$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa File: 3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa (raw, json) Hash identifier: mYfhWrz3MT+qqqLGfCs8+XgkHC16IXPVoilIEywQD9M= Subject key identifier: 84:44:A2:E2:B7:D9:41:7A:BA:FA:4C:18:7F:63:22:38:72:28:D8:B1 Certificate issuer: /CN=BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710 Certificate serial: 33A986E21F4B2668C91EB3AC2CF66BD3D3AAE026 Authority key identifier: BF:4E:FC:4E:BC:0B:95:9D:AB:2C:A7:6A:EB:9D:9C:30:17:FF:C7:10 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa Signing time: Sun 03 May 2026 02:18:22 +0000 ROA not before: Sun 03 May 2026 02:13:22 +0000 ROA not after: Sun 02 May 2027 02:18:22 +0000 asID: 142308 IP address blocks: 103.167.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.crl rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a9:86:e2:1f:4b:26:68:c9:1e:b3:ac:2c:f6:6b:d3:d3:aa:e0:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710 Validity Not Before: May 3 02:13:22 2026 GMT Not After : May 2 02:18:22 2027 GMT Subject: CN=8444A2E2B7D9417ABAFA4C187F6322387228D8B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d0:94:af:12:ef:be:a9:48:ce:8c:48:2f:a6: c1:8e:1e:c3:c4:63:21:f3:15:fd:75:0c:c1:cb:e6: b2:76:83:3b:15:eb:e9:4f:e8:32:20:cc:03:1d:ff: fa:51:2b:af:a6:0e:ad:b8:8d:b2:be:48:17:b9:61: 01:2d:c0:f9:6d:38:e3:bd:7e:63:c7:3b:5a:2d:d6: 47:5c:d9:b0:16:5b:d7:39:f0:1b:4c:64:33:f9:4d: a8:a8:ba:c2:4c:ba:72:1a:54:b1:9e:06:05:73:0b: 29:36:1a:68:7d:de:30:f0:8d:12:1d:82:70:51:f5: 4c:f3:fe:47:bc:46:62:10:7e:c7:c6:c2:9d:de:9f: 2b:f2:17:aa:5a:b2:7b:39:23:34:ac:64:7c:16:10: c3:83:a5:57:8b:cf:3f:ce:74:a7:08:a1:89:43:32: 3a:30:32:c5:29:b3:84:73:1a:c3:25:d2:70:12:3f: 25:89:1b:b3:67:4a:ef:cf:85:45:88:02:55:9c:d6: 5c:a7:1a:14:11:2b:da:72:28:45:46:5e:99:a2:49: ea:d2:ef:3a:78:6d:79:ae:55:64:66:b0:b6:8d:36: 9e:48:3f:cb:1a:ad:43:81:b7:63:c2:7f:1c:ff:c0: 6b:d9:c3:2c:6c:32:49:b0:0f:da:9f:21:1d:93:65: d5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:44:A2:E2:B7:D9:41:7A:BA:FA:4C:18:7F:63:22:38:72:28:D8:B1 X509v3 Authority Key Identifier: keyid:BF:4E:FC:4E:BC:0B:95:9D:AB:2C:A7:6A:EB:9D:9C:30:17:FF:C7:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF4EFC4EBC0B959DAB2CA76AEB9D9C3017FFC710.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.237.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:58:4d:95:ab:10:bc:00:f6:9e:5e:ec:ae:6f:32:90:4a:f3: f2:0e:7e:a1:bc:08:ff:08:45:43:78:e9:58:3a:4b:c9:8d:3c: c6:42:f5:5e:70:69:61:3f:1e:eb:7a:c5:ec:ee:79:6a:4b:be: 4b:67:00:36:29:48:a9:42:3e:44:71:74:cd:5e:a6:40:32:c8: 9a:ef:02:41:72:95:59:55:4a:34:49:23:a8:aa:35:f7:8d:3f: 40:ef:30:e3:a7:6e:6f:b1:2a:89:1a:0e:39:60:dd:ce:04:34: 6f:b1:18:be:c2:db:14:42:42:91:08:0f:41:67:b9:33:ad:e6: bd:d1:0b:28:13:99:bc:73:fd:6f:07:c3:ae:bc:dc:25:64:4d: e9:78:3c:42:c6:33:21:b5:f7:e1:21:de:6b:f0:20:b8:2d:e1: c7:4a:24:d8:05:97:ec:36:87:38:a1:ad:58:bc:62:d9:55:84: 10:f5:d3:fa:55:70:b8:8c:de:a9:4b:49:d6:64:2b:06:96:07: d2:c9:a0:e4:bd:9a:71:6d:46:97:fd:4a:6b:9d:67:10:cc:68: 21:3d:52:82:86:60:56:60:9d:7c:a9:c0:46:e5:69:88:64:88: 0f:69:ed:d2:7e:c3:91:31:7a:6f:a9:31:b2:aa:70:53:33:60: 85:cc:24:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM6mG4h9LJmjJHrOsLPZr09Oq4CYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkY0RUZDNEVCQzBCOTU5REFCMkNBNzZBRUI5RDlDMzAx N0ZGQzcxMDAeFw0yNjA1MDMwMjEzMjJaFw0yNzA1MDIwMjE4MjJaMDMxMTAvBgNV BAMTKDg0NDRBMkUyQjdEOTQxN0FCQUZBNEMxODdGNjMyMjM4NzIyOEQ4QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr0JSvEu++qUjOjEgvpsGOHsPE YyHzFf11DMHL5rJ2gzsV6+lP6DIgzAMd//pRK6+mDq24jbK+SBe5YQEtwPltOOO9 fmPHO1ot1kdc2bAWW9c58BtMZDP5TaiousJMunIaVLGeBgVzCyk2Gmh93jDwjRId gnBR9Uzz/ke8RmIQfsfGwp3enyvyF6pasns5IzSsZHwWEMODpVeLzz/OdKcIoYlD MjowMsUps4RzGsMl0nASPyWJG7NnSu/PhUWIAlWc1lynGhQRK9pyKEVGXpmiSerS 7zp4bXmuVWRmsLaNNp5IP8sarUOBt2PCfxz/wGvZwyxsMkmwD9qfIR2TZdW1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhESi4rfZQXq6+kwYf2MiOHIo2LEwHwYDVR0j BBgwFoAUv078TrwLlZ2rLKdq652cMBf/xxAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWVjZmQzZjUtODVkYS00OGE3LWI1MDItZjYxYTU5Nzk2YzMzLzAvQkY0RUZDNEVC QzBCOTU5REFCMkNBNzZBRUI5RDlDMzAxN0ZGQzcxMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRjRFRkM0RUJDMEI5NTlEQUIyQ0E3NkFFQjlEOUMzMDE3RkZD NzEwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlY2ZkM2Y1LTg1ZGEtNDhhNy1i NTAyLWY2MWE1OTc5NmMzMy8wLzMxMzAzMzJlMzEzNjM3MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp+0wDQYJ KoZIhvcNAQELBQADggEBAJxYTZWrELwA9p5e7K5vMpBK8/IOfqG8CP8IRUN46Vg6 S8mNPMZC9V5waWE/Hut6xezueWpLvktnADYpSKlCPkRxdM1epkAyyJrvAkFylVlV SjRJI6iqNfeNP0DvMOOnbm+xKokaDjlg3c4ENG+xGL7C2xRCQpEID0FnuTOt5r3R CygTmbxz/W8Hw6683CVkTel4PELGMyG19+Eh3mvwILgt4cdKJNgFl+w2hzihrVi8 YtlVhBD10/pVcLiM3qlLSdZkKwaWB9LJoOS9mnFtRpf9SmudZxDMaCE9UoKGYFZg nXypwEblaYhkiA9p7dJ+w5Exem+pMbKqcFMzYIXMJJA= -----END CERTIFICATE-----Generated at Wed May 13 12:05:19 2026 by rpki-client