$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa File: 3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: iezQTzMxWp3Coix5fz9eGS/c/h2ulbbwObi3kCUHkW4= Subject key identifier: F5:18:2A:8F:4F:26:1D:42:52:45:B3:64:6B:1B:46:E8:D3:D6:5D:0E Certificate issuer: /CN=2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274 Certificate serial: 3B68609BAEFD66B5EC26C887869EE42564EDAB9E Authority key identifier: 2A:6F:16:E8:0B:FD:C7:B4:D6:79:77:26:FB:8F:D4:B0:D7:D9:C2:74 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa Signing time: Sun 03 May 2026 02:26:28 +0000 ROA not before: Sun 03 May 2026 02:21:28 +0000 ROA not after: Sun 02 May 2027 02:26:28 +0000 asID: 140443 IP address blocks: 103.168.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274.crl rsync://rpki-rsync.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:68:60:9b:ae:fd:66:b5:ec:26:c8:87:86:9e:e4:25:64:ed:ab:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274 Validity Not Before: May 3 02:21:28 2026 GMT Not After : May 2 02:26:28 2027 GMT Subject: CN=F5182A8F4F261D425245B3646B1B46E8D3D65D0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:84:b6:94:58:cb:79:59:ba:3c:80:26:d9: 18:d5:17:8a:e6:66:1b:2a:08:eb:6c:4d:2c:83:da: 00:7f:96:c0:2b:ed:4e:0d:77:50:6e:35:b0:89:65: b5:aa:da:88:8c:11:6f:3c:7b:75:82:7c:49:f4:f2: da:36:69:34:fb:9e:05:9f:27:e2:18:62:73:50:89: 18:18:b6:7b:6f:b3:01:7f:34:6e:dc:5e:18:56:e2: 89:21:fb:60:6a:fc:7a:be:13:28:b7:60:47:42:f6: 2e:d1:c0:1b:0b:af:70:be:c2:a6:27:a2:4a:5b:ea: 2e:64:da:6b:8b:51:e6:d4:81:4f:b3:ba:7f:32:9b: 4e:da:ed:58:47:1e:5b:44:4a:ca:13:33:c4:db:dd: a8:92:0c:37:98:00:dd:b2:c8:fe:26:78:98:8d:83: 23:97:de:62:f9:d7:4f:51:b5:25:3f:a2:38:f9:40: e1:8d:56:24:68:08:62:37:9a:03:de:4f:20:be:2a: 1c:f3:c0:5c:c4:9e:3b:30:2e:ae:54:8d:dc:cc:ca: 65:33:5a:7e:89:7d:40:6c:6e:30:75:00:7a:90:5b: b0:1e:aa:c9:5e:7a:af:79:cc:eb:d3:fe:e5:38:16: 87:c8:d8:51:86:87:66:fe:50:17:1d:c2:fe:23:db: 88:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:18:2A:8F:4F:26:1D:42:52:45:B3:64:6B:1B:46:E8:D3:D6:5D:0E X509v3 Authority Key Identifier: keyid:2A:6F:16:E8:0B:FD:C7:B4:D6:79:77:26:FB:8F:D4:B0:D7:D9:C2:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A6F16E80BFDC7B4D6797726FB8FD4B0D7D9C274.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.147.0/24 Signature Algorithm: sha256WithRSAEncryption 75:6a:09:20:a9:88:8b:0e:a6:46:22:0c:50:c9:58:02:dc:11: 43:eb:70:26:d4:1e:a2:5e:2e:6c:60:75:08:60:5a:9f:df:1c: 45:ef:9f:a6:3e:fd:58:81:f9:a2:6e:22:77:08:f4:97:ff:ad: 78:df:b5:bc:6b:49:a0:58:a8:3f:bc:03:e8:10:f0:33:a8:ee: 98:55:6c:84:a0:2f:42:4b:d5:e9:ff:57:e5:a9:81:91:4a:4a: f4:da:19:d4:03:9c:fe:9c:12:2a:fe:15:fa:cc:a1:01:f9:5b: 42:f1:82:1e:c8:e4:5a:97:c1:ee:f5:a7:03:7b:bf:c1:1a:d8: 68:5b:5c:1e:35:22:66:aa:cc:c4:60:e3:f1:2c:7f:ce:5e:6c: 8e:c5:17:e0:78:19:58:76:6c:29:2b:9d:3a:74:b6:6c:2e:f5: 50:da:c1:1b:a8:35:85:2f:6b:e8:10:26:90:54:ae:b8:cd:48: e7:09:7d:60:1b:05:b1:ab:5a:1e:75:85:f8:b7:6f:06:db:22: c7:76:ea:75:bf:f2:c1:a6:17:1c:13:88:8d:fb:35:24:ac:aa: 36:e7:9b:4e:a7:e2:22:dc:36:1c:66:d4:7c:c9:9c:a1:22:6c: 2d:eb:ca:b8:5a:f8:d3:05:21:0a:6c:d1:4a:4d:67:0e:14:29: bc:43:7d:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO2hgm679ZrXsJsiHhp7kJWTtq54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkE2RjE2RTgwQkZEQzdCNEQ2Nzk3NzI2RkI4RkQ0QjBE N0Q5QzI3NDAeFw0yNjA1MDMwMjIxMjhaFw0yNzA1MDIwMjI2MjhaMDMxMTAvBgNV BAMTKEY1MTgyQThGNEYyNjFENDI1MjQ1QjM2NDZCMUI0NkU4RDNENjVEMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6TYS2lFjLeVm6PIAm2RjVF4rm ZhsqCOtsTSyD2gB/lsAr7U4Nd1BuNbCJZbWq2oiMEW88e3WCfEn08to2aTT7ngWf J+IYYnNQiRgYtntvswF/NG7cXhhW4okh+2Bq/Hq+Eyi3YEdC9i7RwBsLr3C+wqYn okpb6i5k2muLUebUgU+zun8ym07a7VhHHltESsoTM8Tb3aiSDDeYAN2yyP4meJiN gyOX3mL5109RtSU/ojj5QOGNViRoCGI3mgPeTyC+KhzzwFzEnjswLq5UjdzMymUz Wn6JfUBsbjB1AHqQW7Aeqsleeq95zOvT/uU4FofI2FGGh2b+UBcdwv4j24g9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9Rgqj08mHUJSRbNkaxtG6NPWXQ4wHwYDVR0j BBgwFoAUKm8W6Av9x7TWeXcm+4/UsNfZwnQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E0NjM2MGQtNjYyYi00ZjdkLWJiMTctZDg2MDgyMTUyNDcxLzAvMkE2RjE2RTgw QkZEQzdCNEQ2Nzk3NzI2RkI4RkQ0QjBEN0Q5QzI3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQTZGMTZFODBCRkRDN0I0RDY3OTc3MjZGQjhGRDRCMEQ3RDlD Mjc0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNDYzNjBkLTY2MmItNGY3ZC1i YjE3LWQ4NjA4MjE1MjQ3MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJMwDQYJ KoZIhvcNAQELBQADggEBAHVqCSCpiIsOpkYiDFDJWALcEUPrcCbUHqJeLmxgdQhg Wp/fHEXvn6Y+/ViB+aJuIncI9Jf/rXjftbxrSaBYqD+8A+gQ8DOo7phVbISgL0JL 1en/V+WpgZFKSvTaGdQDnP6cEir+FfrMoQH5W0Lxgh7I5FqXwe71pwN7v8Ea2Ghb XB41ImaqzMRg4/Esf85ebI7FF+B4GVh2bCkrnTp0tmwu9VDawRuoNYUva+gQJpBU rrjNSOcJfWAbBbGrWh51hfi3bwbbIsd26nW/8sGmFxwTiI37NSSsqjbnm06n4iLc Nhxm1HzJnKEibC3ryrha+NMFIQps0UpNZw4UKbxDfXE= -----END CERTIFICATE-----Generated at Wed May 13 12:24:29 2026 by rpki-client