$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233362e302f32342d3234203d3e20313432333038.roa File: 3130332e3136372e3233362e302f32342d3234203d3e20313432333038.roa (raw, json) Hash identifier: gyzRwVYpqU4mnepZ71f/6TVQnZaQ09Xw/5PO0EoRtpw= Subject key identifier: DF:7D:CB:85:01:81:AC:13:C4:78:01:01:73:CC:B6:BB:EF:EB:CC:38 Certificate issuer: /CN=BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710 Certificate serial: 6F992B59AFB6AABE2F11FB7C27F216BBEFC8017E Authority key identifier: BF:4E:FC:4E:BC:0B:95:9D:AB:2C:A7:6A:EB:9D:9C:30:17:FF:C7:10 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233362e302f32342d3234203d3e20313432333038.roa Signing time: Sun 03 May 2026 02:18:22 +0000 ROA not before: Sun 03 May 2026 02:13:22 +0000 ROA not after: Sun 02 May 2027 02:18:22 +0000 asID: 142308 IP address blocks: 103.167.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.crl rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:99:2b:59:af:b6:aa:be:2f:11:fb:7c:27:f2:16:bb:ef:c8:01:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710 Validity Not Before: May 3 02:13:22 2026 GMT Not After : May 2 02:18:22 2027 GMT Subject: CN=DF7DCB850181AC13C478010173CCB6BBEFEBCC38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a7:bb:e9:5b:a0:a1:1e:f2:83:f0:df:65:22: 78:7e:60:fb:e4:d9:60:bd:87:d3:25:74:33:a9:28: cf:ad:08:dc:8e:91:4e:f6:5a:32:10:dd:72:4e:86: dc:05:24:a4:0c:b6:b6:67:8b:6b:17:b6:5d:bd:25: bc:2f:d7:01:7c:70:10:98:b9:a9:fe:0f:f9:28:16: 73:2b:5a:cb:17:dc:4d:60:08:ea:7f:fb:ca:79:a5: 71:ef:1a:eb:ee:0e:76:b1:f1:72:61:36:a7:15:5c: 2f:41:f2:eb:55:84:8a:98:be:ef:dd:3a:a2:0a:f8: b8:8c:2f:75:2f:c3:66:e3:cb:d0:62:8a:98:e3:26: 0d:8a:da:02:7e:38:94:62:d9:3b:dc:da:0c:ea:b5: 37:b2:6f:c7:45:d7:7f:6b:5d:c1:a1:6f:82:6e:1c: 98:f8:b7:bd:85:7e:ea:63:6e:40:c5:c4:e2:03:c7: aa:15:40:b9:17:c4:da:f0:2c:85:ea:43:e5:b7:4f: 15:c5:1d:77:e1:aa:f3:cd:9a:e4:76:a0:73:98:c9: 2e:a4:4f:3a:04:7c:9b:68:88:66:db:53:30:67:a7: c4:0f:af:ea:54:4a:e1:c6:7a:0e:11:91:86:87:91: 72:57:74:ae:cb:17:5b:72:3b:f7:d7:47:4d:1a:da: b3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7D:CB:85:01:81:AC:13:C4:78:01:01:73:CC:B6:BB:EF:EB:CC:38 X509v3 Authority Key Identifier: keyid:BF:4E:FC:4E:BC:0B:95:9D:AB:2C:A7:6A:EB:9D:9C:30:17:FF:C7:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233362e302f32342d3234203d3e20313432333038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.236.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:88:53:5c:5c:e9:8d:01:f2:7b:a1:5e:ba:27:cb:ca:ab:67: b5:86:1b:63:c9:63:b9:d4:ab:7d:56:7d:91:93:6d:ba:66:49: d6:14:2b:35:0c:fc:f1:6e:7f:2a:cb:5c:3b:74:6b:29:fb:fc: 16:9a:9e:0c:de:d4:b9:d6:da:4a:51:4e:c8:96:57:a3:db:f8: 7b:6e:65:3c:07:6f:05:a6:a6:14:50:1a:e0:8e:26:14:d4:9e: 0c:5e:89:02:d4:4a:4c:d7:ee:3d:ce:f5:71:e7:a6:62:3c:c7: 9d:d1:4e:c9:9a:6c:e5:42:f7:30:5c:cb:22:04:8a:8c:89:be: 6b:13:66:cc:56:f3:1f:c7:d1:ff:99:ee:8b:0c:fc:f5:93:38: 61:6f:ef:d0:e0:19:d2:ca:d8:e6:6a:ef:b7:d9:03:5e:cd:f8: bd:55:2e:cd:31:33:24:47:2b:5f:6c:20:0d:e2:8b:f6:8b:55: 38:77:68:d2:2f:aa:34:d0:a2:0d:4e:c5:33:20:7e:0c:f7:98: bc:82:c9:b0:33:98:a5:b9:5e:69:f6:d8:e8:92:bb:cc:3e:b0: a8:c2:99:b6:eb:62:c8:3e:76:16:9d:89:79:36:1a:6e:2b:93: ea:b7:65:e2:1c:c3:8d:71:25:8a:8a:3f:3d:60:bf:36:f0:c4: 8f:7d:32:fe -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb5krWa+2qr4vEft8J/IWu+/IAX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkY0RUZDNEVCQzBCOTU5REFCMkNBNzZBRUI5RDlDMzAx N0ZGQzcxMDAeFw0yNjA1MDMwMjEzMjJaFw0yNzA1MDIwMjE4MjJaMDMxMTAvBgNV BAMTKERGN0RDQjg1MDE4MUFDMTNDNDc4MDEwMTczQ0NCNkJCRUZFQkNDMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOp7vpW6ChHvKD8N9lInh+YPvk 2WC9h9MldDOpKM+tCNyOkU72WjIQ3XJOhtwFJKQMtrZni2sXtl29Jbwv1wF8cBCY uan+D/koFnMrWssX3E1gCOp/+8p5pXHvGuvuDnax8XJhNqcVXC9B8utVhIqYvu/d OqIK+LiML3Uvw2bjy9BiipjjJg2K2gJ+OJRi2Tvc2gzqtTeyb8dF139rXcGhb4Ju HJj4t72FfupjbkDFxOIDx6oVQLkXxNrwLIXqQ+W3TxXFHXfhqvPNmuR2oHOYyS6k TzoEfJtoiGbbUzBnp8QPr+pUSuHGeg4RkYaHkXJXdK7LF1tyO/fXR00a2rPFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU333LhQGBrBPEeAEBc8y2u+/rzDgwHwYDVR0j BBgwFoAUv078TrwLlZ2rLKdq652cMBf/xxAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWVjZmQzZjUtODVkYS00OGE3LWI1MDItZjYxYTU5Nzk2YzMzLzAvQkY0RUZDNEVC QzBCOTU5REFCMkNBNzZBRUI5RDlDMzAxN0ZGQzcxMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRjRFRkM0RUJDMEI5NTlEQUIyQ0E3NkFFQjlEOUMzMDE3RkZD NzEwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlY2ZkM2Y1LTg1ZGEtNDhhNy1i NTAyLWY2MWE1OTc5NmMzMy8wLzMxMzAzMzJlMzEzNjM3MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp+wwDQYJ KoZIhvcNAQELBQADggEBAF+IU1xc6Y0B8nuhXrony8qrZ7WGG2PJY7nUq31WfZGT bbpmSdYUKzUM/PFufyrLXDt0ayn7/Baangze1LnW2kpRTsiWV6Pb+HtuZTwHbwWm phRQGuCOJhTUngxeiQLUSkzX7j3O9XHnpmI8x53RTsmabOVC9zBcyyIEioyJvmsT ZsxW8x/H0f+Z7osM/PWTOGFv79DgGdLK2OZq77fZA17N+L1VLs0xMyRHK19sIA3i i/aLVTh3aNIvqjTQog1OxTMgfgz3mLyCybAzmKW5Xmn22OiSu8w+sKjCmbbrYsg+ dhadiXk2Gm4rk+q3ZeIcw41xJYqKPz1gvzbwxI99Mv4= -----END CERTIFICATE-----Generated at Wed May 13 12:18:44 2026 by rpki-client