$ rpki-client -vvf rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa File: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (raw, json) Hash identifier: s7j6V9XRLybSdB07wL0FpooAGZX0voKMcNhL/PIgeG4= Subject key identifier: 20:E6:C2:1C:25:3F:81:D0:FC:87:D2:D8:72:CF:61:DF:69:9B:55:74 Certificate issuer: /CN=F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1 Certificate serial: 57743AEFD6A19A5A58F71BA59DA068F641724D3D Authority key identifier: F2:DE:D7:D1:AF:52:5B:DA:D6:41:4B:3E:2B:AF:7B:50:53:99:A7:D1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa Signing time: Sun 03 May 2026 02:35:02 +0000 ROA not before: Sun 03 May 2026 02:30:02 +0000 ROA not after: Sun 02 May 2027 02:35:02 +0000 asID: 38756 IP address blocks: 103.212.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.crl rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:74:3a:ef:d6:a1:9a:5a:58:f7:1b:a5:9d:a0:68:f6:41:72:4d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1 Validity Not Before: May 3 02:30:02 2026 GMT Not After : May 2 02:35:02 2027 GMT Subject: CN=20E6C21C253F81D0FC87D2D872CF61DF699B5574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:76:f7:6a:98:c0:81:b3:25:40:11:1f:79:9e: 9c:cb:20:7c:64:84:8f:d6:33:fe:0d:ee:54:b3:ba: 8e:22:dc:12:76:3c:4e:6a:08:ab:f9:fa:40:42:6c: ee:b4:ed:2c:51:f5:69:b8:ff:ea:8d:59:c9:50:cd: 03:aa:09:6e:3f:2b:34:bd:f6:da:07:f9:55:43:df: c6:91:d6:81:14:c9:95:f3:55:c2:91:f5:00:86:23: e8:5c:e0:d2:e8:9e:19:6d:55:15:5d:11:6d:fe:6f: 4f:76:14:9d:f8:1f:b7:14:d7:08:c2:10:a6:ac:14: 83:a9:6d:5c:c0:f1:56:2e:36:70:df:46:d9:f8:06: 72:1f:ec:24:85:0c:03:f8:a2:14:13:ec:fc:8f:02: e9:c5:25:68:f7:d2:5d:7f:9a:cf:90:a6:d7:8a:04: eb:76:a5:d1:b6:6d:92:6b:6a:18:3a:c5:a7:32:ac: 42:10:39:f3:db:bc:a3:1a:17:b9:74:e5:e7:b9:47: fb:28:48:f0:1c:28:56:fb:19:a1:f6:13:6f:73:77: 44:85:15:d9:f1:57:ce:51:7c:0b:0a:f0:b1:6e:cb: a0:10:1f:e1:bd:50:91:0e:20:2c:08:e2:52:2d:d1: 03:34:c8:6b:ce:ea:95:df:38:31:fd:45:98:e7:e7: 14:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E6:C2:1C:25:3F:81:D0:FC:87:D2:D8:72:CF:61:DF:69:9B:55:74 X509v3 Authority Key Identifier: keyid:F2:DE:D7:D1:AF:52:5B:DA:D6:41:4B:3E:2B:AF:7B:50:53:99:A7:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.236.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:ab:8e:7a:08:b8:eb:a1:6e:15:b0:12:7b:a9:fb:5f:ef:b3: 78:5d:f2:c4:b1:e7:be:05:c9:b2:1b:2f:bd:5a:1e:6f:0d:1e: 1e:6d:1a:f2:58:b0:94:59:82:08:28:b0:1e:7e:62:3f:dd:84: 48:10:f8:e4:ea:c8:36:78:bc:ac:32:fa:b1:47:a3:ae:cc:e1: 3a:d0:80:c7:0c:8b:dc:09:0e:8a:d5:d7:10:53:be:58:86:99: fa:3b:62:a1:82:5f:e8:86:d9:f9:f1:a4:ff:79:b1:ac:1e:2e: 8f:e1:57:f1:3c:4f:6a:c7:4a:60:08:d9:66:47:95:db:c9:39: 0c:ac:35:d9:bf:3e:b0:33:f5:2e:d0:a0:a3:9e:56:8d:d8:9d: 8a:60:97:53:80:7b:aa:0c:da:e8:3b:22:ab:f5:53:79:69:49: 1a:47:0a:8d:d5:54:1c:fa:19:fc:da:8e:83:ae:16:e4:4e:da: 9e:79:c9:fb:6f:a2:6d:28:5b:b1:22:0c:55:16:69:c3:47:f3: a5:69:88:f5:75:d0:2c:e2:1b:41:9d:1b:1d:12:c7:f7:ac:0a: f7:05:8a:61:0f:58:c1:e0:6f:e3:7e:40:f1:46:50:8e:c1:93: c9:d2:af:56:54:af:40:95:87:ee:17:3e:93:84:69:67:55:c1: 99:4b:4d:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV3Q679ahmlpY9xulnaBo9kFyTT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJERUQ3RDFBRjUyNUJEQUQ2NDE0QjNFMkJBRjdCNTA1 Mzk5QTdEMTAeFw0yNjA1MDMwMjMwMDJaFw0yNzA1MDIwMjM1MDJaMDMxMTAvBgNV BAMTKDIwRTZDMjFDMjUzRjgxRDBGQzg3RDJEODcyQ0Y2MURGNjk5QjU1NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNdvdqmMCBsyVAER95npzLIHxk hI/WM/4N7lSzuo4i3BJ2PE5qCKv5+kBCbO607SxR9Wm4/+qNWclQzQOqCW4/KzS9 9toH+VVD38aR1oEUyZXzVcKR9QCGI+hc4NLonhltVRVdEW3+b092FJ34H7cU1wjC EKasFIOpbVzA8VYuNnDfRtn4BnIf7CSFDAP4ohQT7PyPAunFJWj30l1/ms+QpteK BOt2pdG2bZJrahg6xacyrEIQOfPbvKMaF7l05ee5R/soSPAcKFb7GaH2E29zd0SF FdnxV85RfAsK8LFuy6AQH+G9UJEOICwI4lIt0QM0yGvO6pXfODH9RZjn5xSfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIObCHCU/gdD8h9LYcs9h32mbVXQwHwYDVR0j BBgwFoAU8t7X0a9SW9rWQUs+K697UFOZp9EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTk3MmY5YTItYjBmZi00Mjk4LThkYTYtZTJlMzgzNDhhMDdiLzAvRjJERUQ3RDFB RjUyNUJEQUQ2NDE0QjNFMkJBRjdCNTA1Mzk5QTdEMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMkRFRDdEMUFGNTI1QkRBRDY0MTRCM0UyQkFGN0I1MDUzOTlB N0QxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9TsMA0GCSqG SIb3DQEBCwUAA4IBAQB/q456CLjroW4VsBJ7qftf77N4XfLEsee+BcmyGy+9Wh5v DR4ebRryWLCUWYIIKLAefmI/3YRIEPjk6sg2eLysMvqxR6OuzOE60IDHDIvcCQ6K 1dcQU75Yhpn6O2Khgl/ohtn58aT/ebGsHi6P4VfxPE9qx0pgCNlmR5XbyTkMrDXZ vz6wM/Uu0KCjnlaN2J2KYJdTgHuqDNroOyKr9VN5aUkaRwqN1VQc+hn82o6Drhbk Ttqeecn7b6JtKFuxIgxVFmnDR/OlaYj1ddAs4htBnRsdEsf3rAr3BYphD1jB4G/j fkDxRlCOwZPJ0q9WVK9AlYfuFz6ThGlnVcGZS03B -----END CERTIFICATE-----Generated at Wed May 13 02:37:18 2026 by rpki-client