$ rpki-client -vvf rpki-rsync.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa File: 3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa (raw, json) Hash identifier: 4S3CjwY52E8pJFph27PsS9L2iHBVLGusILVU9iKtoiI= Subject key identifier: A9:0C:77:DD:F5:0B:0A:0F:0B:50:DD:B9:4E:B6:D4:20:57:66:00:68 Certificate issuer: /CN=2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72 Certificate serial: 483D500DEB7FD60AE4A9AEC8AEF87BFE3D29837A Authority key identifier: 2D:88:AC:79:1B:0C:C1:B7:D9:21:EC:E6:60:CD:E0:CF:2E:E8:ED:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa Signing time: Sun 03 May 2026 02:20:00 +0000 ROA not before: Sun 03 May 2026 02:15:00 +0000 ROA not after: Sun 02 May 2027 02:20:00 +0000 asID: 141671 IP address blocks: 103.162.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72.crl rsync://rpki-rsync.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:3d:50:0d:eb:7f:d6:0a:e4:a9:ae:c8:ae:f8:7b:fe:3d:29:83:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72 Validity Not Before: May 3 02:15:00 2026 GMT Not After : May 2 02:20:00 2027 GMT Subject: CN=A90C77DDF50B0A0F0B50DDB94EB6D42057660068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:30:3a:09:29:c5:5c:31:e0:f8:a9:0e:9a:1c: 07:0b:29:f7:35:c6:2c:ae:d7:6a:ba:56:e5:8d:c6: 08:0e:a3:8b:9e:ab:3a:57:f9:1e:13:04:de:52:6c: e6:f4:00:33:88:fb:42:b1:1e:4c:71:03:4d:19:79: 8c:ed:8c:0a:fc:be:9b:f6:f0:03:5f:e2:ad:86:05: 71:b7:5a:3b:1e:a3:07:ad:be:7a:be:c2:b9:25:16: ab:c8:c8:88:1a:eb:8f:1e:f4:85:18:5c:b0:08:ba: 6b:0e:92:4a:6b:a0:1f:6c:61:df:27:b4:a3:2b:3a: d4:0f:0a:25:6e:52:51:df:84:3b:40:e0:9f:cb:e0: 58:65:80:7e:f1:c9:0d:65:7e:ae:a9:19:17:6a:10: 18:d7:16:e0:df:5b:1a:79:78:8f:30:52:75:c2:50: 8f:bb:1f:2a:13:86:c9:71:8a:b5:70:a7:7e:c3:21: 80:11:b2:7c:14:17:84:3f:a0:3d:62:fa:15:f2:a8: 5f:88:bc:26:02:27:7c:74:f2:a6:cb:5a:18:bb:05: d3:fb:e8:f9:63:5f:c0:cd:7e:e9:d1:c4:a4:0a:15: 5f:a4:90:b9:ac:c2:e5:19:df:95:e8:97:70:df:0a: 72:f9:a7:15:48:9b:6e:69:e3:3e:8a:99:0e:42:4c: bf:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0C:77:DD:F5:0B:0A:0F:0B:50:DD:B9:4E:B6:D4:20:57:66:00:68 X509v3 Authority Key Identifier: keyid:2D:88:AC:79:1B:0C:C1:B7:D9:21:EC:E6:60:CD:E0:CF:2E:E8:ED:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D88AC791B0CC1B7D921ECE660CDE0CF2EE8ED72.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.240.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:fd:88:a1:9b:bf:8d:b0:23:3d:de:b0:dd:64:08:5e:46:7c: b5:2d:8a:21:73:fb:fa:9b:f7:4c:7e:61:94:ff:1a:18:5a:c9: 54:cc:e8:ec:64:77:8b:75:1d:6b:2f:b1:2d:ef:29:43:79:2e: 88:ba:a1:28:2b:d6:b2:cd:20:09:ff:75:93:3b:ef:14:a9:84: 3f:0e:36:26:84:45:13:35:bb:e8:f7:14:71:c9:a8:fe:7a:a5: a1:1f:73:2c:ae:ef:fa:6d:69:05:ab:d4:18:11:9f:45:c3:20: e6:53:75:10:e5:5e:6d:77:1e:e1:25:77:ca:a2:b8:03:20:2c: 24:ea:e1:3b:27:f7:74:d6:75:2f:c8:33:22:1d:a6:0a:35:b1: 17:d3:d0:e9:69:49:bd:78:fe:ff:4c:a1:4e:60:32:1a:ab:ef: dd:a4:e4:75:16:11:95:7b:79:80:aa:96:c4:cb:2d:10:4f:0a: 24:e1:19:0e:99:d4:61:d0:b8:44:14:b2:b0:2d:d6:7e:17:5d: 6a:54:22:a3:b7:44:39:7e:60:a3:e8:7e:79:3b:1e:72:b5:6d: 36:d5:4c:21:da:70:1e:9c:79:75:46:fd:43:ea:e5:d3:c7:2e: f9:bd:dc:66:55:04:ac:04:b3:30:52:39:5f:3f:49:54:38:64: 77:12:27:f5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSD1QDet/1grkqa7Irvh7/j0pg3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ4OEFDNzkxQjBDQzFCN0Q5MjFFQ0U2NjBDREUwQ0Yy RUU4RUQ3MjAeFw0yNjA1MDMwMjE1MDBaFw0yNzA1MDIwMjIwMDBaMDMxMTAvBgNV BAMTKEE5MEM3N0RERjUwQjBBMEYwQjUwRERCOTRFQjZENDIwNTc2NjAwNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEMDoJKcVcMeD4qQ6aHAcLKfc1 xiyu12q6VuWNxggOo4ueqzpX+R4TBN5SbOb0ADOI+0KxHkxxA00ZeYztjAr8vpv2 8ANf4q2GBXG3Wjseowetvnq+wrklFqvIyIga648e9IUYXLAIumsOkkproB9sYd8n tKMrOtQPCiVuUlHfhDtA4J/L4FhlgH7xyQ1lfq6pGRdqEBjXFuDfWxp5eI8wUnXC UI+7HyoThslxirVwp37DIYARsnwUF4Q/oD1i+hXyqF+IvCYCJ3x08qbLWhi7BdP7 6PljX8DNfunRxKQKFV+kkLmswuUZ35Xol3DfCnL5pxVIm25p4z6KmQ5CTL8nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqQx33fULCg8LUN25TrbUIFdmAGgwHwYDVR0j BBgwFoAULYiseRsMwbfZIezmYM3gzy7o7XIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjMwMjRkMjQtOWZhYS00YWIwLThmYTQtMGNlNjA4YzZkMGEzLzAvMkQ4OEFDNzkx QjBDQzFCN0Q5MjFFQ0U2NjBDREUwQ0YyRUU4RUQ3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRDg4QUM3OTFCMENDMUI3RDkyMUVDRTY2MENERTBDRjJFRThF RDcyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIzMDI0ZDI0LTlmYWEtNGFiMC04 ZmE0LTBjZTYwOGM2ZDBhMy8wLzMxMzAzMzJlMzEzNjMyMmUzMjM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnovAwDQYJ KoZIhvcNAQELBQADggEBAE/9iKGbv42wIz3esN1kCF5GfLUtiiFz+/qb90x+YZT/ GhhayVTM6Oxkd4t1HWsvsS3vKUN5Loi6oSgr1rLNIAn/dZM77xSphD8ONiaERRM1 u+j3FHHJqP56paEfcyyu7/ptaQWr1BgRn0XDIOZTdRDlXm13HuEld8qiuAMgLCTq 4Tsn93TWdS/IMyIdpgo1sRfT0OlpSb14/v9MoU5gMhqr792k5HUWEZV7eYCqlsTL LRBPCiThGQ6Z1GHQuEQUsrAt1n4XXWpUIqO3RDl+YKPofnk7HnK1bTbVTCHacB6c eXVG/UPq5dPHLvm93GZVBKwEszBSOV8/SVQ4ZHcSJ/U= -----END CERTIFICATE-----Generated at Wed May 13 08:00:05 2026 by rpki-client