$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa File: 3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa (raw, json) Hash identifier: e/RIuX0l5WSZ+goWBIIIdVXX9DXWsnBm69sxMsOldTQ= Subject key identifier: FB:A5:15:97:E0:D8:0F:8A:BF:1B:A0:23:0F:CB:D5:85:47:45:E2:A2 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 54F9FCB13701EAA0F87C953E608F9A7239B8AB81 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa Signing time: Sun 03 May 2026 02:55:18 +0000 ROA not before: Sun 03 May 2026 02:50:18 +0000 ROA not after: Sun 02 May 2027 02:55:18 +0000 asID: 131770 IP address blocks: 103.16.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f9:fc:b1:37:01:ea:a0:f8:7c:95:3e:60:8f:9a:72:39:b8:ab:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:18 2026 GMT Not After : May 2 02:55:18 2027 GMT Subject: CN=FBA51597E0D80F8ABF1BA0230FCBD5854745E2A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fa:1f:89:a3:17:ba:09:c5:0f:11:fa:ee:6e: 98:31:2e:1d:d8:2d:ba:23:99:97:d4:ed:00:de:3a: 1a:e5:06:c4:cb:c7:0a:c2:a7:e8:fe:63:5c:2d:0a: 77:27:ca:cc:d8:24:d7:94:b2:3b:09:16:d4:76:eb: a5:93:6d:f1:72:be:99:44:8c:aa:1f:64:8d:87:0e: d1:09:4f:5d:4d:12:8b:8e:e7:a1:7e:4a:a4:01:36: be:ac:8e:79:15:f8:31:a3:c5:c4:da:4c:2f:fe:19: df:6c:00:41:9f:7c:f7:f5:ae:1f:96:1d:ab:29:b0: 8f:26:24:f2:53:dc:71:63:5b:aa:3b:e2:f1:f8:d8: da:3a:94:95:80:9a:b9:9e:d6:df:ba:1b:86:8c:bd: 5d:1c:c2:a1:32:7c:c3:09:41:d4:1e:f8:94:77:df: 55:74:f5:e3:ee:42:5e:da:4f:e4:71:8b:ef:fe:d6: a8:54:3e:50:4f:78:fe:de:8b:fb:82:25:a1:b5:21: ad:b3:70:e5:e8:76:11:9d:c1:3b:dc:b2:44:fb:f9: 54:03:67:aa:2d:c6:e5:0d:2c:b1:2b:73:0c:31:ad: 9b:b3:cb:12:46:9e:60:d4:91:5d:29:af:53:28:d4: e6:95:a3:ef:52:17:18:9e:5e:84:58:45:91:00:0e: db:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A5:15:97:E0:D8:0F:8A:BF:1B:A0:23:0F:CB:D5:85:47:45:E2:A2 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.112.0/22 Signature Algorithm: sha256WithRSAEncryption 49:5e:04:3e:3b:be:b6:d2:cf:32:6f:6c:ed:44:62:3e:9d:f1: 81:06:8c:6d:11:c6:02:4f:e5:85:fc:25:05:af:c1:47:57:a5: 76:07:e1:0d:61:bb:d1:3d:42:8c:8d:da:3e:c8:c2:3d:27:d4: 8f:9d:c8:05:78:bc:83:30:1d:6e:23:d3:e2:3c:f3:fd:1a:69: d8:b8:d4:e9:fb:a1:47:27:75:fd:74:f2:66:be:1c:8a:2f:de: fb:0f:6f:97:a1:52:b2:f5:36:76:71:33:9a:01:a6:ea:1a:10: 0b:bd:55:4c:12:84:d5:b4:33:fc:af:50:a3:c8:61:4d:da:ea: f2:b6:ad:fa:97:e3:41:e9:c6:f9:3a:13:07:0d:35:68:e6:ed: 8c:72:3f:ed:23:f2:60:2d:ac:65:22:90:c5:2d:0a:79:83:c5: b2:45:c3:42:06:e4:b7:2b:51:dd:97:77:a3:05:1f:fd:10:e6: 8a:1d:40:94:fa:96:4e:08:f9:53:3f:15:8e:58:06:52:29:c0: 02:a6:fa:d1:99:8a:59:b7:15:9c:72:fb:39:4b:65:4e:d6:c5: 34:fc:c8:b5:7d:01:f1:2a:1f:88:95:86:71:45:ae:8a:f7:5d: 72:6a:d1:04:55:02:92:cf:0c:c2:1f:e8:e4:28:12:99:72:df: 6a:2b:91:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVPn8sTcB6qD4fJU+YI+acjm4q4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMThaFw0yNzA1MDIwMjU1MThaMDMxMTAvBgNV BAMTKEZCQTUxNTk3RTBEODBGOEFCRjFCQTAyMzBGQ0JENTg1NDc0NUUyQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc+h+Joxe6CcUPEfrubpgxLh3Y LbojmZfU7QDeOhrlBsTLxwrCp+j+Y1wtCncnyszYJNeUsjsJFtR266WTbfFyvplE jKofZI2HDtEJT11NEouO56F+SqQBNr6sjnkV+DGjxcTaTC/+Gd9sAEGffPf1rh+W HaspsI8mJPJT3HFjW6o74vH42No6lJWAmrme1t+6G4aMvV0cwqEyfMMJQdQe+JR3 31V09ePuQl7aT+Rxi+/+1qhUPlBPeP7ei/uCJaG1Ia2zcOXodhGdwTvcskT7+VQD Z6otxuUNLLErcwwxrZuzyxJGnmDUkV0pr1Mo1OaVo+9SFxieXoRYRZEADtsTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+6UVl+DYD4q/G6AjD8vVhUdF4qIwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzAzMzJlMzEzNjJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxBwMA0GCSqG SIb3DQEBCwUAA4IBAQBJXgQ+O7620s8yb2ztRGI+nfGBBoxtEcYCT+WF/CUFr8FH V6V2B+ENYbvRPUKMjdo+yMI9J9SPncgFeLyDMB1uI9PiPPP9GmnYuNTp+6FHJ3X9 dPJmvhyKL977D2+XoVKy9TZ2cTOaAabqGhALvVVMEoTVtDP8r1CjyGFN2urytq36 l+NB6cb5OhMHDTVo5u2Mcj/tI/JgLaxlIpDFLQp5g8WyRcNCBuS3K1Hdl3ejBR/9 EOaKHUCU+pZOCPlTPxWOWAZSKcACpvrRmYpZtxWccvs5S2VO1sU0/Mi1fQHxKh+I lYZxRa6K911yatEEVQKSzwzCH+jkKBKZct9qK5GB -----END CERTIFICATE-----Generated at Wed May 13 12:51:13 2026 by rpki-client