$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: R2z9xaNaKZrL0Q1BTZoKmFOdkM+GucNCILqEsv6GHto= Subject key identifier: E6:D2:92:65:AD:C6:93:DA:9A:EB:ED:7D:30:6C:DD:D1:78:8B:84:AE Certificate issuer: /CN=DDBE589E6A02B72D83086B3F5697DAB689A83BF0 Certificate serial: 724406E7D9D6E708A018851123918CE56AE1A604 Authority key identifier: DD:BE:58:9E:6A:02:B7:2D:83:08:6B:3F:56:97:DA:B6:89:A8:3B:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa Signing time: Sun 03 May 2026 02:21:58 +0000 ROA not before: Sun 03 May 2026 02:16:58 +0000 ROA not after: Sun 02 May 2027 02:21:58 +0000 asID: 59149 IP address blocks: 103.254.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.crl rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:44:06:e7:d9:d6:e7:08:a0:18:85:11:23:91:8c:e5:6a:e1:a6:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDBE589E6A02B72D83086B3F5697DAB689A83BF0 Validity Not Before: May 3 02:16:58 2026 GMT Not After : May 2 02:21:58 2027 GMT Subject: CN=E6D29265ADC693DA9AEBED7D306CDDD1788B84AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:37:38:a8:19:b6:cf:e2:ae:f1:c7:6e:b7:f0: e6:e2:46:d2:3c:00:1e:b1:00:ae:25:bc:62:1e:aa: 14:8b:76:00:f8:e9:7f:5b:59:10:d9:27:6c:0b:fb: 60:88:34:f7:ca:8d:77:38:12:98:29:16:20:30:76: 00:0b:af:25:55:7b:89:64:df:8e:30:3f:8b:72:b1: 48:9c:fa:c5:8c:ef:1c:70:db:e8:22:67:8c:d3:d2: 9d:4e:c0:2c:58:0d:19:71:40:5b:34:06:ee:89:94: aa:19:cc:6c:84:f0:3b:69:42:7e:fc:92:7d:ef:4c: 00:f8:05:47:3c:74:18:ea:3e:dd:2d:49:5b:99:fb: e7:dc:31:c5:89:54:f5:ba:bb:90:4c:07:38:38:15: cc:d4:08:58:3f:36:e2:1e:6b:73:52:a0:9e:7e:5c: 0f:a0:1b:9b:76:ae:65:50:ab:d3:02:9d:4c:77:86: 1d:74:4d:31:cc:aa:15:f3:de:ea:8c:fd:b7:e5:af: 70:91:b9:59:3a:50:56:cc:44:68:b8:a3:51:e4:2d: ec:29:81:ad:4e:e6:e3:97:10:21:f9:b2:b0:c5:45: 01:72:d0:a4:2a:37:14:9b:4a:76:b8:50:21:88:97: 79:9f:ea:bf:3c:6c:41:94:58:0c:14:a9:ff:bc:71: ae:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:D2:92:65:AD:C6:93:DA:9A:EB:ED:7D:30:6C:DD:D1:78:8B:84:AE X509v3 Authority Key Identifier: keyid:DD:BE:58:9E:6A:02:B7:2D:83:08:6B:3F:56:97:DA:B6:89:A8:3B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:c5:79:69:4e:64:94:d0:01:2b:81:64:4b:84:ee:b7:51:cb: 58:a6:9c:05:d2:57:f0:47:f7:9b:e2:f2:38:de:d5:7c:3e:b6: a8:6d:08:7f:d9:de:8e:5b:57:fc:4a:b0:d9:f3:e2:bb:e4:e5: 89:29:e6:ef:75:ec:08:06:91:64:d4:3b:64:4f:03:b1:5a:13: 39:d8:d4:03:f2:4f:eb:e2:57:98:b0:e0:af:37:49:02:55:a1: de:f4:c1:51:ea:f5:31:c3:a4:4b:fb:61:d9:0a:6e:c3:8d:12: 0d:36:39:92:44:51:27:03:c0:79:97:e6:13:71:1b:6c:d2:ba: 2b:92:b5:41:c4:4a:e0:4b:28:72:b9:bf:db:f6:fa:84:68:e7: f0:44:68:5a:a0:45:4f:60:47:9f:74:cc:d9:b5:af:d6:7f:07: 83:88:cf:f5:e0:75:9e:05:d8:74:f8:a8:a4:95:fd:d0:0b:08: 1a:89:7e:89:6f:3c:f3:f2:57:3c:2b:e4:aa:07:85:a2:bd:13: 5d:25:66:e4:40:4d:58:a4:a7:f3:04:5f:fd:4a:11:c4:42:2e: 3b:27:f1:0b:e4:bc:57:e9:91:2d:51:2f:8a:b5:c9:a3:ae:9d: 28:20:93:da:c5:9c:e8:01:db:f3:c4:f0:0c:14:32:94:d2:d7: ed:61:56:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUckQG59nW5wigGIURI5GM5WrhpgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERCRTU4OUU2QTAyQjcyRDgzMDg2QjNGNTY5N0RBQjY4 OUE4M0JGMDAeFw0yNjA1MDMwMjE2NThaFw0yNzA1MDIwMjIxNThaMDMxMTAvBgNV BAMTKEU2RDI5MjY1QURDNjkzREE5QUVCRUQ3RDMwNkNEREQxNzg4Qjg0QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrNzioGbbP4q7xx2638ObiRtI8 AB6xAK4lvGIeqhSLdgD46X9bWRDZJ2wL+2CINPfKjXc4EpgpFiAwdgALryVVe4lk 344wP4tysUic+sWM7xxw2+giZ4zT0p1OwCxYDRlxQFs0Bu6JlKoZzGyE8DtpQn78 kn3vTAD4BUc8dBjqPt0tSVuZ++fcMcWJVPW6u5BMBzg4FczUCFg/NuIea3NSoJ5+ XA+gG5t2rmVQq9MCnUx3hh10TTHMqhXz3uqM/bflr3CRuVk6UFbMRGi4o1HkLewp ga1O5uOXECH5srDFRQFy0KQqNxSbSna4UCGIl3mf6r88bEGUWAwUqf+8ca51AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5tKSZa3Gk9qa6+19MGzd0XiLhK4wHwYDVR0j BBgwFoAU3b5YnmoCty2DCGs/VpfatomoO/AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmFlN2Q0NjEtMGUzMi00ZTY1LWJiODgtZDcyNDA1YjI0NDUxLzAvRERCRTU4OUU2 QTAyQjcyRDgzMDg2QjNGNTY5N0RBQjY4OUE4M0JGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EREJFNTg5RTZBMDJCNzJEODMwODZCM0Y1Njk3REFCNjg5QTgz QkYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6oMA0GCSqG SIb3DQEBCwUAA4IBAQBMxXlpTmSU0AErgWRLhO63UctYppwF0lfwR/eb4vI43tV8 PraobQh/2d6OW1f8SrDZ8+K75OWJKebvdewIBpFk1DtkTwOxWhM52NQD8k/r4leY sOCvN0kCVaHe9MFR6vUxw6RL+2HZCm7DjRINNjmSRFEnA8B5l+YTcRts0rorkrVB xErgSyhyub/b9vqEaOfwRGhaoEVPYEefdMzZta/WfweDiM/14HWeBdh0+Kiklf3Q CwgaiX6Jbzzz8lc8K+SqB4WivRNdJWbkQE1YpKfzBF/9ShHEQi47J/EL5LxX6ZEt US+Ktcmjrp0oIJPaxZzoAdvzxPAMFDKU0tftYVb4 -----END CERTIFICATE-----Generated at Wed May 13 04:02:56 2026 by rpki-client