$ rpki-client -vvf rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/3130332e36362e36322e302f32332d3233203d3e20313339393832.roa File: 3130332e36362e36322e302f32332d3233203d3e20313339393832.roa (raw, json) Hash identifier: Ekh2cRoP3jEu4ToqLXfO3pEmBPqQ1/HiAdtyj75YlY4= Subject key identifier: 08:46:27:21:EF:B9:F1:C5:20:0C:B0:69:A0:84:E4:E3:AF:CC:B9:0F Certificate issuer: /CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Certificate serial: 3F657B83411B3543C450906C1BEC4F03EFFAD214 Authority key identifier: 28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/3130332e36362e36322e302f32332d3233203d3e20313339393832.roa Signing time: Sun 03 May 2026 02:58:30 +0000 ROA not before: Sun 03 May 2026 02:53:30 +0000 ROA not after: Sun 02 May 2027 02:58:30 +0000 asID: 139982 IP address blocks: 103.66.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:65:7b:83:41:1b:35:43:c4:50:90:6c:1b:ec:4f:03:ef:fa:d2:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Validity Not Before: May 3 02:53:30 2026 GMT Not After : May 2 02:58:30 2027 GMT Subject: CN=08462721EFB9F1C5200CB069A084E4E3AFCCB90F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e8:d0:73:2d:2d:33:a4:c9:ad:63:02:0b:9a: ca:3a:33:b6:c8:3c:04:b7:a7:0c:f1:3d:66:8e:f0: 38:82:ee:e2:3a:9f:41:89:1d:76:ee:60:e3:c6:e4: ac:27:c5:87:0f:78:51:12:fa:9d:ae:d3:12:44:2e: c5:ab:28:2d:1a:b7:7d:c4:c6:61:81:b3:aa:2e:8d: ba:9c:69:4d:98:04:3a:3c:c2:b3:03:39:af:3f:cb: bc:b9:0b:5d:53:ae:97:46:8b:f0:0d:dc:1f:9d:8f: 13:bd:f0:c0:a0:6c:59:d0:88:68:7e:e7:5c:14:91: 32:0c:a3:eb:59:71:78:50:bb:48:5c:1d:d5:c3:56: 65:1f:26:01:cd:0e:86:16:df:c9:d0:0c:3c:9e:38: 7d:cf:00:8e:3c:45:b3:28:4c:09:86:c8:c9:5f:c3: 6d:08:04:21:b6:19:a1:1c:5f:91:53:a6:f0:97:27: 4b:2e:f2:d3:71:e8:40:83:65:74:25:53:11:b2:a9: 47:be:bb:32:bb:56:b3:0e:0c:74:0c:5c:f6:2f:3f: 77:c0:95:6c:09:9d:a2:05:49:77:43:c2:1e:dd:17: c2:c4:a9:1d:40:6c:ac:77:f5:16:16:aa:52:4f:01: f8:dc:ae:58:b4:7b:a9:75:4f:a5:58:2d:e7:14:9d: 27:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:46:27:21:EF:B9:F1:C5:20:0C:B0:69:A0:84:E4:E3:AF:CC:B9:0F X509v3 Authority Key Identifier: keyid:28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/3130332e36362e36322e302f32332d3233203d3e20313339393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.62.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:56:c5:d4:92:f3:47:b5:93:db:51:db:85:97:92:55:d6:32: 25:5d:1e:59:07:49:b7:1b:29:16:8f:f3:fa:f4:96:cd:66:8e: 74:b9:11:33:9d:93:fd:e9:66:5b:91:a0:73:64:a2:6f:e7:17: 5b:52:fc:23:30:d8:f8:1c:f2:70:cc:11:72:e3:57:44:9e:5d: a5:73:86:47:3d:e3:c9:45:b2:a9:d4:57:d0:24:09:05:eb:88: 7b:ed:b2:f3:75:ef:6d:a7:d9:99:83:e0:0f:ed:3b:da:0d:c1: fa:04:88:6a:dc:55:9a:14:5d:f7:3e:48:e4:77:1f:25:61:91: f3:a7:2c:83:df:c8:b2:fa:44:59:5a:7f:3c:71:39:58:26:6e: de:b1:47:2a:83:80:95:5a:9d:09:ab:f9:62:dd:30:77:8f:78: eb:90:b3:af:4c:45:b2:db:2f:f8:1c:ff:74:79:ed:33:71:09: c1:db:eb:9d:26:cc:be:d1:4d:41:dc:06:1e:9f:3d:6f:59:11: 3f:76:bf:0a:6e:85:dd:b4:2b:71:c8:a0:48:35:c1:76:1e:72: 1a:63:b2:ee:25:be:79:63:cf:59:76:b3:13:8e:3c:9a:40:ea: d7:12:78:31:c0:11:cd:dd:2c:de:54:d4:a7:eb:f4:07:1d:1c: b6:10:d3:66 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP2V7g0EbNUPEUJBsG+xPA+/60hQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0M0M0MjBDOTUzOERFMDAzREI5NjA0N0FDRTdGMkZF MUI4MzQ1NDAeFw0yNjA1MDMwMjUzMzBaFw0yNzA1MDIwMjU4MzBaMDMxMTAvBgNV BAMTKDA4NDYyNzIxRUZCOUYxQzUyMDBDQjA2OUEwODRFNEUzQUZDQ0I5MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo6NBzLS0zpMmtYwILmso6M7bI PAS3pwzxPWaO8DiC7uI6n0GJHXbuYOPG5KwnxYcPeFES+p2u0xJELsWrKC0at33E xmGBs6oujbqcaU2YBDo8wrMDOa8/y7y5C11TrpdGi/AN3B+djxO98MCgbFnQiGh+ 51wUkTIMo+tZcXhQu0hcHdXDVmUfJgHNDoYW38nQDDyeOH3PAI48RbMoTAmGyMlf w20IBCG2GaEcX5FTpvCXJ0su8tNx6ECDZXQlUxGyqUe+uzK7VrMODHQMXPYvP3fA lWwJnaIFSXdDwh7dF8LEqR1AbKx39RYWqlJPAfjcrli0e6l1T6VYLecUnSd9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCEYnIe+58cUgDLBpoITk46/MuQ8wHwYDVR0j BBgwFoAUKEPEIMlTjeAD25YEes5/L+G4NFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWJhOTA5NDQtNjU2ZC00YWE3LTkxNzMtNTkxMjgwODMzZjgxLzAvMjg0M0M0MjBD OTUzOERFMDAzREI5NjA0N0FDRTdGMkZFMUI4MzQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODQzQzQyMEM5NTM4REUwMDNEQjk2MDQ3QUNFN0YyRkUxQjgz NDU0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FiYTkwOTQ0LTY1NmQtNGFhNy05 MTczLTU5MTI4MDgzM2Y4MS8wLzMxMzAzMzJlMzYzNjJlMzYzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzOTM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdCPjANBgkqhkiG 9w0BAQsFAAOCAQEAD1bF1JLzR7WT21HbhZeSVdYyJV0eWQdJtxspFo/z+vSWzWaO dLkRM52T/elmW5Ggc2Sib+cXW1L8IzDY+BzycMwRcuNXRJ5dpXOGRz3jyUWyqdRX 0CQJBeuIe+2y83XvbafZmYPgD+072g3B+gSIatxVmhRd9z5I5HcfJWGR86csg9/I svpEWVp/PHE5WCZu3rFHKoOAlVqdCav5Yt0wd49465Czr0xFstsv+Bz/dHntM3EJ wdvrnSbMvtFNQdwGHp89b1kRP3a/Cm6F3bQrccigSDXBdh5yGmOy7iW+eWPPWXaz E448mkDq1xJ4McARzd0s3lTUp+v0Bx0cthDTZg== -----END CERTIFICATE-----Generated at Wed May 13 00:44:06 2026 by rpki-client