$ rpki-client -vvf rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/3130332e39332e3135382e302f32332d3234203d3e20313336313136.roa File: 3130332e39332e3135382e302f32332d3234203d3e20313336313136.roa (raw, json) Hash identifier: SMyShINBZJhBLQDbVGEzp9/aVi59DehpgguYlaDtpEI= Subject key identifier: CB:34:0E:3D:17:A5:A7:63:1D:1F:96:50:86:77:EA:4E:AF:89:18:41 Certificate issuer: /CN=85672FF4607E3AFD9CACD97C84E0F247A89FC3C7 Certificate serial: 5941629EA1BDEB3042BEBCACC85D8E1D479195E6 Authority key identifier: 85:67:2F:F4:60:7E:3A:FD:9C:AC:D9:7C:84:E0:F2:47:A8:9F:C3:C7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/3130332e39332e3135382e302f32332d3234203d3e20313336313136.roa Signing time: Sun 03 May 2026 02:54:20 +0000 ROA not before: Sun 03 May 2026 02:49:20 +0000 ROA not after: Sun 02 May 2027 02:54:20 +0000 asID: 136116 IP address blocks: 103.93.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:41:62:9e:a1:bd:eb:30:42:be:bc:ac:c8:5d:8e:1d:47:91:95:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85672FF4607E3AFD9CACD97C84E0F247A89FC3C7 Validity Not Before: May 3 02:49:20 2026 GMT Not After : May 2 02:54:20 2027 GMT Subject: CN=CB340E3D17A5A7631D1F96508677EA4EAF891841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3b:84:ff:8b:3e:42:f8:ba:a2:62:1e:37:49: 41:04:d6:23:e4:29:9a:75:ef:ee:e1:0b:8a:3b:e2: b2:48:fb:5e:33:97:34:85:45:99:fb:fb:40:ee:89: f4:eb:72:60:95:73:f9:4c:63:f5:5d:e1:8e:8d:90: 0d:e2:31:ba:bb:04:a1:f8:75:65:bc:95:ca:44:11: ea:59:1f:10:6c:a6:fc:0e:3d:fb:f6:28:42:08:33: 25:6e:21:93:9b:81:26:3c:a4:9c:f7:f9:03:4e:ea: cf:fa:30:32:53:2e:cf:f7:e3:7b:86:f1:7c:1d:7f: fc:51:0c:86:eb:ed:9e:37:f7:85:10:56:9f:75:75: a0:c2:47:c7:0f:4a:28:a0:42:11:a0:35:06:92:6c: 37:c0:15:3b:7f:2b:9e:23:61:8d:7b:40:85:3d:00: f1:fb:4d:a5:1b:4f:45:6d:40:58:49:0a:a1:7b:b3: 96:0f:21:30:63:47:f6:9d:04:53:48:54:b2:d6:9d: 17:e6:44:51:a7:6c:f6:79:70:89:a9:a0:6f:f1:0d: 90:c1:45:84:a8:8d:ee:63:ed:7c:85:9b:d2:92:3b: d7:35:5a:31:be:74:96:88:3d:5d:9a:16:6f:e6:ae: 80:fb:ef:84:e1:3e:71:00:cf:f8:6a:2c:91:3b:a5: 1d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:34:0E:3D:17:A5:A7:63:1D:1F:96:50:86:77:EA:4E:AF:89:18:41 X509v3 Authority Key Identifier: keyid:85:67:2F:F4:60:7E:3A:FD:9C:AC:D9:7C:84:E0:F2:47:A8:9F:C3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/3130332e39332e3135382e302f32332d3234203d3e20313336313136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.93.158.0/23 Signature Algorithm: sha256WithRSAEncryption 89:6a:09:b6:6c:1a:22:11:af:5d:6d:5e:3b:b3:ce:47:49:2f: 0c:e0:be:57:df:c5:51:88:34:2d:f6:6c:6b:ac:36:57:2b:a8: e7:6c:8e:18:c6:02:6d:e1:dd:b0:1d:d9:62:6e:c2:c8:44:3f: 7a:c0:63:83:75:71:72:db:a9:87:ca:c4:f2:8c:e2:ab:05:5f: 3c:1a:a9:a5:75:fe:7e:32:2e:1d:f2:fa:e5:14:20:57:6d:df: 84:d1:b8:20:3d:1f:2d:4c:46:95:10:87:54:75:47:c0:e4:47: 31:6e:aa:9f:db:80:e0:63:2d:9b:40:8d:80:b0:67:44:a6:81: 31:e3:8a:d5:43:73:9f:07:94:5f:d5:75:12:44:88:d7:3f:1b: 62:bc:11:88:b0:61:da:e4:7c:bc:bf:86:d4:c6:9a:94:ed:9d: 51:3d:8b:e1:49:ab:4b:b0:65:87:3d:6c:9f:a4:37:2e:f6:be: 2d:e6:90:71:bf:d3:a4:98:b5:09:37:e0:bf:d5:11:4c:06:a1: 7e:66:09:52:42:7b:3e:67:7b:66:6c:ae:c5:c4:9d:57:ba:a4: 1e:b5:89:f5:c5:7f:e2:24:fe:86:46:54:40:10:61:1b:dd:13: 23:3b:2d:25:6d:b4:8f:e2:94:b2:30:28:9a:e5:be:73:dc:8a: 8e:7f:13:d6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWUFinqG96zBCvrysyF2OHUeRleYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU2NzJGRjQ2MDdFM0FGRDlDQUNEOTdDODRFMEYyNDdB ODlGQzNDNzAeFw0yNjA1MDMwMjQ5MjBaFw0yNzA1MDIwMjU0MjBaMDMxMTAvBgNV BAMTKENCMzQwRTNEMTdBNUE3NjMxRDFGOTY1MDg2NzdFQTRFQUY4OTE4NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsO4T/iz5C+LqiYh43SUEE1iPk KZp17+7hC4o74rJI+14zlzSFRZn7+0DuifTrcmCVc/lMY/Vd4Y6NkA3iMbq7BKH4 dWW8lcpEEepZHxBspvwOPfv2KEIIMyVuIZObgSY8pJz3+QNO6s/6MDJTLs/343uG 8Xwdf/xRDIbr7Z4394UQVp91daDCR8cPSiigQhGgNQaSbDfAFTt/K54jYY17QIU9 APH7TaUbT0VtQFhJCqF7s5YPITBjR/adBFNIVLLWnRfmRFGnbPZ5cImpoG/xDZDB RYSoje5j7XyFm9KSO9c1WjG+dJaIPV2aFm/mroD774ThPnEAz/hqLJE7pR09AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyzQOPRelp2MdH5ZQhnfqTq+JGEEwHwYDVR0j BBgwFoAUhWcv9GB+Ov2crNl8hODyR6ifw8cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWI2YWUyYTItZDkzZi00OWNhLWJhNGItMTcxZmY4ZDFlNTdmLzAvODU2NzJGRjQ2 MDdFM0FGRDlDQUNEOTdDODRFMEYyNDdBODlGQzNDNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTY3MkZGNDYwN0UzQUZEOUNBQ0Q5N0M4NEUwRjI0N0E4OUZD M0M3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzliNmFlMmEyLWQ5M2YtNDljYS1i YTRiLTE3MWZmOGQxZTU3Zi8wLzMxMzAzMzJlMzkzMzJlMzEzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ12eMA0GCSqG SIb3DQEBCwUAA4IBAQCJagm2bBoiEa9dbV47s85HSS8M4L5X38VRiDQt9mxrrDZX K6jnbI4YxgJt4d2wHdlibsLIRD96wGODdXFy26mHysTyjOKrBV88Gqmldf5+Mi4d 8vrlFCBXbd+E0bggPR8tTEaVEIdUdUfA5Ecxbqqf24DgYy2bQI2AsGdEpoEx44rV Q3OfB5Rf1XUSRIjXPxtivBGIsGHa5Hy8v4bUxpqU7Z1RPYvhSatLsGWHPWyfpDcu 9r4t5pBxv9OkmLUJN+C/1RFMBqF+ZglSQns+Z3tmbK7FxJ1XuqQetYn1xX/iJP6G RlRAEGEb3RMjOy0lbbSP4pSyMCia5b5z3IqOfxPW -----END CERTIFICATE-----Generated at Wed May 13 02:12:05 2026 by rpki-client