$ rpki-client -vvf rpki-rsync.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/3130332e3136362e3235352e302f32342d3234203d3e20313431393636.roa File: 3130332e3136362e3235352e302f32342d3234203d3e20313431393636.roa (raw, json) Hash identifier: lQVIlc5Ok7o6clRzLcj2IsYBHTzNzicGxWqDtjOXTeQ= Subject key identifier: 09:9E:AE:84:0F:D4:39:B7:B6:74:E1:FB:2A:C6:47:DC:C1:23:8C:C6 Certificate issuer: /CN=E5DA21DB76CE91D6EF72482FFDFE02169A6CC808 Certificate serial: 50988A5D9ACC9878D449C71E26BAC26E7EA93652 Authority key identifier: E5:DA:21:DB:76:CE:91:D6:EF:72:48:2F:FD:FE:02:16:9A:6C:C8:08 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5DA21DB76CE91D6EF72482FFDFE02169A6CC808.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/3130332e3136362e3235352e302f32342d3234203d3e20313431393636.roa Signing time: Sun 03 May 2026 02:29:17 +0000 ROA not before: Sun 03 May 2026 02:24:17 +0000 ROA not after: Sun 02 May 2027 02:29:17 +0000 asID: 141966 IP address blocks: 103.166.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/E5DA21DB76CE91D6EF72482FFDFE02169A6CC808.crl rsync://rpki-rsync.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/E5DA21DB76CE91D6EF72482FFDFE02169A6CC808.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5DA21DB76CE91D6EF72482FFDFE02169A6CC808.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:98:8a:5d:9a:cc:98:78:d4:49:c7:1e:26:ba:c2:6e:7e:a9:36:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5DA21DB76CE91D6EF72482FFDFE02169A6CC808 Validity Not Before: May 3 02:24:17 2026 GMT Not After : May 2 02:29:17 2027 GMT Subject: CN=099EAE840FD439B7B674E1FB2AC647DCC1238CC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:71:83:55:0c:8e:a3:9c:8a:0c:0d:eb:45:f2: 37:72:ba:7c:a8:3c:8f:80:96:93:03:e9:0a:d2:cc: e1:91:db:c8:62:2e:dc:82:64:44:d9:5c:90:ef:a1: cc:56:e7:52:4d:d0:35:b1:60:48:71:9b:f5:50:d9: 01:9c:a4:8e:a5:64:0a:6a:10:63:6f:23:fc:28:41: 41:d9:9b:17:66:57:11:4c:f4:62:da:cf:e6:b4:1f: c1:47:12:60:00:56:72:a7:39:0b:dc:3a:cc:0e:55: b6:41:a5:da:b6:da:66:c5:35:3a:cd:c8:1e:95:36: 01:c7:b8:fa:06:03:00:d0:50:e0:37:89:f8:cc:da: c3:4e:8c:73:77:82:46:08:60:8f:7c:f8:aa:e6:dc: 4f:7a:99:4a:ca:5f:f7:7a:b4:c1:6c:69:f2:91:db: c9:be:76:86:33:eb:cd:b0:e8:ee:31:b9:f4:a9:9b: a8:25:ee:75:e9:05:97:aa:8b:df:71:bc:d5:64:df: 4c:19:d5:f9:db:69:61:96:99:54:02:0f:d8:32:f8: 8a:5f:b2:f6:71:46:9d:1d:9f:7a:2b:50:85:79:cb: 1e:e0:8b:17:2e:eb:12:50:32:73:47:b2:90:2c:05: eb:9c:c5:85:2c:48:3d:68:b0:36:35:83:74:04:a3: 6a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9E:AE:84:0F:D4:39:B7:B6:74:E1:FB:2A:C6:47:DC:C1:23:8C:C6 X509v3 Authority Key Identifier: keyid:E5:DA:21:DB:76:CE:91:D6:EF:72:48:2F:FD:FE:02:16:9A:6C:C8:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/E5DA21DB76CE91D6EF72482FFDFE02169A6CC808.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5DA21DB76CE91D6EF72482FFDFE02169A6CC808.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/3130332e3136362e3235352e302f32342d3234203d3e20313431393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.255.0/24 Signature Algorithm: sha256WithRSAEncryption 61:3e:c4:fe:74:9b:3e:d7:db:25:e9:84:a5:8d:b1:bb:39:ab: 9f:79:ef:da:5b:1c:5a:de:a6:06:48:cf:07:f6:6a:52:95:a6: 30:52:9d:cb:81:80:cb:98:9c:8c:9d:a8:9f:b0:c1:e1:f8:c5: 84:64:45:cb:d0:03:2c:10:10:e6:4d:76:8c:e5:20:0a:3a:13: e5:5b:44:ae:c6:f3:60:30:51:79:e5:55:2a:b2:9e:0a:53:d5: af:36:7c:d0:7d:61:4f:3f:05:fd:b4:cd:c3:24:5c:25:8a:fc: 56:de:ab:ec:7d:14:f1:b4:8b:7d:73:b8:ec:27:27:14:60:10: 62:db:c2:8b:b5:3f:8d:88:89:e0:22:4e:2e:67:f2:61:5c:b0: 3c:76:e5:7c:c8:b4:05:02:85:57:62:4a:8a:37:d5:c9:2a:2d: db:c8:79:f6:d2:af:82:7a:4c:30:ea:41:93:5d:a5:7a:b3:00: 3a:88:19:4e:5a:98:e3:39:1a:e3:b7:fa:53:12:e4:fc:33:7b: fe:4f:b2:3e:1e:0e:0e:b7:e9:15:99:8c:0b:35:a7:5e:5d:6b: 07:23:84:eb:d5:1a:b5:5d:c6:62:bc:97:ec:d7:63:99:06:dc: bd:bd:ff:2e:74:6d:06:db:1f:be:c9:c0:20:64:f3:3c:a4:bb: ac:c4:61:fe -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUJiKXZrMmHjUScceJrrCbn6pNlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVEQTIxREI3NkNFOTFENkVGNzI0ODJGRkRGRTAyMTY5 QTZDQzgwODAeFw0yNjA1MDMwMjI0MTdaFw0yNzA1MDIwMjI5MTdaMDMxMTAvBgNV BAMTKDA5OUVBRTg0MEZENDM5QjdCNjc0RTFGQjJBQzY0N0RDQzEyMzhDQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlcYNVDI6jnIoMDetF8jdyunyo PI+AlpMD6QrSzOGR28hiLtyCZETZXJDvocxW51JN0DWxYEhxm/VQ2QGcpI6lZApq EGNvI/woQUHZmxdmVxFM9GLaz+a0H8FHEmAAVnKnOQvcOswOVbZBpdq22mbFNTrN yB6VNgHHuPoGAwDQUOA3ifjM2sNOjHN3gkYIYI98+Krm3E96mUrKX/d6tMFsafKR 28m+doYz682w6O4xufSpm6gl7nXpBZeqi99xvNVk30wZ1fnbaWGWmVQCD9gy+Ipf svZxRp0dn3orUIV5yx7gixcu6xJQMnNHspAsBeucxYUsSD1osDY1g3QEo2orAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCZ6uhA/UObe2dOH7KsZH3MEjjMYwHwYDVR0j BBgwFoAU5doh23bOkdbvckgv/f4CFppsyAgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDI5Zjg5MDItMWEwNi00NWE4LWE5OTgtNzJlNDZhYWFlOGZjLzAvRTVEQTIxREI3 NkNFOTFENkVGNzI0ODJGRkRGRTAyMTY5QTZDQzgwOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNURBMjFEQjc2Q0U5MUQ2RUY3MjQ4MkZGREZFMDIxNjlBNkND ODA4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQyOWY4OTAyLTFhMDYtNDVhOC1h OTk4LTcyZTQ2YWFhZThmYy8wLzMxMzAzMzJlMzEzNjM2MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpv8wDQYJ KoZIhvcNAQELBQADggEBAGE+xP50mz7X2yXphKWNsbs5q59579pbHFrepgZIzwf2 alKVpjBSncuBgMuYnIydqJ+wweH4xYRkRcvQAywQEOZNdozlIAo6E+VbRK7G82Aw UXnlVSqyngpT1a82fNB9YU8/Bf20zcMkXCWK/Fbeq+x9FPG0i31zuOwnJxRgEGLb wou1P42IieAiTi5n8mFcsDx25XzItAUChVdiSoo31ckqLdvIefbSr4J6TDDqQZNd pXqzADqIGU5amOM5GuO3+lMS5Pwze/5Psj4eDg636RWZjAs1p15dawcjhOvVGrVd xmK8l+zXY5kG3L29/y50bQbbH77JwCBk8zyku6zEYf4= -----END CERTIFICATE-----Generated at Wed May 13 10:23:11 2026 by rpki-client