$ rpki-client -vvf rpki-rsync.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa File: 3130332e36362e37302e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: /NBNXAECvA7rchf/KEuYLeN9R7rXsZHxAXUURfMfPzM= Subject key identifier: 65:7D:06:00:5C:45:C3:B8:D6:03:24:DF:53:E0:1B:31:F0:BA:BE:45 Certificate issuer: /CN=87D1485E2D8D59808482A339E96F7B631508F371 Certificate serial: 3409A8B68A6B3D02102E1F6A805CAAED52E8A532 Authority key identifier: 87:D1:48:5E:2D:8D:59:80:84:82:A3:39:E9:6F:7B:63:15:08:F3:71 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/87D1485E2D8D59808482A339E96F7B631508F371.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa Signing time: Sun 03 May 2026 02:56:05 +0000 ROA not before: Sun 03 May 2026 02:51:05 +0000 ROA not after: Sun 02 May 2027 02:56:05 +0000 asID: 133840 IP address blocks: 103.66.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/87D1485E2D8D59808482A339E96F7B631508F371.crl rsync://rpki-rsync.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/87D1485E2D8D59808482A339E96F7B631508F371.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/87D1485E2D8D59808482A339E96F7B631508F371.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:09:a8:b6:8a:6b:3d:02:10:2e:1f:6a:80:5c:aa:ed:52:e8:a5:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87D1485E2D8D59808482A339E96F7B631508F371 Validity Not Before: May 3 02:51:05 2026 GMT Not After : May 2 02:56:05 2027 GMT Subject: CN=657D06005C45C3B8D60324DF53E01B31F0BABE45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:05:02:f4:2f:ec:90:55:1f:b3:71:4a:14:e2: 8b:21:20:d9:0f:30:00:00:8f:97:0f:f5:f1:7e:5e: 63:80:f8:49:0b:37:ee:61:e1:2a:87:d3:1d:2e:e5: 35:bc:b3:f7:e2:48:51:fe:a6:7a:4b:87:fc:82:4e: c8:48:94:3d:70:69:39:73:1b:f8:9d:b6:ac:b9:b7: 57:07:10:5c:a1:c7:56:75:15:e3:e4:cf:bf:11:6e: 76:c3:65:57:24:59:8a:06:3a:51:07:80:5b:e3:60: fe:e5:e3:dc:e9:4c:9b:ce:60:d3:c1:9c:9b:4a:2a: be:b3:44:07:ad:c6:86:21:20:21:02:59:a0:98:47: 92:c5:37:b2:39:e0:31:cf:c1:15:db:5d:f6:6a:a2: b4:44:5f:a8:bf:b0:04:63:de:a3:b0:98:6d:1b:69: a5:b3:99:9a:0e:cb:30:18:c1:6a:c1:f1:5c:22:2c: b9:ae:9c:6c:36:20:49:06:5f:9c:d5:4c:f6:da:51: b4:77:21:44:71:4e:c3:a0:cb:cc:30:07:04:a4:af: 12:37:b4:2c:f7:8d:61:0b:c0:f3:eb:b6:02:86:fe: 30:95:5a:8d:7b:d2:7a:91:ef:fe:17:e8:10:39:83: 35:03:10:d3:21:4a:5c:58:38:87:77:27:7c:d5:93: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7D:06:00:5C:45:C3:B8:D6:03:24:DF:53:E0:1B:31:F0:BA:BE:45 X509v3 Authority Key Identifier: keyid:87:D1:48:5E:2D:8D:59:80:84:82:A3:39:E9:6F:7B:63:15:08:F3:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/87D1485E2D8D59808482A339E96F7B631508F371.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/87D1485E2D8D59808482A339E96F7B631508F371.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.70.0/24 Signature Algorithm: sha256WithRSAEncryption 80:39:06:c7:84:d7:e2:ed:97:29:ee:3e:a0:ca:ef:72:79:e9: 8e:b1:53:c8:ca:e2:8e:a3:10:8e:4d:63:09:d1:af:02:f6:ec: b2:9f:89:c4:0b:f1:77:74:52:2e:f2:51:c3:cc:bb:a6:1a:e6: 28:40:80:89:41:75:a7:96:ba:70:78:7f:75:24:0b:91:36:6d: 58:e7:5a:c0:1b:63:c5:05:f7:3c:65:dd:8d:b2:3c:45:e2:bd: 03:de:6f:e4:ee:14:40:ee:6e:a9:d9:f6:ee:d9:98:bf:ce:f2: 61:66:aa:ce:33:d4:05:f6:92:ec:14:5f:75:e2:35:58:00:67: 9d:06:24:11:6c:81:42:86:24:b0:26:7a:69:6a:48:3b:3e:5b: e7:8b:04:b7:1f:08:52:86:7a:b3:2c:69:2d:90:9e:5f:65:f5: b7:f8:fc:66:25:b9:38:46:3b:a4:92:f5:e2:17:61:d7:22:8a: 02:5c:65:27:ff:49:77:95:f0:06:42:a1:f7:9b:5c:d2:fa:9a: 17:f9:87:f2:2b:1f:d3:bc:42:33:fd:20:59:34:8a:aa:01:bf: 4c:79:b7:33:51:2f:13:c7:ea:b9:7d:53:fc:aa:de:a5:59:f2: fd:2b:cf:e0:54:06:78:aa:90:39:e5:f5:59:92:57:80:b3:20: 5f:4d:b3:03 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNAmotoprPQIQLh9qgFyq7VLopTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdEMTQ4NUUyRDhENTk4MDg0ODJBMzM5RTk2RjdCNjMx NTA4RjM3MTAeFw0yNjA1MDMwMjUxMDVaFw0yNzA1MDIwMjU2MDVaMDMxMTAvBgNV BAMTKDY1N0QwNjAwNUM0NUMzQjhENjAzMjRERjUzRTAxQjMxRjBCQUJFNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdBQL0L+yQVR+zcUoU4oshINkP MAAAj5cP9fF+XmOA+EkLN+5h4SqH0x0u5TW8s/fiSFH+pnpLh/yCTshIlD1waTlz G/idtqy5t1cHEFyhx1Z1FePkz78RbnbDZVckWYoGOlEHgFvjYP7l49zpTJvOYNPB nJtKKr6zRAetxoYhICECWaCYR5LFN7I54DHPwRXbXfZqorREX6i/sARj3qOwmG0b aaWzmZoOyzAYwWrB8VwiLLmunGw2IEkGX5zVTPbaUbR3IURxTsOgy8wwBwSkrxI3 tCz3jWELwPPrtgKG/jCVWo170nqR7/4X6BA5gzUDENMhSlxYOId3J3zVk2UrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZX0GAFxFw7jWAyTfU+AbMfC6vkUwHwYDVR0j BBgwFoAUh9FIXi2NWYCEgqM56W97YxUI83EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTJhYTE2ZWEtMmFlYy00OTVkLWE5YTMtNjkyNTczMGQ1ZTBmLzAvODdEMTQ4NUUy RDhENTk4MDg0ODJBMzM5RTk2RjdCNjMxNTA4RjM3MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84N0QxNDg1RTJEOEQ1OTgwODQ4MkEzMzlFOTZGN0I2MzE1MDhG MzcxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzczMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCRjANBgkqhkiG 9w0BAQsFAAOCAQEAgDkGx4TX4u2XKe4+oMrvcnnpjrFTyMrijqMQjk1jCdGvAvbs sp+JxAvxd3RSLvJRw8y7phrmKECAiUF1p5a6cHh/dSQLkTZtWOdawBtjxQX3PGXd jbI8ReK9A95v5O4UQO5uqdn27tmYv87yYWaqzjPUBfaS7BRfdeI1WABnnQYkEWyB QoYksCZ6aWpIOz5b54sEtx8IUoZ6syxpLZCeX2X1t/j8ZiW5OEY7pJL14hdh1yKK AlxlJ/9Jd5XwBkKh95tc0vqaF/mH8isf07xCM/0gWTSKqgG/THm3M1EvE8fquX1T /KrepVny/SvP4FQGeKqQOeX1WZJXgLMgX02zAw== -----END CERTIFICATE-----Generated at Wed May 13 02:48:17 2026 by rpki-client