$ rpki-client -vvf rpki-rsync.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa File: 3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: uvdb69KVLoscNZSGWpIcBSgwPx5W3Wtj9pl5ilu6nps= Subject key identifier: 91:3E:0B:9A:32:37:02:BA:55:10:AC:15:D2:70:44:54:BB:67:A8:8A Certificate issuer: /CN=CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0 Certificate serial: 7046EA701A9CED21F649618A60446390952909CC Authority key identifier: CC:7A:2E:C6:A7:80:5B:D3:03:06:C3:D6:4A:D2:92:AC:05:24:CF:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa Signing time: Sun 03 May 2026 02:54:53 +0000 ROA not before: Sun 03 May 2026 02:49:53 +0000 ROA not after: Sun 02 May 2027 02:54:53 +0000 asID: 139456 IP address blocks: 103.167.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0.crl rsync://rpki-rsync.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:46:ea:70:1a:9c:ed:21:f6:49:61:8a:60:44:63:90:95:29:09:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0 Validity Not Before: May 3 02:49:53 2026 GMT Not After : May 2 02:54:53 2027 GMT Subject: CN=913E0B9A323702BA5510AC15D2704454BB67A88A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cf:93:e8:73:89:7e:54:30:b8:6d:2f:a2:e7: a7:0c:b2:9f:17:ab:86:ed:e3:cb:19:91:b9:50:c0: b9:b3:23:ba:4e:69:90:df:b5:97:70:72:92:a1:32: 67:31:ae:0d:f2:2e:31:5e:e2:f6:f8:79:64:a3:ad: fc:f7:c3:99:c4:2c:c0:6b:3a:bb:a7:41:dd:f6:d0: b2:ec:79:0c:34:9e:39:48:dc:63:c1:20:94:c2:ad: f3:46:27:e8:59:f0:22:75:58:83:89:9f:0e:99:3a: 51:8c:d5:65:7a:75:e5:4c:71:81:86:64:94:e1:e5: 73:e0:29:02:a9:13:73:8b:ee:cb:6e:77:cf:5b:be: 4d:8b:d1:23:03:d1:7e:9b:83:7a:de:e6:63:c6:ad: 5b:81:70:ba:90:0b:27:b0:79:a8:83:b8:ea:b1:f3: e7:8b:b6:c8:4c:92:67:31:36:1b:80:3f:5a:23:e7: 35:3e:9d:7c:f9:bf:f8:02:48:6f:9e:6d:de:71:da: 05:69:13:8e:02:c5:fc:87:84:1c:94:88:3d:9b:c9: 5c:5d:f3:43:c9:e8:42:29:e4:90:4a:fd:da:b0:0f: e8:ed:15:d2:b2:b3:44:d4:2a:31:25:bd:8b:3c:a6: 7d:a2:99:b3:b5:23:7f:48:5d:9a:13:85:2b:64:61: a6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3E:0B:9A:32:37:02:BA:55:10:AC:15:D2:70:44:54:BB:67:A8:8A X509v3 Authority Key Identifier: keyid:CC:7A:2E:C6:A7:80:5B:D3:03:06:C3:D6:4A:D2:92:AC:05:24:CF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CC7A2EC6A7805BD30306C3D64AD292AC0524CFF0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.136.0/23 Signature Algorithm: sha256WithRSAEncryption 93:35:9e:e8:0d:8a:7d:7c:88:13:d6:9e:ba:07:83:c2:bd:2d: 89:d3:a2:c1:54:5d:87:f1:9b:a8:32:10:f8:8d:8c:c9:53:40: e3:74:fd:1b:74:b5:60:72:d5:38:a7:54:1a:0e:69:8d:0f:4d: 69:37:53:78:33:a4:43:3f:27:8b:74:39:af:a2:bc:84:ce:bc: 47:86:a2:62:27:e2:90:4f:46:a0:d1:fd:78:e1:37:fa:ce:be: 8c:89:41:ed:fc:8a:49:86:72:9b:e3:6a:28:c1:71:56:92:30: 3e:00:c4:06:2c:e7:ff:55:f3:00:5a:58:d8:cc:e7:2f:8c:5b: 76:0c:44:c8:e2:a1:d2:8f:d4:08:fe:76:65:a0:3c:5b:c0:82: 8b:84:17:20:a7:71:d1:35:00:15:ff:70:34:62:05:53:88:91: 80:b3:3b:44:e4:c4:04:d5:05:fd:6f:39:7e:5d:d8:b6:d9:f9: 9f:96:bf:f2:72:85:cd:86:f9:97:7e:b5:e4:90:9d:7f:84:3c: 78:3d:82:b1:67:f3:1b:88:56:1f:2f:1a:f4:f8:22:8e:e7:de: 66:ed:15:fa:ec:71:0a:a2:d1:71:42:fa:86:60:a4:d3:97:08: 09:8b:01:08:87:2e:33:1a:2e:b4:a7:38:bf:81:52:a8:80:5b: c0:3b:ac:1e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcEbqcBqc7SH2SWGKYERjkJUpCcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3QTJFQzZBNzgwNUJEMzAzMDZDM0Q2NEFEMjkyQUMw NTI0Q0ZGMDAeFw0yNjA1MDMwMjQ5NTNaFw0yNzA1MDIwMjU0NTNaMDMxMTAvBgNV BAMTKDkxM0UwQjlBMzIzNzAyQkE1NTEwQUMxNUQyNzA0NDU0QkI2N0E4OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoz5Poc4l+VDC4bS+i56cMsp8X q4bt48sZkblQwLmzI7pOaZDftZdwcpKhMmcxrg3yLjFe4vb4eWSjrfz3w5nELMBr OrunQd320LLseQw0njlI3GPBIJTCrfNGJ+hZ8CJ1WIOJnw6ZOlGM1WV6deVMcYGG ZJTh5XPgKQKpE3OL7stud89bvk2L0SMD0X6bg3re5mPGrVuBcLqQCyeweaiDuOqx 8+eLtshMkmcxNhuAP1oj5zU+nXz5v/gCSG+ebd5x2gVpE44CxfyHhByUiD2byVxd 80PJ6EIp5JBK/dqwD+jtFdKys0TUKjElvYs8pn2imbO1I39IXZoThStkYabpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkT4LmjI3ArpVEKwV0nBEVLtnqIowHwYDVR0j BBgwFoAUzHouxqeAW9MDBsPWStKSrAUkz/AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWRmYjM5OTItMWQyZi00NmNlLTg4NmEtOGUyMmEzMjYxMWY4LzAvQ0M3QTJFQzZB NzgwNUJEMzAzMDZDM0Q2NEFEMjkyQUMwNTI0Q0ZGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQzdBMkVDNkE3ODA1QkQzMDMwNkMzRDY0QUQyOTJBQzA1MjRD RkYwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzlkZmIzOTkyLTFkMmYtNDZjZS04 ODZhLThlMjJhMzI2MTFmOC8wLzMxMzAzMzJlMzEzNjM3MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp4gwDQYJ KoZIhvcNAQELBQADggEBAJM1nugNin18iBPWnroHg8K9LYnTosFUXYfxm6gyEPiN jMlTQON0/Rt0tWBy1TinVBoOaY0PTWk3U3gzpEM/J4t0Oa+ivITOvEeGomIn4pBP RqDR/XjhN/rOvoyJQe38ikmGcpvjaijBcVaSMD4AxAYs5/9V8wBaWNjM5y+MW3YM RMjiodKP1Aj+dmWgPFvAgouEFyCncdE1ABX/cDRiBVOIkYCzO0TkxATVBf1vOX5d 2LbZ+Z+Wv/Jyhc2G+Zd+teSQnX+EPHg9grFn8xuIVh8vGvT4Io7n3mbtFfrscQqi 0XFC+oZgpNOXCAmLAQiHLjMaLrSnOL+BUqiAW8A7rB4= -----END CERTIFICATE-----Generated at Wed May 13 12:51:09 2026 by rpki-client