$ rpki-client -vvf rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa File: 3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa (raw, json) Hash identifier: wvIAxFKPShLQpqf7iVcqajkRTzgNz/nJFo4xan5f+EA= Subject key identifier: BD:30:EB:DA:BD:C2:09:0B:17:A6:86:28:40:39:17:B9:18:A3:23:B2 Certificate issuer: /CN=FD353187FB0D364FA7086A1728B9894B9F43AFA7 Certificate serial: 1263EECBF556CEC0987271174CF02E9758C86BE8 Authority key identifier: FD:35:31:87:FB:0D:36:4F:A7:08:6A:17:28:B9:89:4B:9F:43:AF:A7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD353187FB0D364FA7086A1728B9894B9F43AFA7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa Signing time: Sun 03 May 2026 02:51:31 +0000 ROA not before: Sun 03 May 2026 02:46:31 +0000 ROA not after: Sun 02 May 2027 02:51:31 +0000 asID: 134640 IP address blocks: 103.22.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/FD353187FB0D364FA7086A1728B9894B9F43AFA7.crl rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/FD353187FB0D364FA7086A1728B9894B9F43AFA7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD353187FB0D364FA7086A1728B9894B9F43AFA7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:63:ee:cb:f5:56:ce:c0:98:72:71:17:4c:f0:2e:97:58:c8:6b:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD353187FB0D364FA7086A1728B9894B9F43AFA7 Validity Not Before: May 3 02:46:31 2026 GMT Not After : May 2 02:51:31 2027 GMT Subject: CN=BD30EBDABDC2090B17A68628403917B918A323B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:21:08:de:a6:ec:1f:a1:bd:92:90:fa:83:da: f4:f7:e1:30:35:f8:f5:12:9d:a7:74:07:76:05:ff: 99:4c:d3:94:fb:3e:68:67:ed:5e:04:ad:14:a1:92: bb:4f:d4:51:11:9d:11:2e:99:11:4e:ac:98:49:71: 3c:3f:d1:44:07:ca:ee:96:53:bc:04:56:2b:77:ba: 2b:1a:41:75:05:7d:75:fd:5b:ce:d9:22:a4:11:f2: 6e:a2:86:74:8c:07:5a:86:dd:69:fd:56:fb:22:fa: da:22:a7:ac:ff:5c:5d:61:0e:27:c3:b1:3a:a8:79: a8:0a:5f:d2:e1:01:76:be:2f:19:33:f1:62:9e:a0: ab:49:06:c9:02:6c:35:cb:80:8a:b9:5a:37:aa:ec: b6:f9:7b:85:bd:fb:fe:68:19:4f:36:63:f1:7c:a8: 38:5c:91:ef:8a:37:57:fd:62:5f:76:ca:4a:24:f5: eb:5b:25:29:ea:11:74:e4:f5:8c:2c:9f:63:5a:54: 0c:8e:8e:36:2f:5e:ba:c5:62:67:99:64:0f:7d:06: 58:b5:ae:b6:9e:1a:80:c2:63:ed:8b:57:60:fa:a3: ef:0e:7f:f5:0d:fe:45:52:7b:d0:a0:8a:a2:89:3d: 78:d0:90:03:b9:d7:55:89:bb:5c:ee:84:86:50:6a: 68:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:30:EB:DA:BD:C2:09:0B:17:A6:86:28:40:39:17:B9:18:A3:23:B2 X509v3 Authority Key Identifier: keyid:FD:35:31:87:FB:0D:36:4F:A7:08:6A:17:28:B9:89:4B:9F:43:AF:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/FD353187FB0D364FA7086A1728B9894B9F43AFA7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD353187FB0D364FA7086A1728B9894B9F43AFA7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.204.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:1f:ac:6e:89:e5:08:19:22:98:d1:86:f5:ef:fc:f6:94:92: 36:93:b2:e4:68:22:7f:5d:6e:b4:18:8b:6c:cd:d0:ec:d6:c3: a3:d5:cb:82:89:53:42:b3:3c:8d:ee:07:1a:31:b7:66:71:98: 09:7f:0f:c6:1e:ac:33:a6:ae:d9:d5:b2:9c:93:64:e6:20:cf: 2a:2e:9b:bf:66:e6:68:bc:7c:1c:48:94:6a:27:20:43:7d:cb: 44:de:10:be:3c:8b:89:2d:b7:ec:22:46:85:fd:d5:31:98:8e: 61:89:2e:aa:cc:1b:77:e6:da:ba:04:cc:d4:af:86:44:bf:7a: 51:78:9a:7b:aa:14:7e:1e:46:4c:f3:eb:04:55:ee:d2:6d:7b: 50:fa:72:e6:95:bd:d2:84:58:d0:fd:64:5b:1e:0f:f2:2a:a4: 34:e4:05:c6:9f:96:6b:75:5b:89:ae:19:fc:50:68:12:94:07: f1:cf:da:d1:b3:c6:ea:fb:c8:92:d3:55:1f:57:a4:66:40:29: 05:8e:d6:f4:9f:ad:cb:f1:a8:d9:fd:a7:59:01:7d:89:0c:61: 8f:0c:d5:4d:dd:16:20:8e:96:90:b7:c1:c9:ba:90:74:42:ad: 1e:d9:8b:3d:02:6c:b2:e5:dd:c7:d6:7f:e0:7f:fb:87:24:98: ca:e2:5e:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEmPuy/VWzsCYcnEXTPAul1jIa+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQzNTMxODdGQjBEMzY0RkE3MDg2QTE3MjhCOTg5NEI5 RjQzQUZBNzAeFw0yNjA1MDMwMjQ2MzFaFw0yNzA1MDIwMjUxMzFaMDMxMTAvBgNV BAMTKEJEMzBFQkRBQkRDMjA5MEIxN0E2ODYyODQwMzkxN0I5MThBMzIzQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOIQjepuwfob2SkPqD2vT34TA1 +PUSnad0B3YF/5lM05T7Pmhn7V4ErRShkrtP1FERnREumRFOrJhJcTw/0UQHyu6W U7wEVit3uisaQXUFfXX9W87ZIqQR8m6ihnSMB1qG3Wn9Vvsi+toip6z/XF1hDifD sTqoeagKX9LhAXa+Lxkz8WKeoKtJBskCbDXLgIq5Wjeq7Lb5e4W9+/5oGU82Y/F8 qDhcke+KN1f9Yl92ykok9etbJSnqEXTk9Ywsn2NaVAyOjjYvXrrFYmeZZA99Bli1 rraeGoDCY+2LV2D6o+8Of/UN/kVSe9CgiqKJPXjQkAO511WJu1zuhIZQamipAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvTDr2r3CCQsXpoYoQDkXuRijI7IwHwYDVR0j BBgwFoAU/TUxh/sNNk+nCGoXKLmJS59Dr6cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTA0ZDAzOTctZmZhMC00OTAzLTgwNWYtMDg0NTI3YmM0MzBjLzAvRkQzNTMxODdG QjBEMzY0RkE3MDg2QTE3MjhCOTg5NEI5RjQzQUZBNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GRDM1MzE4N0ZCMEQzNjRGQTcwODZBMTcyOEI5ODk0QjlGNDNB RkE3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkwNGQwMzk3LWZmYTAtNDkwMy04 MDVmLTA4NDUyN2JjNDMwYy8wLzMxMzAzMzJlMzIzMjJlMzIzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxbMMA0GCSqG SIb3DQEBCwUAA4IBAQAuH6xuieUIGSKY0Yb17/z2lJI2k7LkaCJ/XW60GItszdDs 1sOj1cuCiVNCszyN7gcaMbdmcZgJfw/GHqwzpq7Z1bKck2TmIM8qLpu/ZuZovHwc SJRqJyBDfctE3hC+PIuJLbfsIkaF/dUxmI5hiS6qzBt35tq6BMzUr4ZEv3pReJp7 qhR+HkZM8+sEVe7SbXtQ+nLmlb3ShFjQ/WRbHg/yKqQ05AXGn5ZrdVuJrhn8UGgS lAfxz9rRs8bq+8iS01UfV6RmQCkFjtb0n63L8ajZ/adZAX2JDGGPDNVN3RYgjpaQ t8HJupB0Qq0e2Ys9Amyy5d3H1n/gf/uHJJjK4l48 -----END CERTIFICATE-----Generated at Wed May 13 09:27:19 2026 by rpki-client