$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa File: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (raw, json) Hash identifier: /ucuML0e+8NVeub1h81o1HfhxHTujbKLgWAANxTlJqo= Subject key identifier: AE:84:16:B2:09:96:3D:C3:0C:A3:27:3C:59:BE:62:D3:46:45:4A:05 Certificate issuer: /CN=DDBE589E6A02B72D83086B3F5697DAB689A83BF0 Certificate serial: 533C45D1A3F59DD25A0CDA4F9973C5B981C756E5 Authority key identifier: DD:BE:58:9E:6A:02:B7:2D:83:08:6B:3F:56:97:DA:B6:89:A8:3B:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa Signing time: Sun 03 May 2026 02:21:57 +0000 ROA not before: Sun 03 May 2026 02:16:57 +0000 ROA not after: Sun 02 May 2027 02:21:57 +0000 asID: 59149 IP address blocks: 103.254.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.crl rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:3c:45:d1:a3:f5:9d:d2:5a:0c:da:4f:99:73:c5:b9:81:c7:56:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDBE589E6A02B72D83086B3F5697DAB689A83BF0 Validity Not Before: May 3 02:16:57 2026 GMT Not After : May 2 02:21:57 2027 GMT Subject: CN=AE8416B209963DC30CA3273C59BE62D346454A05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:48:05:56:19:e8:e4:d3:27:55:51:05:07:79: 9e:39:11:aa:57:b5:6f:0b:05:47:81:d8:64:75:cc: 75:93:90:77:5e:71:d2:c1:07:16:e6:bf:14:e0:1c: 11:28:4d:1f:92:4a:40:d3:50:f1:e5:7c:ba:bf:a2: eb:04:ae:f6:ca:50:d7:17:41:02:3e:11:bb:e4:70: ca:9d:50:f7:f0:2c:ec:b3:e7:b5:0a:c1:5c:a1:13: e1:c2:6e:67:ff:ea:17:fc:df:3e:2b:f7:e3:8b:7e: 56:34:40:2c:0a:af:7f:7b:bd:5b:22:32:12:bc:32: e0:ec:8e:c6:96:89:3f:2c:61:a3:80:3c:b9:11:c2: 55:96:a5:c1:6d:a7:c4:d4:13:2d:69:fa:ed:b7:f6: b3:7e:d5:2e:8b:4f:65:d5:37:24:fe:1d:fa:06:b3: cd:53:9b:81:bc:29:ba:78:8b:ad:a3:8c:4c:a6:61: 5e:5e:f2:fd:4c:63:e9:09:84:88:06:46:bc:bd:35: ed:e5:66:94:39:c4:fb:8c:50:df:23:34:d0:e1:22: 76:83:0b:ba:cd:a4:02:a4:90:60:7e:44:9b:57:36: e0:74:5c:08:e4:ea:73:e4:2d:aa:32:98:5d:98:d4: 3e:67:69:dd:85:a7:2a:60:ca:9c:0f:1b:ee:e5:47: ae:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:84:16:B2:09:96:3D:C3:0C:A3:27:3C:59:BE:62:D3:46:45:4A:05 X509v3 Authority Key Identifier: keyid:DD:BE:58:9E:6A:02:B7:2D:83:08:6B:3F:56:97:DA:B6:89:A8:3B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/22 Signature Algorithm: sha256WithRSAEncryption 46:a0:ba:8e:83:35:9b:8d:b6:dd:72:b8:11:a9:4c:71:59:37: be:ff:8e:5e:83:65:cf:21:5c:69:e5:64:35:fe:56:e0:9a:dd: 00:36:2c:13:3c:e1:37:ac:fe:f1:24:c3:62:35:ee:4d:80:4d: 05:a3:b6:3b:ea:d6:e4:e3:01:ea:97:9c:55:75:30:23:14:08: e6:1b:22:62:f3:6a:e9:76:68:d3:48:af:2d:a1:54:2a:57:ed: e0:42:f7:82:36:1d:87:ac:b2:44:fb:ac:0d:b0:02:0b:9a:e1: df:de:62:0c:5e:42:25:9e:0f:79:3c:eb:dc:da:a3:d3:c4:25: e2:5f:a1:10:98:b4:b2:c1:63:56:7d:73:05:19:f7:1e:a7:1f: 20:20:a9:cc:9c:c9:b8:97:81:cd:9d:3d:af:94:ae:4d:71:dd: b2:c5:ff:6a:9c:77:f5:de:8d:c4:c1:a1:6b:e1:4b:f1:8e:01: 3e:a7:d6:6d:d6:49:92:53:2f:49:d7:f8:5c:3b:47:64:10:33: e3:5b:51:48:c7:42:bc:01:37:7d:73:9e:dd:0f:5a:2c:9d:d1: 1e:35:9b:25:10:be:3a:69:0e:52:78:7b:8b:21:b7:ab:1d:21: 3e:80:7d:91:a1:6a:76:91:fc:bf:4e:1c:a2:ab:3f:94:49:dc: 95:b1:ca:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUzxF0aP1ndJaDNpPmXPFuYHHVuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERCRTU4OUU2QTAyQjcyRDgzMDg2QjNGNTY5N0RBQjY4 OUE4M0JGMDAeFw0yNjA1MDMwMjE2NTdaFw0yNzA1MDIwMjIxNTdaMDMxMTAvBgNV BAMTKEFFODQxNkIyMDk5NjNEQzMwQ0EzMjczQzU5QkU2MkQzNDY0NTRBMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcSAVWGejk0ydVUQUHeZ45EapX tW8LBUeB2GR1zHWTkHdecdLBBxbmvxTgHBEoTR+SSkDTUPHlfLq/ousErvbKUNcX QQI+EbvkcMqdUPfwLOyz57UKwVyhE+HCbmf/6hf83z4r9+OLflY0QCwKr397vVsi MhK8MuDsjsaWiT8sYaOAPLkRwlWWpcFtp8TUEy1p+u239rN+1S6LT2XVNyT+HfoG s81Tm4G8Kbp4i62jjEymYV5e8v1MY+kJhIgGRry9Ne3lZpQ5xPuMUN8jNNDhInaD C7rNpAKkkGB+RJtXNuB0XAjk6nPkLaoymF2Y1D5nad2FpypgypwPG+7lR645AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUroQWsgmWPcMMoyc8Wb5i00ZFSgUwHwYDVR0j BBgwFoAU3b5YnmoCty2DCGs/VpfatomoO/AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmFlN2Q0NjEtMGUzMi00ZTY1LWJiODgtZDcyNDA1YjI0NDUxLzAvRERCRTU4OUU2 QTAyQjcyRDgzMDg2QjNGNTY5N0RBQjY4OUE4M0JGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EREJFNTg5RTZBMDJCNzJEODMwODZCM0Y1Njk3REFCNjg5QTgz QkYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/6oMA0GCSqG SIb3DQEBCwUAA4IBAQBGoLqOgzWbjbbdcrgRqUxxWTe+/45eg2XPIVxp5WQ1/lbg mt0ANiwTPOE3rP7xJMNiNe5NgE0Fo7Y76tbk4wHql5xVdTAjFAjmGyJi82rpdmjT SK8toVQqV+3gQveCNh2HrLJE+6wNsAILmuHf3mIMXkIlng95POvc2qPTxCXiX6EQ mLSywWNWfXMFGfcepx8gIKnMnMm4l4HNnT2vlK5Ncd2yxf9qnHf13o3EwaFr4Uvx jgE+p9Zt1kmSUy9J1/hcO0dkEDPjW1FIx0K8ATd9c57dD1osndEeNZslEL46aQ5S eHuLIberHSE+gH2RoWp2kfy/Thyiqz+USdyVscpt -----END CERTIFICATE-----Generated at Wed May 13 03:22:52 2026 by rpki-client