$ rpki-client -vvf rpki-rsync.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa File: 3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa (raw, json) Hash identifier: pi7opShYJXpPoFXhyGT9aMrMLC59BMPBUsNaZoHvFnY= Subject key identifier: DD:0D:B9:FC:A7:6B:29:7D:7C:F3:E1:BA:DB:BE:1A:00:A1:1B:0D:58 Certificate issuer: /CN=2E714C194A9AD07684B017C191F12805054E1FC8 Certificate serial: 72EBBEAA38DCEA61C66AB9C3BD932CFCA029F1 Authority key identifier: 2E:71:4C:19:4A:9A:D0:76:84:B0:17:C1:91:F1:28:05:05:4E:1F:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E714C194A9AD07684B017C191F12805054E1FC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa Signing time: Sun 03 May 2026 02:27:54 +0000 ROA not before: Sun 03 May 2026 02:22:54 +0000 ROA not after: Sun 02 May 2027 02:27:54 +0000 asID: 150543 IP address blocks: 103.160.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/2E714C194A9AD07684B017C191F12805054E1FC8.crl rsync://rpki-rsync.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/2E714C194A9AD07684B017C191F12805054E1FC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E714C194A9AD07684B017C191F12805054E1FC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 04:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:eb:be:aa:38:dc:ea:61:c6:6a:b9:c3:bd:93:2c:fc:a0:29:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E714C194A9AD07684B017C191F12805054E1FC8 Validity Not Before: May 3 02:22:54 2026 GMT Not After : May 2 02:27:54 2027 GMT Subject: CN=DD0DB9FCA76B297D7CF3E1BADBBE1A00A11B0D58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:41:20:e7:f6:9d:66:44:8a:5c:f9:91:54: 20:2e:5c:15:30:40:93:1a:57:e4:e5:8c:07:85:2d: 0e:14:1c:f7:7c:dc:88:28:58:3b:9c:1f:a0:d1:55: 1c:7f:49:fb:76:b6:4d:c3:3e:30:18:10:c7:20:df: f8:c9:76:6f:f6:1b:b1:34:69:45:9c:6d:f1:0d:c4: 4a:36:bb:08:72:7c:4d:6d:e9:6e:e4:b7:72:eb:d0: c1:6c:28:8a:02:a2:75:c1:14:f5:66:4b:90:37:7a: 28:68:ce:ef:ff:fe:f6:01:1d:27:fb:77:50:49:0c: 44:a8:f1:13:97:fc:71:cd:e1:04:ea:5a:65:30:8d: a2:3e:53:54:69:a0:89:8e:2d:ff:53:6e:bc:67:af: c1:62:7e:8f:04:2a:88:a7:66:1e:34:95:8f:a7:ed: 7b:3c:24:0a:0d:9f:e2:2d:d0:2d:88:0f:ca:16:d8: 5c:ec:22:41:67:99:76:e3:5d:15:d4:69:52:93:da: 2a:bc:aa:57:a6:ed:d3:e0:89:19:36:8c:11:cf:06: f8:4f:cc:9d:df:34:34:4e:c8:5b:8c:09:95:a5:32: 73:84:6c:8b:0e:fd:66:8e:22:5d:8b:9e:db:de:4a: 5c:e6:a0:0b:31:ed:98:6e:03:43:de:dd:b0:fc:f0: 3c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0D:B9:FC:A7:6B:29:7D:7C:F3:E1:BA:DB:BE:1A:00:A1:1B:0D:58 X509v3 Authority Key Identifier: keyid:2E:71:4C:19:4A:9A:D0:76:84:B0:17:C1:91:F1:28:05:05:4E:1F:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/2E714C194A9AD07684B017C191F12805054E1FC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E714C194A9AD07684B017C191F12805054E1FC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.193.0/24 Signature Algorithm: sha256WithRSAEncryption 57:a4:31:e4:e3:09:d2:ce:49:2e:ae:de:4a:14:79:24:02:cc: 68:76:b4:f9:7c:e5:9e:fa:c8:d5:05:4f:de:4b:2c:65:13:c6: be:e2:79:0f:c5:16:41:bc:2a:3a:15:9b:8a:c0:e4:61:98:e5: 40:1f:97:0e:58:13:2a:aa:c1:80:13:be:81:1d:bb:a9:01:65: 05:4d:c3:03:eb:f0:82:94:0e:12:3e:61:62:b8:8d:34:f2:11: 0c:a9:7a:f7:3e:df:3e:1e:8f:f5:4b:07:4b:7a:56:b1:0e:93: f3:96:16:15:6c:b1:74:b9:14:5a:2b:d0:f4:1d:d4:50:fd:49: 50:9f:70:2f:63:bf:b8:ea:5f:51:71:96:1a:25:33:85:b0:7a: 2c:7a:1a:ae:7a:1f:e0:ae:42:81:3f:c6:e0:e9:94:24:28:b4: ff:2d:56:d0:71:9d:7c:23:ac:1d:a6:74:10:0d:25:29:e4:77: 66:ba:a4:91:16:b2:34:94:e0:f1:55:10:bb:4a:19:f8:fb:f9: dd:68:b4:d4:1a:50:93:db:79:88:75:f8:ff:2e:7e:3b:c6:76: bf:ea:cd:f6:c6:b7:80:59:6e:9e:4c:fe:26:ef:7e:ea:17:fd: a4:37:18:4e:ba:17:c6:23:3f:14:f8:fd:a2:a9:9f:29:5b:ae: 01:92:35:7e -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgITcuu+qjjc6mHGarnDvZMs/KAp8TANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygyRTcxNEMxOTRBOUFEMDc2ODRCMDE3QzE5MUYxMjgwNTA1 NEUxRkM4MB4XDTI2MDUwMzAyMjI1NFoXDTI3MDUwMjAyMjc1NFowMzExMC8GA1UE AxMoREQwREI5RkNBNzZCMjk3RDdDRjNFMUJBREJCRTFBMDBBMTFCMEQ1ODCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMMyQSDn9p1mRIpc+ZFUIC5cFTBA kxpX5OWMB4UtDhQc93zciChYO5wfoNFVHH9J+3a2TcM+MBgQxyDf+Ml2b/YbsTRp RZxt8Q3ESja7CHJ8TW3pbuS3cuvQwWwoigKidcEU9WZLkDd6KGjO7//+9gEdJ/t3 UEkMRKjxE5f8cc3hBOpaZTCNoj5TVGmgiY4t/1NuvGevwWJ+jwQqiKdmHjSVj6ft ezwkCg2f4i3QLYgPyhbYXOwiQWeZduNdFdRpUpPaKryqV6bt0+CJGTaMEc8G+E/M nd80NE7IW4wJlaUyc4Rsiw79Zo4iXYue295KXOagCzHtmG4DQ97dsPzwPCMCAwEA AaOCAjYwggIyMB0GA1UdDgQWBBTdDbn8p2spfXzz4brbvhoAoRsNWDAfBgNVHSME GDAWgBQucUwZSprQdoSwF8GR8SgFBU4fyDAOBgNVHQ8BAf8EBAMCB4AwgYYGA1Ud HwR/MH0we6B5oHeGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8z Y2IzYjAwYi1hZDdiLTQ4NDktYjBiMi1lMjQ5YTJmYTYwNGEvMC8yRTcxNEMxOTRB OUFEMDc2ODRCMDE3QzE5MUYxMjgwNTA1NEUxRkM4LmNybDByBggrBgEFBQcBAQRm MGQwYgYIKwYBBQUHMAKGVnJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVw by9JRE5JQy8xLzJFNzE0QzE5NEE5QUQwNzY4NEIwMTdDMTkxRjEyODA1MDU0RTFG QzguY2VyMIGnBggrBgEFBQcBCwSBmjCBlzCBlAYIKwYBBQUHMAuGgYdyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vM2NiM2IwMGItYWQ3Yi00ODQ5LWIw YjItZTI0OWEyZmE2MDRhLzAvMzEzMDMzMmUzMTM2MzAyZTMxMzkzMzJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGegwTANBgkq hkiG9w0BAQsFAAOCAQEAV6Qx5OMJ0s5JLq7eShR5JALMaHa0+XzlnvrI1QVP3kss ZRPGvuJ5D8UWQbwqOhWbisDkYZjlQB+XDlgTKqrBgBO+gR27qQFlBU3DA+vwgpQO Ej5hYriNNPIRDKl69z7fPh6P9UsHS3pWsQ6T85YWFWyxdLkUWivQ9B3UUP1JUJ9w L2O/uOpfUXGWGiUzhbB6LHoarnof4K5CgT/G4OmUJCi0/y1W0HGdfCOsHaZ0EA0l KeR3ZrqkkRayNJTg8VUQu0oZ+Pv53Wi01BpQk9t5iHX4/y5+O8Z2v+rN9sa3gFlu nkz+Ju9+6hf9pDcYTroXxiM/FPj9oqmfKVuuAZI1fg== -----END CERTIFICATE-----Generated at Tue May 12 22:32:27 2026 by rpki-client