$ rpki-client -vvf rpki-rsync.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa File: 3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: 1s8nntsKiBFp7djfBzyRktp4RKhegiMqm5VcmIqavUQ= Subject key identifier: D3:63:FB:78:97:4B:AB:58:E6:75:92:8A:C8:9D:6A:B0:BD:3D:71:33 Certificate issuer: /CN=EA4DA064E912527194F47FF125954E84B6DBA21A Certificate serial: 2A70DD34A52DDD4D55E1558541F9725CEBBF3783 Authority key identifier: EA:4D:A0:64:E9:12:52:71:94:F4:7F:F1:25:95:4E:84:B6:DB:A2:1A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EA4DA064E912527194F47FF125954E84B6DBA21A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa Signing time: Sun 03 May 2026 02:40:15 +0000 ROA not before: Sun 03 May 2026 02:35:15 +0000 ROA not after: Sun 02 May 2027 02:40:15 +0000 asID: 38320 IP address blocks: 103.161.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/EA4DA064E912527194F47FF125954E84B6DBA21A.crl rsync://rpki-rsync.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/EA4DA064E912527194F47FF125954E84B6DBA21A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EA4DA064E912527194F47FF125954E84B6DBA21A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:70:dd:34:a5:2d:dd:4d:55:e1:55:85:41:f9:72:5c:eb:bf:37:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EA4DA064E912527194F47FF125954E84B6DBA21A Validity Not Before: May 3 02:35:15 2026 GMT Not After : May 2 02:40:15 2027 GMT Subject: CN=D363FB78974BAB58E675928AC89D6AB0BD3D7133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c3:1f:a6:16:c8:6c:e9:ef:93:ad:a0:e4:ac: 8a:a4:77:b2:13:8b:b5:aa:72:c9:17:39:a7:65:19: 41:4a:1f:89:d5:9f:a2:28:7b:23:5d:f2:04:c5:ff: a9:41:f9:22:eb:12:54:a0:a2:14:94:55:f1:8a:ed: c9:fb:ac:41:51:49:78:27:45:5d:dc:08:eb:f3:9b: 37:b2:db:a1:12:f1:c5:dc:ca:e9:8d:02:af:53:f1: a0:22:00:79:6f:f1:5b:18:e0:04:7a:16:71:ac:0f: 65:22:95:94:d1:fa:d7:76:44:3d:48:14:4f:cc:ea: b3:28:92:a8:8c:26:c4:8c:c9:24:c8:0d:b5:76:2c: ae:f0:05:39:0a:45:ab:dc:60:d4:91:bc:0a:e9:d6: d2:e1:b2:68:ec:39:be:8f:9c:59:de:34:ee:d2:f7: 5a:a2:bf:20:9c:c9:96:92:56:75:01:c2:ec:3e:51: 81:dc:9a:e7:27:e0:18:8a:07:fe:79:59:5f:a0:d7: 2e:7d:48:4b:08:67:24:db:25:7e:30:ce:0b:8a:fd: 1a:ca:0b:15:50:ac:e0:df:3f:e9:8d:33:d2:29:c6: 6d:a6:1a:d1:58:4b:d1:e8:77:1c:88:f6:51:79:01: 43:4d:ab:18:7f:5d:cd:2d:03:3c:27:98:2b:5a:41: b8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:63:FB:78:97:4B:AB:58:E6:75:92:8A:C8:9D:6A:B0:BD:3D:71:33 X509v3 Authority Key Identifier: keyid:EA:4D:A0:64:E9:12:52:71:94:F4:7F:F1:25:95:4E:84:B6:DB:A2:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/EA4DA064E912527194F47FF125954E84B6DBA21A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EA4DA064E912527194F47FF125954E84B6DBA21A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.202.0/23 Signature Algorithm: sha256WithRSAEncryption 00:a1:a4:7d:0a:01:ef:6c:16:49:13:0c:8e:64:67:cc:2b:8b: 0d:49:aa:fd:7f:bb:1b:b2:f0:a7:5d:1b:2b:2c:cc:cb:0b:0f: b4:5c:73:6c:83:99:22:d0:42:fe:7f:b0:62:01:59:f7:dd:c0: 68:6c:26:c6:9a:6f:0c:ad:4f:69:98:02:21:c6:8e:7c:f5:8f: 18:12:db:f8:e1:24:66:78:ae:50:2f:d7:f5:4b:f2:18:59:00: c2:7b:5c:9b:e6:89:b7:ea:d3:04:4e:e3:9a:c8:6a:22:c0:52: f9:f2:09:b2:b3:fc:1a:5d:45:9c:5e:83:a1:6e:d4:9b:8e:38: 12:48:dd:d5:6f:49:98:05:91:28:1b:30:8b:5a:f5:c6:b9:ac: af:67:5d:4f:5e:57:bb:78:3c:f7:b9:c9:f5:5f:ee:ff:2d:86: c5:8f:f1:17:18:ce:fc:86:b7:5f:d7:c4:97:d1:51:33:15:de: 5f:ea:d1:f2:71:3f:8b:15:cb:8e:c7:46:07:8a:79:72:90:4d: 11:94:06:ee:81:3b:e5:83:77:78:8a:24:0b:c2:82:76:f9:12: 63:e3:b1:bc:bd:30:7d:af:41:58:cc:ea:e3:ff:46:8c:a5:30: 56:5e:00:1e:9e:35:f8:57:97:a9:ff:b3:9b:1d:4d:b3:c8:80: 08:73:a5:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKnDdNKUt3U1V4VWFQflyXOu/N4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUE0REEwNjRFOTEyNTI3MTk0RjQ3RkYxMjU5NTRFODRC NkRCQTIxQTAeFw0yNjA1MDMwMjM1MTVaFw0yNzA1MDIwMjQwMTVaMDMxMTAvBgNV BAMTKEQzNjNGQjc4OTc0QkFCNThFNjc1OTI4QUM4OUQ2QUIwQkQzRDcxMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCywx+mFshs6e+TraDkrIqkd7IT i7WqcskXOadlGUFKH4nVn6IoeyNd8gTF/6lB+SLrElSgohSUVfGK7cn7rEFRSXgn RV3cCOvzmzey26ES8cXcyumNAq9T8aAiAHlv8VsY4AR6FnGsD2UilZTR+td2RD1I FE/M6rMokqiMJsSMySTIDbV2LK7wBTkKRavcYNSRvArp1tLhsmjsOb6PnFneNO7S 91qivyCcyZaSVnUBwuw+UYHcmucn4BiKB/55WV+g1y59SEsIZyTbJX4wzguK/RrK CxVQrODfP+mNM9Ipxm2mGtFYS9HodxyI9lF5AUNNqxh/Xc0tAzwnmCtaQbhdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU02P7eJdLq1jmdZKKyJ1qsL09cTMwHwYDVR0j BBgwFoAU6k2gZOkSUnGU9H/xJZVOhLbbohowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjdmOWY1NjItNzI5Mi00NGYxLThlMmMtNDQwYTA1MzFjMzk2LzAvRUE0REEwNjRF OTEyNTI3MTk0RjQ3RkYxMjU5NTRFODRCNkRCQTIxQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQTREQTA2NEU5MTI1MjcxOTRGNDdGRjEyNTk1NEU4NEI2REJB MjFBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY3ZjlmNTYyLTcyOTItNDRmMS04 ZTJjLTQ0MGEwNTMxYzM5Ni8wLzMxMzAzMzJlMzEzNjMxMmUzMjMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6HKMA0GCSqG SIb3DQEBCwUAA4IBAQAAoaR9CgHvbBZJEwyOZGfMK4sNSar9f7sbsvCnXRsrLMzL Cw+0XHNsg5ki0EL+f7BiAVn33cBobCbGmm8MrU9pmAIhxo589Y8YEtv44SRmeK5Q L9f1S/IYWQDCe1yb5om36tMETuOayGoiwFL58gmys/waXUWcXoOhbtSbjjgSSN3V b0mYBZEoGzCLWvXGuayvZ11PXle7eDz3ucn1X+7/LYbFj/EXGM78hrdf18SX0VEz Fd5f6tHycT+LFcuOx0YHinlykE0RlAbugTvlg3d4iiQLwoJ2+RJj47G8vTB9r0FY zOrj/0aMpTBWXgAenjX4V5ep/7ObHU2zyIAIc6WA -----END CERTIFICATE-----Generated at Wed May 13 12:18:02 2026 by rpki-client