$ rpki-client -vvf rpki-rsync.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa File: 3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa (raw, json) Hash identifier: +kNxWxLOhoGk84Jk4YTYvL8/cD9b4IuN07WY2O/EUDY= Subject key identifier: 70:73:3B:C9:3B:22:DB:51:75:50:81:63:18:04:8A:58:1B:2F:12:58 Certificate issuer: /CN=6762769ECF2C909C26366B9D9DD5878F3A40A2AD Certificate serial: 533BD89CAD7404760C66DB02F0D1993E4EB43902 Authority key identifier: 67:62:76:9E:CF:2C:90:9C:26:36:6B:9D:9D:D5:87:8F:3A:40:A2:AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6762769ECF2C909C26366B9D9DD5878F3A40A2AD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa Signing time: Sun 03 May 2026 02:21:59 +0000 ROA not before: Sun 03 May 2026 02:16:59 +0000 ROA not after: Sun 02 May 2027 02:21:59 +0000 asID: 142342 IP address blocks: 103.169.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/6762769ECF2C909C26366B9D9DD5878F3A40A2AD.crl rsync://rpki-rsync.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/6762769ECF2C909C26366B9D9DD5878F3A40A2AD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6762769ECF2C909C26366B9D9DD5878F3A40A2AD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:3b:d8:9c:ad:74:04:76:0c:66:db:02:f0:d1:99:3e:4e:b4:39:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6762769ECF2C909C26366B9D9DD5878F3A40A2AD Validity Not Before: May 3 02:16:59 2026 GMT Not After : May 2 02:21:59 2027 GMT Subject: CN=70733BC93B22DB517550816318048A581B2F1258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e4:31:9d:72:4a:41:89:d8:64:ad:ec:53:cd: 87:0f:fb:37:09:1f:93:f7:bd:d9:6a:f9:3e:52:cd: db:05:00:c5:0a:39:0c:0e:01:7e:46:4a:c1:04:ba: 07:3d:e6:50:56:b1:4f:5d:d3:3c:bd:53:ea:09:10: 00:a7:ed:67:6c:8d:d3:ea:2e:cd:96:7c:42:2c:4a: 1b:eb:7c:9d:21:98:03:67:03:6d:e0:23:b4:dc:d0: 4f:9b:ad:2b:04:79:83:9c:56:8e:db:63:b1:10:15: 79:46:8a:6e:0b:6c:5f:7e:59:da:a4:cc:02:7a:51: af:29:1f:43:ba:7e:0a:a7:8d:f8:a5:86:48:fd:e8: 19:1c:63:f5:fe:9d:c8:8f:0c:0f:29:1d:ca:52:0d: ee:b1:ca:70:b7:84:5d:46:e0:2d:bd:f8:3f:cc:e1: 67:f1:94:d2:6a:2c:89:67:81:b5:71:e2:5f:10:ee: ba:34:74:1b:ff:d6:35:41:11:2a:17:b5:4b:84:83: d1:8b:eb:da:45:87:a1:f4:05:74:32:bc:21:e3:c7: cc:52:b4:aa:48:fe:92:95:07:33:7c:81:a2:c9:7c: bd:7b:d5:f6:4c:5d:86:8a:52:47:d8:a9:b4:06:22: 16:19:ff:d1:86:c2:99:5c:69:a4:dc:7e:02:3d:4d: c1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:73:3B:C9:3B:22:DB:51:75:50:81:63:18:04:8A:58:1B:2F:12:58 X509v3 Authority Key Identifier: keyid:67:62:76:9E:CF:2C:90:9C:26:36:6B:9D:9D:D5:87:8F:3A:40:A2:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/6762769ECF2C909C26366B9D9DD5878F3A40A2AD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6762769ECF2C909C26366B9D9DD5878F3A40A2AD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.128.0/23 Signature Algorithm: sha256WithRSAEncryption 17:9c:0a:b4:3a:e1:c2:17:ae:e6:1e:13:a6:af:fc:59:c7:99: 08:fc:d7:b0:ba:8c:1b:3b:e1:bd:05:60:5e:a4:e3:d9:72:f3: d8:ef:0c:90:20:ce:c4:ed:36:c5:07:25:15:04:4a:2e:a7:ba: a0:df:21:0b:ee:3e:37:f1:2c:e9:bb:70:70:89:57:c4:75:41: 33:13:34:70:96:bb:68:ac:c0:5f:4a:fa:06:33:c3:c2:aa:e9: 86:89:ef:da:4f:85:b0:42:8d:55:ec:7d:f4:8a:1c:6c:ed:39: 48:a9:5e:34:0a:2f:e9:9f:a7:16:bd:40:3c:e0:03:0f:14:b3: 59:c7:93:1d:68:1c:b7:1c:63:48:88:42:6d:25:08:49:f9:5d: da:a1:b7:99:8e:65:96:39:15:b5:d8:77:70:54:93:95:09:e2: 24:fe:c8:60:80:e5:f1:c3:d4:8c:83:e9:97:0c:be:bf:8a:c2: e8:1b:ca:64:c6:21:ab:75:3f:78:ad:97:fd:ca:88:da:d8:cf: 84:cf:c6:dc:63:d3:66:2f:c9:9b:04:0f:f0:81:62:9f:97:91: 69:78:16:63:01:21:3f:20:76:77:9e:b1:38:97:74:9c:8b:b6: f5:2d:fc:b5:3c:fb:e8:da:73:6c:65:82:ac:62:61:13:f9:d3: 1c:f9:69:bc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUzvYnK10BHYMZtsC8NGZPk60OQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc2Mjc2OUVDRjJDOTA5QzI2MzY2QjlEOURENTg3OEYz QTQwQTJBRDAeFw0yNjA1MDMwMjE2NTlaFw0yNzA1MDIwMjIxNTlaMDMxMTAvBgNV BAMTKDcwNzMzQkM5M0IyMkRCNTE3NTUwODE2MzE4MDQ4QTU4MUIyRjEyNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq5DGdckpBidhkrexTzYcP+zcJ H5P3vdlq+T5SzdsFAMUKOQwOAX5GSsEEugc95lBWsU9d0zy9U+oJEACn7WdsjdPq Ls2WfEIsShvrfJ0hmANnA23gI7Tc0E+brSsEeYOcVo7bY7EQFXlGim4LbF9+Wdqk zAJ6Ua8pH0O6fgqnjfilhkj96BkcY/X+nciPDA8pHcpSDe6xynC3hF1G4C29+D/M 4WfxlNJqLIlngbVx4l8Q7ro0dBv/1jVBESoXtUuEg9GL69pFh6H0BXQyvCHjx8xS tKpI/pKVBzN8gaLJfL171fZMXYaKUkfYqbQGIhYZ/9GGwplcaaTcfgI9TcERAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcHM7yTsi21F1UIFjGASKWBsvElgwHwYDVR0j BBgwFoAUZ2J2ns8skJwmNmudndWHjzpAoq0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmIwZTM2NGItNzc5ZS00MGQ1LWFkMGUtZDkxNzg3NzhkNmIxLzAvNjc2Mjc2OUVD RjJDOTA5QzI2MzY2QjlEOURENTg3OEYzQTQwQTJBRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzYyNzY5RUNGMkM5MDlDMjYzNjZCOUQ5REQ1ODc4RjNBNDBB MkFELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJiMGUzNjRiLTc3OWUtNDBkNS1h ZDBlLWQ5MTc4Nzc4ZDZiMS8wLzMxMzAzMzJlMzEzNjM5MmUzMTMyMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqYAwDQYJ KoZIhvcNAQELBQADggEBABecCrQ64cIXruYeE6av/FnHmQj817C6jBs74b0FYF6k 49ly89jvDJAgzsTtNsUHJRUESi6nuqDfIQvuPjfxLOm7cHCJV8R1QTMTNHCWu2is wF9K+gYzw8Kq6YaJ79pPhbBCjVXsffSKHGztOUipXjQKL+mfpxa9QDzgAw8Us1nH kx1oHLccY0iIQm0lCEn5Xdqht5mOZZY5FbXYd3BUk5UJ4iT+yGCA5fHD1IyD6ZcM vr+KwugbymTGIat1P3itl/3KiNrYz4TPxtxj02YvyZsED/CBYp+XkWl4FmMBIT8g dneesTiXdJyLtvUt/LU8++jac2xlgqxiYRP50xz5abw= -----END CERTIFICATE-----Generated at Wed May 13 06:11:33 2026 by rpki-client