$ rpki-client -vvf rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31392e302f32342d3234203d3e20313335343632.roa File: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (raw, json) Hash identifier: 7evCo+jZlUXwDGTBsCsQhDg2DWHBDqS4cWsJw91trY0= Subject key identifier: D1:C1:E0:55:B8:13:C1:F9:DC:85:F7:A4:B8:39:3D:34:23:D1:4C:07 Certificate issuer: /CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Certificate serial: 10AE30DC410AED02AA1330F4DA92A35348ED8A4F Authority key identifier: A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31392e302f32342d3234203d3e20313335343632.roa Signing time: Sun 03 May 2026 02:48:27 +0000 ROA not before: Sun 03 May 2026 02:43:27 +0000 ROA not after: Sun 02 May 2027 02:48:27 +0000 asID: 135462 IP address blocks: 103.70.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ae:30:dc:41:0a:ed:02:aa:13:30:f4:da:92:a3:53:48:ed:8a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Validity Not Before: May 3 02:43:27 2026 GMT Not After : May 2 02:48:27 2027 GMT Subject: CN=D1C1E055B813C1F9DC85F7A4B8393D3423D14C07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:50:00:fe:b4:9e:f5:71:f4:f8:40:2d:d6:c7: 33:a3:93:72:61:78:9d:2b:cb:00:20:9d:51:6a:ac: ce:83:90:79:d1:16:70:a7:8e:7a:d5:f7:8c:b6:8f: 49:3c:3d:a2:cc:81:ed:e3:b5:cf:04:02:9e:bb:6b: ea:40:7d:6e:43:0a:35:10:d3:ad:cb:27:56:cc:26: ce:8c:61:8a:c9:c4:97:a4:3f:20:73:1d:45:f8:25: 7d:35:d2:ba:e4:f4:48:86:9c:4d:da:8d:72:15:40: 05:90:41:4e:e8:4d:65:64:6e:db:47:97:5d:21:fc: ee:e3:fa:9f:fe:77:64:bc:92:e0:f3:d5:13:40:31: fb:7a:d0:b8:24:ab:03:15:ec:1e:45:c8:71:30:ca: cf:2c:8a:c9:83:6d:75:e7:c9:77:d9:b0:25:a1:85: d8:8d:4c:67:78:74:24:06:61:a5:92:63:d9:fb:ed: 64:6d:bd:75:78:b7:d5:39:a8:8a:05:ae:d3:ab:cb: 0c:d6:10:3b:a5:7d:02:db:fe:7b:fd:70:24:cc:a2: 99:7d:ac:f9:47:55:83:4f:07:8a:54:08:1e:b1:99: 2d:7e:6a:7f:06:18:98:5a:30:20:6b:4d:9b:1f:6b: 8d:79:e9:4e:65:ec:8e:6a:18:ad:b6:ef:34:c7:54: 43:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C1:E0:55:B8:13:C1:F9:DC:85:F7:A4:B8:39:3D:34:23:D1:4C:07 X509v3 Authority Key Identifier: keyid:A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31392e302f32342d3234203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.19.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:09:df:dd:f1:04:02:54:61:e2:c6:6a:2e:77:dd:7b:f8:ab: cd:14:ee:70:b5:84:1e:4c:ce:f5:2d:75:44:e2:7e:b5:26:44: bf:bd:9c:2c:19:a1:64:79:4b:b7:27:f6:e7:be:4d:e0:76:1c: c7:60:5e:44:a3:9d:90:b0:f7:85:65:d9:4b:aa:79:42:4a:b2: 29:b2:d7:50:f7:be:8b:e1:ad:41:90:02:d4:90:17:70:dd:a2: 8f:a8:0d:0b:01:3f:7e:01:d8:be:2c:dd:f5:c0:a6:3c:de:78: 40:28:3d:aa:c6:b7:f5:86:68:fb:36:a4:4e:36:6c:15:b6:82: f0:e1:d6:25:68:94:25:41:dc:75:62:bc:2b:c6:87:04:3a:59: c5:af:b4:a1:40:f2:b9:5e:d8:f8:b1:ba:1f:9b:f1:3f:9a:40: 4a:17:22:a3:f5:c4:af:56:de:36:cb:38:cb:f1:a3:86:e9:46: 8d:8e:9c:df:ad:bd:9b:38:51:72:35:d9:b1:9c:88:b1:98:3d: e3:81:8b:41:cb:75:4b:45:52:1a:43:32:a4:6c:68:41:78:23: ce:bd:11:c9:7f:b9:a7:6d:a1:41:27:a4:7d:c4:09:32:cf:a7: c0:f6:64:5a:bb:0a:22:d0:c9:71:ae:25:f6:ca:98:c8:7f:74: 5b:0d:58:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEK4w3EEK7QKqEzD02pKjU0jtik8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThEMjExQTU0MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4 MEJBNDU4QTAeFw0yNjA1MDMwMjQzMjdaFw0yNzA1MDIwMjQ4MjdaMDMxMTAvBgNV BAMTKEQxQzFFMDU1QjgxM0MxRjlEQzg1RjdBNEI4MzkzRDM0MjNEMTRDMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkUAD+tJ71cfT4QC3WxzOjk3Jh eJ0rywAgnVFqrM6DkHnRFnCnjnrV94y2j0k8PaLMge3jtc8EAp67a+pAfW5DCjUQ 063LJ1bMJs6MYYrJxJekPyBzHUX4JX010rrk9EiGnE3ajXIVQAWQQU7oTWVkbttH l10h/O7j+p/+d2S8kuDz1RNAMft60LgkqwMV7B5FyHEwys8sismDbXXnyXfZsCWh hdiNTGd4dCQGYaWSY9n77WRtvXV4t9U5qIoFrtOrywzWEDulfQLb/nv9cCTMopl9 rPlHVYNPB4pUCB6xmS1+an8GGJhaMCBrTZsfa4156U5l7I5qGK227zTHVEMTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0cHgVbgTwfnchfekuDk9NCPRTAcwHwYDVR0j BBgwFoAUqNIRpUCgpXxdastQMgkbGoC6RYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4NDQtNGU2YzdhM2M5N2Q5LzAvQThEMjExQTU0 MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4MEJBNDU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOEQyMTFBNTQwQTBBNTdDNUQ2QUNCNTAzMjA5MUIxQTgwQkE0 NThBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGEzANBgkqhkiG 9w0BAQsFAAOCAQEAPwnf3fEEAlRh4sZqLnfde/irzRTucLWEHkzO9S11ROJ+tSZE v72cLBmhZHlLtyf2575N4HYcx2BeRKOdkLD3hWXZS6p5QkqyKbLXUPe+i+GtQZAC 1JAXcN2ij6gNCwE/fgHYvizd9cCmPN54QCg9qsa39YZo+zakTjZsFbaC8OHWJWiU JUHcdWK8K8aHBDpZxa+0oUDyuV7Y+LG6H5vxP5pAShcio/XEr1beNss4y/GjhulG jY6c3629mzhRcjXZsZyIsZg944GLQct1S0VSGkMypGxoQXgjzr0RyX+5p22hQSek fcQJMs+nwPZkWrsKItDJca4l9sqYyH90Ww1YFg== -----END CERTIFICATE-----Generated at Wed May 13 02:19:11 2026 by rpki-client