$ rpki-client -vvf rpki-rsync.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa File: 3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: reUfW2xUZcOA3UU73tVnYqvdrqLkl2f35VFNF05Zufw= Subject key identifier: F7:88:62:4F:BB:67:79:66:FD:C9:E6:41:FC:60:8C:28:C0:48:8B:18 Certificate issuer: /CN=2111C1DE0964BA3363560863B0A6338C56E44B27 Certificate serial: 526D2E5F425A1AD6A6A5CD9077015E7CCC7F58CE Authority key identifier: 21:11:C1:DE:09:64:BA:33:63:56:08:63:B0:A6:33:8C:56:E4:4B:27 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2111C1DE0964BA3363560863B0A6338C56E44B27.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa Signing time: Sun 03 May 2026 02:25:39 +0000 ROA not before: Sun 03 May 2026 02:20:39 +0000 ROA not after: Sun 02 May 2027 02:25:39 +0000 asID: 137316 IP address blocks: 103.162.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/2111C1DE0964BA3363560863B0A6338C56E44B27.crl rsync://rpki-rsync.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/2111C1DE0964BA3363560863B0A6338C56E44B27.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2111C1DE0964BA3363560863B0A6338C56E44B27.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:6d:2e:5f:42:5a:1a:d6:a6:a5:cd:90:77:01:5e:7c:cc:7f:58:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2111C1DE0964BA3363560863B0A6338C56E44B27 Validity Not Before: May 3 02:20:39 2026 GMT Not After : May 2 02:25:39 2027 GMT Subject: CN=F788624FBB677966FDC9E641FC608C28C0488B18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7b:39:a4:51:f5:09:8a:08:f0:60:14:79:d7: 46:7b:d9:37:cb:58:0b:af:27:46:f4:96:77:0d:ce: 4a:6d:d9:05:02:e9:0e:e9:ba:3c:30:57:1a:49:64: b3:0d:4e:f1:12:7e:d2:66:8d:26:bf:de:84:38:ec: fe:3a:f5:f1:cd:2d:ad:e6:55:c0:10:aa:c7:18:1c: 52:e5:b6:36:2f:17:23:65:f2:97:85:11:f6:bf:89: 5a:3a:51:1b:a4:63:8f:5e:c3:90:cd:d8:40:1c:0b: df:84:4a:71:17:49:a3:01:5c:a4:77:bd:d6:18:de: f2:e3:d9:76:55:5d:22:9b:c4:b3:e8:a0:4d:c2:88: 31:31:9e:ef:8e:16:42:06:df:a3:b3:3d:6b:79:79: 5a:e1:ca:08:0b:c5:75:cf:60:40:12:8f:c4:34:fe: e3:7f:a9:e7:6f:e7:2a:4e:1a:55:b5:ae:67:c8:b9: d0:57:c4:ca:01:45:ef:60:98:36:84:6f:9f:ac:40: 05:6e:ff:2c:69:87:b9:85:b2:b3:75:10:07:d1:72: 12:02:03:03:e2:c2:75:e2:ee:ba:96:8d:cd:0c:52: 4d:6f:71:91:67:9e:41:ae:3f:78:c1:90:2c:ed:d9: 50:1c:ec:d9:d1:97:cc:8a:9b:a1:84:b8:81:6d:48: 4e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:88:62:4F:BB:67:79:66:FD:C9:E6:41:FC:60:8C:28:C0:48:8B:18 X509v3 Authority Key Identifier: keyid:21:11:C1:DE:09:64:BA:33:63:56:08:63:B0:A6:33:8C:56:E4:4B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/2111C1DE0964BA3363560863B0A6338C56E44B27.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2111C1DE0964BA3363560863B0A6338C56E44B27.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.105.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:ef:13:af:0e:21:05:8a:7a:f4:38:03:20:ba:65:58:30:c5: c1:7b:2e:b2:eb:5f:6e:1c:0d:78:d9:da:48:a0:16:1e:74:d5: 96:45:bf:33:e2:be:35:a1:86:80:e3:71:e0:b0:90:b0:f7:82: f0:f0:87:6b:b8:c1:94:8a:d1:db:fb:2d:5a:e9:6f:dd:a6:30: 2c:f7:2f:d3:28:56:bc:4a:95:55:79:7f:75:af:55:66:7b:5c: 74:f9:66:bb:bf:36:ca:6b:29:0f:ba:0e:db:15:81:7a:e8:0b: ae:4c:1d:dd:47:03:27:13:0f:2e:ea:36:ee:f0:03:1f:83:06: 3d:42:8d:98:f7:8d:ec:a8:00:ab:3c:28:f8:ad:a0:e2:d3:5f: 23:f8:41:25:80:78:24:aa:df:fb:6f:90:f8:94:ef:ad:09:b1: 64:37:be:c5:b2:7c:aa:6d:63:4d:32:dc:3d:d9:44:4d:79:d1: 86:17:29:14:29:14:71:99:5b:2c:f7:63:c2:2d:93:0c:73:60: e3:68:fe:96:81:5c:3e:7f:57:f2:44:ce:24:15:4a:11:8d:13: 9d:22:73:e0:a6:49:99:b6:1a:ab:40:93:82:44:c5:48:c2:c2: 3e:12:c7:aa:0c:aa:49:7a:08:d8:ea:2c:f4:af:c2:25:ae:20: 22:66:f6:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUm0uX0JaGtampc2QdwFefMx/WM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjExMUMxREUwOTY0QkEzMzYzNTYwODYzQjBBNjMzOEM1 NkU0NEIyNzAeFw0yNjA1MDMwMjIwMzlaFw0yNzA1MDIwMjI1MzlaMDMxMTAvBgNV BAMTKEY3ODg2MjRGQkI2Nzc5NjZGREM5RTY0MUZDNjA4QzI4QzA0ODhCMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNezmkUfUJigjwYBR510Z72TfL WAuvJ0b0lncNzkpt2QUC6Q7pujwwVxpJZLMNTvESftJmjSa/3oQ47P469fHNLa3m VcAQqscYHFLltjYvFyNl8peFEfa/iVo6URukY49ew5DN2EAcC9+ESnEXSaMBXKR3 vdYY3vLj2XZVXSKbxLPooE3CiDExnu+OFkIG36OzPWt5eVrhyggLxXXPYEASj8Q0 /uN/qedv5ypOGlW1rmfIudBXxMoBRe9gmDaEb5+sQAVu/yxph7mFsrN1EAfRchIC AwPiwnXi7rqWjc0MUk1vcZFnnkGuP3jBkCzt2VAc7NnRl8yKm6GEuIFtSE6LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU94hiT7tneWb9yeZB/GCMKMBIixgwHwYDVR0j BBgwFoAUIRHB3glkujNjVghjsKYzjFbkSycwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzcyMjQzNjAtMjQ1ZC00YTFhLWFmMzYtZjliZWZjZGI3MGI3LzAvMjExMUMxREUw OTY0QkEzMzYzNTYwODYzQjBBNjMzOEM1NkU0NEIyNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMTExQzFERTA5NjRCQTMzNjM1NjA4NjNCMEE2MzM4QzU2RTQ0 QjI3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM3MjI0MzYwLTI0NWQtNGExYS1h ZjM2LWY5YmVmY2RiNzBiNy8wLzMxMzAzMzJlMzEzNjMyMmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnomkwDQYJ KoZIhvcNAQELBQADggEBAI7vE68OIQWKevQ4AyC6ZVgwxcF7LrLrX24cDXjZ2kig Fh501ZZFvzPivjWhhoDjceCwkLD3gvDwh2u4wZSK0dv7LVrpb92mMCz3L9MoVrxK lVV5f3WvVWZ7XHT5Zru/NsprKQ+6DtsVgXroC65MHd1HAycTDy7qNu7wAx+DBj1C jZj3jeyoAKs8KPitoOLTXyP4QSWAeCSq3/tvkPiU760JsWQ3vsWyfKptY00y3D3Z RE150YYXKRQpFHGZWyz3Y8ItkwxzYONo/paBXD5/V/JEziQVShGNE50ic+CmSZm2 GqtAk4JExUjCwj4Sx6oMqkl6CNjqLPSvwiWuICJm9gM= -----END CERTIFICATE-----Generated at Wed May 13 13:24:06 2026 by rpki-client