$ rpki-client -vvf rpki-rsync.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa File: 3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa (raw, json) Hash identifier: fFFO/k+PgY37k7qx7f15yGCXrtYu8NxYkgLNAXulmF8= Subject key identifier: 29:A8:F7:C3:4B:FF:45:EB:13:18:3E:32:6D:49:A0:3B:B3:7F:D7:42 Certificate issuer: /CN=F1D3A95017C5154231E294B063B353766A127193 Certificate serial: 7DEEE04FAF6690FCD9439D6B4E86216252E1928F Authority key identifier: F1:D3:A9:50:17:C5:15:42:31:E2:94:B0:63:B3:53:76:6A:12:71:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F1D3A95017C5154231E294B063B353766A127193.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa Signing time: Sun 03 May 2026 02:42:23 +0000 ROA not before: Sun 03 May 2026 02:37:23 +0000 ROA not after: Sun 02 May 2027 02:42:23 +0000 asID: 136886 IP address blocks: 103.106.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/F1D3A95017C5154231E294B063B353766A127193.crl rsync://rpki-rsync.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/F1D3A95017C5154231E294B063B353766A127193.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F1D3A95017C5154231E294B063B353766A127193.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ee:e0:4f:af:66:90:fc:d9:43:9d:6b:4e:86:21:62:52:e1:92:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1D3A95017C5154231E294B063B353766A127193 Validity Not Before: May 3 02:37:23 2026 GMT Not After : May 2 02:42:23 2027 GMT Subject: CN=29A8F7C34BFF45EB13183E326D49A03BB37FD742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4f:e5:64:94:15:e6:f0:16:90:ef:a1:73:57: b2:00:40:20:21:6f:6c:54:9e:48:af:07:8f:79:e5: 05:ff:9f:79:96:f6:20:b9:aa:b0:c2:78:5a:21:45: e6:1a:14:f4:d8:a1:78:07:14:aa:4c:2d:07:f5:5f: 68:d0:52:3b:c6:58:1e:31:3c:4b:16:7f:d6:d4:68: ff:da:56:a6:86:d0:00:17:2b:ef:a1:62:d4:f8:44: f1:16:cb:08:a4:7c:65:82:f9:35:36:76:46:73:26: 60:2b:f4:79:95:31:73:cd:1b:43:87:22:fd:0f:e5: 8c:5f:f1:5f:d2:91:7c:7f:4d:89:51:9d:12:f1:40: 6c:65:f2:33:dd:4f:c2:49:7c:f7:65:1c:1d:0a:f0: 58:ae:ba:05:59:f7:3f:b8:cd:e4:75:fc:45:25:10: dc:09:94:c0:fb:a2:cd:3b:6d:1f:cc:d9:43:45:0b: a1:61:c8:39:d0:78:ea:fc:2b:c5:e1:5d:70:e6:79: f9:f8:28:18:ad:a1:2b:57:c2:bf:fe:0f:5d:b6:77: 3d:48:bc:42:c0:24:08:0e:08:99:0b:ce:12:40:11: 55:60:db:e5:b1:62:d0:f6:4a:60:a2:df:d5:b6:20: 15:54:f1:4e:79:82:f7:c5:09:44:64:3a:e3:1c:f7: 74:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A8:F7:C3:4B:FF:45:EB:13:18:3E:32:6D:49:A0:3B:B3:7F:D7:42 X509v3 Authority Key Identifier: keyid:F1:D3:A9:50:17:C5:15:42:31:E2:94:B0:63:B3:53:76:6A:12:71:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/F1D3A95017C5154231E294B063B353766A127193.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F1D3A95017C5154231E294B063B353766A127193.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.116.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:65:c3:a0:32:ec:68:6c:26:58:a0:91:8b:50:c0:21:59:e4: 47:cd:35:ce:52:c7:b2:6b:50:27:23:cd:a3:67:d5:f3:94:84: bf:86:52:8b:fb:14:f0:3e:42:c1:89:b5:e2:56:11:41:8a:32: 36:bb:fe:6f:0f:22:eb:af:21:96:c2:fe:a6:e4:0d:e4:c5:99: 09:48:1d:fa:19:cb:ea:8e:fe:6c:c5:fb:bb:e7:4b:69:6a:6e: 3c:38:3c:8b:a4:75:ed:24:95:af:b5:57:a3:f5:30:79:e7:d4: 28:06:3d:27:0e:fa:82:87:37:ce:1b:c9:9e:f2:7d:15:38:72: cf:85:07:bb:a7:e9:bc:bf:0c:a6:65:ca:ad:78:36:7c:96:fb: 38:5b:54:37:ce:f7:0b:2e:fe:c5:3d:12:c6:60:9b:be:62:5c: c3:5e:5a:03:da:77:50:f1:5a:33:6c:3e:63:d8:a8:8e:4e:71: c8:df:60:46:5f:f0:84:9c:7c:71:e0:92:0f:0a:46:e7:05:26: 4f:73:d8:fa:ad:9d:64:5d:4d:0c:6e:bb:57:fb:fe:da:bf:38: f0:89:e6:ff:7e:e3:7d:b0:1a:bc:b6:2f:73:f4:38:11:b3:b7: 30:ba:24:66:d1:85:1f:70:66:0b:e0:d6:e7:d4:39:d5:23:51: 29:49:a9:38 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfe7gT69mkPzZQ51rToYhYlLhko8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFEM0E5NTAxN0M1MTU0MjMxRTI5NEIwNjNCMzUzNzY2 QTEyNzE5MzAeFw0yNjA1MDMwMjM3MjNaFw0yNzA1MDIwMjQyMjNaMDMxMTAvBgNV BAMTKDI5QThGN0MzNEJGRjQ1RUIxMzE4M0UzMjZENDlBMDNCQjM3RkQ3NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXT+VklBXm8BaQ76FzV7IAQCAh b2xUnkivB4955QX/n3mW9iC5qrDCeFohReYaFPTYoXgHFKpMLQf1X2jQUjvGWB4x PEsWf9bUaP/aVqaG0AAXK++hYtT4RPEWywikfGWC+TU2dkZzJmAr9HmVMXPNG0OH Iv0P5Yxf8V/SkXx/TYlRnRLxQGxl8jPdT8JJfPdlHB0K8FiuugVZ9z+4zeR1/EUl ENwJlMD7os07bR/M2UNFC6FhyDnQeOr8K8XhXXDmefn4KBitoStXwr/+D122dz1I vELAJAgOCJkLzhJAEVVg2+WxYtD2SmCi39W2IBVU8U55gvfFCURkOuMc93QdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKaj3w0v/ResTGD4ybUmgO7N/10IwHwYDVR0j BBgwFoAU8dOpUBfFFUIx4pSwY7NTdmoScZMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzAwYWVkMWQtOTRjOS00OWE2LWE2MDktODgyZTAzY2QwN2JhLzAvRjFEM0E5NTAx N0M1MTU0MjMxRTI5NEIwNjNCMzUzNzY2QTEyNzE5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMUQzQTk1MDE3QzUxNTQyMzFFMjk0QjA2M0IzNTM3NjZBMTI3 MTkzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcwMGFlZDFkLTk0YzktNDlhNi1h NjA5LTg4MmUwM2NkMDdiYS8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnanQwDQYJ KoZIhvcNAQELBQADggEBABtlw6Ay7GhsJligkYtQwCFZ5EfNNc5Sx7JrUCcjzaNn 1fOUhL+GUov7FPA+QsGJteJWEUGKMja7/m8PIuuvIZbC/qbkDeTFmQlIHfoZy+qO /mzF+7vnS2lqbjw4PIukde0kla+1V6P1MHnn1CgGPScO+oKHN84byZ7yfRU4cs+F B7un6by/DKZlyq14NnyW+zhbVDfO9wsu/sU9EsZgm75iXMNeWgPad1DxWjNsPmPY qI5OccjfYEZf8IScfHHgkg8KRucFJk9z2PqtnWRdTQxuu1f7/tq/OPCJ5v9+432w Gry2L3P0OBGztzC6JGbRhR9wZgvg1ufUOdUjUSlJqTg= -----END CERTIFICATE-----Generated at Wed May 13 07:57:23 2026 by rpki-client