$ rpki-client -vvf rpki-rsync.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa File: 3130332e32302e38342e302f32342d3234203d3e20313530323337.roa (raw, json) Hash identifier: jDm3YL8LmYdXFmywG3aQllmAgON/4+BpPxjQxeXq58Y= Subject key identifier: F5:96:CF:F6:88:F9:ED:96:91:B0:68:66:C6:F1:41:1A:F6:33:CB:57 Certificate issuer: /CN=99C1A17781B55BFD6418159CE683ACEFEFF42976 Certificate serial: 2D5D3728C4D45099148962CA52B4870522242AB3 Authority key identifier: 99:C1:A1:77:81:B5:5B:FD:64:18:15:9C:E6:83:AC:EF:EF:F4:29:76 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99C1A17781B55BFD6418159CE683ACEFEFF42976.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa Signing time: Sun 03 May 2026 02:28:08 +0000 ROA not before: Sun 03 May 2026 02:23:08 +0000 ROA not after: Sun 02 May 2027 02:28:08 +0000 asID: 150237 IP address blocks: 103.20.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/99C1A17781B55BFD6418159CE683ACEFEFF42976.crl rsync://rpki-rsync.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/99C1A17781B55BFD6418159CE683ACEFEFF42976.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99C1A17781B55BFD6418159CE683ACEFEFF42976.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:5d:37:28:c4:d4:50:99:14:89:62:ca:52:b4:87:05:22:24:2a:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99C1A17781B55BFD6418159CE683ACEFEFF42976 Validity Not Before: May 3 02:23:08 2026 GMT Not After : May 2 02:28:08 2027 GMT Subject: CN=F596CFF688F9ED9691B06866C6F1411AF633CB57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:07:b6:9d:9d:a4:6a:2d:c5:15:53:a1:5d: e3:8b:66:24:a0:51:af:f7:5c:20:0b:1c:66:90:50: 77:a1:a6:6a:41:8d:bb:be:ea:97:bb:9f:f7:0e:58: 0b:83:fd:22:31:0d:e2:33:ce:95:b1:69:61:9d:00: b6:83:b4:00:62:af:93:e9:eb:05:3d:00:32:d6:48: ba:76:02:01:96:25:21:5a:26:d7:65:a6:a1:6b:27: 36:a5:65:96:45:ae:75:88:8c:99:df:24:50:e6:7d: 2e:c3:5f:0a:42:e0:46:bf:7d:9b:1a:a2:74:65:55: e7:8b:56:1a:78:80:4c:75:0f:51:5d:4c:49:4c:19: 0b:fd:a6:04:26:df:1b:db:89:fd:d4:b9:20:17:c1: 0a:29:7d:31:e2:c4:19:62:32:45:25:65:9b:9b:0d: 39:72:47:2a:69:ac:d5:4e:be:b1:4d:6c:da:7c:bf: f7:86:5b:c7:91:38:7f:a6:5c:bc:c0:6f:bf:06:cd: 04:92:69:3d:7e:4b:e8:43:53:59:ba:35:b0:b3:7e: 79:43:3e:46:b2:05:02:b1:2c:39:76:0a:20:ff:ed: 6b:20:4c:e2:7c:fa:26:3c:58:b5:ef:a7:41:ac:35: 04:c9:3c:0f:f7:1f:ad:8c:ec:17:41:d7:37:ed:90: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:96:CF:F6:88:F9:ED:96:91:B0:68:66:C6:F1:41:1A:F6:33:CB:57 X509v3 Authority Key Identifier: keyid:99:C1:A1:77:81:B5:5B:FD:64:18:15:9C:E6:83:AC:EF:EF:F4:29:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/99C1A17781B55BFD6418159CE683ACEFEFF42976.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99C1A17781B55BFD6418159CE683ACEFEFF42976.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.84.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:5b:bd:7d:41:4a:41:6d:df:18:ee:e5:aa:c0:3f:46:3d:de: e1:a6:34:a1:f6:84:f3:12:4f:cc:10:85:d2:33:90:bd:a8:41: 06:94:b9:1a:20:dd:26:c2:6f:2a:d7:f0:54:46:45:e3:5c:2c: c5:a9:e5:b5:18:4c:3d:31:0a:78:d3:fc:a7:4b:8d:83:9f:4c: 18:21:3a:0c:ba:b4:01:18:8a:e6:b5:80:86:0b:3d:d9:0f:e1: e7:4c:8e:94:21:bc:21:d6:30:35:fd:8f:52:b7:a9:31:3e:e5: 9b:86:f2:5e:29:1a:17:e6:67:77:2a:ab:5f:88:b2:49:fc:b0: 44:69:2d:a8:cd:09:64:53:d1:b0:50:23:bb:97:70:ea:91:85: b3:18:77:c1:f2:2c:e1:e9:bc:18:d7:c8:58:76:57:0d:5f:1b: ec:db:14:f5:2c:cc:89:f8:49:28:68:1e:9c:d2:16:47:cc:9c: b0:5e:fa:c3:26:30:e2:2c:5f:af:c5:6e:88:ae:50:3c:5d:a3: a7:39:c7:38:25:26:91:57:fb:ca:12:7a:3f:c4:54:3d:2c:9b: c9:0f:01:08:f2:27:9e:39:0d:44:7c:d1:ed:9a:b8:5f:65:10: 9f:66:e9:a4:f7:e3:37:d1:17:41:23:fb:60:9c:7f:6b:8b:bd: 9c:7a:7a:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULV03KMTUUJkUiWLKUrSHBSIkKrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlDMUExNzc4MUI1NUJGRDY0MTgxNTlDRTY4M0FDRUZF RkY0Mjk3NjAeFw0yNjA1MDMwMjIzMDhaFw0yNzA1MDIwMjI4MDhaMDMxMTAvBgNV BAMTKEY1OTZDRkY2ODhGOUVEOTY5MUIwNjg2NkM2RjE0MTFBRjYzM0NCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+nQe2nZ2kai3FFVOhXeOLZiSg Ua/3XCALHGaQUHehpmpBjbu+6pe7n/cOWAuD/SIxDeIzzpWxaWGdALaDtABir5Pp 6wU9ADLWSLp2AgGWJSFaJtdlpqFrJzalZZZFrnWIjJnfJFDmfS7DXwpC4Ea/fZsa onRlVeeLVhp4gEx1D1FdTElMGQv9pgQm3xvbif3UuSAXwQopfTHixBliMkUlZZub DTlyRypprNVOvrFNbNp8v/eGW8eROH+mXLzAb78GzQSSaT1+S+hDU1m6NbCzfnlD PkayBQKxLDl2CiD/7WsgTOJ8+iY8WLXvp0GsNQTJPA/3H62M7BdB1zftkBqfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9ZbP9oj57ZaRsGhmxvFBGvYzy1cwHwYDVR0j BBgwFoAUmcGhd4G1W/1kGBWc5oOs7+/0KXYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2Q3YTcxYmMtZjkxMC00YjhjLTljZmYtMDg1N2Q1ZjJkMzdmLzAvOTlDMUExNzc4 MUI1NUJGRDY0MTgxNTlDRTY4M0FDRUZFRkY0Mjk3Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUMxQTE3NzgxQjU1QkZENjQxODE1OUNFNjgzQUNFRkVGRjQy OTc2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkN2E3MWJjLWY5MTAtNGI4Yy05 Y2ZmLTA4NTdkNWYyZDM3Zi8wLzMxMzAzMzJlMzIzMDJlMzgzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUVDANBgkqhkiG 9w0BAQsFAAOCAQEAHlu9fUFKQW3fGO7lqsA/Rj3e4aY0ofaE8xJPzBCF0jOQvahB BpS5GiDdJsJvKtfwVEZF41wsxanltRhMPTEKeNP8p0uNg59MGCE6DLq0ARiK5rWA hgs92Q/h50yOlCG8IdYwNf2PUrepMT7lm4byXikaF+ZndyqrX4iySfywRGktqM0J ZFPRsFAju5dw6pGFsxh3wfIs4em8GNfIWHZXDV8b7NsU9SzMifhJKGgenNIWR8yc sF76wyYw4ixfr8VuiK5QPF2jpznHOCUmkVf7yhJ6P8RUPSybyQ8BCPInnjkNRHzR 7Zq4X2UQn2bppPfjN9EXQSP7YJx/a4u9nHp65g== -----END CERTIFICATE-----Generated at Wed May 13 04:47:42 2026 by rpki-client