$ rpki-client -vvf rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa File: 3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa (raw, json) Hash identifier: l8S7b6tSiGmiZ1Dnx2pW1ak6cRNNsMEXAOLZKzioAJU= Subject key identifier: 44:22:7B:64:DF:AA:3A:5F:E9:0A:CB:E9:1A:06:0D:09:BB:D8:71:4C Certificate issuer: /CN=620E60F2FB189CAF127FF296661B8B00B4E20819 Certificate serial: 3FCDD46144E68C948FCDAC6AD9EC2B3383AD048E Authority key identifier: 62:0E:60:F2:FB:18:9C:AF:12:7F:F2:96:66:1B:8B:00:B4:E2:08:19 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/620E60F2FB189CAF127FF296661B8B00B4E20819.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa Signing time: Sun 03 May 2026 02:20:00 +0000 ROA not before: Sun 03 May 2026 02:15:00 +0000 ROA not after: Sun 02 May 2027 02:20:00 +0000 asID: 142400 IP address blocks: 103.172.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/620E60F2FB189CAF127FF296661B8B00B4E20819.crl rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/620E60F2FB189CAF127FF296661B8B00B4E20819.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/620E60F2FB189CAF127FF296661B8B00B4E20819.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:cd:d4:61:44:e6:8c:94:8f:cd:ac:6a:d9:ec:2b:33:83:ad:04:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=620E60F2FB189CAF127FF296661B8B00B4E20819 Validity Not Before: May 3 02:15:00 2026 GMT Not After : May 2 02:20:00 2027 GMT Subject: CN=44227B64DFAA3A5FE90ACBE91A060D09BBD8714C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:92:db:f2:c0:69:fb:dc:55:dc:ea:cf:fa: 1c:5b:83:79:1e:1e:a2:4c:3b:0b:5e:99:d9:e3:e2: 50:8d:64:0a:20:69:ae:0c:3d:96:f1:a8:e1:57:18: 03:64:e0:0b:08:29:70:9e:8d:62:bb:c4:34:5b:88: a9:44:15:fc:f5:0d:d7:d4:3f:94:48:45:5a:6a:15: de:39:7b:c3:c4:75:bd:90:c2:87:ef:3a:6b:28:8c: e2:7e:4e:58:c0:50:44:20:42:98:6e:aa:c5:ec:c8: 59:7d:08:70:78:26:c2:ef:4c:4b:1b:a3:47:a4:b6: b7:f8:87:ca:87:58:32:76:96:4f:0a:3a:c5:7e:43: 66:ff:4c:8e:37:24:a5:85:39:91:91:21:01:47:e4: ae:e7:ac:a5:43:30:fa:4c:0c:15:05:19:fc:f1:e8: 9f:3b:99:39:2d:d8:6c:a7:40:2f:1e:8d:c5:85:98: 20:ef:0a:9c:19:b0:d8:28:94:6c:c1:54:34:0f:c0: e7:61:dd:fd:15:d8:c7:30:0f:4b:98:6b:0d:c2:a6: 43:b5:d2:76:14:35:fb:f7:5a:4e:07:a3:0e:00:df: ad:26:26:44:28:b2:ec:03:07:ac:e0:7e:9a:6d:45: b1:19:b1:19:78:6e:43:77:93:c9:30:db:cd:2e:2c: 38:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:22:7B:64:DF:AA:3A:5F:E9:0A:CB:E9:1A:06:0D:09:BB:D8:71:4C X509v3 Authority Key Identifier: keyid:62:0E:60:F2:FB:18:9C:AF:12:7F:F2:96:66:1B:8B:00:B4:E2:08:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/620E60F2FB189CAF127FF296661B8B00B4E20819.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/620E60F2FB189CAF127FF296661B8B00B4E20819.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.186.0/24 Signature Algorithm: sha256WithRSAEncryption 02:e0:05:63:89:fa:06:8d:15:fa:e1:69:ff:79:6a:60:56:ae: 2e:06:91:69:e9:61:b2:42:0f:9a:73:49:92:07:45:82:84:d0: 59:ab:10:4b:7f:b7:34:08:02:8f:c0:60:49:d8:98:f2:1a:05: bf:7e:07:25:f0:de:ae:f2:f2:83:23:79:70:9f:7b:d1:6e:fc: c3:da:e1:e6:8a:a9:24:6f:07:4d:41:5d:97:96:2a:c7:54:e2: 2a:52:c0:55:c7:d2:e3:02:b1:04:e3:fc:8a:9e:8f:54:b3:b0: b4:54:c7:da:89:1b:0a:14:ba:bb:0b:f3:c7:5d:91:b6:2b:25: bf:3f:18:f6:66:10:82:dc:a5:17:33:37:cc:ce:e8:6f:fb:f9: a2:f4:f1:6f:5a:c0:82:8b:71:66:7f:60:4c:8e:94:bd:9a:b7: 92:e2:c4:fe:e5:55:de:52:ff:61:b9:dc:15:87:62:90:66:06: 06:77:37:bf:12:82:86:b2:56:e0:0d:85:9d:75:3e:6f:20:e4: 0f:36:18:c3:c9:0c:93:38:c5:10:b0:2d:7b:52:6a:d4:1a:84: e4:5f:dc:30:36:db:f8:fa:0d:00:28:eb:77:4a:1f:f2:73:3e: a9:c1:3a:6d:1f:32:1c:c4:7d:cc:02:83:a2:27:7c:5c:75:35: ff:ee:a5:50 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP83UYUTmjJSPzaxq2ewrM4OtBI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjIwRTYwRjJGQjE4OUNBRjEyN0ZGMjk2NjYxQjhCMDBC NEUyMDgxOTAeFw0yNjA1MDMwMjE1MDBaFw0yNzA1MDIwMjIwMDBaMDMxMTAvBgNV BAMTKDQ0MjI3QjY0REZBQTNBNUZFOTBBQ0JFOTFBMDYwRDA5QkJEODcxNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2C5Lb8sBp+9xV3OrP+hxbg3ke HqJMOwtemdnj4lCNZAogaa4MPZbxqOFXGANk4AsIKXCejWK7xDRbiKlEFfz1DdfU P5RIRVpqFd45e8PEdb2QwofvOmsojOJ+TljAUEQgQphuqsXsyFl9CHB4JsLvTEsb o0ektrf4h8qHWDJ2lk8KOsV+Q2b/TI43JKWFOZGRIQFH5K7nrKVDMPpMDBUFGfzx 6J87mTkt2GynQC8ejcWFmCDvCpwZsNgolGzBVDQPwOdh3f0V2McwD0uYaw3CpkO1 0nYUNfv3Wk4How4A360mJkQosuwDB6zgfpptRbEZsRl4bkN3k8kw280uLDjRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURCJ7ZN+qOl/pCsvpGgYNCbvYcUwwHwYDVR0j BBgwFoAUYg5g8vsYnK8Sf/KWZhuLALTiCBkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjJmNWYwN2MtZjA3Yi00YWFhLWEwYzItZGYxN2M5MTBjNTg2LzAvNjIwRTYwRjJG QjE4OUNBRjEyN0ZGMjk2NjYxQjhCMDBCNEUyMDgxOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjBFNjBGMkZCMTg5Q0FGMTI3RkYyOTY2NjFCOEIwMEI0RTIw ODE5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyZjVmMDdjLWYwN2ItNGFhYS1h MGMyLWRmMTdjOTEwYzU4Ni8wLzMxMzAzMzJlMzEzNzMyMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzNDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrLowDQYJ KoZIhvcNAQELBQADggEBAALgBWOJ+gaNFfrhaf95amBWri4GkWnpYbJCD5pzSZIH RYKE0FmrEEt/tzQIAo/AYEnYmPIaBb9+ByXw3q7y8oMjeXCfe9Fu/MPa4eaKqSRv B01BXZeWKsdU4ipSwFXH0uMCsQTj/Iqej1SzsLRUx9qJGwoUursL88ddkbYrJb8/ GPZmEILcpRczN8zO6G/7+aL08W9awIKLcWZ/YEyOlL2at5LixP7lVd5S/2G53BWH YpBmBgZ3N78SgoayVuANhZ11Pm8g5A82GMPJDJM4xRCwLXtSatQahORf3DA22/j6 DQAo63dKH/JzPqnBOm0fMhzEfcwCg6InfFx1Nf/upVA= -----END CERTIFICATE-----Generated at Wed May 13 12:06:08 2026 by rpki-client