$ rpki-client -vvf rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa File: 3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa (raw, json) Hash identifier: alqTQlTJJckhtW2N9aw/g6aRbRRoD+/QvIdNlTJVbT8= Subject key identifier: 8B:5C:72:22:54:40:A2:2D:50:0D:AE:1C:C8:2F:8D:AB:9D:14:62:88 Certificate issuer: /CN=E035D5F5D70206748D3C087B30BFBCD15ECF196D Certificate serial: 2C1A655CD0E3CA465DA85AEF12FA373886A9B0A4 Authority key identifier: E0:35:D5:F5:D7:02:06:74:8D:3C:08:7B:30:BF:BC:D1:5E:CF:19:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E035D5F5D70206748D3C087B30BFBCD15ECF196D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa Signing time: Sun 03 May 2026 02:48:22 +0000 ROA not before: Sun 03 May 2026 02:43:22 +0000 ROA not after: Sun 02 May 2027 02:48:22 +0000 asID: 147097 IP address blocks: 103.174.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/E035D5F5D70206748D3C087B30BFBCD15ECF196D.crl rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/E035D5F5D70206748D3C087B30BFBCD15ECF196D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E035D5F5D70206748D3C087B30BFBCD15ECF196D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:1a:65:5c:d0:e3:ca:46:5d:a8:5a:ef:12:fa:37:38:86:a9:b0:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E035D5F5D70206748D3C087B30BFBCD15ECF196D Validity Not Before: May 3 02:43:22 2026 GMT Not After : May 2 02:48:22 2027 GMT Subject: CN=8B5C72225440A22D500DAE1CC82F8DAB9D146288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:90:19:9f:25:fb:7e:79:2e:c7:09:9b:90:10: 49:2d:2a:ec:e7:c4:69:49:0d:aa:17:18:ca:35:d4: 2c:09:ec:3c:fa:92:a0:19:f5:4f:9d:ce:6b:5c:8a: 16:70:36:75:98:cc:66:1f:c2:af:49:4b:2f:08:de: 43:d3:b4:f6:af:9e:8b:f7:cb:56:6a:ee:23:3b:be: fe:56:5e:be:eb:9e:fc:bf:bc:bd:55:16:bd:c6:53: a7:c1:58:9f:3f:3c:84:51:96:dc:b9:10:a9:6c:17: 06:7c:6c:ab:a7:b7:e9:92:e2:f1:2d:ca:21:1e:98: f2:e9:d0:11:45:83:e1:35:da:62:d2:84:ed:6f:e1: 14:68:7f:60:4b:f7:5e:73:35:52:2d:ca:0b:0b:eb: 57:ae:05:04:40:62:04:1d:b1:7b:13:98:32:5a:c4: fa:9d:4a:ec:38:ca:c3:e1:17:cc:42:7c:e4:24:4c: b8:6a:11:99:57:07:f1:fd:0a:f0:6c:92:ee:f0:50: 4a:69:70:18:02:14:cd:06:76:84:54:ba:4b:9c:d3: 51:50:19:75:cc:96:41:99:56:b9:8a:eb:52:19:cc: 8b:3b:6c:1b:5a:25:d0:5e:bd:e9:32:9f:c5:4e:06: 05:d5:d3:21:9d:2a:9b:5e:d9:94:3b:e8:15:b0:77: 7b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5C:72:22:54:40:A2:2D:50:0D:AE:1C:C8:2F:8D:AB:9D:14:62:88 X509v3 Authority Key Identifier: keyid:E0:35:D5:F5:D7:02:06:74:8D:3C:08:7B:30:BF:BC:D1:5E:CF:19:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/E035D5F5D70206748D3C087B30BFBCD15ECF196D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E035D5F5D70206748D3C087B30BFBCD15ECF196D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.121.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:40:15:e2:15:f2:d1:d1:77:36:71:f3:ff:12:70:d8:49:90: 74:8c:21:f0:44:7e:4d:b7:f9:c1:53:27:8a:93:4f:5c:6a:e9: 7d:65:f5:7d:6b:1f:0f:db:ff:c0:ad:f5:0d:0b:ee:b8:b9:75: 72:3a:a5:05:5f:9d:dd:21:cf:34:03:92:e3:29:c7:fd:ad:d9: 5c:83:7f:21:5b:48:09:80:43:6c:19:d1:f6:52:12:69:c8:18: dd:3c:3f:a4:8d:e9:54:37:88:01:98:1a:90:83:29:49:2d:3b: e0:7a:62:a8:10:79:5b:7b:b8:36:d6:0a:7a:cc:38:83:f7:3b: 22:ca:e9:2a:fb:83:f9:ad:70:a2:2c:6b:62:70:f9:26:83:ce: d3:ec:73:ec:52:70:ac:66:7b:e5:28:30:e8:02:4c:fb:1e:c7: b0:64:26:49:58:32:b9:c7:d0:73:57:3d:15:9b:39:56:a5:47: 56:fd:d1:60:6b:1a:6d:4a:ed:a0:6c:52:d6:39:f1:8d:df:98: 87:81:0b:92:1c:0d:a4:b0:82:a4:b8:63:d4:38:c0:f1:49:8e: 55:7c:1f:a2:be:c5:88:5d:0a:e3:9f:05:c2:58:bd:f5:49:cc: 7f:ab:e2:ae:d1:20:5d:a3:f7:cf:e9:41:43:8d:0e:82:6e:62: d0:67:32:52 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULBplXNDjykZdqFrvEvo3OIapsKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTAzNUQ1RjVENzAyMDY3NDhEM0MwODdCMzBCRkJDRDE1 RUNGMTk2RDAeFw0yNjA1MDMwMjQzMjJaFw0yNzA1MDIwMjQ4MjJaMDMxMTAvBgNV BAMTKDhCNUM3MjIyNTQ0MEEyMkQ1MDBEQUUxQ0M4MkY4REFCOUQxNDYyODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCskBmfJft+eS7HCZuQEEktKuzn xGlJDaoXGMo11CwJ7Dz6kqAZ9U+dzmtcihZwNnWYzGYfwq9JSy8I3kPTtPavnov3 y1Zq7iM7vv5WXr7rnvy/vL1VFr3GU6fBWJ8/PIRRlty5EKlsFwZ8bKunt+mS4vEt yiEemPLp0BFFg+E12mLShO1v4RRof2BL915zNVItygsL61euBQRAYgQdsXsTmDJa xPqdSuw4ysPhF8xCfOQkTLhqEZlXB/H9CvBsku7wUEppcBgCFM0GdoRUukuc01FQ GXXMlkGZVrmK61IZzIs7bBtaJdBevekyn8VOBgXV0yGdKpte2ZQ76BWwd3u5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi1xyIlRAoi1QDa4cyC+Nq50UYogwHwYDVR0j BBgwFoAU4DXV9dcCBnSNPAh7ML+80V7PGW0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODZiMjA1MTUtOGQ3Yy00NDVjLWJmZjctYmFiZDUyNjU3ODBmLzAvRTAzNUQ1RjVE NzAyMDY3NDhEM0MwODdCMzBCRkJDRDE1RUNGMTk2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FMDM1RDVGNUQ3MDIwNjc0OEQzQzA4N0IzMEJGQkNEMTVFQ0Yx OTZELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2YjIwNTE1LThkN2MtNDQ1Yy1i ZmY3LWJhYmQ1MjY1NzgwZi8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnkwDQYJ KoZIhvcNAQELBQADggEBAHxAFeIV8tHRdzZx8/8ScNhJkHSMIfBEfk23+cFTJ4qT T1xq6X1l9X1rHw/b/8Ct9Q0L7ri5dXI6pQVfnd0hzzQDkuMpx/2t2VyDfyFbSAmA Q2wZ0fZSEmnIGN08P6SN6VQ3iAGYGpCDKUktO+B6YqgQeVt7uDbWCnrMOIP3OyLK 6Sr7g/mtcKIsa2Jw+SaDztPsc+xScKxme+UoMOgCTPsex7BkJklYMrnH0HNXPRWb OValR1b90WBrGm1K7aBsUtY58Y3fmIeBC5IcDaSwgqS4Y9Q4wPFJjlV8H6K+xYhd CuOfBcJYvfVJzH+r4q7RIF2j98/pQUONDoJuYtBnMlI= -----END CERTIFICATE-----Generated at Wed May 13 12:42:30 2026 by rpki-client