$ rpki-client -vvf rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa File: 3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa (raw, json) Hash identifier: e5/61qyIWwgI66mDFz4ykNf/vzBfJVkF6ipuSKXTKDA= Subject key identifier: 72:10:71:56:BC:23:0A:B6:53:29:58:ED:07:CB:D6:A5:0D:12:00:A0 Certificate issuer: /CN=AF66100C07C72416053F944B967509CE9CB5BD57 Certificate serial: 4CB81BE1945A10FC99E86833C6A21B02CD392A5F Authority key identifier: AF:66:10:0C:07:C7:24:16:05:3F:94:4B:96:75:09:CE:9C:B5:BD:57 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF66100C07C72416053F944B967509CE9CB5BD57.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa Signing time: Sun 03 May 2026 02:16:55 +0000 ROA not before: Sun 03 May 2026 02:11:55 +0000 ROA not after: Sun 02 May 2027 02:16:55 +0000 asID: 141674 IP address blocks: 103.171.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/AF66100C07C72416053F944B967509CE9CB5BD57.crl rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/AF66100C07C72416053F944B967509CE9CB5BD57.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF66100C07C72416053F944B967509CE9CB5BD57.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:b8:1b:e1:94:5a:10:fc:99:e8:68:33:c6:a2:1b:02:cd:39:2a:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF66100C07C72416053F944B967509CE9CB5BD57 Validity Not Before: May 3 02:11:55 2026 GMT Not After : May 2 02:16:55 2027 GMT Subject: CN=72107156BC230AB6532958ED07CBD6A50D1200A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:77:24:79:e3:1e:c6:4e:44:fe:8b:64:4e:c1: 61:29:4a:97:c0:97:ac:0a:49:00:b5:8b:11:73:ab: 44:fb:64:a5:ca:55:37:87:3e:51:b2:df:8d:48:d2: e1:92:26:86:0c:98:ec:26:43:cb:f5:6c:42:13:7b: c9:b4:68:4c:5b:f5:bb:f9:9f:9d:33:b8:29:89:3e: 6d:36:62:b7:eb:99:e6:f8:4f:be:08:a8:d9:6d:5a: a2:e0:72:de:cc:dc:43:01:dc:97:3d:f3:4e:ef:9a: 85:04:65:da:11:31:52:cc:8f:bf:34:3a:0d:67:69: 3f:44:2d:0b:9d:8a:5e:60:ab:3d:4a:a1:6e:d9:aa: 54:cb:9a:90:cf:f8:83:73:2b:9e:37:1e:68:1d:6f: d2:31:6b:42:65:ce:6b:f6:cc:37:0b:54:bd:ad:c4: 18:17:55:63:84:18:0b:20:3c:a7:82:75:a0:3f:e3: 5c:51:31:c7:dc:a5:a6:cd:9f:90:77:ab:98:30:21: 94:2d:be:fb:64:59:d6:ad:c0:de:e6:2b:bd:ad:2d: c6:28:d3:bd:eb:55:e2:4d:f2:84:29:53:be:53:b7: ce:fc:71:2b:30:b9:5c:b8:50:27:8f:2c:4a:82:36: 20:df:e6:50:f1:1d:5f:c8:ae:a5:ee:56:d5:4d:1c: c0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:10:71:56:BC:23:0A:B6:53:29:58:ED:07:CB:D6:A5:0D:12:00:A0 X509v3 Authority Key Identifier: keyid:AF:66:10:0C:07:C7:24:16:05:3F:94:4B:96:75:09:CE:9C:B5:BD:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/AF66100C07C72416053F944B967509CE9CB5BD57.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF66100C07C72416053F944B967509CE9CB5BD57.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.244.0/23 Signature Algorithm: sha256WithRSAEncryption 88:16:f7:99:9d:7f:63:33:7f:90:60:ba:7e:ba:dd:34:b5:5b: 5a:ad:fd:65:5d:c7:11:bb:90:cb:32:af:a0:40:e4:ff:4b:e5: a5:8d:69:17:b1:e3:a3:1f:ce:58:04:e8:f6:d1:88:6e:15:a5: 03:eb:48:70:1b:de:d9:73:69:10:e3:2a:05:7a:42:44:fc:0c: 3e:2b:4a:8b:0d:de:b8:b7:ca:99:eb:99:71:ac:95:21:c5:11: bc:93:09:3a:6c:6b:83:44:a5:a0:35:f3:8f:89:35:62:9c:fe: bf:15:4e:8a:8f:0f:d5:d5:08:4a:1c:b8:69:06:a0:2f:1f:fa: 76:71:7d:bd:f5:44:bd:6a:c3:50:c2:f9:a3:88:a2:3b:66:91: 95:fe:62:8e:97:31:87:29:49:c3:26:96:4b:bc:5f:41:0c:4a: 83:6e:f0:11:c8:a7:eb:29:f0:f0:29:e7:da:a4:5a:7c:55:b7: 95:31:ec:3e:1c:1b:e3:14:56:33:dc:24:ef:21:89:57:e0:38: 50:2d:5e:29:ee:59:56:39:f9:96:ce:57:e6:8b:8d:91:2a:11: ff:06:9b:f0:79:b9:d6:26:28:b6:53:da:63:ca:bd:b9:95:a4: f4:e5:a4:e5:50:04:eb:96:ac:0c:2f:27:ef:8a:71:b7:36:e5: 58:ba:9c:3a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTLgb4ZRaEPyZ6GgzxqIbAs05Kl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2NjEwMEMwN0M3MjQxNjA1M0Y5NDRCOTY3NTA5Q0U5 Q0I1QkQ1NzAeFw0yNjA1MDMwMjExNTVaFw0yNzA1MDIwMjE2NTVaMDMxMTAvBgNV BAMTKDcyMTA3MTU2QkMyMzBBQjY1MzI5NThFRDA3Q0JENkE1MEQxMjAwQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEdyR54x7GTkT+i2ROwWEpSpfA l6wKSQC1ixFzq0T7ZKXKVTeHPlGy341I0uGSJoYMmOwmQ8v1bEITe8m0aExb9bv5 n50zuCmJPm02Yrfrmeb4T74IqNltWqLgct7M3EMB3Jc9807vmoUEZdoRMVLMj780 Og1naT9ELQudil5gqz1KoW7ZqlTLmpDP+INzK543Hmgdb9Ixa0Jlzmv2zDcLVL2t xBgXVWOEGAsgPKeCdaA/41xRMcfcpabNn5B3q5gwIZQtvvtkWdatwN7mK72tLcYo 073rVeJN8oQpU75Tt878cSswuVy4UCePLEqCNiDf5lDxHV/IrqXuVtVNHMA1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUchBxVrwjCrZTKVjtB8vWpQ0SAKAwHwYDVR0j BBgwFoAUr2YQDAfHJBYFP5RLlnUJzpy1vVcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWFhYzFiYjktNDVmNi00NjY3LWIxOTQtOWE2OWE0YTRkNzU1LzAvQUY2NjEwMEMw N0M3MjQxNjA1M0Y5NDRCOTY3NTA5Q0U5Q0I1QkQ1Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjY2MTAwQzA3QzcyNDE2MDUzRjk0NEI5Njc1MDlDRTlDQjVC RDU3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFhYWMxYmI5LTQ1ZjYtNDY2Ny1i MTk0LTlhNjlhNGE0ZDc1NS8wLzMxMzAzMzJlMzEzNzMxMmUzMjM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnq/QwDQYJ KoZIhvcNAQELBQADggEBAIgW95mdf2Mzf5Bgun663TS1W1qt/WVdxxG7kMsyr6BA 5P9L5aWNaRex46MfzlgE6PbRiG4VpQPrSHAb3tlzaRDjKgV6QkT8DD4rSosN3ri3 ypnrmXGslSHFEbyTCTpsa4NEpaA184+JNWKc/r8VToqPD9XVCEocuGkGoC8f+nZx fb31RL1qw1DC+aOIojtmkZX+Yo6XMYcpScMmlku8X0EMSoNu8BHIp+sp8PAp59qk WnxVt5Ux7D4cG+MUVjPcJO8hiVfgOFAtXinuWVY5+ZbOV+aLjZEqEf8Gm/B5udYm KLZT2mPKvbmVpPTlpOVQBOuWrAwvJ++Kcbc25Vi6nDo= -----END CERTIFICATE-----Generated at Wed May 13 08:40:08 2026 by rpki-client