$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: dYhK+jkniChfhicgSum73AYH3pvJ3PQYc3HjtlYfQRE= Subject key identifier: 55:C9:C4:38:31:4B:62:9F:DC:80:18:9F:BA:76:69:6A:AE:9F:2A:27 Certificate issuer: /CN=DDBE589E6A02B72D83086B3F5697DAB689A83BF0 Certificate serial: 492929DDE097EB7DBF001CE93CB19934EEF6E47D Authority key identifier: DD:BE:58:9E:6A:02:B7:2D:83:08:6B:3F:56:97:DA:B6:89:A8:3B:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa Signing time: Sun 03 May 2026 02:21:57 +0000 ROA not before: Sun 03 May 2026 02:16:57 +0000 ROA not after: Sun 02 May 2027 02:21:57 +0000 asID: 59149 IP address blocks: 103.254.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.crl rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:29:29:dd:e0:97:eb:7d:bf:00:1c:e9:3c:b1:99:34:ee:f6:e4:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDBE589E6A02B72D83086B3F5697DAB689A83BF0 Validity Not Before: May 3 02:16:57 2026 GMT Not After : May 2 02:21:57 2027 GMT Subject: CN=55C9C438314B629FDC80189FBA76696AAE9F2A27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:46:55:5c:ee:53:36:e1:0b:4c:50:35:31:ea: ba:cd:f4:07:9f:fa:e7:fa:41:b7:1d:ad:9a:b9:95: be:84:d0:e3:ea:e4:38:6a:f5:95:1c:d8:2b:d9:ca: 34:a3:7a:41:ac:f2:20:9a:24:55:60:e8:53:4f:67: 93:b6:b9:27:94:f6:db:45:54:41:ed:c9:2f:34:2b: 03:04:66:0b:03:e3:82:b1:52:e9:bc:1d:d4:9d:a5: 9f:ec:b7:9b:fb:6a:35:f8:5c:db:39:30:7a:57:68: 81:04:8d:6d:09:84:1e:9c:fb:2d:62:9e:ed:a3:00: 86:80:4f:16:c8:c4:b9:bd:27:73:b6:91:99:ef:11: 60:0e:7d:05:81:6c:20:06:84:38:28:8a:b0:38:55: a5:0b:b9:30:41:fd:c2:31:bc:33:ec:ec:5c:78:97: 16:af:d5:41:b9:7c:72:d2:89:74:ca:78:91:42:c3: e1:36:6c:8c:b9:f6:41:e0:d1:6e:e0:22:d6:a1:5e: 6b:fc:ad:ff:2f:99:2c:51:53:ec:50:1a:8a:93:21: ca:ec:55:3b:68:ae:bf:84:bb:10:8c:5a:f9:c2:21: 39:2e:99:9a:01:6d:f6:13:fe:c3:57:67:f5:f2:59: b4:8a:8f:38:3d:cd:f4:2e:45:54:47:08:bd:aa:ef: 83:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C9:C4:38:31:4B:62:9F:DC:80:18:9F:BA:76:69:6A:AE:9F:2A:27 X509v3 Authority Key Identifier: keyid:DD:BE:58:9E:6A:02:B7:2D:83:08:6B:3F:56:97:DA:B6:89:A8:3B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDBE589E6A02B72D83086B3F5697DAB689A83BF0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.170.0/24 Signature Algorithm: sha256WithRSAEncryption 78:69:74:09:92:22:cd:84:52:ca:6f:d2:92:cc:6e:01:0c:8d: d5:a9:3e:96:da:90:2f:6b:c8:e8:fc:24:4a:57:a4:ec:a4:69: 3c:ae:bd:9d:ec:b2:02:a7:37:8b:a5:76:ae:d4:5b:4d:60:e9: e6:92:b4:6b:e5:f5:c9:f0:43:a3:bf:16:4f:1e:20:ff:36:02: 76:3c:f3:61:c3:b2:fb:3b:3d:cd:c3:0c:99:de:10:9b:c3:6b: 6b:60:40:08:38:5b:d7:c2:05:b3:1f:6a:17:19:42:0c:12:07: fb:1b:92:08:76:21:59:bc:2c:52:49:52:d6:47:0a:70:83:0c: b5:3e:8a:7e:30:c1:fb:e9:97:cb:55:8b:3d:91:e0:c1:d4:d8: fb:4a:97:a7:b2:ac:74:50:58:fd:74:bb:3c:c2:8d:ae:b3:8c: 74:52:6f:6f:ca:9f:e3:eb:3e:9d:3a:95:5e:52:a0:1a:07:b1: b6:08:c8:e9:f1:14:12:a0:fc:a1:be:f2:83:0b:16:5e:2c:54: a1:89:d4:f3:08:a7:c6:8e:56:26:e8:7a:a0:59:67:b0:29:24: 26:f3:4a:d1:e7:bb:aa:9d:f4:a8:0f:ae:13:e6:93:e3:3a:76: 2e:8c:c2:76:06:dc:a9:09:97:82:1f:f4:63:c2:fd:fa:5b:9a: 7f:b3:96:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSSkp3eCX632/ABzpPLGZNO725H0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERCRTU4OUU2QTAyQjcyRDgzMDg2QjNGNTY5N0RBQjY4 OUE4M0JGMDAeFw0yNjA1MDMwMjE2NTdaFw0yNzA1MDIwMjIxNTdaMDMxMTAvBgNV BAMTKDU1QzlDNDM4MzE0QjYyOUZEQzgwMTg5RkJBNzY2OTZBQUU5RjJBMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCURlVc7lM24QtMUDUx6rrN9Aef +uf6QbcdrZq5lb6E0OPq5Dhq9ZUc2CvZyjSjekGs8iCaJFVg6FNPZ5O2uSeU9ttF VEHtyS80KwMEZgsD44KxUum8HdSdpZ/st5v7ajX4XNs5MHpXaIEEjW0JhB6c+y1i nu2jAIaATxbIxLm9J3O2kZnvEWAOfQWBbCAGhDgoirA4VaULuTBB/cIxvDPs7Fx4 lxav1UG5fHLSiXTKeJFCw+E2bIy59kHg0W7gItahXmv8rf8vmSxRU+xQGoqTIcrs VTtorr+EuxCMWvnCITkumZoBbfYT/sNXZ/XyWbSKjzg9zfQuRVRHCL2q74NFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVcnEODFLYp/cgBifunZpaq6fKicwHwYDVR0j BBgwFoAU3b5YnmoCty2DCGs/VpfatomoO/AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmFlN2Q0NjEtMGUzMi00ZTY1LWJiODgtZDcyNDA1YjI0NDUxLzAvRERCRTU4OUU2 QTAyQjcyRDgzMDg2QjNGNTY5N0RBQjY4OUE4M0JGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EREJFNTg5RTZBMDJCNzJEODMwODZCM0Y1Njk3REFCNjg5QTgz QkYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6qMA0GCSqG SIb3DQEBCwUAA4IBAQB4aXQJkiLNhFLKb9KSzG4BDI3VqT6W2pAva8jo/CRKV6Ts pGk8rr2d7LICpzeLpXau1FtNYOnmkrRr5fXJ8EOjvxZPHiD/NgJ2PPNhw7L7Oz3N wwyZ3hCbw2trYEAIOFvXwgWzH2oXGUIMEgf7G5IIdiFZvCxSSVLWRwpwgwy1Pop+ MMH76ZfLVYs9keDB1Nj7Spensqx0UFj9dLs8wo2us4x0Um9vyp/j6z6dOpVeUqAa B7G2CMjp8RQSoPyhvvKDCxZeLFShidTzCKfGjlYm6HqgWWewKSQm80rR57uqnfSo D64T5pPjOnYujMJ2BtypCZeCH/Rjwv36W5p/s5Za -----END CERTIFICATE-----Generated at Wed May 13 03:55:10 2026 by rpki-client