$ rpki-client -vvf rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa File: 3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa (raw, json) Hash identifier: b54YcN8J7xkvGvscraLrfOupJbxthZjJChKT3D1a1W0= Subject key identifier: 43:27:66:01:42:E4:CE:F0:CC:43:CC:B4:32:99:B8:1A:06:3F:43:DA Certificate issuer: /CN=620E60F2FB189CAF127FF296661B8B00B4E20819 Certificate serial: 3DA153D600E65C47BCF1DB63C6FCD631F577817D Authority key identifier: 62:0E:60:F2:FB:18:9C:AF:12:7F:F2:96:66:1B:8B:00:B4:E2:08:19 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/620E60F2FB189CAF127FF296661B8B00B4E20819.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa Signing time: Sun 03 May 2026 02:19:59 +0000 ROA not before: Sun 03 May 2026 02:14:59 +0000 ROA not after: Sun 02 May 2027 02:19:59 +0000 asID: 142400 IP address blocks: 103.172.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/620E60F2FB189CAF127FF296661B8B00B4E20819.crl rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/620E60F2FB189CAF127FF296661B8B00B4E20819.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/620E60F2FB189CAF127FF296661B8B00B4E20819.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a1:53:d6:00:e6:5c:47:bc:f1:db:63:c6:fc:d6:31:f5:77:81:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=620E60F2FB189CAF127FF296661B8B00B4E20819 Validity Not Before: May 3 02:14:59 2026 GMT Not After : May 2 02:19:59 2027 GMT Subject: CN=4327660142E4CEF0CC43CCB43299B81A063F43DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a0:2c:14:18:a7:b9:08:95:4d:08:91:4e:7b: 40:99:c9:95:65:47:35:95:bc:c7:60:24:4f:a9:a3: 5a:e1:ae:f4:32:df:ff:24:cb:91:41:37:56:c5:ba: 91:18:cf:f7:3f:45:96:24:0c:e1:3a:57:3c:0b:ff: bc:03:47:ba:4f:ca:46:e1:b8:15:96:89:4a:91:f4: 19:1b:9c:43:33:21:b1:46:9a:17:1a:b2:2b:70:4a: f7:7b:a5:96:35:7c:ad:73:49:77:9f:a2:be:48:e7: 4c:7e:8d:2b:8c:26:9e:22:ce:97:42:7e:ab:3c:d8: bb:2a:8f:de:40:a4:d8:27:45:4a:db:48:bc:34:fd: 6f:3d:55:01:e9:c4:77:49:34:2b:ae:b2:1a:0d:43: db:27:df:f0:07:67:c5:ae:6c:03:b7:f2:6e:07:fc: be:32:13:03:92:6e:ab:26:91:ab:bc:23:a7:14:30: 4f:73:57:f0:2b:ad:be:76:a4:b5:b1:c5:2b:03:1a: b8:15:8c:f9:8d:64:33:1f:dd:37:fe:c6:75:b0:04: 34:80:69:9d:7f:8e:52:5d:80:f1:94:57:4d:2a:db: 72:84:c7:3b:10:14:26:ea:14:66:42:cf:0c:23:84: 6d:af:87:7a:a1:a9:c5:e7:37:ed:4e:2a:e5:9a:55: 87:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:27:66:01:42:E4:CE:F0:CC:43:CC:B4:32:99:B8:1A:06:3F:43:DA X509v3 Authority Key Identifier: keyid:62:0E:60:F2:FB:18:9C:AF:12:7F:F2:96:66:1B:8B:00:B4:E2:08:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/620E60F2FB189CAF127FF296661B8B00B4E20819.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/620E60F2FB189CAF127FF296661B8B00B4E20819.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.186.0/23 Signature Algorithm: sha256WithRSAEncryption 06:6a:af:35:a2:df:80:d2:18:24:54:62:9a:2a:98:b0:f1:87: f7:ed:af:5d:da:38:f1:c1:a7:22:52:c5:53:e5:86:50:65:89: ff:88:a8:93:e4:e9:36:e0:19:7e:fb:55:36:93:b0:b7:68:2b: 62:79:96:a4:53:74:7d:b3:64:e2:0f:f7:f0:e4:5e:e0:1b:ae: e0:74:db:b2:44:04:29:80:96:4f:9c:1d:d9:9b:a4:57:03:08: c4:5c:2e:9a:2a:ff:95:f2:f5:b2:f2:de:bc:5e:30:c5:a5:05: 7a:07:ff:14:a2:79:75:c9:8e:74:d9:16:3b:62:8d:a9:67:2e: 76:ae:1a:e5:a6:e6:97:da:52:59:90:36:12:30:98:8f:fa:ba: 62:4c:48:f3:99:25:08:d5:14:81:a6:be:dc:fb:0c:90:d1:1d: 42:4c:82:cf:e7:f5:a5:d4:74:30:cc:fa:33:b1:49:69:ac:5a: ad:3f:77:d2:a1:e7:57:42:7c:1c:e0:02:8a:52:6b:3c:c7:18: 96:a1:2c:82:b9:d9:c7:de:99:d3:19:62:58:60:a3:c0:07:25: 5d:a9:8d:46:7c:1b:8a:bf:1e:b3:cd:41:68:74:8a:e7:88:34: 15:cc:07:76:2f:a7:14:d7:dd:d0:40:51:f8:a0:2b:91:20:92: 27:18:aa:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPaFT1gDmXEe88dtjxvzWMfV3gX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjIwRTYwRjJGQjE4OUNBRjEyN0ZGMjk2NjYxQjhCMDBC NEUyMDgxOTAeFw0yNjA1MDMwMjE0NTlaFw0yNzA1MDIwMjE5NTlaMDMxMTAvBgNV BAMTKDQzMjc2NjAxNDJFNENFRjBDQzQzQ0NCNDMyOTlCODFBMDYzRjQzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCToCwUGKe5CJVNCJFOe0CZyZVl RzWVvMdgJE+po1rhrvQy3/8ky5FBN1bFupEYz/c/RZYkDOE6VzwL/7wDR7pPykbh uBWWiUqR9BkbnEMzIbFGmhcasitwSvd7pZY1fK1zSXefor5I50x+jSuMJp4izpdC fqs82Lsqj95ApNgnRUrbSLw0/W89VQHpxHdJNCuushoNQ9sn3/AHZ8WubAO38m4H /L4yEwOSbqsmkau8I6cUME9zV/Arrb52pLWxxSsDGrgVjPmNZDMf3Tf+xnWwBDSA aZ1/jlJdgPGUV00q23KExzsQFCbqFGZCzwwjhG2vh3qhqcXnN+1OKuWaVYfjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQydmAULkzvDMQ8y0Mpm4GgY/Q9owHwYDVR0j BBgwFoAUYg5g8vsYnK8Sf/KWZhuLALTiCBkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjJmNWYwN2MtZjA3Yi00YWFhLWEwYzItZGYxN2M5MTBjNTg2LzAvNjIwRTYwRjJG QjE4OUNBRjEyN0ZGMjk2NjYxQjhCMDBCNEUyMDgxOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjBFNjBGMkZCMTg5Q0FGMTI3RkYyOTY2NjFCOEIwMEI0RTIw ODE5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyZjVmMDdjLWYwN2ItNGFhYS1h MGMyLWRmMTdjOTEwYzU4Ni8wLzMxMzAzMzJlMzEzNzMyMmUzMTM4MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzNDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrLowDQYJ KoZIhvcNAQELBQADggEBAAZqrzWi34DSGCRUYpoqmLDxh/ftr13aOPHBpyJSxVPl hlBlif+IqJPk6TbgGX77VTaTsLdoK2J5lqRTdH2zZOIP9/DkXuAbruB027JEBCmA lk+cHdmbpFcDCMRcLpoq/5Xy9bLy3rxeMMWlBXoH/xSieXXJjnTZFjtijalnLnau GuWm5pfaUlmQNhIwmI/6umJMSPOZJQjVFIGmvtz7DJDRHUJMgs/n9aXUdDDM+jOx SWmsWq0/d9Kh51dCfBzgAopSazzHGJahLIK52cfemdMZYlhgo8AHJV2pjUZ8G4q/ HrPNQWh0iueINBXMB3YvpxTX3dBAUfigK5EgkicYqoQ= -----END CERTIFICATE-----Generated at Wed May 13 08:34:53 2026 by rpki-client