$ rpki-client -vvf rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa File: 3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: MlpXJYuG8TKs4UXbWN+4r8Aq3XSuZvsK0qVMIYngvjU= Subject key identifier: 22:98:E3:0A:03:50:87:12:FC:CD:F0:81:B5:D3:F4:CE:F6:30:24:9A Certificate issuer: /CN=99F0E6DE02C602D1E485455474F4B21207D2D7F8 Certificate serial: 5B1D6633983CD4E7A60119D8487C8D57CE5213F4 Authority key identifier: 99:F0:E6:DE:02:C6:02:D1:E4:85:45:54:74:F4:B2:12:07:D2:D7:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa Signing time: Sun 03 May 2026 02:42:30 +0000 ROA not before: Sun 03 May 2026 02:37:30 +0000 ROA not after: Sun 02 May 2027 02:42:30 +0000 asID: 38750 IP address blocks: 103.213.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.crl rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1d:66:33:98:3c:d4:e7:a6:01:19:d8:48:7c:8d:57:ce:52:13:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99F0E6DE02C602D1E485455474F4B21207D2D7F8 Validity Not Before: May 3 02:37:30 2026 GMT Not After : May 2 02:42:30 2027 GMT Subject: CN=2298E30A03508712FCCDF081B5D3F4CEF630249A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:67:03:28:54:45:8a:4e:8e:dd:66:55:70:06: a1:c9:a7:c8:fc:26:15:16:07:00:fa:47:24:fb:d4: f1:4a:90:b9:e4:64:8a:3b:b8:69:52:6c:60:2f:a2: 0a:2a:34:cf:85:98:77:1d:31:2b:fe:46:d6:95:2a: 43:c5:e4:67:a1:06:11:ec:42:a6:03:22:a1:b9:0b: 24:ca:85:0e:44:00:bd:99:db:83:0d:ff:f5:18:2b: c9:a7:78:50:74:13:47:ff:df:dd:57:71:c7:7d:b9: 7f:18:a4:54:5a:73:de:35:20:73:08:f7:83:80:a3: 29:40:75:20:86:bb:94:eb:2c:e3:87:60:8a:1d:4b: db:42:0f:86:66:44:53:cd:4a:db:32:10:07:5a:56: 7c:bd:05:a3:fd:8a:71:f5:80:22:03:31:fe:1a:dd: b4:42:44:ed:20:9f:7e:50:35:ab:b9:5f:70:5d:cd: 8a:16:27:fe:ec:4e:77:d5:50:8f:b7:8b:a8:37:97: a0:8b:7a:fa:80:cf:0f:33:ef:20:22:71:a7:40:91: df:83:21:16:84:0e:18:d3:ce:d9:6b:be:e8:cf:56: 38:27:b1:a7:f9:22:02:1a:cd:88:b8:9e:57:34:77: 5e:56:b5:97:45:db:1b:35:54:0a:c0:09:76:5a:da: 1f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:98:E3:0A:03:50:87:12:FC:CD:F0:81:B5:D3:F4:CE:F6:30:24:9A X509v3 Authority Key Identifier: keyid:99:F0:E6:DE:02:C6:02:D1:E4:85:45:54:74:F4:B2:12:07:D2:D7:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.117.0/24 Signature Algorithm: sha256WithRSAEncryption ae:89:88:5e:3d:1e:e4:2b:11:7e:4f:74:ea:32:d5:a8:9a:2f: 37:a5:4b:5b:f0:70:63:ab:34:71:56:6c:5d:13:33:de:7d:22: d5:b2:4d:72:26:a3:f7:0e:df:56:42:a2:aa:fa:09:af:7c:c4: 6a:cb:f8:a9:4f:44:6f:eb:10:d0:21:e6:99:1e:65:08:f5:bf: e9:b5:4a:16:c1:24:0b:e9:d8:6a:5a:d9:61:7a:14:df:56:75: 73:52:60:51:27:ae:0f:c0:56:de:19:0f:59:47:77:9d:b8:8b: 50:ba:38:e1:be:07:63:00:43:33:57:4b:15:70:d0:18:dd:30: 72:df:af:64:68:37:62:bc:f6:a2:99:66:43:2f:2c:0a:40:71: 69:75:18:4f:97:1c:9a:05:08:7b:27:b9:ff:e7:c2:4a:b6:4b: f7:50:1f:fd:e6:dc:49:40:c9:4c:ff:8f:c8:35:cf:e2:ca:b6: b1:ed:66:9c:c6:88:37:a5:59:7f:52:72:bb:37:e5:04:8e:45: 06:43:8a:1f:da:fa:68:33:20:32:3a:04:3a:c4:6b:e9:5b:f5: ca:97:c4:94:3d:ed:38:e1:56:0c:2f:6f:60:32:4a:a4:52:e8: 31:55:ce:25:9f:ca:68:bd:af:e8:5c:32:9c:55:fe:92:8c:7a: 76:fe:82:49 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWx1mM5g81OemARnYSHyNV85SE/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlGMEU2REUwMkM2MDJEMUU0ODU0NTU0NzRGNEIyMTIw N0QyRDdGODAeFw0yNjA1MDMwMjM3MzBaFw0yNzA1MDIwMjQyMzBaMDMxMTAvBgNV BAMTKDIyOThFMzBBMDM1MDg3MTJGQ0NERjA4MUI1RDNGNENFRjYzMDI0OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtZwMoVEWKTo7dZlVwBqHJp8j8 JhUWBwD6RyT71PFKkLnkZIo7uGlSbGAvogoqNM+FmHcdMSv+RtaVKkPF5GehBhHs QqYDIqG5CyTKhQ5EAL2Z24MN//UYK8mneFB0E0f/391Xccd9uX8YpFRac941IHMI 94OAoylAdSCGu5TrLOOHYIodS9tCD4ZmRFPNStsyEAdaVny9BaP9inH1gCIDMf4a 3bRCRO0gn35QNau5X3BdzYoWJ/7sTnfVUI+3i6g3l6CLevqAzw8z7yAicadAkd+D IRaEDhjTztlrvujPVjgnsaf5IgIazYi4nlc0d15WtZdF2xs1VArACXZa2h/hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIpjjCgNQhxL8zfCBtdP0zvYwJJowHwYDVR0j BBgwFoAUmfDm3gLGAtHkhUVUdPSyEgfS1/gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzBmNWNmZGItNzk4Ny00MzUxLWJjMmUtNjZjMjRmNDlmNDQwLzAvOTlGMEU2REUw MkM2MDJEMUU0ODU0NTU0NzRGNEIyMTIwN0QyRDdGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUYwRTZERTAyQzYwMkQxRTQ4NTQ1NTQ3NEY0QjIxMjA3RDJE N0Y4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMxMzAzMzJlMzIzMTMzMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9V1MA0GCSqG SIb3DQEBCwUAA4IBAQCuiYhePR7kKxF+T3TqMtWomi83pUtb8HBjqzRxVmxdEzPe fSLVsk1yJqP3Dt9WQqKq+gmvfMRqy/ipT0Rv6xDQIeaZHmUI9b/ptUoWwSQL6dhq WtlhehTfVnVzUmBRJ64PwFbeGQ9ZR3eduItQujjhvgdjAEMzV0sVcNAY3TBy369k aDdivPaimWZDLywKQHFpdRhPlxyaBQh7J7n/58JKtkv3UB/95txJQMlM/4/INc/i yrax7Wacxog3pVl/UnK7N+UEjkUGQ4of2vpoMyAyOgQ6xGvpW/XKl8SUPe044VYM L29gMkqkUugxVc4ln8pova/oXDKcVf6SjHp2/oJJ -----END CERTIFICATE-----Generated at Wed May 13 02:59:02 2026 by rpki-client