$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa File: 3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: eCWXC4LVVw9/xb/M2VWb2tLlazigP6Bh0q5irNMrIT0= Subject key identifier: CA:6E:95:9C:8D:1D:22:64:AB:55:4A:37:5A:BB:B6:C0:4C:5B:C7:C6 Certificate issuer: /CN=22DD8401AC6B88A597E903CFD7604417E9CFAFBE Certificate serial: 3DAF0666410220A372AD4956543380DFF82996BD Authority key identifier: 22:DD:84:01:AC:6B:88:A5:97:E9:03:CF:D7:60:44:17:E9:CF:AF:BE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/22DD8401AC6B88A597E903CFD7604417E9CFAFBE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 May 2026 02:32:27 +0000 ROA not before: Sun 03 May 2026 02:27:27 +0000 ROA not after: Sun 02 May 2027 02:32:27 +0000 asID: 58369 IP address blocks: 103.136.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/22DD8401AC6B88A597E903CFD7604417E9CFAFBE.crl rsync://rpki-rsync.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/22DD8401AC6B88A597E903CFD7604417E9CFAFBE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/22DD8401AC6B88A597E903CFD7604417E9CFAFBE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:af:06:66:41:02:20:a3:72:ad:49:56:54:33:80:df:f8:29:96:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22DD8401AC6B88A597E903CFD7604417E9CFAFBE Validity Not Before: May 3 02:27:27 2026 GMT Not After : May 2 02:32:27 2027 GMT Subject: CN=CA6E959C8D1D2264AB554A375ABBB6C04C5BC7C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1e:ef:9a:6a:99:92:bf:45:65:5e:40:9b:e3: 37:9c:30:de:4b:9b:79:db:8b:0f:58:de:52:d2:6d: 38:be:85:aa:0a:13:d4:0d:79:12:11:99:b0:94:4b: 97:64:f9:a3:45:b3:f7:61:84:f0:74:bd:9b:19:a8: 4a:e5:a8:77:83:98:84:52:18:9c:e6:ca:df:7c:57: 36:8a:ee:5f:73:3f:c9:ae:63:12:89:92:0b:b5:a7: 3b:3c:68:eb:ed:e5:df:99:ab:c4:8d:27:05:56:3c: 31:62:93:ab:48:82:ae:5e:e6:94:2a:d4:50:34:35: f9:ab:f9:ab:f3:3f:08:55:c1:ca:fe:61:95:0a:74: e8:cf:d3:20:ab:37:f4:cb:05:64:14:71:e8:ba:a1: 72:ce:6e:4d:a0:2c:c0:ce:51:ff:53:dd:25:78:b4: 58:3e:60:a8:90:e9:64:54:08:3b:77:f3:9e:b0:3b: 5c:81:5d:29:9c:a5:35:e6:c3:d8:6d:10:4c:31:21: c3:bd:d3:be:17:f3:1d:d3:09:96:ed:2b:70:81:e8: 64:78:cf:ce:bb:82:8c:09:7d:f1:04:47:42:51:d1: 16:be:38:14:de:af:e1:61:06:b9:89:87:18:20:5d: 8e:6f:e3:ba:d4:43:78:33:69:b8:46:2b:15:42:b6: 17:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6E:95:9C:8D:1D:22:64:AB:55:4A:37:5A:BB:B6:C0:4C:5B:C7:C6 X509v3 Authority Key Identifier: keyid:22:DD:84:01:AC:6B:88:A5:97:E9:03:CF:D7:60:44:17:E9:CF:AF:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/22DD8401AC6B88A597E903CFD7604417E9CFAFBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/22DD8401AC6B88A597E903CFD7604417E9CFAFBE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.171.0/24 Signature Algorithm: sha256WithRSAEncryption 93:97:55:75:e2:a9:8d:cb:03:99:2c:2c:89:67:ec:45:82:14: 25:ec:d9:5d:cc:83:1b:1d:0f:ba:90:91:ad:73:bb:35:e1:8d: fb:a8:69:69:14:c3:e9:fa:f8:ae:0a:cc:41:73:8a:15:b2:e2: cc:2b:c5:be:15:b8:64:3a:10:e6:cb:df:6a:dc:e6:a8:d3:b4: fd:be:fc:40:50:16:4f:c6:32:fa:71:43:04:df:f6:d7:3f:d6: 09:93:f1:77:a3:b2:ea:89:bf:9a:4d:69:e1:4e:89:6c:1b:9c: 58:40:d1:9e:72:65:95:31:6d:30:d6:c4:b5:99:c1:ba:50:a0: b3:5a:70:06:49:ce:c1:03:f6:47:cf:25:19:97:54:c3:a4:b1: e5:6d:06:d8:f3:d8:b3:66:7c:95:99:95:5a:87:5f:01:e5:31: 5d:86:ab:a7:4d:80:1d:9f:1d:02:fd:71:57:4f:98:b9:ae:1f: 74:f6:24:42:67:c9:86:5c:70:68:f7:b2:c4:cb:db:01:b4:0d: 52:12:45:59:03:c3:02:a3:80:83:ad:4b:f6:2b:8a:31:7f:e1: 16:a0:18:6d:7a:36:ca:6f:95:90:40:88:22:5b:46:08:05:19: 1c:bc:d1:cc:09:c4:6f:fb:88:14:f5:50:6e:40:ac:2c:a5:e2: 68:98:5b:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPa8GZkECIKNyrUlWVDOA3/gplr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjJERDg0MDFBQzZCODhBNTk3RTkwM0NGRDc2MDQ0MTdF OUNGQUZCRTAeFw0yNjA1MDMwMjI3MjdaFw0yNzA1MDIwMjMyMjdaMDMxMTAvBgNV BAMTKENBNkU5NTlDOEQxRDIyNjRBQjU1NEEzNzVBQkJCNkMwNEM1QkM3QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvHu+aapmSv0VlXkCb4zecMN5L m3nbiw9Y3lLSbTi+haoKE9QNeRIRmbCUS5dk+aNFs/dhhPB0vZsZqErlqHeDmIRS GJzmyt98VzaK7l9zP8muYxKJkgu1pzs8aOvt5d+Zq8SNJwVWPDFik6tIgq5e5pQq 1FA0Nfmr+avzPwhVwcr+YZUKdOjP0yCrN/TLBWQUcei6oXLObk2gLMDOUf9T3SV4 tFg+YKiQ6WRUCDt3856wO1yBXSmcpTXmw9htEEwxIcO9074X8x3TCZbtK3CB6GR4 z867gowJffEER0JR0Ra+OBTer+FhBrmJhxggXY5v47rUQ3gzabhGKxVCthfZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUym6VnI0dImSrVUo3Wru2wExbx8YwHwYDVR0j BBgwFoAUIt2EAaxriKWX6QPP12BEF+nPr74wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY2MWYwNGQtMThlNy00MmZmLWFlODItZDU2NTU0ZjkyNjRjLzAvMjJERDg0MDFB QzZCODhBNTk3RTkwM0NGRDc2MDQ0MTdFOUNGQUZCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMkREODQwMUFDNkI4OEE1OTdFOTAzQ0ZENzYwNDQxN0U5Q0ZB RkJFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmNjFmMDRkLTE4ZTctNDJmZi1h ZTgyLWQ1NjU1NGY5MjY0Yy8wLzMxMzAzMzJlMzEzMzM2MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4irMA0GCSqG SIb3DQEBCwUAA4IBAQCTl1V14qmNywOZLCyJZ+xFghQl7NldzIMbHQ+6kJGtc7s1 4Y37qGlpFMPp+viuCsxBc4oVsuLMK8W+FbhkOhDmy99q3Oao07T9vvxAUBZPxjL6 cUME3/bXP9YJk/F3o7Lqib+aTWnhTolsG5xYQNGecmWVMW0w1sS1mcG6UKCzWnAG Sc7BA/ZHzyUZl1TDpLHlbQbY89izZnyVmZVah18B5TFdhqunTYAdnx0C/XFXT5i5 rh909iRCZ8mGXHBo97LEy9sBtA1SEkVZA8MCo4CDrUv2K4oxf+EWoBhtejbKb5WQ QIgiW0YIBRkcvNHMCcRv+4gU9VBuQKwspeJomFuE -----END CERTIFICATE-----Generated at Wed May 13 05:57:22 2026 by rpki-client