$ rpki-client -vvf rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa File: 3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa (raw, json) Hash identifier: GPynHByObMVja2DkXkj4DTeAw6Zu/eMPLF3FIx9zUPw= Subject key identifier: 8C:8E:C8:91:0A:7F:9F:A6:96:D2:3F:25:2A:53:54:2B:03:7A:C0:40 Certificate issuer: /CN=C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9 Certificate serial: 4FDDC2BCBE659FDA0B1A6E9E5B18C447BFB6F1EF Authority key identifier: C7:6F:AE:70:E7:14:64:49:6E:F4:FA:8E:EE:F0:DF:5C:93:12:C7:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa Signing time: Sun 03 May 2026 02:15:51 +0000 ROA not before: Sun 03 May 2026 02:10:51 +0000 ROA not after: Sun 02 May 2027 02:15:51 +0000 asID: 59281 IP address blocks: 103.228.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.crl rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:dd:c2:bc:be:65:9f:da:0b:1a:6e:9e:5b:18:c4:47:bf:b6:f1:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9 Validity Not Before: May 3 02:10:51 2026 GMT Not After : May 2 02:15:51 2027 GMT Subject: CN=8C8EC8910A7F9FA696D23F252A53542B037AC040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c2:5e:5c:3e:b4:09:d1:c6:d5:6d:02:4e:1a: 01:72:9a:a2:81:a9:5b:00:e3:c1:a8:14:4f:b9:82: a7:57:46:3a:64:e4:0d:62:a7:d2:01:4a:71:94:f3: 80:c1:d4:a9:b8:ff:3b:0f:4e:64:00:6a:34:ac:83: d1:56:d0:e4:84:08:ee:d9:fb:91:07:a2:cd:5e:b9: 8f:c1:96:2e:ba:e7:ef:d5:bd:92:dc:88:8b:63:d6: d3:90:0f:cc:11:bc:3c:2b:0f:04:a6:1c:e6:5c:2a: 34:98:61:7e:d5:fc:49:28:27:2b:c5:a8:ad:11:c0: db:b8:ac:63:e7:12:e0:16:06:b0:e8:87:a2:29:33: 5d:3e:f4:e6:4c:4a:b8:0b:bb:af:93:c5:76:a4:5c: a7:5c:82:17:eb:73:2f:e9:fe:2b:04:81:00:43:ee: 90:01:f6:af:a7:70:79:08:a1:03:86:2d:e1:34:f0: 68:9b:0d:19:62:91:50:9a:a5:8f:87:37:1b:de:66: 92:71:07:15:d9:ce:69:a6:3d:1b:b4:b2:a6:d1:e4: f8:3b:27:54:56:10:1f:a5:ec:f1:3b:09:f9:b5:67: 03:e6:2b:14:03:80:6b:3d:e7:9c:8e:6c:00:95:b9: ce:4b:23:85:37:f7:67:20:bb:ff:d2:12:43:27:a5: 13:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:8E:C8:91:0A:7F:9F:A6:96:D2:3F:25:2A:53:54:2B:03:7A:C0:40 X509v3 Authority Key Identifier: keyid:C7:6F:AE:70:E7:14:64:49:6E:F4:FA:8E:EE:F0:DF:5C:93:12:C7:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.116.0/22 Signature Algorithm: sha256WithRSAEncryption 82:97:11:61:67:d5:da:62:e8:81:be:73:e9:37:82:56:96:f1: 68:40:47:a9:9b:70:04:00:78:ab:19:76:d8:5e:f5:0d:f7:ab: 5e:6a:c1:13:4a:2d:8f:76:02:24:82:29:13:eb:a4:ff:b8:0b: 89:50:87:f0:e1:7f:e8:72:f6:fa:a8:90:90:e4:89:f5:55:12: 1f:54:f5:e7:60:f4:8b:21:81:69:96:d9:30:65:90:9e:fd:90: 6d:f2:1f:62:39:f5:cb:c0:fd:32:2f:2a:1a:4b:3b:08:4a:1c: af:27:77:fd:d4:b5:82:50:b9:17:6d:70:1d:f4:f3:1b:c9:49: da:44:0b:04:d8:dc:f8:5b:67:a9:79:8f:ba:45:70:35:bb:a5: 82:72:c6:e6:78:e5:41:3d:7d:5c:6a:fd:42:4c:54:e5:ed:42: 2a:31:53:d3:74:b9:e9:f5:1d:aa:e2:d3:86:98:b1:f6:bc:35: 29:d5:25:58:01:34:f3:84:81:ef:d5:ac:8a:3b:47:4f:bb:cf: a1:88:92:57:56:3f:a8:88:8c:c6:f7:3f:5c:d0:d5:4b:b5:f9: 0a:35:4d:8f:9a:ad:de:09:cd:88:0a:01:4f:b1:37:96:47:fd: 21:45:a6:fa:56:ff:f4:42:4d:a7:49:ad:5e:9c:10:59:1d:a8: ec:f3:e6:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT93CvL5ln9oLGm6eWxjER7+28e8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc2RkFFNzBFNzE0NjQ0OTZFRjRGQThFRUVGMERGNUM5 MzEyQzdDOTAeFw0yNjA1MDMwMjEwNTFaFw0yNzA1MDIwMjE1NTFaMDMxMTAvBgNV BAMTKDhDOEVDODkxMEE3RjlGQTY5NkQyM0YyNTJBNTM1NDJCMDM3QUMwNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0wl5cPrQJ0cbVbQJOGgFymqKB qVsA48GoFE+5gqdXRjpk5A1ip9IBSnGU84DB1Km4/zsPTmQAajSsg9FW0OSECO7Z +5EHos1euY/Bli665+/VvZLciItj1tOQD8wRvDwrDwSmHOZcKjSYYX7V/EkoJyvF qK0RwNu4rGPnEuAWBrDoh6IpM10+9OZMSrgLu6+TxXakXKdcghfrcy/p/isEgQBD 7pAB9q+ncHkIoQOGLeE08GibDRlikVCapY+HNxveZpJxBxXZzmmmPRu0sqbR5Pg7 J1RWEB+l7PE7Cfm1ZwPmKxQDgGs955yObACVuc5LI4U392cgu//SEkMnpRPrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjI7IkQp/n6aW0j8lKlNUKwN6wEAwHwYDVR0j BBgwFoAUx2+ucOcUZElu9PqO7vDfXJMSx8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdhMmQyNWItY2IxOC00NWJlLTlmYTEtMTU0Y2ExNTc5MjIzLzAvQzc2RkFFNzBF NzE0NjQ0OTZFRjRGQThFRUVGMERGNUM5MzEyQzdDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNzZGQUU3MEU3MTQ2NDQ5NkVGNEZBOEVFRUYwREY1QzkzMTJD N0M5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+R0MA0GCSqG SIb3DQEBCwUAA4IBAQCClxFhZ9XaYuiBvnPpN4JWlvFoQEepm3AEAHirGXbYXvUN 96teasETSi2PdgIkgikT66T/uAuJUIfw4X/ocvb6qJCQ5In1VRIfVPXnYPSLIYFp ltkwZZCe/ZBt8h9iOfXLwP0yLyoaSzsIShyvJ3f91LWCULkXbXAd9PMbyUnaRAsE 2Nz4W2epeY+6RXA1u6WCcsbmeOVBPX1cav1CTFTl7UIqMVPTdLnp9R2q4tOGmLH2 vDUp1SVYATTzhIHv1ayKO0dPu8+hiJJXVj+oiIzG9z9c0NVLtfkKNU2Pmq3eCc2I CgFPsTeWR/0hRab6Vv/0Qk2nSa1enBBZHajs8+a+ -----END CERTIFICATE-----Generated at Wed May 13 11:22:36 2026 by rpki-client