$ rpki-client -vvf rpki-rsync.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa File: 3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: HUrUqr6VOIuC0aE2gsmFrDbZuNmsTOPwd47q0S/1QYk= Subject key identifier: 4D:01:23:20:33:0A:BB:EC:68:B0:0D:70:E0:FF:4A:10:6B:52:AF:5D Certificate issuer: /CN=207F78495B91DD933A3C60FB6F5F3A01B3AEB244 Certificate serial: 693D67CF265B164022FC139FC620CDA563C09435 Authority key identifier: 20:7F:78:49:5B:91:DD:93:3A:3C:60:FB:6F:5F:3A:01:B3:AE:B2:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207F78495B91DD933A3C60FB6F5F3A01B3AEB244.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa Signing time: Sun 03 May 2026 02:48:30 +0000 ROA not before: Sun 03 May 2026 02:43:30 +0000 ROA not after: Sun 02 May 2027 02:48:30 +0000 asID: 131743 IP address blocks: 103.227.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/207F78495B91DD933A3C60FB6F5F3A01B3AEB244.crl rsync://rpki-rsync.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/207F78495B91DD933A3C60FB6F5F3A01B3AEB244.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207F78495B91DD933A3C60FB6F5F3A01B3AEB244.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:3d:67:cf:26:5b:16:40:22:fc:13:9f:c6:20:cd:a5:63:c0:94:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207F78495B91DD933A3C60FB6F5F3A01B3AEB244 Validity Not Before: May 3 02:43:30 2026 GMT Not After : May 2 02:48:30 2027 GMT Subject: CN=4D012320330ABBEC68B00D70E0FF4A106B52AF5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b4:35:bb:4b:2a:57:8d:97:09:db:80:4f:9e: da:df:07:c5:5a:a3:00:41:cb:cc:85:30:39:ac:46: 3a:d4:14:7c:2a:ee:a3:35:19:5f:95:44:f1:a3:38: 02:9d:36:f8:5b:fc:fe:04:8a:17:c1:db:7f:0e:e9: 63:25:db:5b:48:d9:79:e5:42:89:2d:94:6e:e1:9b: 2d:f0:bb:5c:1f:45:81:9a:b9:d9:08:8a:81:46:1e: 64:3f:e7:00:08:4a:2d:11:38:a0:a7:5c:36:d6:d4: 95:f0:11:96:b4:3b:ee:90:8e:dd:48:d9:c6:ca:67: f3:02:dd:75:14:7e:be:a8:86:10:e1:17:9e:ea:15: df:ef:71:fe:7d:bd:a5:79:f8:c3:8e:fa:a1:6c:0c: b7:cd:d5:b5:9f:39:03:fd:4f:59:af:7c:d7:0a:16: c5:b0:68:41:43:c8:8a:bd:37:ec:ed:88:d2:cb:2e: 70:a5:5f:cc:8d:cc:d0:74:b9:fd:67:5d:14:4b:7e: c8:45:e4:11:f1:7d:60:31:43:10:26:2d:da:5c:92: 33:ad:92:a1:63:aa:e9:5d:f4:0c:42:a0:8a:f0:b3: 78:67:91:5c:29:63:cb:e9:e5:58:bf:ce:b3:17:6d: f1:2b:bd:a9:42:50:6b:34:ad:eb:fc:45:d1:c6:4e: e9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:01:23:20:33:0A:BB:EC:68:B0:0D:70:E0:FF:4A:10:6B:52:AF:5D X509v3 Authority Key Identifier: keyid:20:7F:78:49:5B:91:DD:93:3A:3C:60:FB:6F:5F:3A:01:B3:AE:B2:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/207F78495B91DD933A3C60FB6F5F3A01B3AEB244.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207F78495B91DD933A3C60FB6F5F3A01B3AEB244.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.141.0/24 Signature Algorithm: sha256WithRSAEncryption 63:d4:75:3c:d9:22:a9:43:da:1f:c9:e0:f4:ca:35:55:0e:c1: 96:51:50:1e:29:c1:58:f1:b0:01:6b:5b:cd:f6:97:d6:af:06: e7:a4:4b:9a:01:0a:58:da:88:78:5a:86:e0:5e:16:73:f5:19: ca:fc:77:07:96:ff:b9:7b:de:1f:03:1d:ef:5e:85:1e:66:52: e9:3b:47:97:da:ef:17:39:d8:ac:34:6f:dc:19:5b:84:f9:99: c6:04:3a:8b:6e:b1:6f:c3:40:ad:6b:c8:06:93:46:02:93:8b: fc:5c:47:2e:3e:61:8b:ec:00:08:e1:bb:ba:21:bf:28:1b:85: a8:f6:81:97:22:eb:cd:c1:12:90:ec:c3:76:da:14:42:b7:a8: 70:80:97:29:22:c8:00:0c:c6:f7:e7:da:31:22:03:f6:59:89: 17:c4:c4:ef:93:d5:1b:46:98:63:c8:6e:00:8a:83:29:1e:c9: 9a:11:d1:17:c2:3e:08:79:6c:73:f1:b4:ec:f2:19:6d:dc:7b: b9:b8:22:42:71:a2:2a:9d:b1:c0:dd:08:33:26:4b:c6:48:4d: 86:41:5a:76:7d:d2:f0:61:7a:0c:ba:ca:eb:ad:07:ee:16:3a: c6:84:7d:77:04:0a:b8:45:a5:f5:38:c1:79:5c:4a:49:14:ef: 18:90:dd:ca -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaT1nzyZbFkAi/BOfxiDNpWPAlDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3Rjc4NDk1QjkxREQ5MzNBM0M2MEZCNkY1RjNBMDFC M0FFQjI0NDAeFw0yNjA1MDMwMjQzMzBaFw0yNzA1MDIwMjQ4MzBaMDMxMTAvBgNV BAMTKDREMDEyMzIwMzMwQUJCRUM2OEIwMEQ3MEUwRkY0QTEwNkI1MkFGNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEtDW7SypXjZcJ24BPntrfB8Va owBBy8yFMDmsRjrUFHwq7qM1GV+VRPGjOAKdNvhb/P4EihfB238O6WMl21tI2Xnl QoktlG7hmy3wu1wfRYGaudkIioFGHmQ/5wAISi0ROKCnXDbW1JXwEZa0O+6Qjt1I 2cbKZ/MC3XUUfr6ohhDhF57qFd/vcf59vaV5+MOO+qFsDLfN1bWfOQP9T1mvfNcK FsWwaEFDyIq9N+ztiNLLLnClX8yNzNB0uf1nXRRLfshF5BHxfWAxQxAmLdpckjOt kqFjquld9AxCoIrws3hnkVwpY8vp5Vi/zrMXbfErvalCUGs0rev8RdHGTukLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTQEjIDMKu+xosA1w4P9KEGtSr10wHwYDVR0j BBgwFoAUIH94SVuR3ZM6PGD7b186AbOuskQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODc3NDg1NmYtNzQ1My00ZDAyLWJjMzUtMzQ4MmViNTY0NmEyLzAvMjA3Rjc4NDk1 QjkxREQ5MzNBM0M2MEZCNkY1RjNBMDFCM0FFQjI0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdGNzg0OTVCOTFERDkzM0EzQzYwRkI2RjVGM0EwMUIzQUVC MjQ0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3NzQ4NTZmLTc0NTMtNGQwMi1i YzM1LTM0ODJlYjU2NDZhMi8wLzMxMzAzMzJlMzIzMjM3MmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn440wDQYJ KoZIhvcNAQELBQADggEBAGPUdTzZIqlD2h/J4PTKNVUOwZZRUB4pwVjxsAFrW832 l9avBuekS5oBCljaiHhahuBeFnP1Gcr8dweW/7l73h8DHe9ehR5mUuk7R5fa7xc5 2Kw0b9wZW4T5mcYEOotusW/DQK1ryAaTRgKTi/xcRy4+YYvsAAjhu7ohvygbhaj2 gZci683BEpDsw3baFEK3qHCAlykiyAAMxvfn2jEiA/ZZiRfExO+T1RtGmGPIbgCK gykeyZoR0RfCPgh5bHPxtOzyGW3ce7m4IkJxoiqdscDdCDMmS8ZITYZBWnZ90vBh egy6yuutB+4WOsaEfXcECrhFpfU4wXlcSkkU7xiQ3co= -----END CERTIFICATE-----Generated at Wed May 13 11:22:22 2026 by rpki-client