$ rpki-client -vvf rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313534343130.roa File: 3130332e3136342e36382e302f32342d3234203d3e20313534343130.roa (raw, json) Hash identifier: UN7kohH8Qopbcnmi1gjKLx1GBx8HbdAU7RiPemVEdmI= Subject key identifier: 8A:33:6F:62:22:FE:4B:87:8A:29:F1:72:FA:89:4B:CF:EE:29:08:45 Certificate issuer: /CN=CFE9C14EC2F31A241E032283ABED53A3F48D7DBF Certificate serial: 7D33690E4033F7F66C77269152F94FCC009D44DE Authority key identifier: CF:E9:C1:4E:C2:F3:1A:24:1E:03:22:83:AB:ED:53:A3:F4:8D:7D:BF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313534343130.roa Signing time: Sun 03 May 2026 02:28:10 +0000 ROA not before: Sun 03 May 2026 02:23:10 +0000 ROA not after: Sun 02 May 2027 02:28:10 +0000 asID: 154410 IP address blocks: 103.164.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.crl rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:33:69:0e:40:33:f7:f6:6c:77:26:91:52:f9:4f:cc:00:9d:44:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE9C14EC2F31A241E032283ABED53A3F48D7DBF Validity Not Before: May 3 02:23:10 2026 GMT Not After : May 2 02:28:10 2027 GMT Subject: CN=8A336F6222FE4B878A29F172FA894BCFEE290845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:66:11:f2:0d:cb:0c:96:8f:e5:4f:f0:52:ce: 8f:7d:b0:09:c9:64:ab:4a:4c:08:1e:cd:ed:80:a1: 2d:0c:77:1e:62:80:e5:04:c0:6c:e1:1f:df:3f:77: 2e:37:d4:10:48:29:2d:16:4d:28:6f:f3:d3:1e:80: 94:01:59:7c:ff:43:e0:84:98:5d:7c:20:c1:63:e2: 03:d5:c8:cf:b1:90:da:01:01:b6:4a:7d:07:e6:7d: 62:29:79:02:61:bd:7a:9a:73:c9:85:46:d2:15:cb: 57:a9:02:23:cc:33:29:67:da:6d:86:72:6a:d8:e0: b7:a5:17:36:60:a8:ad:cd:4d:0d:da:d4:8e:09:36: cd:50:a3:e7:77:0c:75:cf:a6:cc:68:16:25:cf:04: 75:ca:81:f9:74:ef:33:ff:24:59:ec:80:75:0d:16: 0f:da:b4:fd:55:4e:93:d0:75:fe:cd:ca:4c:f7:36: 55:04:ff:d2:88:ba:37:3e:f6:30:29:72:2a:a2:cf: 39:54:cc:a4:9e:d0:1b:35:4d:72:6c:8c:06:32:15: 6d:38:56:cc:53:c4:f8:de:b7:3c:a2:b7:ca:2a:c5: 85:09:08:a4:81:90:30:2b:52:63:51:f7:e0:43:87: db:29:c0:31:ec:d4:69:07:21:6f:ac:76:a7:a5:b8: b5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:33:6F:62:22:FE:4B:87:8A:29:F1:72:FA:89:4B:CF:EE:29:08:45 X509v3 Authority Key Identifier: keyid:CF:E9:C1:4E:C2:F3:1A:24:1E:03:22:83:AB:ED:53:A3:F4:8D:7D:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313534343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.68.0/24 Signature Algorithm: sha256WithRSAEncryption 79:b6:69:30:7a:f5:91:53:25:9e:38:e3:8b:25:1c:7a:97:92: c0:59:b0:8a:1a:10:a3:e0:84:ef:86:a7:cd:27:2d:19:7f:0a: 71:99:37:d3:2e:94:b7:9c:f5:22:ed:aa:06:62:21:06:e9:e3: 91:44:5b:07:e1:e0:85:63:b8:31:1a:06:77:a3:8c:07:92:2a: 73:71:4c:95:44:95:cb:fb:e2:23:69:5e:17:97:bc:2c:8e:34: 8f:7c:e6:fd:1d:fe:64:0e:42:fa:09:33:ae:c9:b0:24:82:a7: 01:1c:2a:44:8b:be:e0:29:54:90:35:96:8f:ac:77:f8:53:c2: 4f:66:1f:e7:22:a6:1c:c4:da:ca:90:e1:21:17:eb:83:24:88: d6:6a:b2:1e:da:85:27:d9:f4:3b:4a:1f:d0:d7:52:44:0c:91: 16:d4:2d:6a:86:26:7a:da:b8:f2:a0:69:0b:56:65:43:96:11: 24:e4:f2:18:4e:7c:f3:2a:a1:be:a3:6c:c9:bc:f7:a5:85:08: 0d:55:04:70:6b:08:7e:f5:c9:72:42:d5:c8:c7:0f:e0:73:d8: ee:8f:71:a7:23:31:e0:2d:63:7d:b7:9a:d0:66:43:d8:fa:35: 82:8a:2f:73:52:5a:f8:34:83:34:34:ef:d1:c2:c7:25:7e:7b: ec:cc:d0:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfTNpDkAz9/ZsdyaRUvlPzACdRN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFOUMxNEVDMkYzMUEyNDFFMDMyMjgzQUJFRDUzQTNG NDhEN0RCRjAeFw0yNjA1MDMwMjIzMTBaFw0yNzA1MDIwMjI4MTBaMDMxMTAvBgNV BAMTKDhBMzM2RjYyMjJGRTRCODc4QTI5RjE3MkZBODk0QkNGRUUyOTA4NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxZhHyDcsMlo/lT/BSzo99sAnJ ZKtKTAgeze2AoS0Mdx5igOUEwGzhH98/dy431BBIKS0WTShv89MegJQBWXz/Q+CE mF18IMFj4gPVyM+xkNoBAbZKfQfmfWIpeQJhvXqac8mFRtIVy1epAiPMMyln2m2G cmrY4LelFzZgqK3NTQ3a1I4JNs1Qo+d3DHXPpsxoFiXPBHXKgfl07zP/JFnsgHUN Fg/atP1VTpPQdf7Nykz3NlUE/9KIujc+9jApciqizzlUzKSe0Bs1TXJsjAYyFW04 VsxTxPjetzyit8oqxYUJCKSBkDArUmNR9+BDh9spwDHs1GkHIW+sdqeluLVbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUijNvYiL+S4eKKfFy+olLz+4pCEUwHwYDVR0j BBgwFoAUz+nBTsLzGiQeAyKDq+1To/SNfb8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2RiNmIzYmMtZmE2NS00OWYzLWFmNjEtMGQ1ZGMzOTMzNGExLzAvQ0ZFOUMxNEVD MkYzMUEyNDFFMDMyMjgzQUJFRDUzQTNGNDhEN0RCRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRkU5QzE0RUMyRjMxQTI0MUUwMzIyODNBQkVENTNBM0Y0OEQ3 REJGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkYjZiM2JjLWZhNjUtNDlmMy1h ZjYxLTBkNWRjMzkzMzRhMS8wLzMxMzAzMzJlMzEzNjM0MmUzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTM0MzQzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6REMA0GCSqG SIb3DQEBCwUAA4IBAQB5tmkwevWRUyWeOOOLJRx6l5LAWbCKGhCj4ITvhqfNJy0Z fwpxmTfTLpS3nPUi7aoGYiEG6eORRFsH4eCFY7gxGgZ3o4wHkipzcUyVRJXL++Ij aV4Xl7wsjjSPfOb9Hf5kDkL6CTOuybAkgqcBHCpEi77gKVSQNZaPrHf4U8JPZh/n IqYcxNrKkOEhF+uDJIjWarIe2oUn2fQ7Sh/Q11JEDJEW1C1qhiZ62rjyoGkLVmVD lhEk5PIYTnzzKqG+o2zJvPelhQgNVQRwawh+9clyQtXIxw/gc9juj3GnIzHgLWN9 t5rQZkPY+jWCii9zUlr4NIM0NO/RwsclfnvszNDk -----END CERTIFICATE-----Generated at Wed May 13 05:43:30 2026 by rpki-client