$ rpki-client -vvf rpki-rsync.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa File: 3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa (raw, json) Hash identifier: cs+S9E8m3ksTud7rtFa1pOQJUgcV2skulJ8DBRa3P44= Subject key identifier: 19:1F:6A:3E:30:BF:1A:77:5E:44:53:8E:94:D9:F7:0B:80:1A:7B:7D Certificate issuer: /CN=F369E66B61D5402A7A72C94237FB69A9A071899A Certificate serial: 7DECED62AA9F903A72BA234420DF751B3376CDB2 Authority key identifier: F3:69:E6:6B:61:D5:40:2A:7A:72:C9:42:37:FB:69:A9:A0:71:89:9A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F369E66B61D5402A7A72C94237FB69A9A071899A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa Signing time: Sun 03 May 2026 02:14:14 +0000 ROA not before: Sun 03 May 2026 02:09:14 +0000 ROA not after: Sun 02 May 2027 02:14:14 +0000 asID: 141127 IP address blocks: 103.158.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/F369E66B61D5402A7A72C94237FB69A9A071899A.crl rsync://rpki-rsync.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/F369E66B61D5402A7A72C94237FB69A9A071899A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F369E66B61D5402A7A72C94237FB69A9A071899A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ec:ed:62:aa:9f:90:3a:72:ba:23:44:20:df:75:1b:33:76:cd:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F369E66B61D5402A7A72C94237FB69A9A071899A Validity Not Before: May 3 02:09:14 2026 GMT Not After : May 2 02:14:14 2027 GMT Subject: CN=191F6A3E30BF1A775E44538E94D9F70B801A7B7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f0:00:aa:70:94:6f:9b:f0:45:84:83:a5:83: 68:a1:ad:50:b1:ec:58:19:92:a1:06:b7:b2:9d:e3: 94:43:10:a5:f4:df:be:16:6f:91:20:f2:3b:53:51: 09:47:e0:73:75:61:59:4e:48:a6:d6:7f:f7:eb:c9: 93:1e:a6:73:ea:86:a0:80:8b:20:ac:e6:94:7b:60: 73:84:03:70:52:e7:a3:53:a3:22:4d:2d:38:10:a2: b8:94:f3:e2:88:94:f1:86:6a:59:b4:40:79:97:8e: dd:af:1a:4b:82:13:22:37:a9:9d:48:71:07:b5:9a: 7d:3a:46:e5:9d:e7:63:3a:a3:6c:62:b2:27:72:d3: c7:be:4f:d5:e4:4e:19:e3:99:ff:0d:35:56:e2:3d: d0:fa:53:d4:cb:ca:75:12:11:90:86:40:0c:b6:06: c2:07:d9:a6:1e:78:16:a5:48:18:7b:32:89:3c:71: ad:44:1e:0e:c9:18:a2:7c:2b:50:df:dc:cb:c3:b8: a2:ec:8f:fe:e6:f2:d0:fe:3d:93:b2:e8:be:a5:66: 14:c4:a3:ae:84:77:e9:ee:c8:ce:39:b3:d5:f3:e2: 2d:3a:e3:04:96:f8:02:39:e1:55:79:88:7f:f7:7d: f3:41:ed:8b:7c:c3:6c:16:26:7e:79:bf:0b:b3:06: 47:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1F:6A:3E:30:BF:1A:77:5E:44:53:8E:94:D9:F7:0B:80:1A:7B:7D X509v3 Authority Key Identifier: keyid:F3:69:E6:6B:61:D5:40:2A:7A:72:C9:42:37:FB:69:A9:A0:71:89:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/F369E66B61D5402A7A72C94237FB69A9A071899A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F369E66B61D5402A7A72C94237FB69A9A071899A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.121.0/24 Signature Algorithm: sha256WithRSAEncryption 25:ee:88:24:ab:90:2e:2d:c3:fe:5c:af:b9:63:c0:c5:13:cc: ea:16:a6:15:94:41:94:02:71:c7:ba:03:ba:fb:02:f4:01:aa: 23:ef:b4:c2:ca:60:1f:75:a1:0e:0a:d7:90:6f:dc:8c:17:42: a9:33:4a:68:1d:33:f3:a2:7f:3a:d3:26:b1:ff:a1:01:d1:9b: 7d:44:4a:c9:15:03:74:3e:6f:a1:5b:78:04:09:42:53:b4:d5: 50:f2:b8:b9:7c:18:e9:3d:65:81:c4:aa:ca:a3:ca:15:a6:17: 70:5e:57:0a:19:9f:bc:af:39:96:f3:10:79:18:87:72:80:91: b5:6d:b7:89:08:36:ae:41:48:d8:c6:b0:fe:98:96:e3:23:83: 11:b4:10:4d:c0:78:61:92:42:55:1b:9c:9d:89:7f:3f:0a:99: 5c:11:a5:5e:5a:d8:82:8c:cf:c7:fe:39:4b:bf:82:83:55:21: 14:02:0b:86:7c:45:5b:b7:2c:17:c1:3a:a7:20:e4:5d:61:47: 8f:7d:79:98:48:af:c7:6b:41:3e:77:77:e3:85:44:9d:ad:bf: c7:c5:36:3f:38:cd:38:f0:cb:4a:d4:10:e5:54:e4:a6:7a:fd: e1:2c:43:44:d3:76:ae:38:d0:a9:20:c2:2b:91:9c:be:3a:a4: be:8f:33:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfeztYqqfkDpyuiNEIN91GzN2zbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM2OUU2NkI2MUQ1NDAyQTdBNzJDOTQyMzdGQjY5QTlB MDcxODk5QTAeFw0yNjA1MDMwMjA5MTRaFw0yNzA1MDIwMjE0MTRaMDMxMTAvBgNV BAMTKDE5MUY2QTNFMzBCRjFBNzc1RTQ0NTM4RTk0RDlGNzBCODAxQTdCN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC98ACqcJRvm/BFhIOlg2ihrVCx 7FgZkqEGt7Kd45RDEKX0374Wb5Eg8jtTUQlH4HN1YVlOSKbWf/fryZMepnPqhqCA iyCs5pR7YHOEA3BS56NToyJNLTgQoriU8+KIlPGGalm0QHmXjt2vGkuCEyI3qZ1I cQe1mn06RuWd52M6o2xisidy08e+T9XkThnjmf8NNVbiPdD6U9TLynUSEZCGQAy2 BsIH2aYeeBalSBh7Mok8ca1EHg7JGKJ8K1Df3MvDuKLsj/7m8tD+PZOy6L6lZhTE o66Ed+nuyM45s9Xz4i064wSW+AI54VV5iH/3ffNB7Yt8w2wWJn55vwuzBkffAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGR9qPjC/GndeRFOOlNn3C4Aae30wHwYDVR0j BBgwFoAU82nma2HVQCp6cslCN/tpqaBxiZowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTJjNTExYmUtNjdhMi00NGM5LWIxODItYTkxMWJhOTViZTAwLzAvRjM2OUU2NkI2 MUQ1NDAyQTdBNzJDOTQyMzdGQjY5QTlBMDcxODk5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMzY5RTY2QjYxRDU0MDJBN0E3MkM5NDIzN0ZCNjlBOUEwNzE4 OTlBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzEyYzUxMWJlLTY3YTItNDRjOS1i MTgyLWE5MTFiYTk1YmUwMC8wLzMxMzAzMzJlMzEzNTM4MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnnkwDQYJ KoZIhvcNAQELBQADggEBACXuiCSrkC4tw/5cr7ljwMUTzOoWphWUQZQCcce6A7r7 AvQBqiPvtMLKYB91oQ4K15Bv3IwXQqkzSmgdM/OifzrTJrH/oQHRm31ESskVA3Q+ b6FbeAQJQlO01VDyuLl8GOk9ZYHEqsqjyhWmF3BeVwoZn7yvOZbzEHkYh3KAkbVt t4kINq5BSNjGsP6YluMjgxG0EE3AeGGSQlUbnJ2Jfz8KmVwRpV5a2IKMz8f+OUu/ goNVIRQCC4Z8RVu3LBfBOqcg5F1hR499eZhIr8drQT53d+OFRJ2tv8fFNj84zTjw y0rUEOVU5KZ6/eEsQ0TTdq440KkgwiuRnL46pL6PM8A= -----END CERTIFICATE-----Generated at Wed May 13 11:49:40 2026 by rpki-client