$ rpki-client -vvf rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa File: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (raw, json) Hash identifier: m9ehKEyZKrnBxPUxglJU8vra1GpJJTUpkzpv7UpDmeA= Subject key identifier: B0:B5:28:89:C5:17:8E:8E:D7:88:95:F9:F3:F5:D7:A8:5B:E6:01:E6 Certificate issuer: /CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Certificate serial: 71EE746E233AE9BC4A25F3D4B0B31B94F8BB94D0 Authority key identifier: A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa Signing time: Sun 03 May 2026 02:48:27 +0000 ROA not before: Sun 03 May 2026 02:43:27 +0000 ROA not after: Sun 02 May 2027 02:48:27 +0000 asID: 135462 IP address blocks: 103.70.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ee:74:6e:23:3a:e9:bc:4a:25:f3:d4:b0:b3:1b:94:f8:bb:94:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Validity Not Before: May 3 02:43:27 2026 GMT Not After : May 2 02:48:27 2027 GMT Subject: CN=B0B52889C5178E8ED78895F9F3F5D7A85BE601E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:f9:79:56:2f:8d:35:ce:df:a7:8e:eb:25: 3b:a7:be:71:65:67:d6:31:4c:b1:d6:c6:58:33:56: 95:37:30:12:73:63:21:9f:22:ac:ca:5c:54:9c:f6: 35:b0:af:ed:b5:55:f5:29:dd:5e:eb:6c:45:7c:6b: 62:8b:2e:30:5d:6f:15:8e:2f:29:7e:28:a7:82:d6: 51:0e:88:23:4f:35:fc:03:a0:9d:a4:1f:e0:8f:93: 7b:70:00:2c:41:95:f0:49:10:67:05:bb:df:37:bd: 50:40:f3:6b:98:53:80:d2:26:5e:99:f0:96:61:c6: 4c:d9:63:d8:46:70:e2:49:67:6a:11:45:db:ba:7b: a1:ad:7d:60:ae:30:b6:f3:5c:19:2f:1a:f7:23:e0: 14:06:6d:25:12:e8:03:c3:67:13:51:20:43:59:9c: b8:de:e2:9a:fd:b3:b0:ae:88:cd:8a:ee:9c:a3:03: 2b:dd:18:1a:95:bf:70:86:c0:7f:6e:0f:8e:e6:8f: be:ca:88:9a:1d:9f:54:3e:da:6f:ee:0a:6c:ce:1b: 67:e1:30:80:0a:9f:26:53:1b:38:47:de:10:cd:9f: 51:e1:d7:db:7c:6f:d0:54:c3:81:20:50:18:e3:38: 6a:ef:ab:45:cc:92:7c:d0:f7:7d:79:48:dc:00:0e: c4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B5:28:89:C5:17:8E:8E:D7:88:95:F9:F3:F5:D7:A8:5B:E6:01:E6 X509v3 Authority Key Identifier: keyid:A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.18.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:66:ea:0b:1f:7c:d4:cc:34:7f:c5:1c:00:ba:f6:c5:22:e7: c3:6a:3f:31:40:ee:8c:da:df:f9:e3:18:32:4a:03:e3:8e:27: 6e:0a:5d:ae:42:c8:f8:0a:67:8f:ee:ef:2c:42:e5:52:30:d9: 00:1a:38:9b:72:42:16:da:ae:6e:bf:f8:57:ae:83:91:e7:ea: b7:89:3c:dc:70:3c:4e:52:c1:0d:dc:6a:cd:e4:0a:d6:ae:ee: 44:b1:54:08:38:ee:24:00:57:17:78:e6:94:d3:e4:15:e3:58: e9:28:f2:3f:e1:0d:77:e2:b1:0e:e9:00:27:16:de:57:fe:69: 09:ef:93:44:7e:72:e5:48:0b:b5:89:2e:53:f8:22:8b:83:5c: c1:0b:0f:84:f5:e5:68:29:c4:53:10:1f:a3:6f:23:d8:27:60: 7e:f8:d7:77:be:ee:44:ac:e7:b2:60:51:44:3c:5f:31:2a:4e: a4:be:8a:a9:ce:43:28:72:1b:e2:74:ab:fb:7f:2f:40:a3:ac: 9b:d0:d5:9f:1c:3a:bd:79:be:30:0d:4d:d6:89:f7:d2:19:8a: 09:2d:5c:9f:ca:8e:13:fe:ce:ab:ad:59:10:a9:68:82:57:0b: cc:8f:81:3d:de:12:a5:40:72:62:4c:44:6f:1b:9f:1f:b4:56: 9f:f8:ec:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUce50biM66bxKJfPUsLMblPi7lNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThEMjExQTU0MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4 MEJBNDU4QTAeFw0yNjA1MDMwMjQzMjdaFw0yNzA1MDIwMjQ4MjdaMDMxMTAvBgNV BAMTKEIwQjUyODg5QzUxNzhFOEVENzg4OTVGOUYzRjVEN0E4NUJFNjAxRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnr/l5Vi+NNc7fp47rJTunvnFl Z9YxTLHWxlgzVpU3MBJzYyGfIqzKXFSc9jWwr+21VfUp3V7rbEV8a2KLLjBdbxWO Lyl+KKeC1lEOiCNPNfwDoJ2kH+CPk3twACxBlfBJEGcFu983vVBA82uYU4DSJl6Z 8JZhxkzZY9hGcOJJZ2oRRdu6e6GtfWCuMLbzXBkvGvcj4BQGbSUS6APDZxNRIENZ nLje4pr9s7CuiM2K7pyjAyvdGBqVv3CGwH9uD47mj77KiJodn1Q+2m/uCmzOG2fh MIAKnyZTGzhH3hDNn1Hh19t8b9BUw4EgUBjjOGrvq0XMknzQ9315SNwADsTxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsLUoicUXjo7XiJX58/XXqFvmAeYwHwYDVR0j BBgwFoAUqNIRpUCgpXxdastQMgkbGoC6RYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4NDQtNGU2YzdhM2M5N2Q5LzAvQThEMjExQTU0 MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4MEJBNDU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOEQyMTFBNTQwQTBBNTdDNUQ2QUNCNTAzMjA5MUIxQTgwQkE0 NThBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGEjANBgkqhkiG 9w0BAQsFAAOCAQEAXGbqCx981Mw0f8UcALr2xSLnw2o/MUDujNrf+eMYMkoD444n bgpdrkLI+Apnj+7vLELlUjDZABo4m3JCFtqubr/4V66Dkefqt4k83HA8TlLBDdxq zeQK1q7uRLFUCDjuJABXF3jmlNPkFeNY6SjyP+ENd+KxDukAJxbeV/5pCe+TRH5y 5UgLtYkuU/gii4NcwQsPhPXlaCnEUxAfo28j2CdgfvjXd77uRKznsmBRRDxfMSpO pL6Kqc5DKHIb4nSr+38vQKOsm9DVnxw6vXm+MA1N1on30hmKCS1cn8qOE/7Oq61Z EKloglcLzI+BPd4SpUByYkxEbxufH7RWn/js9g== -----END CERTIFICATE-----Generated at Wed May 13 02:18:51 2026 by rpki-client