$ rpki-client -vvf rpki-rsync.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa File: 3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa (raw, json) Hash identifier: x+d57o1s3Lbg7LZYcyJzqZr5jsNBMksxksKUmCvZjfA= Subject key identifier: D9:4F:42:C7:34:26:69:EF:96:C3:97:CE:0C:C5:19:E5:18:DB:E4:EA Certificate issuer: /CN=CB3B8A78733728C8B1AFA48EEFC6E1F77738735D Certificate serial: 57C6E7E5660ED9FCA50F6C6E40B9042525C8FF1B Authority key identifier: CB:3B:8A:78:73:37:28:C8:B1:AF:A4:8E:EF:C6:E1:F7:77:38:73:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB3B8A78733728C8B1AFA48EEFC6E1F77738735D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa Signing time: Sun 03 May 2026 02:40:53 +0000 ROA not before: Sun 03 May 2026 02:35:53 +0000 ROA not after: Sun 02 May 2027 02:40:53 +0000 asID: 141952 IP address blocks: 103.166.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/CB3B8A78733728C8B1AFA48EEFC6E1F77738735D.crl rsync://rpki-rsync.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/CB3B8A78733728C8B1AFA48EEFC6E1F77738735D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB3B8A78733728C8B1AFA48EEFC6E1F77738735D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:c6:e7:e5:66:0e:d9:fc:a5:0f:6c:6e:40:b9:04:25:25:c8:ff:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB3B8A78733728C8B1AFA48EEFC6E1F77738735D Validity Not Before: May 3 02:35:53 2026 GMT Not After : May 2 02:40:53 2027 GMT Subject: CN=D94F42C7342669EF96C397CE0CC519E518DBE4EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b4:e5:a3:00:b2:b0:c2:c8:a4:3d:f4:2f:4e: ed:08:50:49:21:96:c2:33:af:b6:a6:5f:6a:48:ad: 2f:68:f1:6d:51:18:6e:a4:5c:7e:b6:ff:de:2f:8b: 30:9d:ed:93:83:ad:eb:38:09:51:ec:99:f2:4d:6d: 5d:86:cd:28:53:c0:0a:f2:4c:8c:28:c7:2f:01:9a: e1:e4:cf:6a:12:05:1b:4e:98:3b:e9:dd:b0:94:58: 27:17:53:09:ad:3e:00:34:b3:b3:67:03:cb:d5:a0: d0:d4:9b:3d:bf:65:53:a8:8e:1a:13:8b:af:c0:a6: 76:fa:c9:ab:59:45:04:e9:34:f6:f4:1f:39:9b:f4: aa:f3:30:0e:4a:2f:d2:f1:ec:36:c8:a0:0e:5b:8e: b2:af:0d:e0:59:b2:88:a5:64:25:36:9a:b7:59:a1: 5f:fa:bd:14:cd:7c:b4:10:97:38:74:11:23:5d:6f: b6:06:0b:e4:b7:92:35:39:71:25:af:88:b3:d4:05: b1:dc:a5:51:65:9c:eb:7a:cb:67:15:b0:a4:e4:a6: 7a:a4:0b:87:f4:32:ec:2a:67:0e:c7:de:b1:14:21: 05:68:bd:3e:e3:72:a9:55:a3:f4:54:06:67:01:8b: 4c:5b:23:fe:27:54:f2:8d:e8:eb:77:11:bf:2b:4c: ac:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:4F:42:C7:34:26:69:EF:96:C3:97:CE:0C:C5:19:E5:18:DB:E4:EA X509v3 Authority Key Identifier: keyid:CB:3B:8A:78:73:37:28:C8:B1:AF:A4:8E:EF:C6:E1:F7:77:38:73:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/CB3B8A78733728C8B1AFA48EEFC6E1F77738735D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB3B8A78733728C8B1AFA48EEFC6E1F77738735D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.161.0/24 Signature Algorithm: sha256WithRSAEncryption a3:de:7f:ec:95:5b:ff:8a:99:86:7d:6c:77:e1:5d:75:14:8e: 7f:dd:c2:06:08:6b:d7:3b:54:a5:c4:6e:5f:68:4b:69:2d:f3: de:28:50:81:dd:c5:11:af:c3:c3:28:45:e6:21:c1:b7:63:c0: 4e:0c:6b:43:3a:96:df:98:a2:42:dd:2c:cd:db:1e:0a:ab:40: 28:8c:62:14:42:75:80:78:53:f7:e8:68:84:63:a0:b8:b3:d8: 09:ad:0e:fe:55:28:37:64:ab:bf:e1:63:c5:ec:38:e6:b6:eb: cb:67:d3:51:79:00:49:58:74:04:a0:66:4d:3f:fe:cd:ea:51: 48:cc:43:03:aa:d7:e5:bc:33:ff:a7:49:57:ee:f8:fb:78:20: fa:b8:bf:e0:32:a7:ab:65:bf:64:00:32:7c:67:a2:43:de:db: d4:d1:20:58:60:2e:b2:4d:b0:47:0c:65:c5:91:bf:44:b9:52: 8f:d2:d4:42:81:71:bd:8f:29:62:ee:10:eb:c4:7c:ff:48:ef: 05:64:d8:12:f5:c6:d9:67:a6:8f:59:08:a0:c8:b0:c0:99:9d: 74:c2:7e:41:b1:25:d3:77:2b:a7:38:2d:d7:58:69:6c:46:b8: 29:37:51:ee:c7:99:bc:df:d1:e1:fe:81:71:9f:a5:e8:88:38: c0:86:b9:4d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV8bn5WYO2fylD2xuQLkEJSXI/xswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0IzQjhBNzg3MzM3MjhDOEIxQUZBNDhFRUZDNkUxRjc3 NzM4NzM1RDAeFw0yNjA1MDMwMjM1NTNaFw0yNzA1MDIwMjQwNTNaMDMxMTAvBgNV BAMTKEQ5NEY0MkM3MzQyNjY5RUY5NkMzOTdDRTBDQzUxOUU1MThEQkU0RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVtOWjALKwwsikPfQvTu0IUEkh lsIzr7amX2pIrS9o8W1RGG6kXH62/94vizCd7ZODres4CVHsmfJNbV2GzShTwAry TIwoxy8BmuHkz2oSBRtOmDvp3bCUWCcXUwmtPgA0s7NnA8vVoNDUmz2/ZVOojhoT i6/Apnb6yatZRQTpNPb0Hzmb9KrzMA5KL9Lx7DbIoA5bjrKvDeBZsoilZCU2mrdZ oV/6vRTNfLQQlzh0ESNdb7YGC+S3kjU5cSWviLPUBbHcpVFlnOt6y2cVsKTkpnqk C4f0MuwqZw7H3rEUIQVovT7jcqlVo/RUBmcBi0xbI/4nVPKN6Ot3Eb8rTKx/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2U9CxzQmae+Ww5fODMUZ5Rjb5OowHwYDVR0j BBgwFoAUyzuKeHM3KMixr6SO78bh93c4c10wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmIyMDQxZjEtNGNlNi00OWI0LTgzYTUtMzE1ZjIwZTRlMmMzLzAvQ0IzQjhBNzg3 MzM3MjhDOEIxQUZBNDhFRUZDNkUxRjc3NzM4NzM1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQjNCOEE3ODczMzcyOEM4QjFBRkE0OEVFRkM2RTFGNzc3Mzg3 MzVELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZiMjA0MWYxLTRjZTYtNDliNC04 M2E1LTMxNWYyMGU0ZTJjMy8wLzMxMzAzMzJlMzEzNjM2MmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpqEwDQYJ KoZIhvcNAQELBQADggEBAKPef+yVW/+KmYZ9bHfhXXUUjn/dwgYIa9c7VKXEbl9o S2kt894oUIHdxRGvw8MoReYhwbdjwE4Ma0M6lt+YokLdLM3bHgqrQCiMYhRCdYB4 U/foaIRjoLiz2AmtDv5VKDdkq7/hY8XsOOa268tn01F5AElYdASgZk0//s3qUUjM QwOq1+W8M/+nSVfu+Pt4IPq4v+Ayp6tlv2QAMnxnokPe29TRIFhgLrJNsEcMZcWR v0S5Uo/S1EKBcb2PKWLuEOvEfP9I7wVk2BL1xtlnpo9ZCKDIsMCZnXTCfkGxJdN3 K6c4LddYaWxGuCk3Ue7Hmbzf0eH+gXGfpeiIOMCGuU0= -----END CERTIFICATE-----Generated at Wed May 13 04:09:14 2026 by rpki-client