/nHJdhBcs6bcQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VGNjZCNDg4RUU0OEU1NzFCODM3RDJCMzBGMEI1Q0Y1 MUVDRkFGOTAeFw0yNjA1MDMwMjA2MDFaFw0yNzA1MDIwMjExMDFaMDMxMTAvBgNV BAMTKEYyNUJGRjkyM0YwMjNBMTY4MTcwRjFFQzJEMTdDNTVEMjA5Q0E2RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCprfitzDESoQ0wxXpoWQG39saT J4f2K3VTb6WObn8m3Z2G05MzMGdWQrpXwMiT059OKZC1tS8Ur1HhDUpE73s46lGy P7R2MC72H8yCa1IIVbbc/jxcW4T7+8PmLc9mWjZ8R2WCPmh0Piqa2t2McXDhGR5g uLeCkNPZfsl8/qKs9i/DCVRXXiUkWwceer69y5DRC7g/LBeQAB/LFzrhQr8HgnhV jS/uh2tnrCGrOzoKsqCxdK4lj6gva6ca9VJF+BsowVYbZvvcay7FlkaFLLxvR99h 84cPPajMjdRXbiYCxEKBD47CTk/AHELjuUVnggPHOlqAGlI+eO2L24/JaTt1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8lv/kj8COhaBcPHsLRfFXSCcpvwwHwYDVR0j BBgwFoAUfvZrSI7kjlcbg30rMPC1z1Hs+vkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDRjYTU4NjgtNTdlOS00OWI5LWJmZTEtNDhkNzgzMzRhMThjLzAvN0VGNjZCNDg4 RUU0OEU1NzFCODM3RDJCMzBGMEI1Q0Y1MUVDRkFGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RUY2NkI0ODhFRTQ4RTU3MUI4MzdEMkIzMEYwQjVDRjUxRUNG QUY5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA0Y2E1ODY4LTU3ZTktNDliOS1i ZmUxLTQ4ZDc4MzM0YTE4Yy8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqYowDQYJ KoZIhvcNAQELBQADggEBAHUFv6DZg8TmlTBI0Zhmr/UdQ9L4qpoI8E1B4KijOFO+ 1MK91zcUl4dLpVwUP9RXFwxKDn1SuLILsLOZeDu0vAhc2D0o4kfRRXw2c8P9OD9E wY7kprEciC2i/hUUaxpZnH+FUWeeR/kuC35AGbhZyrW27U1ibvSLYFkPdpVziVbn w9TRDSEQK7sAgIJEVbfJzbW6rvCh2TQXawJFVZAwMjODdC6kTgQZgnUO98xlN9BW IPbfF7R7mgruaDOvuaTNKKUbF+fVMXDrF+Jm+4dfj6Q1Oz076Y3AnWM8ex9snGur MhODtRJyJC9qDS8v3C0rfj3y+I4Hem/WBfOKDzB9jXQ= -----END CERTIFICATE-----Generated at Wed May 13 09:15:00 2026 by rpki-client