$ rpki-client -vvf rpki-rsync.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33362e36382e302f32342d3234203d3e20313333333631.roa File: 3130332e33362e36382e302f32342d3234203d3e20313333333631.roa (raw, json) Hash identifier: YjIMELRXEclhQMTB2bkatZ5wI5uWZ25f1kc6MK+WlkM= Subject key identifier: 9F:11:D0:79:F7:81:4F:CE:2E:DC:7E:64:C3:9E:78:F4:FC:03:6B:84 Certificate issuer: /CN=3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47 Certificate serial: 37C2BB3BEFE91A80D3F94082692719F6CAFA737F Authority key identifier: 3F:E4:5D:E0:FD:92:E2:BD:83:BB:FF:76:65:0C:B5:B4:0D:BE:EF:47 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33362e36382e302f32342d3234203d3e20313333333631.roa Signing time: Sun 03 May 2026 02:58:26 +0000 ROA not before: Sun 03 May 2026 02:53:26 +0000 ROA not after: Sun 02 May 2027 02:58:26 +0000 asID: 133361 IP address blocks: 103.36.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47.crl rsync://rpki-rsync.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c2:bb:3b:ef:e9:1a:80:d3:f9:40:82:69:27:19:f6:ca:fa:73:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47 Validity Not Before: May 3 02:53:26 2026 GMT Not After : May 2 02:58:26 2027 GMT Subject: CN=9F11D079F7814FCE2EDC7E64C39E78F4FC036B84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:91:0b:00:61:49:7e:10:43:92:9b:57:12:d5: e3:fb:56:26:20:ac:82:0e:05:bc:27:b0:2a:0e:2b: 79:3f:b3:bc:23:17:24:22:0b:fb:ac:72:55:a2:b0: 09:1a:95:03:22:71:69:e8:d8:0b:2d:65:fd:89:d9: 5f:4c:15:a6:c8:11:31:ef:08:c0:ee:49:88:ea:73: 36:47:37:32:69:31:20:af:a8:9d:21:6a:e7:67:43: 10:5d:30:bf:2f:09:cc:24:3a:84:5c:d0:ec:c9:b7: bc:4f:d6:7b:00:24:34:0c:eb:13:bf:10:d9:09:d6: 91:fc:e3:11:94:b0:b4:5a:46:06:df:08:6a:db:92: 99:fd:45:07:f0:c7:09:71:6b:dc:f3:d9:fa:bd:45: 66:c9:50:a1:7c:87:2d:41:64:a8:06:f7:be:43:aa: f1:fc:c4:7d:80:5d:87:5b:b7:e5:7c:f3:f1:ed:ea: 25:dd:ef:e6:1e:56:02:69:ac:49:64:c6:bc:9c:00: 6d:72:48:f1:31:bc:5a:2c:06:3b:73:b0:f8:cb:21: 12:c6:2c:e5:38:8a:c0:6e:4b:7c:5d:82:07:7a:e0: bf:ee:14:1c:5e:14:3e:73:0e:56:e5:07:22:78:ea: 15:40:cd:87:ea:f9:3b:03:a2:e8:cc:1e:b6:04:4a: f9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:11:D0:79:F7:81:4F:CE:2E:DC:7E:64:C3:9E:78:F4:FC:03:6B:84 X509v3 Authority Key Identifier: keyid:3F:E4:5D:E0:FD:92:E2:BD:83:BB:FF:76:65:0C:B5:B4:0D:BE:EF:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FE45DE0FD92E2BD83BBFF76650CB5B40DBEEF47.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33362e36382e302f32342d3234203d3e20313333333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.68.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:83:bf:9e:6f:56:b2:4a:14:8e:b4:18:7f:82:a4:1b:e6:83: c2:a3:b3:c8:a9:16:ed:cf:48:86:94:75:68:2b:af:4c:53:98: 86:17:df:5e:5a:af:f9:82:d6:ed:fa:5d:ee:de:98:1e:08:a1: fb:dd:ca:10:17:27:43:22:6b:88:30:73:3d:fa:77:78:76:fa: 9d:cd:a9:ab:b7:15:dc:f1:61:a4:9f:59:77:7c:66:73:bb:18: 69:28:e3:71:76:89:6b:a3:c4:96:b7:1c:f0:e5:c6:d1:d5:7f: d2:6d:50:c7:9c:0b:a5:e4:c4:72:1f:15:0c:a6:a4:ec:fc:8c: 33:7f:5c:93:b9:2c:a2:94:0c:65:39:d1:c1:0e:1a:8c:68:09: 56:a3:8a:99:5d:c8:26:89:20:f8:8b:28:0f:5e:d6:3f:e9:43: 99:aa:35:16:c9:11:f2:17:c2:3b:d8:ce:de:71:cd:06:3c:1e: 99:1f:3d:96:d1:71:07:4d:1d:c2:f0:23:33:08:db:ab:4d:28: df:8a:d4:65:46:d8:4f:3c:e1:4e:c1:74:ce:e5:fb:6c:35:bf: 42:75:02:b1:6c:61:62:90:89:30:f0:c4:83:c1:1f:ba:f2:dd: ff:18:1c:f9:40:d5:77:b7:ff:db:bb:d6:3f:50:01:8f:68:5d: 36:69:f0:fb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN8K7O+/pGoDT+UCCaScZ9sr6c38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZFNDVERTBGRDkyRTJCRDgzQkJGRjc2NjUwQ0I1QjQw REJFRUY0NzAeFw0yNjA1MDMwMjUzMjZaFw0yNzA1MDIwMjU4MjZaMDMxMTAvBgNV BAMTKDlGMTFEMDc5Rjc4MTRGQ0UyRURDN0U2NEMzOUU3OEY0RkMwMzZCODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIkQsAYUl+EEOSm1cS1eP7ViYg rIIOBbwnsCoOK3k/s7wjFyQiC/usclWisAkalQMicWno2AstZf2J2V9MFabIETHv CMDuSYjqczZHNzJpMSCvqJ0haudnQxBdML8vCcwkOoRc0OzJt7xP1nsAJDQM6xO/ ENkJ1pH84xGUsLRaRgbfCGrbkpn9RQfwxwlxa9zz2fq9RWbJUKF8hy1BZKgG975D qvH8xH2AXYdbt+V88/Ht6iXd7+YeVgJprElkxrycAG1ySPExvFosBjtzsPjLIRLG LOU4isBuS3xdggd64L/uFBxeFD5zDlblByJ46hVAzYfq+TsDoujMHrYESvk1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnxHQefeBT84u3H5kw5549PwDa4QwHwYDVR0j BBgwFoAUP+Rd4P2S4r2Du/92ZQy1tA2+70cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWIzMTNkMTctNWI5Yi00ZDIzLTk0MjQtNzQ1Nzk1MDhiYTU0LzAvM0ZFNDVERTBG RDkyRTJCRDgzQkJGRjc2NjUwQ0I1QjQwREJFRUY0Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRkU0NURFMEZEOTJFMkJEODNCQkZGNzY2NTBDQjVCNDBEQkVF RjQ3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FiMzEzZDE3LTViOWItNGQyMy05 NDI0LTc0NTc5NTA4YmE1NC8wLzMxMzAzMzJlMzMzNjJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzMzMzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGckRDANBgkqhkiG 9w0BAQsFAAOCAQEAb4O/nm9WskoUjrQYf4KkG+aDwqOzyKkW7c9IhpR1aCuvTFOY hhffXlqv+YLW7fpd7t6YHgih+93KEBcnQyJriDBzPfp3eHb6nc2pq7cV3PFhpJ9Z d3xmc7sYaSjjcXaJa6PElrcc8OXG0dV/0m1Qx5wLpeTEch8VDKak7PyMM39ck7ks opQMZTnRwQ4ajGgJVqOKmV3IJokg+IsoD17WP+lDmao1FskR8hfCO9jO3nHNBjwe mR89ltFxB00dwvAjMwjbq00o34rUZUbYTzzhTsF0zuX7bDW/QnUCsWxhYpCJMPDE g8EfuvLd/xgc+UDVd7f/27vWP1ABj2hdNmnw+w== -----END CERTIFICATE-----Generated at Wed May 13 13:00:08 2026 by rpki-client