$ rpki-client -vvf rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32342d3234203d3e20313431363734.roa File: 3130332e3137312e3234342e302f32342d3234203d3e20313431363734.roa (raw, json) Hash identifier: buno2xHiOqx8y/mt/ACsj7ZEe8dz2IpeqPkmLCji+Pw= Subject key identifier: 97:B9:11:69:CA:78:3C:92:F4:1B:68:5C:D5:B1:34:B0:6D:BE:4B:25 Certificate issuer: /CN=AF66100C07C72416053F944B967509CE9CB5BD57 Certificate serial: 6C151879A91B7E990BF525DAFC8B68B4457CCA0C Authority key identifier: AF:66:10:0C:07:C7:24:16:05:3F:94:4B:96:75:09:CE:9C:B5:BD:57 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF66100C07C72416053F944B967509CE9CB5BD57.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32342d3234203d3e20313431363734.roa Signing time: Sun 03 May 2026 02:16:54 +0000 ROA not before: Sun 03 May 2026 02:11:54 +0000 ROA not after: Sun 02 May 2027 02:16:54 +0000 asID: 141674 IP address blocks: 103.171.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/AF66100C07C72416053F944B967509CE9CB5BD57.crl rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/AF66100C07C72416053F944B967509CE9CB5BD57.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF66100C07C72416053F944B967509CE9CB5BD57.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:15:18:79:a9:1b:7e:99:0b:f5:25:da:fc:8b:68:b4:45:7c:ca:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF66100C07C72416053F944B967509CE9CB5BD57 Validity Not Before: May 3 02:11:54 2026 GMT Not After : May 2 02:16:54 2027 GMT Subject: CN=97B91169CA783C92F41B685CD5B134B06DBE4B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e4:45:c9:ef:a9:ba:33:10:5b:09:81:0a:52: 3e:91:f3:78:db:3f:d0:0e:7b:c3:03:83:2d:d5:91: 78:6b:97:cd:78:a0:2f:46:d9:3c:e9:dc:56:b0:05: ec:25:d7:2d:d9:e4:77:f2:bd:b8:54:7a:75:a5:f0: 4d:c1:1a:04:0b:41:22:93:b5:63:5b:1f:d5:30:a9: c3:cc:c0:92:8a:ea:6b:20:25:e4:be:64:05:ca:fd: 69:66:2b:9a:07:54:20:07:c9:63:dd:76:da:41:ad: 5d:4f:d9:87:c9:76:b2:d7:b8:0f:9a:54:e0:bf:8a: 8a:5e:ee:7a:f7:ff:0d:ac:10:62:69:6e:8f:16:81: 2f:e3:4f:65:a5:ea:b1:d8:a7:93:0d:96:d1:4f:52: 8c:69:30:7c:82:d7:78:33:17:ef:ca:9b:ca:df:3d: 3a:62:fb:d9:92:8a:7d:a5:c0:20:70:5b:05:6c:dc: ae:52:f3:cf:1e:64:32:ef:3d:fd:2e:62:b0:4a:5e: b8:73:67:b6:9e:14:eb:1c:21:89:4b:ef:d9:45:2f: d4:4a:e9:e5:cc:6e:d9:91:e4:55:cc:ba:7e:c9:b8: f0:c9:89:2d:1f:f9:bc:f7:1e:20:8a:45:87:d7:8c: bb:9f:16:ae:59:dd:75:69:ce:a1:86:2b:49:1b:60: c8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B9:11:69:CA:78:3C:92:F4:1B:68:5C:D5:B1:34:B0:6D:BE:4B:25 X509v3 Authority Key Identifier: keyid:AF:66:10:0C:07:C7:24:16:05:3F:94:4B:96:75:09:CE:9C:B5:BD:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/AF66100C07C72416053F944B967509CE9CB5BD57.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF66100C07C72416053F944B967509CE9CB5BD57.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32342d3234203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.244.0/24 Signature Algorithm: sha256WithRSAEncryption 03:13:fe:34:35:db:3f:58:45:98:4f:3e:21:84:a6:ad:42:65: 09:44:79:72:6e:cf:1c:fa:e9:82:8c:c1:9c:25:ed:13:86:cf: 80:91:7c:34:a8:f3:58:83:14:7a:4e:72:2f:1f:04:4b:86:b6: 61:e7:89:e7:a3:60:58:ef:90:dd:f5:5c:14:c2:68:13:5e:c2: 99:b4:93:33:11:9f:53:24:ed:b4:87:e7:e7:e9:82:6a:0c:0f: e0:a2:4b:23:e9:e3:81:5a:26:79:83:f5:4e:c8:dc:be:51:17: e6:84:6f:54:1d:7f:9f:c8:a7:ea:ab:a0:14:4a:f7:81:dc:3b: 4c:9c:5b:45:3c:00:67:83:a5:8e:b9:ab:b5:70:83:06:71:cb: 0c:2c:79:fe:ee:20:18:2c:f5:17:ac:f1:bd:dd:4e:8c:70:bf: 3e:2d:e2:2d:b8:82:ea:2b:7b:40:c6:ee:09:0e:e2:16:25:5b: 0f:3c:55:a7:b9:04:a3:a3:26:a9:b3:b8:5e:08:7b:7f:76:4c: 59:d2:7f:ba:7b:47:33:13:1d:98:f8:1b:f7:db:84:6b:a8:54: 93:38:d7:1c:5b:02:01:04:b5:8c:d8:27:58:0f:49:c6:00:d6: d4:f2:05:12:9a:a7:5e:38:5c:d4:bb:3b:19:9c:1d:b3:5b:ac: e9:7b:ce:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbBUYeakbfpkL9SXa/ItotEV8ygwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2NjEwMEMwN0M3MjQxNjA1M0Y5NDRCOTY3NTA5Q0U5 Q0I1QkQ1NzAeFw0yNjA1MDMwMjExNTRaFw0yNzA1MDIwMjE2NTRaMDMxMTAvBgNV BAMTKDk3QjkxMTY5Q0E3ODNDOTJGNDFCNjg1Q0Q1QjEzNEIwNkRCRTRCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs5EXJ76m6MxBbCYEKUj6R83jb P9AOe8MDgy3VkXhrl814oC9G2Tzp3FawBewl1y3Z5HfyvbhUenWl8E3BGgQLQSKT tWNbH9UwqcPMwJKK6msgJeS+ZAXK/WlmK5oHVCAHyWPddtpBrV1P2YfJdrLXuA+a VOC/iope7nr3/w2sEGJpbo8WgS/jT2Wl6rHYp5MNltFPUoxpMHyC13gzF+/Km8rf PTpi+9mSin2lwCBwWwVs3K5S888eZDLvPf0uYrBKXrhzZ7aeFOscIYlL79lFL9RK 6eXMbtmR5FXMun7JuPDJiS0f+bz3HiCKRYfXjLufFq5Z3XVpzqGGK0kbYMgXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl7kRacp4PJL0G2hc1bE0sG2+SyUwHwYDVR0j BBgwFoAUr2YQDAfHJBYFP5RLlnUJzpy1vVcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWFhYzFiYjktNDVmNi00NjY3LWIxOTQtOWE2OWE0YTRkNzU1LzAvQUY2NjEwMEMw N0M3MjQxNjA1M0Y5NDRCOTY3NTA5Q0U5Q0I1QkQ1Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjY2MTAwQzA3QzcyNDE2MDUzRjk0NEI5Njc1MDlDRTlDQjVC RDU3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFhYWMxYmI5LTQ1ZjYtNDY2Ny1i MTk0LTlhNjlhNGE0ZDc1NS8wLzMxMzAzMzJlMzEzNzMxMmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq/QwDQYJ KoZIhvcNAQELBQADggEBAAMT/jQ12z9YRZhPPiGEpq1CZQlEeXJuzxz66YKMwZwl 7ROGz4CRfDSo81iDFHpOci8fBEuGtmHnieejYFjvkN31XBTCaBNewpm0kzMRn1Mk 7bSH5+fpgmoMD+CiSyPp44FaJnmD9U7I3L5RF+aEb1Qdf5/Ip+qroBRK94HcO0yc W0U8AGeDpY65q7VwgwZxywwsef7uIBgs9Res8b3dToxwvz4t4i24guore0DG7gkO 4hYlWw88Vae5BKOjJqmzuF4Ie392TFnSf7p7RzMTHZj4G/fbhGuoVJM41xxbAgEE tYzYJ1gPScYA1tTyBRKap144XNS7OxmcHbNbrOl7zro= -----END CERTIFICATE-----Generated at Wed May 13 11:25:27 2026 by rpki-client