$ rpki-client -vvf rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa File: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: 0flsrdaSAjsWCJEWyeVcLLzCVtlFqOFqVNzD5e/gcuA= Subject key identifier: 40:8C:CE:04:C3:5E:09:7D:7D:BA:ED:D2:38:5E:7C:7D:6D:D6:00:6A Certificate issuer: /CN=8B43E14BD4588C4904A641356A5D07D628190CAB Certificate serial: 5BD9162744E62DFF6F6D9B1FA9B6E7DD54D99EA8 Authority key identifier: 8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa Signing time: Sun 03 May 2026 02:25:01 +0000 ROA not before: Sun 03 May 2026 02:20:01 +0000 ROA not after: Sun 02 May 2027 02:25:01 +0000 asID: 131111 IP address blocks: 103.174.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d9:16:27:44:e6:2d:ff:6f:6d:9b:1f:a9:b6:e7:dd:54:d9:9e:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B43E14BD4588C4904A641356A5D07D628190CAB Validity Not Before: May 3 02:20:01 2026 GMT Not After : May 2 02:25:01 2027 GMT Subject: CN=408CCE04C35E097D7DBAEDD2385E7C7D6DD6006A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:d7:a2:a1:34:49:26:92:2f:e9:f5:a7:f5: f2:04:9e:20:af:64:94:e8:e1:82:77:25:bc:e4:56: 12:cb:53:e2:a7:fe:b1:16:6b:fe:94:35:a9:96:00: 98:ed:6d:5d:36:7d:85:f9:d6:64:de:69:64:fb:4c: 11:5d:a7:9c:76:97:43:03:71:0c:76:c1:b6:70:74: b1:06:e2:ee:75:d6:d6:ae:36:44:5a:6d:38:10:22: 82:69:e2:b8:81:7f:c0:87:2b:10:dd:be:e0:c0:d1: 99:dc:21:80:a4:e4:24:4f:0a:a0:48:08:50:fc:52: d6:8f:e5:f3:fc:d2:d3:8a:c5:29:85:e2:4a:3a:b9: fa:32:0d:c1:38:30:e9:0b:c1:ef:a2:c8:48:44:f9: a0:42:22:71:42:7d:7b:d6:fc:56:ee:b7:ca:39:33: ac:12:02:da:e7:e8:b2:c6:fb:57:4b:77:46:52:7b: 76:16:5b:ba:fc:b2:f1:eb:56:26:2c:3f:b7:a4:9c: 2b:61:9f:52:de:16:8a:7e:65:37:ed:2d:fa:d3:24: a0:99:dd:62:f6:59:29:24:e8:b9:9e:fd:44:c7:6a: af:55:58:f7:c7:6b:62:0b:1d:0e:26:f7:4d:c5:d7: e6:69:8c:6f:15:8d:26:6f:57:a2:bd:8f:ea:3c:11: 7d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:8C:CE:04:C3:5E:09:7D:7D:BA:ED:D2:38:5E:7C:7D:6D:D6:00:6A X509v3 Authority Key Identifier: keyid:8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.36.0/23 Signature Algorithm: sha256WithRSAEncryption 83:8d:56:e4:95:29:d5:24:cc:22:db:c4:d7:d0:e1:0a:b0:5b: 30:8d:af:1d:49:75:dc:05:8b:23:42:c7:14:5c:99:82:b6:33: b5:de:45:ff:3f:e4:1f:9c:e8:49:db:a8:bf:a8:bf:74:dd:58: 1b:80:5b:49:e0:f3:ae:66:58:4d:4a:0b:ac:20:58:64:26:41: 12:17:f1:50:c0:4d:29:a8:2e:7c:27:bd:70:f0:88:7b:1e:5b: 18:c2:45:9a:62:07:8c:3a:28:ff:01:cb:ab:94:e8:79:67:ac: 67:fd:0b:41:63:5a:0a:ad:b6:a1:74:ce:d0:52:0b:c2:c8:a8: 93:16:0c:9f:4c:26:6e:20:74:2c:84:3b:19:02:38:95:f7:63: 70:76:3f:b9:c1:27:3b:ed:2d:6d:0a:80:a8:bf:2c:b1:a8:9b: 9d:d8:80:e9:23:11:24:46:72:a0:ae:c5:57:37:bf:78:f6:e0: 13:34:0d:8c:95:b3:67:c8:a8:f4:d9:dc:8b:01:89:dc:75:55: d9:54:7f:ab:46:9d:94:1d:3e:50:74:d8:1b:26:73:d7:71:64: 55:53:8e:be:98:e2:14:74:25:af:53:eb:e1:48:a5:16:98:bd: c2:e5:31:2b:f9:7c:58:4f:b2:10:0f:65:db:90:52:f3:5a:81: 5f:c0:10:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW9kWJ0TmLf9vbZsfqbbn3VTZnqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEI0M0UxNEJENDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYy ODE5MENBQjAeFw0yNjA1MDMwMjIwMDFaFw0yNzA1MDIwMjI1MDFaMDMxMTAvBgNV BAMTKDQwOENDRTA0QzM1RTA5N0Q3REJBRUREMjM4NUU3QzdENkRENjAwNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpT9eioTRJJpIv6fWn9fIEniCv ZJTo4YJ3JbzkVhLLU+Kn/rEWa/6UNamWAJjtbV02fYX51mTeaWT7TBFdp5x2l0MD cQx2wbZwdLEG4u511tauNkRabTgQIoJp4riBf8CHKxDdvuDA0ZncIYCk5CRPCqBI CFD8UtaP5fP80tOKxSmF4ko6ufoyDcE4MOkLwe+iyEhE+aBCInFCfXvW/Fbut8o5 M6wSAtrn6LLG+1dLd0ZSe3YWW7r8svHrViYsP7eknCthn1LeFop+ZTftLfrTJKCZ 3WL2WSkk6Lme/UTHaq9VWPfHa2ILHQ4m903F1+ZpjG8VjSZvV6K9j+o8EX1TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQIzOBMNeCX19uu3SOF58fW3WAGowHwYDVR0j BBgwFoAUi0PhS9RYjEkEpkE1al0H1igZDKswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRhMjNjNGUtMzkzMi00M2JkLTgxNzYtZjYyNTFkZGVhODQyLzAvOEI0M0UxNEJE NDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYyODE5MENBQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjQzRTE0QkQ0NTg4QzQ5MDRBNjQxMzU2QTVEMDdENjI4MTkw Q0FCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM0YTIzYzRlLTM5MzItNDNiZC04 MTc2LWY2MjUxZGRlYTg0Mi8wLzMxMzAzMzJlMzEzNzM0MmUzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64kMA0GCSqG SIb3DQEBCwUAA4IBAQCDjVbklSnVJMwi28TX0OEKsFswja8dSXXcBYsjQscUXJmC tjO13kX/P+QfnOhJ26i/qL903VgbgFtJ4POuZlhNSgusIFhkJkESF/FQwE0pqC58 J71w8Ih7HlsYwkWaYgeMOij/AcurlOh5Z6xn/QtBY1oKrbahdM7QUgvCyKiTFgyf TCZuIHQshDsZAjiV92Nwdj+5wSc77S1tCoCovyyxqJud2IDpIxEkRnKgrsVXN794 9uATNA2MlbNnyKj02dyLAYncdVXZVH+rRp2UHT5QdNgbJnPXcWRVU46+mOIUdCWv U+vhSKUWmL3C5TEr+XxYT7IQD2XbkFLzWoFfwBD/ -----END CERTIFICATE-----Generated at Wed May 13 10:36:49 2026 by rpki-client