$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa File: 3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa (raw, json) Hash identifier: y81kh0KeqX5r1jHre6tsGWtKJonbTr6cZ5My00O1C1k= Subject key identifier: A2:35:14:65:C4:34:5E:E2:3F:BA:71:DA:DA:2E:E7:D3:EC:A8:CA:A9 Certificate issuer: /CN=996D7371455A834C9B196DACD041DB7C6E779021 Certificate serial: 2EF3D9A3F1191D78CFAD5DF608CA38DBFEB8DC9C Authority key identifier: 99:6D:73:71:45:5A:83:4C:9B:19:6D:AC:D0:41:DB:7C:6E:77:90:21 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/996D7371455A834C9B196DACD041DB7C6E779021.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa Signing time: Sun 03 May 2026 02:17:10 +0000 ROA not before: Sun 03 May 2026 02:12:10 +0000 ROA not after: Sun 02 May 2027 02:17:10 +0000 asID: 149705 IP address blocks: 103.158.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/996D7371455A834C9B196DACD041DB7C6E779021.crl rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/996D7371455A834C9B196DACD041DB7C6E779021.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/996D7371455A834C9B196DACD041DB7C6E779021.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f3:d9:a3:f1:19:1d:78:cf:ad:5d:f6:08:ca:38:db:fe:b8:dc:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996D7371455A834C9B196DACD041DB7C6E779021 Validity Not Before: May 3 02:12:10 2026 GMT Not After : May 2 02:17:10 2027 GMT Subject: CN=A2351465C4345EE23FBA71DADA2EE7D3ECA8CAA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8a:97:54:40:cf:15:90:5e:78:66:3e:bb:59: 6c:16:0f:6d:88:c1:58:21:83:cc:56:5e:15:4a:0f: 98:97:d6:ec:49:4a:3a:f5:67:0d:56:88:52:22:d2: 22:d6:0d:ba:31:dc:be:b0:79:21:fd:44:a3:e7:23: 18:c4:2a:f9:b0:f7:6b:0e:0e:89:51:18:0c:c4:c8: 0e:2b:fc:01:e4:f5:a8:fa:cc:ca:ed:5e:4b:1a:26: 97:3c:ea:4c:98:ec:2a:b7:24:aa:66:52:27:97:42: 65:f3:af:ff:e9:a1:aa:2d:ba:91:e7:4a:19:a0:1a: e6:78:d6:a5:b9:eb:15:2e:f0:9f:2a:e0:f0:2e:4c: 85:e0:83:0b:2f:1d:1c:dd:20:2d:9a:bc:84:da:6e: 73:f2:bf:b4:48:d6:0f:f9:65:0d:ef:db:8b:30:7c: a3:5d:bd:45:10:76:62:bc:d2:91:ef:81:af:24:8b: 91:1c:2d:3f:bf:78:e8:40:d8:87:bf:dd:03:77:aa: 97:b1:0e:cd:6e:f5:09:91:b0:4d:8a:67:e6:dc:b8: 52:74:08:48:cc:7c:11:ae:0b:ff:1a:de:c2:64:15: ab:d4:88:b6:3f:16:51:81:51:f4:bc:a5:fb:f1:8a: d5:bc:46:53:0c:0f:27:9d:c4:64:84:dc:54:6e:76: 5f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:35:14:65:C4:34:5E:E2:3F:BA:71:DA:DA:2E:E7:D3:EC:A8:CA:A9 X509v3 Authority Key Identifier: keyid:99:6D:73:71:45:5A:83:4C:9B:19:6D:AC:D0:41:DB:7C:6E:77:90:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/996D7371455A834C9B196DACD041DB7C6E779021.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/996D7371455A834C9B196DACD041DB7C6E779021.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.193.0/24 Signature Algorithm: sha256WithRSAEncryption 54:41:08:0b:3a:0d:f7:a9:77:d3:21:b3:f6:70:42:ca:cd:95: 62:72:9c:9e:d8:08:d2:e1:cf:91:f8:8f:a0:89:d1:4b:e4:d7: 90:ca:73:8a:66:cd:0c:7e:58:2e:6b:20:e6:55:69:ee:1f:5f: b1:83:f1:a5:c4:f9:89:84:c4:5d:95:6a:c9:cb:4a:34:20:97: 9a:18:89:5a:d0:48:0b:a4:8c:33:3d:ce:99:a3:f5:f7:6b:f1: e9:3b:3d:df:f4:8e:91:df:df:3c:35:48:94:82:df:0f:eb:e4: 11:5f:09:9c:a5:06:2f:0d:d3:28:c4:53:55:1a:df:6a:b2:28: a0:7c:b0:cb:13:a7:a4:e7:7f:a5:eb:62:d2:a0:f5:a6:ce:af: 70:ef:0f:d6:f6:68:86:be:f3:07:84:5e:be:df:c5:66:99:25: 59:24:ab:98:47:cd:47:11:77:62:72:83:55:3d:5f:c4:c4:95: 7c:50:76:31:08:56:7a:df:1e:51:12:99:da:db:7f:e0:f4:72: 88:d2:d5:ac:2e:3d:81:7d:c2:16:fe:08:f5:68:ef:c5:a8:07: 22:62:07:0b:41:5f:63:67:ca:74:bf:5a:75:6c:51:ef:b1:62: 78:d4:8c:44:5e:42:6a:a6:c5:5f:1c:db:4f:5b:7f:08:78:e5: 5b:42:7b:b9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULvPZo/EZHXjPrV32CMo42/643JwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTk2RDczNzE0NTVBODM0QzlCMTk2REFDRDA0MURCN0M2 RTc3OTAyMTAeFw0yNjA1MDMwMjEyMTBaFw0yNzA1MDIwMjE3MTBaMDMxMTAvBgNV BAMTKEEyMzUxNDY1QzQzNDVFRTIzRkJBNzFEQURBMkVFN0QzRUNBOENBQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmipdUQM8VkF54Zj67WWwWD22I wVghg8xWXhVKD5iX1uxJSjr1Zw1WiFIi0iLWDbox3L6weSH9RKPnIxjEKvmw92sO DolRGAzEyA4r/AHk9aj6zMrtXksaJpc86kyY7Cq3JKpmUieXQmXzr//poaotupHn ShmgGuZ41qW56xUu8J8q4PAuTIXggwsvHRzdIC2avITabnPyv7RI1g/5ZQ3v24sw fKNdvUUQdmK80pHvga8ki5EcLT+/eOhA2Ie/3QN3qpexDs1u9QmRsE2KZ+bcuFJ0 CEjMfBGuC/8a3sJkFavUiLY/FlGBUfS8pfvxitW8RlMMDyedxGSE3FRudl9xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUojUUZcQ0XuI/unHa2i7n0+yoyqkwHwYDVR0j BBgwFoAUmW1zcUVag0ybGW2s0EHbfG53kCEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI2YzYxNGYtZDBmZi00MWE5LTkyZDAtM2EyMTM1ODE1MzdiLzAvOTk2RDczNzE0 NTVBODM0QzlCMTk2REFDRDA0MURCN0M2RTc3OTAyMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OTZENzM3MTQ1NUE4MzRDOUIxOTZEQUNEMDQxREI3QzZFNzc5 MDIxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiNmM2MTRmLWQwZmYtNDFhOS05 MmQwLTNhMjEzNTgxNTM3Yi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsEwDQYJ KoZIhvcNAQELBQADggEBAFRBCAs6Dfepd9Mhs/ZwQsrNlWJynJ7YCNLhz5H4j6CJ 0Uvk15DKc4pmzQx+WC5rIOZVae4fX7GD8aXE+YmExF2VasnLSjQgl5oYiVrQSAuk jDM9zpmj9fdr8ek7Pd/0jpHf3zw1SJSC3w/r5BFfCZylBi8N0yjEU1Ua32qyKKB8 sMsTp6Tnf6XrYtKg9abOr3DvD9b2aIa+8weEXr7fxWaZJVkkq5hHzUcRd2Jyg1U9 X8TElXxQdjEIVnrfHlESmdrbf+D0cojS1awuPYF9whb+CPVo78WoByJiBwtBX2Nn ynS/WnVsUe+xYnjUjEReQmqmxV8c209bfwh45VtCe7k= -----END CERTIFICATE-----Generated at Wed May 13 11:22:25 2026 by rpki-client