$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: Vo2Jpt+dSXazibEuz+y6WvVaVvXarzLBSGUclttgvSw= Subject key identifier: E8:66:84:AF:B2:FE:F6:AB:5C:E0:C2:AA:FC:DD:E0:9C:94:81:FC:80 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 47036635086AA332D36D227FBA67EE1A9025A4BE Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:49 +0000 ROA not before: Sun 03 May 2026 02:17:49 +0000 ROA not after: Sun 02 May 2027 02:22:49 +0000 asID: 58487 IP address blocks: 103.253.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:03:66:35:08:6a:a3:32:d3:6d:22:7f:ba:67:ee:1a:90:25:a4:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:49 2026 GMT Not After : May 2 02:22:49 2027 GMT Subject: CN=E86684AFB2FEF6AB5CE0C2AAFCDDE09C9481FC80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c1:e7:fe:82:63:28:11:99:2a:e7:68:1f:ce: 97:da:e5:fd:2b:fc:64:25:f2:69:9c:86:71:9b:9d: 00:aa:b7:70:e9:01:73:6e:95:2b:bb:6e:9e:12:3f: e7:cd:28:49:ab:3e:43:78:04:e2:17:01:bb:df:d7: 18:69:6e:0e:4b:bf:df:16:a3:ea:ff:fc:28:c7:90: a7:fa:f0:29:e9:da:a2:e2:f5:49:7e:fb:a5:ee:eb: b6:d6:76:3a:46:33:33:6a:dc:58:50:9f:01:dc:4e: 8e:ca:8d:ba:4c:8d:88:16:4b:34:16:22:9e:55:23: 46:2a:03:45:b3:74:82:af:5d:7a:b5:39:43:11:7b: 9b:cb:d0:71:77:ee:c8:ae:2c:bd:aa:a7:db:d0:39: 86:6a:08:40:67:38:34:75:62:07:32:7a:23:e8:cf: 3c:a0:75:11:36:6b:84:21:27:7b:27:eb:db:64:48: ed:57:37:9d:34:97:ab:d8:b6:bd:f0:dd:49:ac:8d: a1:92:12:d4:00:08:5c:e1:77:2c:eb:dd:48:11:80: 01:a4:ea:26:40:f4:6c:50:f9:95:a2:2a:88:32:fb: cf:31:c0:2d:91:94:fc:3c:0d:9c:b0:b2:ee:5a:e8: eb:59:93:4f:49:3a:34:6d:63:b8:1c:08:17:6d:5f: c3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:66:84:AF:B2:FE:F6:AB:5C:E0:C2:AA:FC:DD:E0:9C:94:81:FC:80 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.215.0/24 Signature Algorithm: sha256WithRSAEncryption b8:19:67:40:9a:4b:ab:9d:a8:99:c5:18:3d:f5:97:5f:88:7e: 2e:5a:b2:63:4c:e9:b0:78:e7:24:c8:3a:20:a2:58:42:6f:7e: 14:ac:f8:78:5d:28:27:b8:19:8d:4c:74:8c:83:09:aa:89:f8: 5f:02:09:dd:b4:28:02:ff:a2:65:fd:be:09:09:97:46:88:fc: e3:11:9d:7d:67:60:b3:39:8d:e5:db:7a:8b:70:4b:6e:17:37: 1a:2e:4f:a8:7c:bb:5c:b9:e0:f4:33:51:a1:5e:5b:e8:65:e2: cc:9e:01:45:04:3c:51:87:78:64:46:5b:55:63:34:22:58:37: 02:30:90:9f:84:8f:a0:a9:38:64:6e:c5:a4:06:4b:05:63:40: 82:d6:aa:cd:d4:04:c4:ef:44:2a:d6:73:02:98:a9:45:63:35: 3b:07:28:61:ff:b9:fa:d1:07:83:cb:b1:35:95:71:91:a4:d5: 44:e9:a4:10:19:c6:59:8d:09:13:0e:49:8e:0f:40:6c:57:12: ff:63:8f:5d:71:7e:62:45:8f:d6:6c:04:d9:f3:54:d1:ba:c7: 18:6a:71:98:70:87:26:f7:63:a0:c7:b8:db:a0:76:91:53:6e: f5:13:38:7b:be:ec:89:ed:de:8a:58:a6:2c:93:df:57:82:52: 40:9d:8c:73 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURwNmNQhqozLTbSJ/umfuGpAlpL4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NDlaFw0yNzA1MDIwMjIyNDlaMDMxMTAvBgNV BAMTKEU4NjY4NEFGQjJGRUY2QUI1Q0UwQzJBQUZDRERFMDlDOTQ4MUZDODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgwef+gmMoEZkq52gfzpfa5f0r /GQl8mmchnGbnQCqt3DpAXNulSu7bp4SP+fNKEmrPkN4BOIXAbvf1xhpbg5Lv98W o+r//CjHkKf68Cnp2qLi9Ul++6Xu67bWdjpGMzNq3FhQnwHcTo7KjbpMjYgWSzQW Ip5VI0YqA0WzdIKvXXq1OUMRe5vL0HF37siuLL2qp9vQOYZqCEBnODR1YgcyeiPo zzygdRE2a4QhJ3sn69tkSO1XN500l6vYtr3w3UmsjaGSEtQACFzhdyzr3UgRgAGk 6iZA9GxQ+ZWiKogy+88xwC2RlPw8DZywsu5a6OtZk09JOjRtY7gcCBdtX8NZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6GaEr7L+9qtc4MKq/N3gnJSB/IAwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3XMA0GCSqG SIb3DQEBCwUAA4IBAQC4GWdAmkurnaiZxRg99ZdfiH4uWrJjTOmweOckyDogolhC b34UrPh4XSgnuBmNTHSMgwmqifhfAgndtCgC/6Jl/b4JCZdGiPzjEZ19Z2CzOY3l 23qLcEtuFzcaLk+ofLtcueD0M1GhXlvoZeLMngFFBDxRh3hkRltVYzQiWDcCMJCf hI+gqThkbsWkBksFY0CC1qrN1ATE70Qq1nMCmKlFYzU7Byhh/7n60QeDy7E1lXGR pNVE6aQQGcZZjQkTDkmOD0BsVxL/Y49dcX5iRY/WbATZ81TRuscYanGYcIcm92Og x7jboHaRU271Ezh7vuyJ7d6KWKYsk99XglJAnYxz -----END CERTIFICATE-----Generated at Wed May 13 01:45:31 2026 by rpki-client