$ rpki-client -vvf rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa File: 3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa (raw, json) Hash identifier: gTzJVLzwHZfB2XlD0ZDAGkf7sC4mGSUZJV6Nnni5S1g= Subject key identifier: 4E:61:44:B3:B7:87:E5:C7:D4:FF:A0:5E:58:D0:DC:AC:C4:2A:B1:E2 Certificate issuer: /CN=12215616BDEA90F45AB43FFCB676AA254601358F Certificate serial: 1E30A1E5A8EF361E7379D70D055B8C048F81D98B Authority key identifier: 12:21:56:16:BD:EA:90:F4:5A:B4:3F:FC:B6:76:AA:25:46:01:35:8F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12215616BDEA90F45AB43FFCB676AA254601358F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa Signing time: Sun 03 May 2026 02:19:50 +0000 ROA not before: Sun 03 May 2026 02:14:50 +0000 ROA not after: Sun 02 May 2027 02:19:50 +0000 asID: 147096 IP address blocks: 103.174.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/12215616BDEA90F45AB43FFCB676AA254601358F.crl rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/12215616BDEA90F45AB43FFCB676AA254601358F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12215616BDEA90F45AB43FFCB676AA254601358F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:30:a1:e5:a8:ef:36:1e:73:79:d7:0d:05:5b:8c:04:8f:81:d9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12215616BDEA90F45AB43FFCB676AA254601358F Validity Not Before: May 3 02:14:50 2026 GMT Not After : May 2 02:19:50 2027 GMT Subject: CN=4E6144B3B787E5C7D4FFA05E58D0DCACC42AB1E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ff:40:2c:5f:75:2b:a5:23:93:b6:20:63:5f: 5e:b5:b7:98:63:1d:85:0e:c8:3c:52:26:f3:68:ae: 1f:bd:ae:df:f2:39:f8:5a:ac:b4:44:63:ce:e9:3a: ae:8a:5c:ae:8a:e0:0b:68:d8:3a:f1:99:ae:92:4c: 24:4f:8e:44:82:02:4b:57:9e:29:22:7a:0b:67:66: a9:2a:26:af:4c:89:97:ab:3d:0f:25:16:2e:55:93: 25:91:87:73:3b:d6:d9:82:9e:2f:5c:a2:2e:f0:c4: 07:c2:aa:f4:02:66:7f:f8:98:8c:2b:95:d7:d0:6e: 71:2c:3e:9a:2b:b6:f0:d4:9c:fc:96:23:89:43:93: 17:cd:59:79:2a:ea:bb:77:90:90:25:c2:a6:d8:23: 99:47:b8:74:2c:8c:aa:8f:84:df:9e:81:39:22:bf: cf:c3:7f:56:93:89:9a:14:1a:7b:13:60:52:64:e6: 06:0e:9c:78:92:e0:fd:ae:60:d5:a8:a0:c8:3a:44: aa:ad:90:30:4e:10:42:84:f9:ad:a3:8f:bf:21:0e: a5:09:3d:66:8a:cd:c9:97:3c:e5:ec:c1:42:9b:0c: 5f:32:1d:57:a6:2e:fd:69:fc:60:52:e2:13:21:41: 53:bd:69:17:2b:d1:fe:d4:cb:d0:6b:7f:00:99:f9: 29:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:61:44:B3:B7:87:E5:C7:D4:FF:A0:5E:58:D0:DC:AC:C4:2A:B1:E2 X509v3 Authority Key Identifier: keyid:12:21:56:16:BD:EA:90:F4:5A:B4:3F:FC:B6:76:AA:25:46:01:35:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/12215616BDEA90F45AB43FFCB676AA254601358F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12215616BDEA90F45AB43FFCB676AA254601358F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.122.0/23 Signature Algorithm: sha256WithRSAEncryption 45:d7:42:38:51:df:b8:db:70:3c:2e:c0:ff:30:39:a3:cf:a7: c9:10:2e:a0:44:df:ed:81:82:1d:7d:5b:9f:b3:49:01:3c:e7: 15:d3:92:7c:08:33:f2:9a:e3:fa:30:95:bc:ce:56:bc:cd:88: 6b:ec:9b:9a:a3:93:91:b5:ba:a4:a6:cb:40:c4:30:67:6d:5c: 79:ea:ef:69:1f:75:07:f0:bb:ec:c2:ae:99:11:5c:5c:f2:4e: 15:7f:44:ac:56:77:21:0e:c0:9e:c2:ce:79:c8:43:74:55:63: 73:83:5a:dc:d5:74:f7:5b:62:1f:36:31:f6:51:40:f2:2b:67: 49:8a:a1:b2:f7:7c:a3:ca:94:06:51:bb:0e:17:05:dc:db:f9: 41:c3:6e:22:8f:e3:a9:da:d0:90:34:4e:cd:83:c9:c1:f4:42: 34:0e:21:45:ad:f2:39:18:20:bf:70:f2:97:20:4d:46:47:4a: 08:e5:14:77:c4:0a:75:16:6c:f9:69:a6:5a:45:32:df:ac:8f: e5:02:94:10:c3:e9:9f:06:68:62:46:9e:26:24:ca:28:ed:db: cb:a0:4f:31:28:26:e1:be:a5:6e:a7:d1:1a:ac:54:73:95:b2: 9a:55:be:6b:71:d6:61:1e:bc:47:c4:37:01:95:bf:99:5f:40: cf:f9:ed:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHjCh5ajvNh5zedcNBVuMBI+B2YswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTIyMTU2MTZCREVBOTBGNDVBQjQzRkZDQjY3NkFBMjU0 NjAxMzU4RjAeFw0yNjA1MDMwMjE0NTBaFw0yNzA1MDIwMjE5NTBaMDMxMTAvBgNV BAMTKDRFNjE0NEIzQjc4N0U1QzdENEZGQTA1RTU4RDBEQ0FDQzQyQUIxRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCM/0AsX3UrpSOTtiBjX161t5hj HYUOyDxSJvNorh+9rt/yOfharLREY87pOq6KXK6K4Ato2Drxma6STCRPjkSCAktX nikiegtnZqkqJq9MiZerPQ8lFi5VkyWRh3M71tmCni9coi7wxAfCqvQCZn/4mIwr ldfQbnEsPportvDUnPyWI4lDkxfNWXkq6rt3kJAlwqbYI5lHuHQsjKqPhN+egTki v8/Df1aTiZoUGnsTYFJk5gYOnHiS4P2uYNWooMg6RKqtkDBOEEKE+a2jj78hDqUJ PWaKzcmXPOXswUKbDF8yHVemLv1p/GBS4hMhQVO9aRcr0f7Uy9BrfwCZ+SkVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTmFEs7eH5cfU/6BeWNDcrMQqseIwHwYDVR0j BBgwFoAUEiFWFr3qkPRatD/8tnaqJUYBNY8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjI3MzAyN2EtMDk2Yi00ZTk1LWE2NTYtZGFiZTk4YWM2ZjZkLzAvMTIyMTU2MTZC REVBOTBGNDVBQjQzRkZDQjY3NkFBMjU0NjAxMzU4Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMjIxNTYxNkJERUE5MEY0NUFCNDNGRkNCNjc2QUEyNTQ2MDEz NThGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdhLTA5NmItNGU5NS1h NjU2LWRhYmU5OGFjNmY2ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrnowDQYJ KoZIhvcNAQELBQADggEBAEXXQjhR37jbcDwuwP8wOaPPp8kQLqBE3+2Bgh19W5+z SQE85xXTknwIM/Ka4/owlbzOVrzNiGvsm5qjk5G1uqSmy0DEMGdtXHnq72kfdQfw u+zCrpkRXFzyThV/RKxWdyEOwJ7CznnIQ3RVY3ODWtzVdPdbYh82MfZRQPIrZ0mK obL3fKPKlAZRuw4XBdzb+UHDbiKP46na0JA0Ts2DycH0QjQOIUWt8jkYIL9w8pcg TUZHSgjlFHfECnUWbPlpplpFMt+sj+UClBDD6Z8GaGJGniYkyijt28ugTzEoJuG+ pW6n0RqsVHOVsppVvmtx1mEevEfENwGVv5lfQM/57RI= -----END CERTIFICATE-----Generated at Wed May 13 07:35:12 2026 by rpki-client