$ rpki-client -vvf rpki-rsync.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa File: 3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa (raw, json) Hash identifier: OJ2yEQilrDM/Xg2aTHzxO6aZkpu5qjxVD1asbChN4Os= Subject key identifier: 68:35:92:9F:E0:07:7A:1A:DA:94:82:69:FD:8F:30:A9:12:6F:07:D4 Certificate issuer: /CN=ED8D01C73F80C3D77C261531F032760A254A0C33 Certificate serial: 3D0C58349CF327C406DC00D09FBBC4881E2B4592 Authority key identifier: ED:8D:01:C7:3F:80:C3:D7:7C:26:15:31:F0:32:76:0A:25:4A:0C:33 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED8D01C73F80C3D77C261531F032760A254A0C33.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa Signing time: Sun 03 May 2026 02:46:07 +0000 ROA not before: Sun 03 May 2026 02:41:07 +0000 ROA not after: Sun 02 May 2027 02:46:07 +0000 asID: 141613 IP address blocks: 103.161.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/ED8D01C73F80C3D77C261531F032760A254A0C33.crl rsync://rpki-rsync.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/ED8D01C73F80C3D77C261531F032760A254A0C33.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED8D01C73F80C3D77C261531F032760A254A0C33.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 06:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:0c:58:34:9c:f3:27:c4:06:dc:00:d0:9f:bb:c4:88:1e:2b:45:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED8D01C73F80C3D77C261531F032760A254A0C33 Validity Not Before: May 3 02:41:07 2026 GMT Not After : May 2 02:46:07 2027 GMT Subject: CN=6835929FE0077A1ADA948269FD8F30A9126F07D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:ec:03:d4:52:1e:92:6c:fe:75:d6:eb:39:3f: 0c:d3:6b:2e:d3:af:02:c0:a5:ed:36:20:18:41:d2: 7a:57:22:a2:24:36:d8:28:b5:3e:4b:0f:8e:3a:ea: c3:fd:d5:c0:df:ef:00:ae:63:e5:ab:31:ac:13:02: 2e:90:58:ec:77:c7:5a:39:29:a3:c8:56:84:a3:d9: cf:5e:fc:f0:85:69:fe:72:e5:3e:18:78:2b:9d:00: 1e:34:d3:1f:48:9d:e3:2e:a3:d3:fe:e7:6a:f1:1d: 6e:11:23:eb:f3:94:a4:89:34:a5:75:f6:1b:10:4c: a9:bf:79:7f:bd:79:e1:0f:06:5c:6d:96:e7:97:34: cc:ae:dc:66:5d:23:b8:1f:a9:d9:ff:9b:71:e0:62: f2:4f:68:ad:3c:09:32:a3:59:4a:18:0d:ee:4a:b4: 30:36:03:c9:3e:19:34:36:85:67:b8:9f:17:f6:ca: 5e:c6:22:0f:f1:ff:dd:aa:ec:d2:d7:77:bd:1b:d4: 76:b6:48:2e:7c:21:ac:70:9b:2b:c7:3c:33:b1:74: 5a:a2:8b:69:b5:8f:fd:b1:f3:59:83:29:a4:bf:f4: 8a:4c:ea:b0:cc:d4:3c:23:f6:57:73:37:78:b6:6a: 9a:ed:56:7f:81:d0:63:82:5f:69:e0:2e:da:52:3d: 82:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:35:92:9F:E0:07:7A:1A:DA:94:82:69:FD:8F:30:A9:12:6F:07:D4 X509v3 Authority Key Identifier: keyid:ED:8D:01:C7:3F:80:C3:D7:7C:26:15:31:F0:32:76:0A:25:4A:0C:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/ED8D01C73F80C3D77C261531F032760A254A0C33.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED8D01C73F80C3D77C261531F032760A254A0C33.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.131.0/24 Signature Algorithm: sha256WithRSAEncryption 65:73:8b:bf:67:e9:0e:a3:53:d5:a7:fa:2f:b2:0b:34:c2:c3: da:52:84:a1:7e:26:f8:c0:50:68:68:37:8d:14:5e:b5:80:c9: 67:92:58:8d:6c:5f:ff:40:91:21:84:91:82:1f:fb:ce:fa:22: aa:fc:e6:32:bb:54:d3:81:c1:8f:1f:b3:22:28:9b:47:8a:4f: b9:26:54:0a:00:c0:39:54:74:d3:9a:e1:1a:55:96:ab:ee:51: e0:42:71:6d:ed:52:a2:ee:cd:5b:80:50:c3:b5:02:0a:9c:3f: 21:bc:bf:8d:cd:78:b8:39:32:91:6e:0f:2c:8b:bb:ee:0b:03: b6:3b:d5:1d:0a:02:8c:3b:92:9a:0d:02:63:ca:28:bb:45:15: 38:1d:97:93:0a:12:76:56:a9:fa:fc:b0:ec:e4:d5:b3:ff:df: ef:b3:78:89:f8:1f:81:23:c6:c6:e8:a2:e0:d0:7c:b8:d8:cc: eb:22:a1:b3:7b:2b:ff:f0:e5:0c:9a:66:a0:fa:02:df:f3:d8: 6c:a8:09:fa:af:24:c4:b0:ff:26:a9:e3:e0:19:ed:1f:63:2e: 3f:e5:04:ac:4a:0e:d2:95:56:e3:52:82:37:ef:bb:28:2e:72: 64:7a:01:f5:8d:29:a7:9a:58:2e:a1:3b:19:92:9a:a7:0c:8e: e8:51:35:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPQxYNJzzJ8QG3ADQn7vEiB4rRZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ4RDAxQzczRjgwQzNENzdDMjYxNTMxRjAzMjc2MEEy NTRBMEMzMzAeFw0yNjA1MDMwMjQxMDdaFw0yNzA1MDIwMjQ2MDdaMDMxMTAvBgNV BAMTKDY4MzU5MjlGRTAwNzdBMUFEQTk0ODI2OUZEOEYzMEE5MTI2RjA3RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ7APUUh6SbP511us5PwzTay7T rwLApe02IBhB0npXIqIkNtgotT5LD4466sP91cDf7wCuY+WrMawTAi6QWOx3x1o5 KaPIVoSj2c9e/PCFaf5y5T4YeCudAB400x9IneMuo9P+52rxHW4RI+vzlKSJNKV1 9hsQTKm/eX+9eeEPBlxtlueXNMyu3GZdI7gfqdn/m3HgYvJPaK08CTKjWUoYDe5K tDA2A8k+GTQ2hWe4nxf2yl7GIg/x/92q7NLXd70b1Ha2SC58IaxwmyvHPDOxdFqi i2m1j/2x81mDKaS/9IpM6rDM1Dwj9ldzN3i2aprtVn+B0GOCX2ngLtpSPYJhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaDWSn+AHehralIJp/Y8wqRJvB9QwHwYDVR0j BBgwFoAU7Y0Bxz+Aw9d8JhUx8DJ2CiVKDDMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2U1YzczY2MtOTg1ZS00ZTkyLWJhNjktY2Q4YmZmZTRhNTNkLzAvRUQ4RDAxQzcz RjgwQzNENzdDMjYxNTMxRjAzMjc2MEEyNTRBMEMzMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRDhEMDFDNzNGODBDM0Q3N0MyNjE1MzFGMDMyNzYwQTI1NEEw QzMzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdlNWM3M2NjLTk4NWUtNGU5Mi1i YTY5LWNkOGJmZmU0YTUzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoYMwDQYJ KoZIhvcNAQELBQADggEBAGVzi79n6Q6jU9Wn+i+yCzTCw9pShKF+JvjAUGhoN40U XrWAyWeSWI1sX/9AkSGEkYIf+876Iqr85jK7VNOBwY8fsyIom0eKT7kmVAoAwDlU dNOa4RpVlqvuUeBCcW3tUqLuzVuAUMO1AgqcPyG8v43NeLg5MpFuDyyLu+4LA7Y7 1R0KAow7kpoNAmPKKLtFFTgdl5MKEnZWqfr8sOzk1bP/3++zeIn4H4EjxsboouDQ fLjYzOsiobN7K//w5QyaZqD6At/z2GyoCfqvJMSw/yap4+AZ7R9jLj/lBKxKDtKV VuNSgjfvuygucmR6AfWNKaeaWC6hOxmSmqcMjuhRNRk= -----END CERTIFICATE-----Generated at Tue May 12 22:33:22 2026 by rpki-client