$ rpki-client -vvf rpki-rsync.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/3130332e3136302e39342e302f32342d3234203d3e20313431353739.roa File: 3130332e3136302e39342e302f32342d3234203d3e20313431353739.roa (raw, json) Hash identifier: njKsV+Ks6jWYRD/Bk8dM3j39b6JxY/7zJuEqTLSaQJo= Subject key identifier: 8E:6D:C7:E1:BB:B2:C2:84:EF:BE:0E:5B:A3:0D:EF:3F:2B:AF:C2:39 Certificate issuer: /CN=A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D Certificate serial: 22D1AFB3E594509D1051A055E3ECF2F4C9E0AB79 Authority key identifier: A1:1E:0A:62:38:26:E2:7C:F2:FC:29:CB:9B:01:08:FC:2D:1A:D0:0D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/3130332e3136302e39342e302f32342d3234203d3e20313431353739.roa Signing time: Sun 03 May 2026 02:56:42 +0000 ROA not before: Sun 03 May 2026 02:51:42 +0000 ROA not after: Sun 02 May 2027 02:56:42 +0000 asID: 141579 IP address blocks: 103.160.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D.crl rsync://rpki-rsync.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:30:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:d1:af:b3:e5:94:50:9d:10:51:a0:55:e3:ec:f2:f4:c9:e0:ab:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D Validity Not Before: May 3 02:51:42 2026 GMT Not After : May 2 02:56:42 2027 GMT Subject: CN=8E6DC7E1BBB2C284EFBE0E5BA30DEF3F2BAFC239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e9:53:16:1f:00:42:d4:2c:c0:f5:a4:25:71: 8c:cf:1b:c8:60:d1:4a:33:7c:3f:07:07:c1:91:b4: 56:d6:f4:02:2a:04:ed:d1:d8:58:26:2e:ff:79:96: b9:ac:a8:ab:12:c3:d7:65:1b:2d:56:7f:11:de:d5: 5d:ff:25:e1:37:dd:6d:84:39:8b:21:e7:17:84:36: c5:43:9a:ca:14:c7:62:fe:a3:1d:3d:f7:1a:a5:58: c8:ce:1e:7e:7c:5b:51:44:65:63:43:da:48:00:21: 96:32:77:b8:6c:17:21:52:de:29:c7:58:e5:77:e7: 8b:6a:01:44:84:df:c7:44:c1:1d:22:70:7c:47:ae: 85:5d:68:51:29:36:82:04:61:87:1a:2e:df:62:78: 1a:f0:a1:e6:78:d5:00:f0:af:a1:14:00:e9:f4:1b: 5b:2e:37:2a:1c:18:45:a2:06:0b:d2:1d:e1:26:6a: 7c:a6:fc:07:66:89:8b:87:25:77:e5:d9:35:b3:a1: 42:3c:8e:f5:be:0e:0c:93:77:d7:16:2a:ab:b5:78: c6:61:c9:27:19:ee:91:00:09:29:aa:f5:8e:1e:39: 24:50:4b:c7:01:f9:2e:46:46:13:da:bd:87:34:6e: 6d:75:2d:a0:1a:2f:e9:5f:62:71:0d:90:76:fc:82: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6D:C7:E1:BB:B2:C2:84:EF:BE:0E:5B:A3:0D:EF:3F:2B:AF:C2:39 X509v3 Authority Key Identifier: keyid:A1:1E:0A:62:38:26:E2:7C:F2:FC:29:CB:9B:01:08:FC:2D:1A:D0:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A11E0A623826E27CF2FC29CB9B0108FC2D1AD00D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/3130332e3136302e39342e302f32342d3234203d3e20313431353739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.94.0/24 Signature Algorithm: sha256WithRSAEncryption 56:df:01:1f:1a:f6:e7:f1:0c:89:a3:f8:2a:84:18:50:c3:42: 04:f7:8e:aa:6e:f6:43:99:d3:f3:f3:0f:61:a3:e4:8b:55:d5: 23:86:cb:e2:1b:dc:03:23:6e:25:1c:06:4b:98:d1:06:bb:22: bb:21:92:14:55:b1:9c:1a:e9:d1:d1:3a:77:3a:24:6e:e0:36: 67:43:c2:49:d5:cb:ae:96:7b:95:7e:4c:74:84:20:db:5e:fc: 42:ea:f5:2e:8a:14:b0:cd:8c:a1:bd:e3:54:5e:40:a1:13:0b: 5a:41:3d:d3:52:95:32:b2:16:57:54:f8:cb:f6:3d:ca:d3:98: 2d:b8:e1:2f:1f:03:ec:c7:23:38:f3:fc:0d:49:4c:bc:45:01: 1e:db:e2:c7:93:c4:7e:0c:92:2a:b8:73:c4:47:a3:5e:15:0c: 23:cb:04:d3:b8:92:4e:92:01:fb:e0:2f:f0:67:b5:04:96:ef: 4c:90:6a:47:c6:07:85:12:43:6a:1d:e6:71:f8:12:87:40:7d: 71:56:1b:6d:4a:84:10:06:80:97:25:50:ae:b6:77:42:3b:05: ae:b2:ba:0d:29:6c:28:c9:8c:71:7e:50:81:d5:de:98:f6:c3: 07:46:62:54:f9:70:1e:5b:16:d4:c0:2e:b7:47:6e:47:76:d6: 41:94:a6:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUItGvs+WUUJ0QUaBV4+zy9Mngq3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTExRTBBNjIzODI2RTI3Q0YyRkMyOUNCOUIwMTA4RkMy RDFBRDAwRDAeFw0yNjA1MDMwMjUxNDJaFw0yNzA1MDIwMjU2NDJaMDMxMTAvBgNV BAMTKDhFNkRDN0UxQkJCMkMyODRFRkJFMEU1QkEzMERFRjNGMkJBRkMyMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN6VMWHwBC1CzA9aQlcYzPG8hg 0UozfD8HB8GRtFbW9AIqBO3R2FgmLv95lrmsqKsSw9dlGy1WfxHe1V3/JeE33W2E OYsh5xeENsVDmsoUx2L+ox099xqlWMjOHn58W1FEZWND2kgAIZYyd7hsFyFS3inH WOV354tqAUSE38dEwR0icHxHroVdaFEpNoIEYYcaLt9ieBrwoeZ41QDwr6EUAOn0 G1suNyocGEWiBgvSHeEmanym/AdmiYuHJXfl2TWzoUI8jvW+DgyTd9cWKqu1eMZh yScZ7pEACSmq9Y4eOSRQS8cB+S5GRhPavYc0bm11LaAaL+lfYnENkHb8ggxlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjm3H4buywoTvvg5bow3vPyuvwjkwHwYDVR0j BBgwFoAUoR4KYjgm4nzy/CnLmwEI/C0a0A0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTU5ZTU2NTgtYWIxMC00Mjk3LTkyZjQtZjZhMjY2M2U1NGMwLzAvQTExRTBBNjIz ODI2RTI3Q0YyRkMyOUNCOUIwMTA4RkMyRDFBRDAwRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMTFFMEE2MjM4MjZFMjdDRjJGQzI5Q0I5QjAxMDhGQzJEMUFE MDBELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E1OWU1NjU4LWFiMTAtNDI5Ny05 MmY0LWY2YTI2NjNlNTRjMC8wLzMxMzAzMzJlMzEzNjMwMmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6BeMA0GCSqG SIb3DQEBCwUAA4IBAQBW3wEfGvbn8QyJo/gqhBhQw0IE946qbvZDmdPz8w9ho+SL VdUjhsviG9wDI24lHAZLmNEGuyK7IZIUVbGcGunR0Tp3OiRu4DZnQ8JJ1cuulnuV fkx0hCDbXvxC6vUuihSwzYyhveNUXkChEwtaQT3TUpUyshZXVPjL9j3K05gtuOEv HwPsxyM48/wNSUy8RQEe2+LHk8R+DJIquHPER6NeFQwjywTTuJJOkgH74C/wZ7UE lu9MkGpHxgeFEkNqHeZx+BKHQH1xVhttSoQQBoCXJVCutndCOwWusroNKWwoyYxx flCB1d6Y9sMHRmJU+XAeWxbUwC63R25HdtZBlKaN -----END CERTIFICATE-----Generated at Wed May 13 15:57:33 2026 by rpki-client