$ rpki-client -vvf rpki-rsync.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa File: 3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa (raw, json) Hash identifier: raCtvjVmEJI55eIKeNiuVbv8oBn2bNkQd9Io9ytHzqU= Subject key identifier: 43:C9:A2:7B:97:EB:39:5A:C7:E6:23:A1:2D:CF:E7:4F:8E:94:DB:AB Certificate issuer: /CN=DEBEEE897FD8557304A2C020DB86AD2BA80B06FB Certificate serial: 70A38768502AAC72EEF4AA3F59CFC253FCBB4CDA Authority key identifier: DE:BE:EE:89:7F:D8:55:73:04:A2:C0:20:DB:86:AD:2B:A8:0B:06:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEBEEE897FD8557304A2C020DB86AD2BA80B06FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa Signing time: Sun 03 May 2026 02:38:08 +0000 ROA not before: Sun 03 May 2026 02:33:08 +0000 ROA not after: Sun 02 May 2027 02:38:08 +0000 asID: 24529 IP address blocks: 103.217.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/DEBEEE897FD8557304A2C020DB86AD2BA80B06FB.crl rsync://rpki-rsync.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/DEBEEE897FD8557304A2C020DB86AD2BA80B06FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEBEEE897FD8557304A2C020DB86AD2BA80B06FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a3:87:68:50:2a:ac:72:ee:f4:aa:3f:59:cf:c2:53:fc:bb:4c:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEBEEE897FD8557304A2C020DB86AD2BA80B06FB Validity Not Before: May 3 02:33:08 2026 GMT Not After : May 2 02:38:08 2027 GMT Subject: CN=43C9A27B97EB395AC7E623A12DCFE74F8E94DBAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ef:9e:dc:36:83:b4:c6:59:99:f6:2c:fe:be: 07:1e:fd:ca:b1:6e:70:83:49:b3:d8:03:3b:e4:90: 4d:50:ac:06:57:dd:c8:f7:35:b3:71:8e:6e:19:5f: ed:ff:71:77:1d:80:21:0e:d4:c5:b4:9a:33:58:4b: 50:b6:5c:b8:fb:8e:4c:3d:b4:6a:72:72:42:df:ee: 27:6d:48:ae:7b:7f:68:2e:a9:29:bd:da:4a:c0:c1: 16:74:3c:cb:bf:70:f9:a9:c9:3f:cb:35:89:32:f9: 8e:11:71:43:d4:b6:74:da:0b:28:14:9c:bd:ab:83: fb:c6:3e:b6:6c:d0:fd:34:1a:f1:4d:df:5d:32:b5: cd:03:c8:29:7f:6a:48:9c:74:31:7a:60:4c:51:e5: a2:09:19:00:bc:de:3a:24:f4:c2:38:f6:73:17:e7: 96:39:c9:53:03:24:a6:70:4a:2c:64:a8:2a:9f:3b: bc:c5:90:17:21:ac:fb:2d:6a:e2:c9:15:25:35:b9: 30:b8:99:86:ae:71:fe:a3:be:4a:d2:06:b9:ce:49: f9:4f:0d:b5:5a:d2:52:05:80:a7:57:00:f6:f9:71: cf:01:d2:5b:6f:9a:bc:6d:1a:f5:26:6b:6f:d1:5b: 20:bc:13:9a:4a:23:66:b6:2e:96:23:b0:c8:90:2e: 15:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C9:A2:7B:97:EB:39:5A:C7:E6:23:A1:2D:CF:E7:4F:8E:94:DB:AB X509v3 Authority Key Identifier: keyid:DE:BE:EE:89:7F:D8:55:73:04:A2:C0:20:DB:86:AD:2B:A8:0B:06:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/DEBEEE897FD8557304A2C020DB86AD2BA80B06FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEBEEE897FD8557304A2C020DB86AD2BA80B06FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.217.0/24 Signature Algorithm: sha256WithRSAEncryption 96:d3:40:37:52:1a:3f:d5:2f:67:ba:7a:83:5c:ad:d1:53:f0: dc:02:94:73:de:94:a2:52:07:3f:a7:f6:f2:33:f0:94:55:e2: 4e:d3:fe:88:d4:08:77:f3:ab:2c:13:2d:98:3c:9a:9f:df:7b: 26:87:fd:91:93:d8:1d:d9:c0:9f:56:d4:ec:0a:c5:26:f9:7c: 23:35:d3:2e:78:f7:6c:0f:c6:6b:8d:d6:7f:24:76:0e:f9:f3: b8:68:14:8d:90:f2:db:72:94:04:c2:67:be:54:34:bd:f4:b1: 97:0d:d7:59:8b:bd:af:d9:96:03:18:eb:65:2c:be:5a:a4:bc: ea:4b:90:21:6e:32:b7:30:49:e9:95:d6:65:a9:5f:19:04:0d: 1b:9c:89:15:22:00:41:19:e2:75:61:79:aa:73:6c:4b:c8:0d: 06:3c:a0:21:7f:56:44:94:f5:67:05:9f:97:9b:c1:cb:96:b0: a8:dd:cc:dc:9d:8e:cd:cf:8c:31:56:3a:cd:49:ee:2b:13:d8: e0:65:da:d3:fd:d3:41:f4:1f:18:6f:7d:29:98:ef:96:35:5f: 58:42:66:cd:87:55:be:fd:eb:81:c2:32:71:b0:dd:de:06:3d: 41:2b:9e:02:9c:81:0f:e7:da:87:a9:ba:bf:20:80:59:f3:75: 07:a7:d1:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcKOHaFAqrHLu9Ko/Wc/CU/y7TNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVCRUVFODk3RkQ4NTU3MzA0QTJDMDIwREI4NkFEMkJB ODBCMDZGQjAeFw0yNjA1MDMwMjMzMDhaFw0yNzA1MDIwMjM4MDhaMDMxMTAvBgNV BAMTKDQzQzlBMjdCOTdFQjM5NUFDN0U2MjNBMTJEQ0ZFNzRGOEU5NERCQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx757cNoO0xlmZ9iz+vgce/cqx bnCDSbPYAzvkkE1QrAZX3cj3NbNxjm4ZX+3/cXcdgCEO1MW0mjNYS1C2XLj7jkw9 tGpyckLf7idtSK57f2guqSm92krAwRZ0PMu/cPmpyT/LNYky+Y4RcUPUtnTaCygU nL2rg/vGPrZs0P00GvFN310ytc0DyCl/akicdDF6YExR5aIJGQC83jok9MI49nMX 55Y5yVMDJKZwSixkqCqfO7zFkBchrPstauLJFSU1uTC4mYaucf6jvkrSBrnOSflP DbVa0lIFgKdXAPb5cc8B0ltvmrxtGvUma2/RWyC8E5pKI2a2LpYjsMiQLhWPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ8mie5frOVrH5iOhLc/nT46U26swHwYDVR0j BBgwFoAU3r7uiX/YVXMEosAg24atK6gLBvswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjIyZjUxNTItYTI5NS00N2I3LWFkZGMtZmJmZWYzMjQ3ZTNiLzAvREVCRUVFODk3 RkQ4NTU3MzA0QTJDMDIwREI4NkFEMkJBODBCMDZGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUJFRUU4OTdGRDg1NTczMDRBMkMwMjBEQjg2QUQyQkE4MEIw NkZCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYyMmY1MTUyLWEyOTUtNDdiNy1h ZGRjLWZiZmVmMzI0N2UzYi8wLzMxMzAzMzJlMzIzMTM3MmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9nZMA0GCSqG SIb3DQEBCwUAA4IBAQCW00A3Uho/1S9nunqDXK3RU/DcApRz3pSiUgc/p/byM/CU VeJO0/6I1Ah386ssEy2YPJqf33smh/2Rk9gd2cCfVtTsCsUm+XwjNdMuePdsD8Zr jdZ/JHYO+fO4aBSNkPLbcpQEwme+VDS99LGXDddZi72v2ZYDGOtlLL5apLzqS5Ah bjK3MEnpldZlqV8ZBA0bnIkVIgBBGeJ1YXmqc2xLyA0GPKAhf1ZElPVnBZ+Xm8HL lrCo3czcnY7Nz4wxVjrNSe4rE9jgZdrT/dNB9B8Yb30pmO+WNV9YQmbNh1W+/euB wjJxsN3eBj1BK54CnIEP59qHqbq/IIBZ83UHp9Ed -----END CERTIFICATE-----Generated at Wed May 13 11:50:29 2026 by rpki-client