$ rpki-client -vvf rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa File: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (raw, json) Hash identifier: Cxuw8utleC956EhbVyK4h8tr3eWPWdRF27VOeiD3sxU= Subject key identifier: F6:CC:1D:67:E6:07:18:C7:4B:84:4C:03:07:6B:9F:7C:BA:30:38:43 Certificate issuer: /CN=AC861103DDC024E3BEB681351D66B027A8BA785A Certificate serial: 4257762D2CAA7494FE30BC685AC78FBFECA5299E Authority key identifier: AC:86:11:03:DD:C0:24:E3:BE:B6:81:35:1D:66:B0:27:A8:BA:78:5A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC861103DDC024E3BEB681351D66B027A8BA785A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa Signing time: Sun 03 May 2026 02:20:18 +0000 ROA not before: Sun 03 May 2026 02:15:18 +0000 ROA not after: Sun 02 May 2027 02:20:18 +0000 asID: 141137 IP address blocks: 103.158.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/AC861103DDC024E3BEB681351D66B027A8BA785A.crl rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/AC861103DDC024E3BEB681351D66B027A8BA785A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC861103DDC024E3BEB681351D66B027A8BA785A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:57:76:2d:2c:aa:74:94:fe:30:bc:68:5a:c7:8f:bf:ec:a5:29:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC861103DDC024E3BEB681351D66B027A8BA785A Validity Not Before: May 3 02:15:18 2026 GMT Not After : May 2 02:20:18 2027 GMT Subject: CN=F6CC1D67E60718C74B844C03076B9F7CBA303843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e4:ff:5e:df:eb:fc:9d:66:df:89:1c:85:12: fa:c9:69:f3:52:8c:fc:67:6c:0c:b4:b0:b5:6f:e0: 72:31:9d:1d:8e:60:0e:ef:fa:ae:4e:74:ef:e4:93: 58:11:6d:52:19:9d:59:25:c9:7c:19:b1:28:4c:80: 8b:5a:a6:29:13:73:58:ac:b4:94:0f:17:53:15:2f: 77:c4:9f:3b:8f:66:57:91:e4:80:52:91:ce:86:69: 27:48:2a:b6:ca:75:29:2d:c1:ac:3a:0a:a8:d6:75: 5e:76:36:b2:1d:31:a0:e7:ef:a9:de:01:5c:b6:a9: 09:09:16:0f:3b:3d:28:15:d3:f6:ac:07:e5:6e:fe: 12:23:aa:fb:50:57:e0:3d:2e:fb:58:3f:b3:76:9a: e5:1c:33:86:b6:d8:04:0d:0e:5b:65:58:05:d7:62: 24:0c:a6:ba:2a:29:a1:40:bd:22:1e:22:39:20:a7: da:21:db:d3:87:9a:dd:06:c8:5a:28:0c:0d:5d:ff: 82:2b:ec:8d:90:4e:e6:8c:d7:bc:0a:a7:f9:c0:ad: a3:c7:c6:d0:0d:7e:8e:e4:a6:ac:0c:06:13:e3:40: d6:b9:f7:e9:2f:ad:16:83:e7:52:c9:a7:d6:a3:56: 0e:a2:e2:1f:46:b2:0a:45:c7:2e:c0:f1:ce:5b:4e: e0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CC:1D:67:E6:07:18:C7:4B:84:4C:03:07:6B:9F:7C:BA:30:38:43 X509v3 Authority Key Identifier: keyid:AC:86:11:03:DD:C0:24:E3:BE:B6:81:35:1D:66:B0:27:A8:BA:78:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/AC861103DDC024E3BEB681351D66B027A8BA785A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC861103DDC024E3BEB681351D66B027A8BA785A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.253.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:46:1e:1f:f1:00:ac:4b:1a:a6:0c:ac:f2:20:f6:fe:c7:43: e6:f6:48:9f:d0:79:57:32:c8:3b:ab:dc:b3:8d:c3:6e:77:1f: 3b:1d:32:cb:8c:7e:52:21:98:60:20:ef:36:dd:40:0c:61:91: 80:1b:26:44:72:84:4e:89:22:8f:93:42:f5:77:18:11:75:c5: af:1e:b3:1e:4a:d4:ec:a4:89:13:df:a2:96:44:c9:cc:4a:f8: 92:6a:28:b9:8a:a2:8a:7a:c9:16:80:4e:f4:65:a9:fe:a1:27: bb:87:35:0b:3f:0b:50:94:cb:f3:62:ce:d7:ea:93:ce:31:5e: a4:c2:1a:38:c4:f1:dc:63:32:c2:33:5e:77:3a:69:c1:45:2a: cb:39:41:f5:af:4f:eb:17:0d:10:10:60:de:86:20:b4:81:0e: b7:41:c1:34:b0:ed:82:34:2b:1c:32:39:e8:4b:3b:c4:c0:66: 74:9b:0a:98:5e:de:5f:45:6d:bd:c5:11:18:fb:2c:eb:06:b1: 2f:3b:cd:1d:66:1f:3c:a2:39:6b:61:73:27:c4:7f:f6:19:cf: 00:15:46:d0:cf:a4:2d:5a:0c:eb:33:72:2d:29:3f:e2:c1:48: 5f:6b:94:34:8b:dc:25:d9:a0:ac:4b:89:75:de:9b:f3:59:3f: fb:c2:15:c8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQld2LSyqdJT+MLxoWsePv+ylKZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUM4NjExMDNEREMwMjRFM0JFQjY4MTM1MUQ2NkIwMjdB OEJBNzg1QTAeFw0yNjA1MDMwMjE1MThaFw0yNzA1MDIwMjIwMThaMDMxMTAvBgNV BAMTKEY2Q0MxRDY3RTYwNzE4Qzc0Qjg0NEMwMzA3NkI5RjdDQkEzMDM4NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5P9e3+v8nWbfiRyFEvrJafNS jPxnbAy0sLVv4HIxnR2OYA7v+q5OdO/kk1gRbVIZnVklyXwZsShMgItapikTc1is tJQPF1MVL3fEnzuPZleR5IBSkc6GaSdIKrbKdSktwaw6CqjWdV52NrIdMaDn76ne AVy2qQkJFg87PSgV0/asB+Vu/hIjqvtQV+A9LvtYP7N2muUcM4a22AQNDltlWAXX YiQMproqKaFAvSIeIjkgp9oh29OHmt0GyFooDA1d/4Ir7I2QTuaM17wKp/nAraPH xtANfo7kpqwMBhPjQNa59+kvrRaD51LJp9ajVg6i4h9GsgpFxy7A8c5bTuDlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9swdZ+YHGMdLhEwDB2uffLowOEMwHwYDVR0j BBgwFoAUrIYRA93AJOO+toE1HWawJ6i6eFowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjQ5MDM0NWUtMmQ1Ny00MzQ5LWI3OGYtYzhiMThhNDQyNDQ1LzAvQUM4NjExMDNE REMwMjRFM0JFQjY4MTM1MUQ2NkIwMjdBOEJBNzg1QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzg2MTEwM0REQzAyNEUzQkVCNjgxMzUxRDY2QjAyN0E4QkE3 ODVBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnv0wDQYJ KoZIhvcNAQELBQADggEBAH1GHh/xAKxLGqYMrPIg9v7HQ+b2SJ/QeVcyyDur3LON w253HzsdMsuMflIhmGAg7zbdQAxhkYAbJkRyhE6JIo+TQvV3GBF1xa8esx5K1Oyk iRPfopZEycxK+JJqKLmKoop6yRaATvRlqf6hJ7uHNQs/C1CUy/Niztfqk84xXqTC GjjE8dxjMsIzXnc6acFFKss5QfWvT+sXDRAQYN6GILSBDrdBwTSw7YI0KxwyOehL O8TAZnSbCphe3l9Fbb3FERj7LOsGsS87zR1mHzyiOWthcyfEf/YZzwAVRtDPpC1a DOszci0pP+LBSF9rlDSL3CXZoKxLiXXem/NZP/vCFcg= -----END CERTIFICATE-----Generated at Wed May 13 12:24:29 2026 by rpki-client