$ rpki-client -vvf rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa File: 3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa (raw, json) Hash identifier: Tts8f+N485CFXeqo33btYWO7LgUOuaCh8Px0kKwHoiY= Subject key identifier: DC:0D:9D:52:A9:4B:53:06:71:E4:A2:A1:16:DF:A6:E2:68:C4:64:BF Certificate issuer: /CN=E035D5F5D70206748D3C087B30BFBCD15ECF196D Certificate serial: 618EBE8B672D12DC06D0210437524AC6F1606C08 Authority key identifier: E0:35:D5:F5:D7:02:06:74:8D:3C:08:7B:30:BF:BC:D1:5E:CF:19:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E035D5F5D70206748D3C087B30BFBCD15ECF196D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa Signing time: Sun 03 May 2026 02:48:21 +0000 ROA not before: Sun 03 May 2026 02:43:21 +0000 ROA not after: Sun 02 May 2027 02:48:21 +0000 asID: 147097 IP address blocks: 103.174.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/E035D5F5D70206748D3C087B30BFBCD15ECF196D.crl rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/E035D5F5D70206748D3C087B30BFBCD15ECF196D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E035D5F5D70206748D3C087B30BFBCD15ECF196D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8e:be:8b:67:2d:12:dc:06:d0:21:04:37:52:4a:c6:f1:60:6c:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E035D5F5D70206748D3C087B30BFBCD15ECF196D Validity Not Before: May 3 02:43:21 2026 GMT Not After : May 2 02:48:21 2027 GMT Subject: CN=DC0D9D52A94B530671E4A2A116DFA6E268C464BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:c6:35:fb:c3:b1:92:0b:ac:f7:cc:73:1d: 8a:f9:d1:85:b6:05:02:b1:21:36:ca:40:cd:83:22: 2c:d0:5c:42:2c:08:09:d2:ff:d8:c9:9c:53:e8:6d: 53:d5:45:6f:a6:3d:f1:0a:39:29:26:50:a2:4f:4f: c2:d4:8c:70:33:33:a2:2e:59:a0:67:c9:7b:76:28: 51:f4:a7:55:52:d8:60:ee:da:49:37:7e:7f:41:12: 35:97:ff:f3:76:3b:9f:7d:d6:c4:50:21:86:34:11: 8d:30:45:e0:14:7d:4c:6a:d0:5a:9a:5e:26:a5:a9: c1:11:1e:b3:67:83:e9:4f:3d:da:ea:b1:a6:ab:5e: 7b:ff:86:cd:54:c8:1a:e3:9b:f1:b6:1c:79:d6:85: d0:fa:06:7c:50:d9:70:8b:4d:e9:21:3a:71:44:88: 1d:aa:86:e8:18:de:8c:ca:fe:7a:18:58:2e:fa:ab: f4:f2:1e:28:a6:da:ab:5f:83:41:96:0c:e0:16:bd: 11:0c:48:c8:c0:ac:e6:aa:24:42:5e:55:7c:87:cf: 6b:d6:75:3f:d7:64:9d:7f:4f:36:f3:8e:b4:41:c2: 1f:cf:f6:60:41:40:f8:be:cc:64:ff:64:0e:c3:02: 98:88:bb:b5:db:00:e9:91:89:32:1c:49:33:02:f4: 16:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0D:9D:52:A9:4B:53:06:71:E4:A2:A1:16:DF:A6:E2:68:C4:64:BF X509v3 Authority Key Identifier: keyid:E0:35:D5:F5:D7:02:06:74:8D:3C:08:7B:30:BF:BC:D1:5E:CF:19:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/E035D5F5D70206748D3C087B30BFBCD15ECF196D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E035D5F5D70206748D3C087B30BFBCD15ECF196D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.120.0/23 Signature Algorithm: sha256WithRSAEncryption 84:22:24:a5:51:06:81:b4:90:31:ac:22:0f:dd:9c:f2:4d:f6: e5:50:70:55:21:6f:77:8d:0c:b5:26:ab:ca:8f:8d:38:f7:df: 1a:61:2c:bf:36:98:03:87:1c:39:9b:90:ca:43:55:d1:79:97: 76:d9:90:09:97:f4:65:d4:cd:e0:ff:5e:66:5f:c4:c5:50:c3: e7:66:fa:c4:d8:8c:37:e7:c1:f6:e1:7b:62:1e:cd:aa:b0:fb: ef:5f:cb:fa:71:68:5e:8d:c7:ac:77:c0:69:7a:ae:71:db:c6: d3:f1:df:3a:65:56:97:4b:81:fd:bb:2c:04:27:d0:32:96:35: 5c:c2:b7:2a:66:26:a8:2c:d4:0f:95:1a:d6:14:6c:97:d1:00: 21:6f:de:21:5d:38:09:2f:2f:b1:ed:d2:c5:3a:68:16:1a:18: 8b:60:29:dd:61:ca:a8:3a:f1:56:91:03:f8:b1:84:39:b8:c6: 8a:c9:30:07:45:ac:77:30:b8:5e:8e:e5:99:16:fa:12:ac:5a: 04:01:31:8e:e3:93:ae:a6:69:fc:cf:e1:0a:b2:5e:3a:ab:3b: 56:84:dc:aa:d3:6d:41:90:21:5e:c7:f5:a3:d9:97:02:cd:be: 07:c8:2d:61:b0:9b:05:33:9c:87:12:18:4b:a7:be:0d:d8:fd: 29:91:c6:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYY6+i2ctEtwG0CEEN1JKxvFgbAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTAzNUQ1RjVENzAyMDY3NDhEM0MwODdCMzBCRkJDRDE1 RUNGMTk2RDAeFw0yNjA1MDMwMjQzMjFaFw0yNzA1MDIwMjQ4MjFaMDMxMTAvBgNV BAMTKERDMEQ5RDUyQTk0QjUzMDY3MUU0QTJBMTE2REZBNkUyNjhDNDY0QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9B8Y1+8Oxkgus98xzHYr50YW2 BQKxITbKQM2DIizQXEIsCAnS/9jJnFPobVPVRW+mPfEKOSkmUKJPT8LUjHAzM6Iu WaBnyXt2KFH0p1VS2GDu2kk3fn9BEjWX//N2O5991sRQIYY0EY0wReAUfUxq0Fqa XialqcERHrNng+lPPdrqsaarXnv/hs1UyBrjm/G2HHnWhdD6BnxQ2XCLTekhOnFE iB2qhugY3ozK/noYWC76q/TyHiim2qtfg0GWDOAWvREMSMjArOaqJEJeVXyHz2vW dT/XZJ1/TzbzjrRBwh/P9mBBQPi+zGT/ZA7DApiIu7XbAOmRiTIcSTMC9BZRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3A2dUqlLUwZx5KKhFt+m4mjEZL8wHwYDVR0j BBgwFoAU4DXV9dcCBnSNPAh7ML+80V7PGW0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODZiMjA1MTUtOGQ3Yy00NDVjLWJmZjctYmFiZDUyNjU3ODBmLzAvRTAzNUQ1RjVE NzAyMDY3NDhEM0MwODdCMzBCRkJDRDE1RUNGMTk2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FMDM1RDVGNUQ3MDIwNjc0OEQzQzA4N0IzMEJGQkNEMTVFQ0Yx OTZELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2YjIwNTE1LThkN2MtNDQ1Yy1i ZmY3LWJhYmQ1MjY1NzgwZi8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrngwDQYJ KoZIhvcNAQELBQADggEBAIQiJKVRBoG0kDGsIg/dnPJN9uVQcFUhb3eNDLUmq8qP jTj33xphLL82mAOHHDmbkMpDVdF5l3bZkAmX9GXUzeD/XmZfxMVQw+dm+sTYjDfn wfbhe2Iezaqw++9fy/pxaF6Nx6x3wGl6rnHbxtPx3zplVpdLgf27LAQn0DKWNVzC typmJqgs1A+VGtYUbJfRACFv3iFdOAkvL7Ht0sU6aBYaGItgKd1hyqg68VaRA/ix hDm4xorJMAdFrHcwuF6O5ZkW+hKsWgQBMY7jk66mafzP4QqyXjqrO1aE3KrTbUGQ IV7H9aPZlwLNvgfILWGwmwUznIcSGEunvg3Y/SmRxqc= -----END CERTIFICATE-----Generated at Wed May 13 11:46:12 2026 by rpki-client