$ rpki-client -vvf rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa File: 3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa (raw, json) Hash identifier: QuJkYaezAKdTxcWr+l4aySjRA4vLncuY75qiXrBgtBM= Subject key identifier: 5C:7F:C6:00:1D:6C:1B:3D:E3:F6:D5:3D:34:A4:19:17:46:57:8B:D4 Certificate issuer: /CN=340A9D577B868F9D853E54BF9FEA79E66E32C49F Certificate serial: 6F2BBF023E760B9F8FC3DF876C3CFE7CDA1E1E2D Authority key identifier: 34:0A:9D:57:7B:86:8F:9D:85:3E:54:BF:9F:EA:79:E6:6E:32:C4:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/340A9D577B868F9D853E54BF9FEA79E66E32C49F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa Signing time: Sun 03 May 2026 02:47:43 +0000 ROA not before: Sun 03 May 2026 02:42:43 +0000 ROA not after: Sun 02 May 2027 02:47:43 +0000 asID: 147088 IP address blocks: 103.172.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/340A9D577B868F9D853E54BF9FEA79E66E32C49F.crl rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/340A9D577B868F9D853E54BF9FEA79E66E32C49F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/340A9D577B868F9D853E54BF9FEA79E66E32C49F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:2b:bf:02:3e:76:0b:9f:8f:c3:df:87:6c:3c:fe:7c:da:1e:1e:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=340A9D577B868F9D853E54BF9FEA79E66E32C49F Validity Not Before: May 3 02:42:43 2026 GMT Not After : May 2 02:47:43 2027 GMT Subject: CN=5C7FC6001D6C1B3DE3F6D53D34A4191746578BD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c9:ae:0d:74:05:95:04:6c:3a:7a:4d:7d:8f: a0:1b:c5:bc:25:7b:0c:7a:90:33:61:3d:02:a2:d1: 5c:23:9a:71:f9:b1:c5:e4:91:29:29:1d:4f:a8:44: c8:20:1c:65:69:01:32:78:e8:e1:4b:45:36:61:9d: 9d:a4:45:b8:93:10:28:19:7c:63:b3:44:59:bc:d2: 93:18:b3:db:63:11:4e:46:f3:6a:49:a6:04:c8:b7: 68:00:55:15:68:62:bb:b8:bf:27:7a:ef:5a:d5:95: ae:7a:30:3c:21:97:f1:d6:45:4f:f9:c0:ff:85:31: 3b:de:71:03:f7:ae:44:39:63:85:27:9c:02:5f:0f: db:e8:a1:5a:db:87:9e:d4:64:3e:e3:74:51:59:46: 82:f3:b0:ca:a4:66:3b:ca:20:e9:61:ce:83:9a:26: d9:28:1b:50:c4:35:c3:3e:25:b1:59:cb:d3:40:54: ea:dc:b0:2b:9c:8b:9b:34:69:2d:81:74:a0:9a:b8: e1:97:38:1a:1b:48:e5:82:4c:cc:7a:3c:44:66:f3: da:ac:20:83:37:8c:bc:14:5a:0a:c4:28:0d:1f:7d: f7:fa:b2:c2:1f:4b:89:6c:c1:e8:14:1d:94:fc:40: 7b:6e:18:76:27:e0:a6:de:7e:42:4d:c7:34:40:75: 67:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7F:C6:00:1D:6C:1B:3D:E3:F6:D5:3D:34:A4:19:17:46:57:8B:D4 X509v3 Authority Key Identifier: keyid:34:0A:9D:57:7B:86:8F:9D:85:3E:54:BF:9F:EA:79:E6:6E:32:C4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/340A9D577B868F9D853E54BF9FEA79E66E32C49F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/340A9D577B868F9D853E54BF9FEA79E66E32C49F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.172.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:76:99:57:29:7a:7d:f0:0b:35:a8:59:e6:22:b5:5e:b1:f8: 1c:f3:5d:11:3f:61:25:57:35:09:d0:fd:90:6c:36:ba:21:24: 27:e6:66:d4:7f:e8:70:79:53:a9:a6:2e:33:71:9c:a5:01:00: 54:a1:30:b9:86:e5:e5:85:84:a0:4c:36:94:c6:94:db:b5:c3: 35:38:84:e2:af:dc:db:8e:59:1c:c8:8c:77:ac:2b:4e:30:80: 35:45:9d:57:36:67:75:06:d5:a2:48:0f:a4:d9:05:4d:af:40: d0:64:f8:4f:46:d0:55:4f:25:77:6f:af:ff:60:0d:e8:aa:4b: c5:80:e0:27:75:94:a9:14:e9:30:9b:a9:62:1c:f9:e4:35:a0: 37:e7:45:23:8a:86:e0:6c:41:66:95:01:da:5a:c7:c4:77:82: 16:a9:0b:2d:b3:1c:79:46:87:e5:2e:4d:3a:99:2a:a3:01:a9: 81:0a:a2:e4:6c:9a:8f:94:88:2c:a5:a5:a9:4e:35:98:b1:72: c6:cc:ee:46:76:5b:a6:ee:c8:ae:ca:f4:af:2f:e0:8b:1e:55: 93:46:17:cf:14:bc:b7:bd:e8:ef:65:16:d2:d2:f9:6c:d5:ef: 68:74:01:5a:1c:48:f6:bd:bc:7a:1f:c3:74:7f:d1:d7:ba:a5: 93:50:8f:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbyu/Aj52C5+Pw9+HbDz+fNoeHi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQwQTlENTc3Qjg2OEY5RDg1M0U1NEJGOUZFQTc5RTY2 RTMyQzQ5RjAeFw0yNjA1MDMwMjQyNDNaFw0yNzA1MDIwMjQ3NDNaMDMxMTAvBgNV BAMTKDVDN0ZDNjAwMUQ2QzFCM0RFM0Y2RDUzRDM0QTQxOTE3NDY1NzhCRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRya4NdAWVBGw6ek19j6Abxbwl ewx6kDNhPQKi0VwjmnH5scXkkSkpHU+oRMggHGVpATJ46OFLRTZhnZ2kRbiTECgZ fGOzRFm80pMYs9tjEU5G82pJpgTIt2gAVRVoYru4vyd671rVla56MDwhl/HWRU/5 wP+FMTvecQP3rkQ5Y4UnnAJfD9vooVrbh57UZD7jdFFZRoLzsMqkZjvKIOlhzoOa JtkoG1DENcM+JbFZy9NAVOrcsCuci5s0aS2BdKCauOGXOBobSOWCTMx6PERm89qs IIM3jLwUWgrEKA0ffff6ssIfS4lswegUHZT8QHtuGHYn4KbefkJNxzRAdWedAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXH/GAB1sGz3j9tU9NKQZF0ZXi9QwHwYDVR0j BBgwFoAUNAqdV3uGj52FPlS/n+p55m4yxJ8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODRkYTQxNWItNWYxNy00NjAyLTliZDktZmQ4NGFjMmNhZTg2LzEvMzQwQTlENTc3 Qjg2OEY5RDg1M0U1NEJGOUZFQTc5RTY2RTMyQzQ5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNDBBOUQ1NzdCODY4RjlEODUzRTU0QkY5RkVBNzlFNjZFMzJD NDlGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg0ZGE0MTViLTVmMTctNDYwMi05 YmQ5LWZkODRhYzJjYWU4Ni8xLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrKwwDQYJ KoZIhvcNAQELBQADggEBAJ12mVcpen3wCzWoWeYitV6x+BzzXRE/YSVXNQnQ/ZBs NrohJCfmZtR/6HB5U6mmLjNxnKUBAFShMLmG5eWFhKBMNpTGlNu1wzU4hOKv3NuO WRzIjHesK04wgDVFnVc2Z3UG1aJID6TZBU2vQNBk+E9G0FVPJXdvr/9gDeiqS8WA 4Cd1lKkU6TCbqWIc+eQ1oDfnRSOKhuBsQWaVAdpax8R3ghapCy2zHHlGh+UuTTqZ KqMBqYEKouRsmo+UiCylpalONZixcsbM7kZ2W6buyK7K9K8v4IseVZNGF88UvLe9 6O9lFtLS+WzV72h0AVocSPa9vHofw3R/0de6pZNQjyI= -----END CERTIFICATE-----Generated at Wed May 13 08:39:33 2026 by rpki-client