$ rpki-client -vvf rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa File: 3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa (raw, json) Hash identifier: BIL+aGZm0f2cNvuuhG7zFnc4Iz00ZUgKA3IGqeW+Vp0= Subject key identifier: 70:88:F8:BD:07:8E:25:E9:C8:61:A7:74:E6:97:44:AB:B5:77:BB:2F Certificate issuer: /CN=12215616BDEA90F45AB43FFCB676AA254601358F Certificate serial: 1878CFBCE2B04B49DBD7B19DC21CC36E59C10321 Authority key identifier: 12:21:56:16:BD:EA:90:F4:5A:B4:3F:FC:B6:76:AA:25:46:01:35:8F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12215616BDEA90F45AB43FFCB676AA254601358F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa Signing time: Sun 03 May 2026 02:19:51 +0000 ROA not before: Sun 03 May 2026 02:14:51 +0000 ROA not after: Sun 02 May 2027 02:19:51 +0000 asID: 147096 IP address blocks: 103.174.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/12215616BDEA90F45AB43FFCB676AA254601358F.crl rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/12215616BDEA90F45AB43FFCB676AA254601358F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12215616BDEA90F45AB43FFCB676AA254601358F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:78:cf:bc:e2:b0:4b:49:db:d7:b1:9d:c2:1c:c3:6e:59:c1:03:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12215616BDEA90F45AB43FFCB676AA254601358F Validity Not Before: May 3 02:14:51 2026 GMT Not After : May 2 02:19:51 2027 GMT Subject: CN=7088F8BD078E25E9C861A774E69744ABB577BB2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e8:72:bb:05:60:0c:10:36:2e:8c:ac:d3:c9: 70:42:52:5c:83:8e:1f:5c:b4:65:b0:e7:73:9e:fe: 74:ab:2f:a2:79:b7:6c:a6:ad:b0:e7:13:1c:95:a5: 6a:a0:61:64:28:04:41:e4:c8:69:4a:47:57:50:2e: 83:e1:dc:77:69:d1:da:13:76:57:b8:97:94:81:04: 48:3d:e5:49:30:f4:37:1a:0e:db:37:b2:e8:2b:71: 9f:bd:16:05:22:93:e1:93:1d:30:ec:46:fa:67:d2: cb:da:d6:a7:eb:62:a3:f4:27:08:cc:69:1e:fa:13: f5:d6:58:d2:40:55:fa:e5:49:ef:a6:85:fa:75:24: 5b:be:29:e1:08:77:60:c0:84:27:16:14:83:97:a6: 4b:51:da:33:0d:b9:51:68:02:3c:95:35:89:f6:98: 4d:31:f0:26:9e:91:07:1b:2f:d9:e5:7a:83:9b:36: d8:10:8f:16:f5:44:9f:50:c1:ff:89:33:cb:34:44: fe:a6:5c:6d:e3:4f:4b:f2:ae:0e:bf:5a:5d:6f:ed: d4:44:64:5b:eb:24:cb:7c:6d:44:66:63:18:b0:60: 6e:1d:13:81:f1:bd:f4:3d:97:26:28:50:7c:75:e6: af:6e:80:cf:b2:fc:0d:31:e6:7f:10:dd:40:c4:b4: 08:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:88:F8:BD:07:8E:25:E9:C8:61:A7:74:E6:97:44:AB:B5:77:BB:2F X509v3 Authority Key Identifier: keyid:12:21:56:16:BD:EA:90:F4:5A:B4:3F:FC:B6:76:AA:25:46:01:35:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/12215616BDEA90F45AB43FFCB676AA254601358F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12215616BDEA90F45AB43FFCB676AA254601358F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.122.0/24 Signature Algorithm: sha256WithRSAEncryption 00:04:5b:1c:78:ca:8d:10:67:b6:d3:33:b6:49:c8:82:f5:48: 2f:78:54:8d:c7:fa:c6:63:ed:3a:d6:e9:b2:16:cf:33:05:b6: 80:b0:d6:1f:fc:8b:ce:d4:b7:34:fb:48:e4:57:15:00:7c:3f: ff:30:ee:9f:45:4c:d6:68:48:e2:65:2d:59:07:38:c3:62:e6: 8d:f8:0e:45:dd:36:f4:df:ec:3d:af:75:dd:80:69:85:75:2e: d5:f3:15:34:3f:8e:b5:df:6d:b2:d6:a9:fc:c8:97:51:05:2e: d0:be:2c:d6:de:d9:76:b9:b7:0a:c5:ea:4c:e5:63:07:6f:e0: 3d:5e:ec:cc:7f:23:85:30:ac:e3:32:45:a4:2c:bc:d7:0e:8f: 67:05:cd:e9:50:d9:55:14:26:c1:67:27:88:f3:5e:82:44:56: 5d:27:f2:78:ca:33:e0:e3:71:df:7a:1e:95:0e:47:a0:06:cf: eb:57:63:50:b1:b3:f4:9b:39:4a:6d:12:d2:75:9c:33:ba:e8: a3:05:ee:8d:5d:0b:4a:58:1b:1a:9c:44:81:b0:d5:f5:22:05: 96:e0:19:c2:35:f9:0c:11:1b:db:e9:37:3c:12:d0:c8:a3:dc: 04:95:7b:0c:4a:3a:5c:74:58:2f:b6:17:0a:24:91:25:80:32: 26:ef:3d:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGHjPvOKwS0nb17GdwhzDblnBAyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTIyMTU2MTZCREVBOTBGNDVBQjQzRkZDQjY3NkFBMjU0 NjAxMzU4RjAeFw0yNjA1MDMwMjE0NTFaFw0yNzA1MDIwMjE5NTFaMDMxMTAvBgNV BAMTKDcwODhGOEJEMDc4RTI1RTlDODYxQTc3NEU2OTc0NEFCQjU3N0JCMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX6HK7BWAMEDYujKzTyXBCUlyD jh9ctGWw53Oe/nSrL6J5t2ymrbDnExyVpWqgYWQoBEHkyGlKR1dQLoPh3Hdp0doT dle4l5SBBEg95Ukw9DcaDts3sugrcZ+9FgUik+GTHTDsRvpn0sva1qfrYqP0JwjM aR76E/XWWNJAVfrlSe+mhfp1JFu+KeEId2DAhCcWFIOXpktR2jMNuVFoAjyVNYn2 mE0x8CaekQcbL9nleoObNtgQjxb1RJ9Qwf+JM8s0RP6mXG3jT0vyrg6/Wl1v7dRE ZFvrJMt8bURmYxiwYG4dE4HxvfQ9lyYoUHx15q9ugM+y/A0x5n8Q3UDEtAihAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcIj4vQeOJenIYad05pdEq7V3uy8wHwYDVR0j BBgwFoAUEiFWFr3qkPRatD/8tnaqJUYBNY8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjI3MzAyN2EtMDk2Yi00ZTk1LWE2NTYtZGFiZTk4YWM2ZjZkLzAvMTIyMTU2MTZC REVBOTBGNDVBQjQzRkZDQjY3NkFBMjU0NjAxMzU4Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMjIxNTYxNkJERUE5MEY0NUFCNDNGRkNCNjc2QUEyNTQ2MDEz NThGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdhLTA5NmItNGU5NS1h NjU2LWRhYmU5OGFjNmY2ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnowDQYJ KoZIhvcNAQELBQADggEBAAAEWxx4yo0QZ7bTM7ZJyIL1SC94VI3H+sZj7TrW6bIW zzMFtoCw1h/8i87UtzT7SORXFQB8P/8w7p9FTNZoSOJlLVkHOMNi5o34DkXdNvTf 7D2vdd2AaYV1LtXzFTQ/jrXfbbLWqfzIl1EFLtC+LNbe2Xa5twrF6kzlYwdv4D1e 7Mx/I4UwrOMyRaQsvNcOj2cFzelQ2VUUJsFnJ4jzXoJEVl0n8njKM+Djcd96HpUO R6AGz+tXY1Cxs/SbOUptEtJ1nDO66KMF7o1dC0pYGxqcRIGw1fUiBZbgGcI1+QwR G9vpNzwS0Mij3ASVewxKOlx0WC+2FwokkSWAMibvPXM= -----END CERTIFICATE-----Generated at Wed May 13 10:43:04 2026 by rpki-client