$ rpki-client -vvf rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e36372e34392e302f32342d3234203d3e20313431363732.roa File: 3130332e36372e34392e302f32342d3234203d3e20313431363732.roa (raw, json) Hash identifier: Iad4oKdG+cP+QGtzN+0DsTs9ponKGFoBE7JkBGARiyQ= Subject key identifier: 27:3B:0C:A2:35:EC:11:C5:86:B5:E1:43:2F:2A:84:B1:D3:73:70:CC Certificate issuer: /CN=8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D Certificate serial: 7754EC05CC7BB56D252C48AD78A6D171AF9C0B36 Authority key identifier: 8C:D8:6E:34:E1:A2:1B:E8:73:B7:AD:CC:8D:2A:E7:17:1E:A3:D9:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e36372e34392e302f32342d3234203d3e20313431363732.roa Signing time: Sun 03 May 2026 02:40:18 +0000 ROA not before: Sun 03 May 2026 02:35:18 +0000 ROA not after: Sun 02 May 2027 02:40:18 +0000 asID: 141672 IP address blocks: 103.67.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.crl rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:54:ec:05:cc:7b:b5:6d:25:2c:48:ad:78:a6:d1:71:af:9c:0b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D Validity Not Before: May 3 02:35:18 2026 GMT Not After : May 2 02:40:18 2027 GMT Subject: CN=273B0CA235EC11C586B5E1432F2A84B1D37370CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:0b:1f:43:a0:f0:0f:e8:0e:d4:6d:b8:3a: d4:0e:53:b3:8d:e0:b6:e1:ae:f8:83:31:14:29:6c: b3:1f:86:76:f1:da:e6:fd:1c:e4:73:86:ce:e3:47: 40:50:3b:a5:13:9f:65:28:8d:34:bc:29:d3:1a:1f: 02:db:ce:64:a8:36:ab:0e:3f:97:00:f2:55:42:76: ea:fc:fd:0a:29:3d:84:84:a1:14:6b:21:b8:87:2f: 3d:8f:82:2c:79:16:cc:fa:94:76:a2:a6:72:31:e0: e3:13:7c:d0:65:33:c2:0f:6c:fa:00:18:02:23:00: 59:04:25:b4:f1:59:ab:bd:3e:6d:17:11:11:4b:77: d1:ed:6e:1d:02:89:0c:47:ec:b3:be:da:27:89:ba: c9:6d:e4:db:69:17:77:1d:4b:25:fa:78:7d:c8:18: 65:a7:37:45:5c:ff:55:bd:6b:c8:27:99:95:ae:0f: c1:2a:6a:f9:90:59:0c:90:87:ea:ad:72:db:26:00: 14:56:d8:d1:e3:e1:69:c4:43:7e:59:90:27:e6:ba: e5:10:26:2a:3f:61:9c:eb:cd:44:4c:87:b5:58:bb: 4a:c7:d2:83:bb:62:45:4a:0e:b9:c2:53:d6:3f:e8: 43:5c:54:9f:5c:c5:f7:08:e1:b8:7b:21:e4:e8:5b: f1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3B:0C:A2:35:EC:11:C5:86:B5:E1:43:2F:2A:84:B1:D3:73:70:CC X509v3 Authority Key Identifier: keyid:8C:D8:6E:34:E1:A2:1B:E8:73:B7:AD:CC:8D:2A:E7:17:1E:A3:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD86E34E1A21BE873B7ADCC8D2AE7171EA3D96D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e36372e34392e302f32342d3234203d3e20313431363732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.49.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:f6:7e:87:90:63:c3:c7:08:96:66:57:e3:98:9a:0d:72:6b: 12:68:6b:b7:2b:52:6b:34:e9:0b:d7:cc:85:ef:ff:0d:40:30: 64:e1:17:75:d6:dc:a3:49:2c:74:52:70:e7:6f:d1:f5:10:90: ea:ea:0a:e0:1d:04:fd:79:7c:0a:29:79:04:1c:6d:ec:21:70: 00:c6:61:d6:b3:2e:44:41:fe:82:ca:13:4a:30:da:ac:1f:3f: 98:54:2d:00:fc:09:76:38:4e:aa:77:9d:9e:ff:b5:3f:59:31: 8c:cb:04:f1:48:32:4e:f1:a9:4c:4c:bc:f1:b5:8a:89:39:d5: 59:29:37:54:03:2a:00:de:be:e1:6f:f2:55:d2:f2:d8:e2:3b: 73:75:6a:7e:74:2b:7a:25:b2:81:72:b7:26:d6:60:30:4b:9a: a0:20:2f:e6:2d:ef:db:97:65:fc:d4:1c:a0:26:68:44:59:5b: 01:71:f8:74:ac:86:b1:b8:49:c8:f7:93:24:5b:6f:a0:d9:4c: 83:3c:77:7c:77:12:77:7f:a6:5c:c4:3f:87:7d:c9:19:d7:71: c0:d4:3a:ec:97:63:1c:bb:2b:51:94:b7:bb:71:36:52:b0:c8: 1d:d4:d6:04:f4:54:8e:a5:60:d4:ba:a5:a3:e4:ab:23:d6:c9: 6d:e0:48:6f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd1TsBcx7tW0lLEiteKbRca+cCzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENEODZFMzRFMUEyMUJFODczQjdBRENDOEQyQUU3MTcx RUEzRDk2RDAeFw0yNjA1MDMwMjM1MThaFw0yNzA1MDIwMjQwMThaMDMxMTAvBgNV BAMTKDI3M0IwQ0EyMzVFQzExQzU4NkI1RTE0MzJGMkE4NEIxRDM3MzcwQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTVQsfQ6DwD+gO1G24OtQOU7ON 4LbhrviDMRQpbLMfhnbx2ub9HORzhs7jR0BQO6UTn2UojTS8KdMaHwLbzmSoNqsO P5cA8lVCdur8/QopPYSEoRRrIbiHLz2Pgix5Fsz6lHaipnIx4OMTfNBlM8IPbPoA GAIjAFkEJbTxWau9Pm0XERFLd9Htbh0CiQxH7LO+2ieJuslt5NtpF3cdSyX6eH3I GGWnN0Vc/1W9a8gnmZWuD8EqavmQWQyQh+qtctsmABRW2NHj4WnEQ35ZkCfmuuUQ Jio/YZzrzURMh7VYu0rH0oO7YkVKDrnCU9Y/6ENcVJ9cxfcI4bh7IeToW/EXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJzsMojXsEcWGteFDLyqEsdNzcMwwHwYDVR0j BBgwFoAUjNhuNOGiG+hzt63MjSrnFx6j2W0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Njg0NjY4ODktYzFlZi00NDEwLWFkOWMtMzA2YzA5ZTFiZTA2LzAvOENEODZFMzRF MUEyMUJFODczQjdBRENDOEQyQUU3MTcxRUEzRDk2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84Q0Q4NkUzNEUxQTIxQkU4NzNCN0FEQ0M4RDJBRTcxNzFFQTNE OTZELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY4NDY2ODg5LWMxZWYtNDQxMC1h ZDljLTMwNmMwOWUxYmUwNi8wLzMxMzAzMzJlMzYzNzJlMzQzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdDMTANBgkqhkiG 9w0BAQsFAAOCAQEAi/Z+h5Bjw8cIlmZX45iaDXJrEmhrtytSazTpC9fMhe//DUAw ZOEXddbco0ksdFJw52/R9RCQ6uoK4B0E/Xl8Cil5BBxt7CFwAMZh1rMuREH+gsoT SjDarB8/mFQtAPwJdjhOqnednv+1P1kxjMsE8UgyTvGpTEy88bWKiTnVWSk3VAMq AN6+4W/yVdLy2OI7c3VqfnQreiWygXK3JtZgMEuaoCAv5i3v25dl/NQcoCZoRFlb AXH4dKyGsbhJyPeTJFtvoNlMgzx3fHcSd3+mXMQ/h33JGddxwNQ67JdjHLsrUZS3 u3E2UrDIHdTWBPRUjqVg1Lqlo+SrI9bJbeBIbw== -----END CERTIFICATE-----Generated at Wed May 13 12:46:30 2026 by rpki-client