$ rpki-client -vvf rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3130332e3232352e3137302e302f32342d3234203d3e203436303437.roa File: 3130332e3232352e3137302e302f32342d3234203d3e203436303437.roa (raw, json) Hash identifier: U5jPUQcFUSF8Cs6G3z+HWq8nVnMWiXaM/O6dl9Aru1k= Subject key identifier: 39:6A:48:FD:B4:9F:0C:89:19:5C:67:F5:0B:3E:1F:EA:CF:AA:65:5D Certificate issuer: /CN=855FB1394E274E698967BBB475F8817B92100FB4 Certificate serial: 06CDE8F006D2A20060C6EBE934878A4993DDDE96 Authority key identifier: 85:5F:B1:39:4E:27:4E:69:89:67:BB:B4:75:F8:81:7B:92:10:0F:B4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/855FB1394E274E698967BBB475F8817B92100FB4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3130332e3232352e3137302e302f32342d3234203d3e203436303437.roa Signing time: Sun 03 May 2026 02:54:54 +0000 ROA not before: Sun 03 May 2026 02:49:54 +0000 ROA not after: Sun 02 May 2027 02:54:54 +0000 asID: 46047 IP address blocks: 103.225.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/855FB1394E274E698967BBB475F8817B92100FB4.crl rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/855FB1394E274E698967BBB475F8817B92100FB4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/855FB1394E274E698967BBB475F8817B92100FB4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:cd:e8:f0:06:d2:a2:00:60:c6:eb:e9:34:87:8a:49:93:dd:de:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=855FB1394E274E698967BBB475F8817B92100FB4 Validity Not Before: May 3 02:49:54 2026 GMT Not After : May 2 02:54:54 2027 GMT Subject: CN=396A48FDB49F0C89195C67F50B3E1FEACFAA655D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:0a:38:1e:b7:1c:45:c3:19:80:a2:5d:ee: aa:87:f0:a6:31:f0:ec:3b:7b:29:cc:af:79:e4:ce: da:28:22:0b:65:dc:f8:02:fc:2e:be:98:f6:ba:06: ed:fd:d0:32:e4:23:49:ad:96:05:8f:f4:f1:c4:89: 1b:98:93:8a:fc:17:75:e3:6f:ab:9d:fd:79:1c:be: 42:c5:e1:77:3d:ac:04:ce:7d:fd:7e:45:fe:79:12: 60:b3:47:bb:48:38:d0:7c:7f:0d:96:74:65:72:b3: 30:ac:3f:14:f9:da:41:e5:f0:13:b1:3c:d2:4d:23: 0d:70:cc:9b:83:5c:d4:7c:99:38:63:eb:67:1d:95: 5d:5f:34:72:09:3a:0c:53:4f:26:9f:cf:84:f4:21: 24:d9:1e:69:62:5e:c0:02:06:ec:94:ec:32:ea:3e: 97:bf:d8:35:1f:5a:53:1f:17:2f:17:6f:8a:23:20: 89:06:76:44:3e:1a:14:c4:48:cf:4b:8f:43:78:d8: a6:23:dc:df:c1:eb:64:29:b7:14:e4:24:0d:cb:0c: bd:27:94:10:35:72:10:53:9c:95:1e:30:d6:44:21: bc:ea:fe:40:19:41:56:7d:3b:20:3e:eb:a8:5e:6c: 1a:4f:08:99:61:eb:ee:bb:95:17:fe:90:24:1d:9b: 82:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6A:48:FD:B4:9F:0C:89:19:5C:67:F5:0B:3E:1F:EA:CF:AA:65:5D X509v3 Authority Key Identifier: keyid:85:5F:B1:39:4E:27:4E:69:89:67:BB:B4:75:F8:81:7B:92:10:0F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/855FB1394E274E698967BBB475F8817B92100FB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/855FB1394E274E698967BBB475F8817B92100FB4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3130332e3232352e3137302e302f32342d3234203d3e203436303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.170.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:45:e0:ae:8b:2c:39:62:76:d7:cf:63:3c:d2:35:96:18:1b: f7:63:0e:90:26:12:06:14:96:ac:a6:40:d7:34:fa:45:36:61: 28:b1:0b:49:24:14:fb:e7:38:fe:1c:bb:90:32:ee:d5:6a:5d: d3:94:78:31:97:7e:b6:62:e0:ed:54:51:c4:c1:6f:9f:7a:0a: 7c:3a:1f:72:07:8e:2e:fb:15:9e:fa:a6:41:cb:08:f2:06:3c: 21:fe:1b:11:f4:6b:ce:c9:f3:c9:d3:ba:e6:22:e4:3e:36:3e: cd:59:bc:46:03:d9:66:89:93:8b:0f:ab:76:88:a9:4f:89:70: 71:5d:36:7c:0d:c7:6e:7c:d8:62:fc:bc:96:cd:da:a8:3e:41: 3e:2c:b3:11:f6:fd:89:0d:ab:26:8d:79:19:ae:57:ee:12:44: 55:fc:e3:fd:c2:d3:3b:82:f3:d1:db:f5:27:cb:74:f4:64:46: 62:30:c2:30:5f:e0:d5:a7:cc:84:22:f4:c4:85:24:40:f1:d6: d3:4e:b2:a5:f3:bc:dc:64:5f:20:7e:5c:d1:50:3a:95:38:68: 93:5d:c2:4c:2c:6d:ec:c9:1a:77:f7:e5:78:1b:1d:92:71:d1: d3:10:b7:6f:3f:1e:69:96:dd:df:28:fc:f3:4d:0b:b1:b9:8a: a6:6f:df:6e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBs3o8AbSogBgxuvpNIeKSZPd3pYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU1RkIxMzk0RTI3NEU2OTg5NjdCQkI0NzVGODgxN0I5 MjEwMEZCNDAeFw0yNjA1MDMwMjQ5NTRaFw0yNzA1MDIwMjU0NTRaMDMxMTAvBgNV BAMTKDM5NkE0OEZEQjQ5RjBDODkxOTVDNjdGNTBCM0UxRkVBQ0ZBQTY1NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2oAo4HrccRcMZgKJd7qqH8KYx 8Ow7eynMr3nkztooIgtl3PgC/C6+mPa6Bu390DLkI0mtlgWP9PHEiRuYk4r8F3Xj b6ud/XkcvkLF4Xc9rATOff1+Rf55EmCzR7tIONB8fw2WdGVyszCsPxT52kHl8BOx PNJNIw1wzJuDXNR8mThj62cdlV1fNHIJOgxTTyafz4T0ISTZHmliXsACBuyU7DLq Ppe/2DUfWlMfFy8Xb4ojIIkGdkQ+GhTESM9Lj0N42KYj3N/B62QptxTkJA3LDL0n lBA1chBTnJUeMNZEIbzq/kAZQVZ9OyA+66hebBpPCJlh6+67lRf+kCQdm4IjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOWpI/bSfDIkZXGf1Cz4f6s+qZV0wHwYDVR0j BBgwFoAUhV+xOU4nTmmJZ7u0dfiBe5IQD7QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWUxMjljOTQtYzVhNi00ZGQ0LWIzNGEtN2UzNTNkZTZjZTgxLzAvODU1RkIxMzk0 RTI3NEU2OTg5NjdCQkI0NzVGODgxN0I5MjEwMEZCNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTVGQjEzOTRFMjc0RTY5ODk2N0JCQjQ3NUY4ODE3QjkyMTAw RkI0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzllMTI5Yzk0LWM1YTYtNGRkNC1i MzRhLTdlMzUzZGU2Y2U4MS8wLzMxMzAzMzJlMzIzMjM1MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+GqMA0GCSqG SIb3DQEBCwUAA4IBAQB6ReCuiyw5YnbXz2M80jWWGBv3Yw6QJhIGFJaspkDXNPpF NmEosQtJJBT75zj+HLuQMu7Val3TlHgxl362YuDtVFHEwW+fegp8Oh9yB44u+xWe +qZBywjyBjwh/hsR9GvOyfPJ07rmIuQ+Nj7NWbxGA9lmiZOLD6t2iKlPiXBxXTZ8 DcdufNhi/LyWzdqoPkE+LLMR9v2JDasmjXkZrlfuEkRV/OP9wtM7gvPR2/Uny3T0 ZEZiMMIwX+DVp8yEIvTEhSRA8dbTTrKl87zcZF8gflzRUDqVOGiTXcJMLG3syRp3 9+V4Gx2ScdHTELdvPx5plt3fKPzzTQuxuYqmb99u -----END CERTIFICATE-----Generated at Wed May 13 06:48:20 2026 by rpki-client