$ rpki-client -vvf rpki-rsync.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32342d3234203d3e20313431393835.roa File: 3130332e3136372e3136382e302f32342d3234203d3e20313431393835.roa (raw, json) Hash identifier: xKZvI7DoYttGR54Om2vm9eFapdM+/V55V6OhpEXUV68= Subject key identifier: D9:68:CB:8C:5B:5E:A9:55:D2:92:B8:F6:BB:CB:CB:7D:FC:24:32:A7 Certificate issuer: /CN=F4B592783A4D1278733E583FF474D505E715EAEC Certificate serial: 2338456E3DB9A0B3B1D8A726EC133FF5C67493BF Authority key identifier: F4:B5:92:78:3A:4D:12:78:73:3E:58:3F:F4:74:D5:05:E7:15:EA:EC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F4B592783A4D1278733E583FF474D505E715EAEC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32342d3234203d3e20313431393835.roa Signing time: Sun 03 May 2026 02:45:40 +0000 ROA not before: Sun 03 May 2026 02:40:40 +0000 ROA not after: Sun 02 May 2027 02:45:40 +0000 asID: 141985 IP address blocks: 103.167.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/F4B592783A4D1278733E583FF474D505E715EAEC.crl rsync://rpki-rsync.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/F4B592783A4D1278733E583FF474D505E715EAEC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F4B592783A4D1278733E583FF474D505E715EAEC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:38:45:6e:3d:b9:a0:b3:b1:d8:a7:26:ec:13:3f:f5:c6:74:93:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F4B592783A4D1278733E583FF474D505E715EAEC Validity Not Before: May 3 02:40:40 2026 GMT Not After : May 2 02:45:40 2027 GMT Subject: CN=D968CB8C5B5EA955D292B8F6BBCBCB7DFC2432A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:69:4b:a1:f8:6c:45:91:19:3b:83:d3:a9:e4: 85:10:d3:d6:9d:90:7f:eb:3d:ee:9f:a5:c5:d9:e5: 59:24:21:19:d8:ae:15:be:bd:fc:94:77:bc:9f:8f: e3:b0:ff:bc:e5:2f:b6:08:40:7b:90:0c:27:50:9f: e8:14:e0:86:90:d9:dd:51:77:bc:7d:ca:12:95:9b: 80:5f:9f:31:e3:ac:c7:f9:53:a6:b6:14:79:ce:ca: b3:a5:70:74:b8:30:a9:64:ef:e1:46:5b:df:6e:38: ff:df:ae:be:6b:be:b0:02:37:1f:19:24:e1:ad:62: 2a:dd:e5:af:67:47:b5:46:f2:5d:14:0e:7b:6d:b9: 90:60:8e:e8:54:1c:65:66:2c:36:ce:68:e4:97:1f: ad:79:37:a3:b5:83:24:d2:cb:3a:88:04:cd:c9:70: db:0a:c2:25:58:98:eb:bf:9c:0c:ff:c0:45:66:d3: b9:3b:b6:6c:90:05:bd:b9:75:9f:97:00:e9:97:6b: 91:88:e1:28:b5:64:47:4d:ae:5a:ec:b8:ce:fb:5d: 22:f3:32:27:27:fb:d1:76:a8:81:42:7b:dd:a4:63: 53:b0:d9:cc:66:a9:8c:c8:ea:b9:36:f8:5c:c2:d4: fe:7f:76:e2:3a:4f:d2:c9:59:f7:92:1f:02:34:b5: 3e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:68:CB:8C:5B:5E:A9:55:D2:92:B8:F6:BB:CB:CB:7D:FC:24:32:A7 X509v3 Authority Key Identifier: keyid:F4:B5:92:78:3A:4D:12:78:73:3E:58:3F:F4:74:D5:05:E7:15:EA:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/F4B592783A4D1278733E583FF474D505E715EAEC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F4B592783A4D1278733E583FF474D505E715EAEC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32342d3234203d3e20313431393835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.168.0/24 Signature Algorithm: sha256WithRSAEncryption 88:38:0d:65:99:91:27:fd:1c:7e:14:b3:0e:c9:b3:56:af:dc: 4f:84:e6:86:8a:ef:54:e7:fb:16:ce:f9:46:4b:c4:c5:c0:92: 1f:35:f7:04:41:d4:49:3a:47:a9:61:47:a9:85:a8:53:14:60: ac:f6:1a:86:de:a2:c9:14:a1:6d:16:6d:bb:5c:28:40:a0:58: 72:cc:65:e7:6b:1c:b1:8d:b7:e4:a4:42:5d:0c:2e:c4:9e:de: 18:19:54:4d:45:e6:17:f5:c8:88:0e:e7:37:83:26:45:a5:95: 1c:24:ec:f3:50:a0:94:88:dd:21:97:48:0e:00:4d:96:c6:35: 8f:5a:91:b8:79:1b:05:fb:e4:e1:24:ee:eb:f1:ad:f4:26:32: 91:bb:d9:0d:ca:2c:d3:5b:f0:e6:22:ab:15:a1:b2:2f:11:92: 1c:c9:f5:aa:e9:d4:dc:1d:12:c0:02:89:27:5a:b6:43:ec:b9: 4c:ea:2b:54:39:d5:5a:65:42:bb:f8:19:14:59:ee:1a:b0:4d: ac:c5:67:94:5f:2f:10:36:98:49:7f:44:6b:ba:a7:69:78:9b: 60:c6:0e:c7:15:8b:08:42:c0:16:78:09:dd:89:d1:83:1f:f2: 0a:63:8c:45:26:e1:ce:db:c3:7e:44:95:f4:cb:0c:69:1e:cd: bd:a1:f4:89 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIzhFbj25oLOx2Kcm7BM/9cZ0k78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjRCNTkyNzgzQTREMTI3ODczM0U1ODNGRjQ3NEQ1MDVF NzE1RUFFQzAeFw0yNjA1MDMwMjQwNDBaFw0yNzA1MDIwMjQ1NDBaMDMxMTAvBgNV BAMTKEQ5NjhDQjhDNUI1RUE5NTVEMjkyQjhGNkJCQ0JDQjdERkMyNDMyQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIaUuh+GxFkRk7g9Op5IUQ09ad kH/rPe6fpcXZ5VkkIRnYrhW+vfyUd7yfj+Ow/7zlL7YIQHuQDCdQn+gU4IaQ2d1R d7x9yhKVm4BfnzHjrMf5U6a2FHnOyrOlcHS4MKlk7+FGW99uOP/frr5rvrACNx8Z JOGtYird5a9nR7VG8l0UDnttuZBgjuhUHGVmLDbOaOSXH615N6O1gyTSyzqIBM3J cNsKwiVYmOu/nAz/wEVm07k7tmyQBb25dZ+XAOmXa5GI4Si1ZEdNrlrsuM77XSLz Micn+9F2qIFCe92kY1Ow2cxmqYzI6rk2+FzC1P5/duI6T9LJWfeSHwI0tT5vAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2WjLjFteqVXSkrj2u8vLffwkMqcwHwYDVR0j BBgwFoAU9LWSeDpNEnhzPlg/9HTVBecV6uwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2Q0YjYxMmYtZjkyNC00ZWMyLWIxZjEtYTEzMDVkMjNkNTNhLzAvRjRCNTkyNzgz QTREMTI3ODczM0U1ODNGRjQ3NEQ1MDVFNzE1RUFFQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GNEI1OTI3ODNBNEQxMjc4NzMzRTU4M0ZGNDc0RDUwNUU3MTVF QUVDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdkNGI2MTJmLWY5MjQtNGVjMi1i MWYxLWExMzA1ZDIzZDUzYS8wLzMxMzAzMzJlMzEzNjM3MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6gwDQYJ KoZIhvcNAQELBQADggEBAIg4DWWZkSf9HH4Usw7Js1av3E+E5oaK71Tn+xbO+UZL xMXAkh819wRB1Ek6R6lhR6mFqFMUYKz2GobeoskUoW0WbbtcKECgWHLMZedrHLGN t+SkQl0MLsSe3hgZVE1F5hf1yIgO5zeDJkWllRwk7PNQoJSI3SGXSA4ATZbGNY9a kbh5GwX75OEk7uvxrfQmMpG72Q3KLNNb8OYiqxWhsi8RkhzJ9arp1NwdEsACiSda tkPsuUzqK1Q51VplQrv4GRRZ7hqwTazFZ5RfLxA2mEl/RGu6p2l4m2DGDscViwhC wBZ4Cd2J0YMf8gpjjEUm4c7bw35ElfTLDGkezb2h9Ik= -----END CERTIFICATE-----Generated at Wed May 13 16:14:48 2026 by rpki-client