$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa File: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (raw, json) Hash identifier: A6gvhW7lfvQRxs5cFOMF6l/Sth1dI8OrQvYNut71iwg= Subject key identifier: A1:C1:0E:27:8A:FC:60:45:50:3C:F1:B2:49:2B:91:45:38:B6:66:57 Certificate issuer: /CN=A7B168CE466AE74446B650CF824618958D3868FC Certificate serial: 4EF265C3B16E73AF93FF6F9B233FCC92A2139798 Authority key identifier: A7:B1:68:CE:46:6A:E7:44:46:B6:50:CF:82:46:18:95:8D:38:68:FC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7B168CE466AE74446B650CF824618958D3868FC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa Signing time: Sun 03 May 2026 02:50:01 +0000 ROA not before: Sun 03 May 2026 02:45:01 +0000 ROA not after: Sun 02 May 2027 02:50:01 +0000 asID: 141895 IP address blocks: 103.163.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/A7B168CE466AE74446B650CF824618958D3868FC.crl rsync://rpki-rsync.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/A7B168CE466AE74446B650CF824618958D3868FC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7B168CE466AE74446B650CF824618958D3868FC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f2:65:c3:b1:6e:73:af:93:ff:6f:9b:23:3f:cc:92:a2:13:97:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7B168CE466AE74446B650CF824618958D3868FC Validity Not Before: May 3 02:45:01 2026 GMT Not After : May 2 02:50:01 2027 GMT Subject: CN=A1C10E278AFC6045503CF1B2492B914538B66657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:45:2e:c5:8d:ca:66:61:e3:df:78:0e:01: b6:82:c1:37:3b:c6:0e:37:c2:7a:34:45:db:ee:d5: e1:65:cd:92:ee:a3:2b:b6:ce:6d:14:c6:ef:92:35: 49:fa:ec:42:3e:73:39:07:73:45:2c:7d:54:4c:92: 2d:fd:be:0f:13:6f:71:f8:56:29:5d:b3:b0:53:24: ce:cf:e3:77:e7:d7:e3:49:27:10:8f:56:44:ee:00: 2f:d4:2d:4a:1e:04:6d:ef:c2:97:39:07:ed:6c:73: 29:9f:cb:18:e5:de:bc:42:a1:20:37:a3:37:6b:6c: 59:55:19:2c:67:72:c8:da:00:d3:d9:7b:a1:37:b5: bb:0d:9f:6b:f3:d0:98:9b:bb:51:b5:55:45:84:6e: 0a:af:3b:8a:81:b4:56:5c:33:bd:ef:a2:e2:66:70: 6d:81:92:ba:0c:94:02:f6:bb:e3:ac:7b:c2:bb:8f: 92:16:74:dd:da:7f:07:ec:5d:a7:97:2f:9f:a8:ac: 1d:e7:cf:73:bc:5f:b6:96:54:00:c8:d3:9d:c7:5d: ea:aa:c8:72:99:4b:db:b8:27:50:90:91:39:e8:ac: 20:c9:c9:a8:c3:d4:aa:1c:94:6b:f8:02:1f:b9:4b: 89:e9:f6:84:ca:4a:7e:44:6d:34:47:9a:bb:98:52: 08:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C1:0E:27:8A:FC:60:45:50:3C:F1:B2:49:2B:91:45:38:B6:66:57 X509v3 Authority Key Identifier: keyid:A7:B1:68:CE:46:6A:E7:44:46:B6:50:CF:82:46:18:95:8D:38:68:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/A7B168CE466AE74446B650CF824618958D3868FC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7B168CE466AE74446B650CF824618958D3868FC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.229.0/24 Signature Algorithm: sha256WithRSAEncryption 49:81:d0:ed:52:44:fd:9e:26:26:6d:f1:c1:25:59:e2:cc:61: 0d:62:b1:e1:ab:ac:c3:ec:a3:9d:f0:ca:1e:74:81:a8:f8:e4: 06:77:2d:58:55:92:bc:ab:12:4a:22:d5:c0:a4:b4:d8:ef:ee: fb:e4:39:2b:54:b9:fb:c1:75:ee:22:71:1a:86:bd:c6:46:8d: bf:ff:05:16:ac:39:bc:ac:63:c6:07:d4:f0:79:b6:d3:0e:26: 3e:47:c9:37:dd:c1:67:ca:f4:71:f1:0b:0f:d1:88:87:5e:87: 57:f0:8c:83:21:04:fd:2a:6f:f9:04:86:c4:23:19:40:ad:e1: 79:86:1f:85:6b:99:ad:4b:b4:a8:a0:f9:08:a7:08:d2:f8:08: b8:71:33:79:73:ee:2d:53:78:6a:37:20:c5:4b:1d:ca:5f:89: 4e:9d:63:c8:e9:64:5a:4a:fd:b7:7b:64:46:b2:56:21:0f:b3: f9:e6:0a:5c:d8:b4:9d:21:3c:2d:63:30:a8:9f:4d:35:c6:02: da:71:0d:f1:7b:cd:ac:d3:07:40:e4:6b:f7:97:62:c5:2e:3c: 23:ec:63:88:2a:a5:fe:38:9a:db:e0:de:e3:0e:3b:0f:c7:81: 3c:40:78:da:75:d7:16:7c:f7:20:71:3e:f4:2b:6c:0a:c1:cf: fd:c5:f4:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTvJlw7Fuc6+T/2+bIz/MkqITl5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdCMTY4Q0U0NjZBRTc0NDQ2QjY1MENGODI0NjE4OTU4 RDM4NjhGQzAeFw0yNjA1MDMwMjQ1MDFaFw0yNzA1MDIwMjUwMDFaMDMxMTAvBgNV BAMTKEExQzEwRTI3OEFGQzYwNDU1MDNDRjFCMjQ5MkI5MTQ1MzhCNjY2NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKX0UuxY3KZmHj33gOAbaCwTc7 xg43wno0Rdvu1eFlzZLuoyu2zm0Uxu+SNUn67EI+czkHc0UsfVRMki39vg8Tb3H4 Vilds7BTJM7P43fn1+NJJxCPVkTuAC/ULUoeBG3vwpc5B+1scymfyxjl3rxCoSA3 ozdrbFlVGSxncsjaANPZe6E3tbsNn2vz0Jibu1G1VUWEbgqvO4qBtFZcM73vouJm cG2BkroMlAL2u+Ose8K7j5IWdN3afwfsXaeXL5+orB3nz3O8X7aWVADI053HXeqq yHKZS9u4J1CQkTnorCDJyajD1KoclGv4Ah+5S4np9oTKSn5EbTRHmruYUggjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUocEOJ4r8YEVQPPGySSuRRTi2ZlcwHwYDVR0j BBgwFoAUp7FozkZq50RGtlDPgkYYlY04aPwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNkMGQ3ZmEtZDZmOC00YzIyLWI0OGEtNThiOGVkOGVkZGE3LzAvQTdCMTY4Q0U0 NjZBRTc0NDQ2QjY1MENGODI0NjE4OTU4RDM4NjhGQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BN0IxNjhDRTQ2NkFFNzQ0NDZCNjUwQ0Y4MjQ2MTg5NThEMzg2 OEZDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZDBkN2ZhLWQ2ZjgtNGMyMi1i NDhhLTU4YjhlZDhlZGRhNy8wLzMxMzAzMzJlMzEzNjMzMmUzMjMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno+UwDQYJ KoZIhvcNAQELBQADggEBAEmB0O1SRP2eJiZt8cElWeLMYQ1iseGrrMPso53wyh50 gaj45AZ3LVhVkryrEkoi1cCktNjv7vvkOStUufvBde4icRqGvcZGjb//BRasObys Y8YH1PB5ttMOJj5HyTfdwWfK9HHxCw/RiIdeh1fwjIMhBP0qb/kEhsQjGUCt4XmG H4Vrma1LtKig+QinCNL4CLhxM3lz7i1TeGo3IMVLHcpfiU6dY8jpZFpK/bd7ZEay ViEPs/nmClzYtJ0hPC1jMKifTTXGAtpxDfF7zazTB0Dka/eXYsUuPCPsY4gqpf44 mtvg3uMOOw/HgTxAeNp11xZ89yBxPvQrbArBz/3F9MA= -----END CERTIFICATE-----Generated at Wed May 13 03:55:28 2026 by rpki-client