$ rpki-client -vvf rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa File: 3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: kIk3y9Le8ITzH0gAYxjapj5XisvK0Ewo2TQq12RAexU= Subject key identifier: 2F:F5:14:46:07:8B:47:2D:06:7A:63:FB:3D:F6:C1:CE:AE:25:22:E0 Certificate issuer: /CN=CFE9C14EC2F31A241E032283ABED53A3F48D7DBF Certificate serial: 1763063D24449AE7A6FBC5E086CC97EA4C6E0AB2 Authority key identifier: CF:E9:C1:4E:C2:F3:1A:24:1E:03:22:83:AB:ED:53:A3:F4:8D:7D:BF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa Signing time: Sun 03 May 2026 02:28:10 +0000 ROA not before: Sun 03 May 2026 02:23:10 +0000 ROA not after: Sun 02 May 2027 02:28:10 +0000 asID: 149409 IP address blocks: 103.164.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.crl rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:63:06:3d:24:44:9a:e7:a6:fb:c5:e0:86:cc:97:ea:4c:6e:0a:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE9C14EC2F31A241E032283ABED53A3F48D7DBF Validity Not Before: May 3 02:23:10 2026 GMT Not After : May 2 02:28:10 2027 GMT Subject: CN=2FF51446078B472D067A63FB3DF6C1CEAE2522E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fd:97:b7:9c:72:b7:34:e9:96:35:4f:c7:30: 65:c3:3f:48:8f:df:94:c2:b4:18:fb:45:13:f4:9e: 75:ca:f0:90:8a:f9:28:76:c2:6a:df:24:9c:71:26: 4c:2d:79:12:13:5d:35:73:81:63:7b:3b:18:d6:1f: 3f:88:7d:86:d3:3a:67:e1:40:6b:02:b8:4d:cc:2e: 8c:73:03:f5:8f:8b:f8:e1:d5:42:d3:5a:6d:74:a1: 94:6d:4a:c8:22:23:e8:8f:bd:f7:4a:18:8a:a4:7f: 56:d4:58:51:e7:f8:f8:1d:7b:ae:5a:3d:b1:01:d1: 6b:4a:84:c3:41:12:10:7e:87:7b:3b:91:72:09:eb: 46:a2:f7:46:95:95:2a:15:cd:ee:2f:0d:48:af:3f: 69:ff:a5:cb:84:0a:27:72:08:38:d4:76:fa:83:4d: 9e:26:9e:c1:52:39:bb:b7:b9:1d:a4:89:83:bd:a0: 34:cf:da:93:ae:62:92:0a:04:5a:93:91:34:a6:80: 48:76:56:9e:b7:31:74:1e:93:d4:20:42:39:ef:7b: 26:dd:a0:ac:e0:36:3e:d8:62:23:df:58:2f:d0:61: 75:dd:65:c8:fa:ea:3d:31:d4:72:b6:db:00:2b:94: 1f:45:80:4f:c4:ba:3d:8b:25:80:91:07:71:cf:89: 0a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F5:14:46:07:8B:47:2D:06:7A:63:FB:3D:F6:C1:CE:AE:25:22:E0 X509v3 Authority Key Identifier: keyid:CF:E9:C1:4E:C2:F3:1A:24:1E:03:22:83:AB:ED:53:A3:F4:8D:7D:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.68.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:35:75:f8:b6:66:b9:82:e3:b7:5e:c6:79:bd:2c:aa:77:f4: fd:2d:b6:46:18:dc:c8:8a:b7:db:70:55:59:da:ff:83:24:bc: 21:22:1a:c1:f1:83:64:49:d1:b0:b0:8b:67:e6:1f:e8:ff:7a: 4e:c2:11:c4:ca:67:12:42:9c:4e:c4:1b:04:c1:3a:ae:db:12: 80:60:72:2e:2e:09:8f:44:4b:29:ef:44:2f:e2:67:e0:4f:e5: 2a:98:9b:aa:5e:c2:83:5b:3e:b0:a3:e0:fb:62:59:cc:be:1f: 60:f2:4b:1f:d1:87:fc:20:b2:cb:b3:75:15:2f:e9:5c:ae:4d: 05:97:b1:45:e3:57:97:be:7b:83:fe:75:aa:94:56:4b:dd:a3: f3:de:13:10:a9:3a:12:94:f8:71:5f:4e:f0:67:63:9b:66:57: ef:be:39:39:11:e7:83:24:65:af:0f:ac:5f:d7:02:4a:27:d2: fe:ca:af:bb:c4:46:fc:41:62:67:0b:73:9e:06:a8:51:10:d1: b2:b3:95:aa:0f:d1:75:8c:f7:08:ad:0e:43:7c:88:2e:d5:d3: 51:38:bb:da:05:00:a3:93:3f:fb:e9:fa:ee:65:88:58:6f:a0: f3:73:8e:cb:9e:e5:44:1b:47:99:4b:56:1e:f7:2d:e4:63:93: 11:ee:cc:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF2MGPSREmuem+8XghsyX6kxuCrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFOUMxNEVDMkYzMUEyNDFFMDMyMjgzQUJFRDUzQTNG NDhEN0RCRjAeFw0yNjA1MDMwMjIzMTBaFw0yNzA1MDIwMjI4MTBaMDMxMTAvBgNV BAMTKDJGRjUxNDQ2MDc4QjQ3MkQwNjdBNjNGQjNERjZDMUNFQUUyNTIyRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP/Ze3nHK3NOmWNU/HMGXDP0iP 35TCtBj7RRP0nnXK8JCK+Sh2wmrfJJxxJkwteRITXTVzgWN7OxjWHz+IfYbTOmfh QGsCuE3MLoxzA/WPi/jh1ULTWm10oZRtSsgiI+iPvfdKGIqkf1bUWFHn+Pgde65a PbEB0WtKhMNBEhB+h3s7kXIJ60ai90aVlSoVze4vDUivP2n/pcuECidyCDjUdvqD TZ4mnsFSObu3uR2kiYO9oDTP2pOuYpIKBFqTkTSmgEh2Vp63MXQek9QgQjnveybd oKzgNj7YYiPfWC/QYXXdZcj66j0x1HK22wArlB9FgE/Euj2LJYCRB3HPiQq/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL/UURgeLRy0GemP7PfbBzq4lIuAwHwYDVR0j BBgwFoAUz+nBTsLzGiQeAyKDq+1To/SNfb8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2RiNmIzYmMtZmE2NS00OWYzLWFmNjEtMGQ1ZGMzOTMzNGExLzAvQ0ZFOUMxNEVD MkYzMUEyNDFFMDMyMjgzQUJFRDUzQTNGNDhEN0RCRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRkU5QzE0RUMyRjMxQTI0MUUwMzIyODNBQkVENTNBM0Y0OEQ3 REJGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkYjZiM2JjLWZhNjUtNDlmMy1h ZjYxLTBkNWRjMzkzMzRhMS8wLzMxMzAzMzJlMzEzNjM0MmUzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6REMA0GCSqG SIb3DQEBCwUAA4IBAQBvNXX4tma5guO3XsZ5vSyqd/T9LbZGGNzIirfbcFVZ2v+D JLwhIhrB8YNkSdGwsItn5h/o/3pOwhHEymcSQpxOxBsEwTqu2xKAYHIuLgmPREsp 70Qv4mfgT+UqmJuqXsKDWz6wo+D7YlnMvh9g8ksf0Yf8ILLLs3UVL+lcrk0Fl7FF 41eXvnuD/nWqlFZL3aPz3hMQqToSlPhxX07wZ2ObZlfvvjk5EeeDJGWvD6xf1wJK J9L+yq+7xEb8QWJnC3OeBqhRENGys5WqD9F1jPcIrQ5DfIgu1dNROLvaBQCjkz/7 6fruZYhYb6Dzc47LnuVEG0eZS1Ye9y3kY5MR7szr -----END CERTIFICATE-----Generated at Wed May 13 05:57:32 2026 by rpki-client