$ rpki-client -vvf rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137312e302f32342d3234203d3e203633383732.roa File: 3130332e35322e3137312e302f32342d3234203d3e203633383732.roa (raw, json) Hash identifier: b/Ogd32BhDs9RrIQse7X4kUyjngtFlmzyV/u5hkoU2o= Subject key identifier: 74:54:A8:BA:D4:6C:F4:C9:5E:37:79:80:93:8D:F7:7A:A5:EB:95:F5 Certificate issuer: /CN=E86D81600C2E0C408A83A10FE1734F7CB80049B5 Certificate serial: 4F77FEBB0C06DEC00263E88084588BDFFD90467D Authority key identifier: E8:6D:81:60:0C:2E:0C:40:8A:83:A1:0F:E1:73:4F:7C:B8:00:49:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E86D81600C2E0C408A83A10FE1734F7CB80049B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137312e302f32342d3234203d3e203633383732.roa Signing time: Sun 03 May 2026 02:53:17 +0000 ROA not before: Sun 03 May 2026 02:48:17 +0000 ROA not after: Sun 02 May 2027 02:53:17 +0000 asID: 63872 IP address blocks: 103.52.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/E86D81600C2E0C408A83A10FE1734F7CB80049B5.crl rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/E86D81600C2E0C408A83A10FE1734F7CB80049B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E86D81600C2E0C408A83A10FE1734F7CB80049B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:77:fe:bb:0c:06:de:c0:02:63:e8:80:84:58:8b:df:fd:90:46:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E86D81600C2E0C408A83A10FE1734F7CB80049B5 Validity Not Before: May 3 02:48:17 2026 GMT Not After : May 2 02:53:17 2027 GMT Subject: CN=7454A8BAD46CF4C95E377980938DF77AA5EB95F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ec:6f:51:72:85:9a:aa:0b:d2:79:e9:51:8d: c0:9d:e1:d0:45:58:29:ce:85:e0:3d:60:a5:6f:51: 74:88:84:dc:0c:99:05:3d:8f:e7:d3:14:d6:c2:2e: 91:57:28:8f:eb:b2:63:c3:4e:1d:16:de:c6:d7:ef: e2:0d:40:be:7f:61:0b:64:c1:6c:53:65:00:5c:79: e4:05:72:91:cf:e7:c6:04:a0:50:76:58:23:f7:10: 20:c1:1b:23:90:44:98:81:ab:33:7a:59:22:b8:5b: 02:e7:60:4f:47:af:3d:a4:4f:f5:e2:35:be:8d:d2: 73:08:78:77:4c:7d:51:4c:70:ef:51:98:73:ed:6f: 96:8f:17:a2:c0:9f:37:28:fa:bf:81:56:dc:ba:12: d5:12:df:45:96:2b:9e:d9:c1:29:80:9d:46:5b:2f: b4:6b:c0:65:ae:45:56:ec:74:a1:a6:ba:b6:2b:84: 87:9f:57:ce:da:26:20:d1:2e:e2:60:1f:5b:34:ff: 2d:3d:fa:e7:a9:f1:7d:5f:1e:84:9b:7f:64:4d:67: 34:48:bb:c0:13:b1:cd:71:f9:90:21:dc:ca:db:af: 6a:4a:be:89:db:42:65:4c:57:7a:ed:82:c7:4d:2d: b1:e2:98:cc:7b:5c:b3:bb:ec:79:ed:5a:f9:1c:5a: 4a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:54:A8:BA:D4:6C:F4:C9:5E:37:79:80:93:8D:F7:7A:A5:EB:95:F5 X509v3 Authority Key Identifier: keyid:E8:6D:81:60:0C:2E:0C:40:8A:83:A1:0F:E1:73:4F:7C:B8:00:49:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/E86D81600C2E0C408A83A10FE1734F7CB80049B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E86D81600C2E0C408A83A10FE1734F7CB80049B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137312e302f32342d3234203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.171.0/24 Signature Algorithm: sha256WithRSAEncryption 48:b8:a9:60:ea:42:0a:fc:fc:7a:ab:66:d0:24:1c:28:14:9c: 21:2e:92:94:6a:44:5b:70:b6:79:90:f6:48:fd:ea:ff:91:76: ce:e4:80:79:c6:4a:00:e5:7b:27:cf:c3:c3:28:98:d2:f2:80: 77:36:58:fb:ab:6e:6a:01:2f:7e:b3:4d:0d:5f:4d:f7:3c:2f: 8a:8a:13:aa:2c:14:b3:08:64:32:dd:2b:64:3d:35:88:f4:3f: 35:0f:c4:ee:a5:b9:bc:3e:68:3a:e0:70:21:d6:b8:80:cc:ba: 96:32:f0:4c:4f:cd:88:0c:6c:20:b5:e3:f8:52:80:06:a7:16: 9f:6e:2e:19:0f:a9:08:96:39:4d:8c:54:4f:5e:ef:1e:7e:2a: 36:65:13:b5:18:6e:db:7e:53:f4:99:d8:b1:d4:fd:63:70:7c: c0:5a:90:85:6f:6e:5b:00:8c:bb:4a:be:89:9e:33:06:01:b4: bf:34:af:a6:b6:05:db:cc:3a:46:a3:48:1e:46:cd:ac:1a:4a: 2d:be:ca:fe:d6:d7:aa:ce:72:fe:8d:1f:e6:e1:58:c5:2c:36: 89:43:f1:27:58:8e:28:e5:cc:f6:92:78:f0:36:29:0f:c2:1e: ab:8e:ca:db:ec:16:3c:af:a4:e7:08:5e:3d:19:48:d7:85:c6: 8a:58:7c:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT3f+uwwG3sACY+iAhFiL3/2QRn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg2RDgxNjAwQzJFMEM0MDhBODNBMTBGRTE3MzRGN0NC ODAwNDlCNTAeFw0yNjA1MDMwMjQ4MTdaFw0yNzA1MDIwMjUzMTdaMDMxMTAvBgNV BAMTKDc0NTRBOEJBRDQ2Q0Y0Qzk1RTM3Nzk4MDkzOERGNzdBQTVFQjk1RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi7G9RcoWaqgvSeelRjcCd4dBF WCnOheA9YKVvUXSIhNwMmQU9j+fTFNbCLpFXKI/rsmPDTh0W3sbX7+INQL5/YQtk wWxTZQBceeQFcpHP58YEoFB2WCP3ECDBGyOQRJiBqzN6WSK4WwLnYE9Hrz2kT/Xi Nb6N0nMIeHdMfVFMcO9RmHPtb5aPF6LAnzco+r+BVty6EtUS30WWK57ZwSmAnUZb L7RrwGWuRVbsdKGmurYrhIefV87aJiDRLuJgH1s0/y09+uep8X1fHoSbf2RNZzRI u8ATsc1x+ZAh3Mrbr2pKvonbQmVMV3rtgsdNLbHimMx7XLO77HntWvkcWkodAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdFSoutRs9MleN3mAk433eqXrlfUwHwYDVR0j BBgwFoAU6G2BYAwuDECKg6EP4XNPfLgASbUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTZiYjMzM2MtOTgyYi00ZmNlLWFjODEtYmMwNjkyMjllMjQzLzAvRTg2RDgxNjAw QzJFMEM0MDhBODNBMTBGRTE3MzRGN0NCODAwNDlCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FODZEODE2MDBDMkUwQzQwOEE4M0ExMEZFMTczNEY3Q0I4MDA0 OUI1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMxMzAzMzJlMzUzMjJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0qzANBgkqhkiG 9w0BAQsFAAOCAQEASLipYOpCCvz8eqtm0CQcKBScIS6SlGpEW3C2eZD2SP3q/5F2 zuSAecZKAOV7J8/DwyiY0vKAdzZY+6tuagEvfrNNDV9N9zwviooTqiwUswhkMt0r ZD01iPQ/NQ/E7qW5vD5oOuBwIda4gMy6ljLwTE/NiAxsILXj+FKABqcWn24uGQ+p CJY5TYxUT17vHn4qNmUTtRhu235T9JnYsdT9Y3B8wFqQhW9uWwCMu0q+iZ4zBgG0 vzSvprYF28w6RqNIHkbNrBpKLb7K/tbXqs5y/o0f5uFYxSw2iUPxJ1iOKOXM9pJ4 8DYpD8Ieq47K2+wWPK+k5whePRlI14XGilh88Q== -----END CERTIFICATE-----Generated at Wed May 13 03:48:45 2026 by rpki-client