$ rpki-client -vvf rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa File: 3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa (raw, json) Hash identifier: xeD49NnJaETxYZ89zZqsZvQW0lQqtHHDYp/1/JjzAG8= Subject key identifier: 01:B6:88:6D:15:73:DA:F5:F8:1F:FE:1F:B4:FE:BA:BB:01:26:1E:EC Certificate issuer: /CN=8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D Certificate serial: 1BDD2FBE4C3935A896ACE3BC8092F4FB852FA18E Authority key identifier: 8C:D8:6E:34:E1:A2:1B:E8:73:B7:AD:CC:8D:2A:E7:17:1E:A3:D9:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa Signing time: Sun 03 May 2026 02:40:18 +0000 ROA not before: Sun 03 May 2026 02:35:18 +0000 ROA not after: Sun 02 May 2027 02:40:18 +0000 asID: 141672 IP address blocks: 103.162.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.crl rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:dd:2f:be:4c:39:35:a8:96:ac:e3:bc:80:92:f4:fb:85:2f:a1:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D Validity Not Before: May 3 02:35:18 2026 GMT Not After : May 2 02:40:18 2027 GMT Subject: CN=01B6886D1573DAF5F81FFE1FB4FEBABB01261EEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:54:b9:53:1d:d5:00:79:d3:2d:ea:d3:be:1e: 9f:0d:98:2d:9c:38:27:db:30:62:55:0a:79:80:22: 33:96:29:85:44:4e:95:53:67:da:12:ba:c5:60:78: 77:88:e7:cd:14:0d:c7:b5:8b:31:26:4c:32:0c:15: 51:70:15:7b:ed:cd:37:2b:9d:e7:af:8f:69:ed:b9: e6:c5:f6:20:41:5d:28:09:ea:5c:ab:c4:d2:d6:0a: 61:5d:5b:fb:3f:00:e3:46:b8:65:67:c3:ad:5f:80: 29:db:d5:01:69:8c:d4:d0:ea:85:ec:6f:b8:39:45: be:70:ca:fd:97:30:bc:7c:34:27:70:07:9a:69:25: db:2b:30:db:0e:ac:e0:4a:32:a3:ae:56:7f:bc:83: 6e:62:dd:54:3c:55:1a:ba:3e:b0:24:67:96:2e:5f: 25:d8:bf:77:b6:04:ce:44:9b:4c:64:51:e8:4f:f6: 86:01:34:f6:d0:33:a5:d6:9a:77:08:95:c0:1f:57: 7c:91:5c:d6:e1:d1:2e:ad:7f:8c:c6:bb:21:3a:ca: b8:48:ba:2d:49:8e:a3:8e:2d:90:42:77:5b:f6:1d: a5:61:a1:80:bc:2f:7b:08:f7:6c:67:28:1b:dc:7f: ab:7c:87:4a:b5:84:fa:9b:35:51:ba:60:4c:16:33: db:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B6:88:6D:15:73:DA:F5:F8:1F:FE:1F:B4:FE:BA:BB:01:26:1E:EC X509v3 Authority Key Identifier: keyid:8C:D8:6E:34:E1:A2:1B:E8:73:B7:AD:CC:8D:2A:E7:17:1E:A3:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.252.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:fa:f4:a3:bd:3c:16:67:be:be:5f:b0:cb:fa:48:6e:8f:83: b8:f1:89:bd:e8:22:e5:a9:f0:b7:06:cf:dc:16:cd:18:ad:cf: 6c:c9:a4:c3:c2:54:0d:eb:13:5f:57:d1:d0:de:a6:ad:fd:7e: 1a:83:f7:e4:1a:44:39:2c:0e:1c:86:29:4e:c7:23:01:f6:10: cb:1c:97:49:a9:d5:9e:6a:68:f0:fc:56:33:fc:56:8a:5f:73: 6b:38:77:56:39:4d:af:92:6c:2a:3e:a8:a4:07:94:4e:8a:f6: 23:82:5d:eb:60:72:d4:0b:b9:fe:4d:b9:a3:31:26:80:8e:75: d0:10:6f:32:a1:41:94:4b:49:21:8d:74:61:e3:b2:ae:94:d8: 27:b3:91:70:9b:ec:99:71:df:ff:a5:84:9c:3a:78:74:21:6c: f2:0d:04:61:0c:69:04:c8:d7:c3:23:b7:fd:da:82:02:d3:f9: 66:e7:f1:fc:e5:6b:f3:e0:22:1e:a2:05:22:06:d6:8d:e0:f6: 3f:c6:cf:ab:79:54:08:48:ec:40:db:67:3a:3f:1c:09:02:43: 81:d2:ac:15:17:ad:47:49:a5:25:44:22:c7:3c:75:27:86:4a: a7:ea:f0:61:21:75:37:7f:54:fd:53:c8:ad:d9:e0:7d:ad:78: 5e:68:63:3b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG90vvkw5NaiWrOO8gJL0+4UvoY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENEODZFMzRFMUEyMUJFODczQjdBRENDOEQyQUU3MTcx RUEzRDk2RDAeFw0yNjA1MDMwMjM1MThaFw0yNzA1MDIwMjQwMThaMDMxMTAvBgNV BAMTKDAxQjY4ODZEMTU3M0RBRjVGODFGRkUxRkI0RkVCQUJCMDEyNjFFRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpVLlTHdUAedMt6tO+Hp8NmC2c OCfbMGJVCnmAIjOWKYVETpVTZ9oSusVgeHeI580UDce1izEmTDIMFVFwFXvtzTcr neevj2ntuebF9iBBXSgJ6lyrxNLWCmFdW/s/AONGuGVnw61fgCnb1QFpjNTQ6oXs b7g5Rb5wyv2XMLx8NCdwB5ppJdsrMNsOrOBKMqOuVn+8g25i3VQ8VRq6PrAkZ5Yu XyXYv3e2BM5Em0xkUehP9oYBNPbQM6XWmncIlcAfV3yRXNbh0S6tf4zGuyE6yrhI ui1JjqOOLZBCd1v2HaVhoYC8L3sI92xnKBvcf6t8h0q1hPqbNVG6YEwWM9tVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAbaIbRVz2vX4H/4ftP66uwEmHuwwHwYDVR0j BBgwFoAUjNhuNOGiG+hzt63MjSrnFx6j2W0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Njg0NjY4ODktYzFlZi00NDEwLWFkOWMtMzA2YzA5ZTFiZTA2LzAvOENEODZFMzRF MUEyMUJFODczQjdBRENDOEQyQUU3MTcxRUEzRDk2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84Q0Q4NkUzNEUxQTIxQkU4NzNCN0FEQ0M4RDJBRTcxNzFFQTNE OTZELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY4NDY2ODg5LWMxZWYtNDQxMC1h ZDljLTMwNmMwOWUxYmUwNi8wLzMxMzAzMzJlMzEzNjMyMmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnovwwDQYJ KoZIhvcNAQELBQADggEBAJr69KO9PBZnvr5fsMv6SG6Pg7jxib3oIuWp8LcGz9wW zRitz2zJpMPCVA3rE19X0dDepq39fhqD9+QaRDksDhyGKU7HIwH2EMscl0mp1Z5q aPD8VjP8Vopfc2s4d1Y5Ta+SbCo+qKQHlE6K9iOCXetgctQLuf5NuaMxJoCOddAQ bzKhQZRLSSGNdGHjsq6U2CezkXCb7Jlx3/+lhJw6eHQhbPINBGEMaQTI18Mjt/3a ggLT+Wbn8fzla/PgIh6iBSIG1o3g9j/Gz6t5VAhI7EDbZzo/HAkCQ4HSrBUXrUdJ pSVEIsc8dSeGSqfq8GEhdTd/VP1TyK3Z4H2teF5oYzs= -----END CERTIFICATE-----Generated at Wed May 13 14:37:21 2026 by rpki-client