$ rpki-client -vvf rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/3130332e36362e36332e302f32342d3234203d3e20313339393832.roa File: 3130332e36362e36332e302f32342d3234203d3e20313339393832.roa (raw, json) Hash identifier: Gs+snvngtmEUYMerL8umS66cdNSbHO+hqLt5UBqYHqk= Subject key identifier: 8B:AF:2F:2E:77:20:DD:E1:EE:42:41:68:36:EA:D3:C6:A9:63:A7:8C Certificate issuer: /CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Certificate serial: 637A923B6C995570AC53F358A2B154FD4E5654E6 Authority key identifier: 28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/3130332e36362e36332e302f32342d3234203d3e20313339393832.roa Signing time: Sun 03 May 2026 02:58:29 +0000 ROA not before: Sun 03 May 2026 02:53:29 +0000 ROA not after: Sun 02 May 2027 02:58:29 +0000 asID: 139982 IP address blocks: 103.66.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7a:92:3b:6c:99:55:70:ac:53:f3:58:a2:b1:54:fd:4e:56:54:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Validity Not Before: May 3 02:53:29 2026 GMT Not After : May 2 02:58:29 2027 GMT Subject: CN=8BAF2F2E7720DDE1EE42416836EAD3C6A963A78C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:50:53:fd:c0:63:32:9b:ad:83:6d:21:aa:f6: fc:a9:8e:bf:20:1b:54:7b:e7:cc:40:b8:f3:23:a2: d4:2d:b4:8f:3a:91:db:2f:83:7c:a6:94:fe:a6:a0: b4:71:d6:64:fc:1a:c4:43:94:30:08:82:75:e8:b2: cc:78:aa:27:88:f1:2b:b0:f8:43:18:81:d6:06:f3: d6:5a:a3:3f:24:98:f7:8d:c7:09:f9:75:ac:79:f3: 19:bd:8d:a5:e6:62:4d:ca:8b:48:f0:36:fc:96:0f: 03:4e:83:28:1a:ef:cf:d2:4f:1f:25:f9:ba:c2:6c: f1:93:c1:e1:be:93:fc:62:b0:0b:ad:22:ae:09:27: 4d:61:28:c8:2c:10:06:25:89:bd:cb:e5:29:25:69: 15:60:99:92:01:c2:39:7f:83:ae:0d:79:84:83:ea: 90:f8:88:94:94:8d:ad:48:1c:05:6e:0c:18:03:57: 3a:e8:b5:44:84:ad:ce:b5:83:8d:8a:d7:94:5c:03: b5:c9:27:29:70:0e:a8:16:65:e3:ca:81:ef:3a:98: 92:2a:6e:70:a5:46:4a:4c:ba:d0:55:e5:c5:f9:78: f4:b0:ce:01:32:7a:6b:59:9b:72:b4:19:0a:2f:6d: 5a:03:0e:62:a5:18:14:05:90:51:e6:f6:7f:ff:e4: 92:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:AF:2F:2E:77:20:DD:E1:EE:42:41:68:36:EA:D3:C6:A9:63:A7:8C X509v3 Authority Key Identifier: keyid:28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/3130332e36362e36332e302f32342d3234203d3e20313339393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.63.0/24 Signature Algorithm: sha256WithRSAEncryption 32:6b:4f:c5:3c:8a:f9:89:e5:bc:47:06:9f:24:65:31:1d:24: fc:19:34:53:9c:92:b5:03:61:80:ce:ee:ef:d0:d5:dd:c1:4e: ab:9a:0d:f7:bd:c9:86:54:7b:63:2b:97:e8:ca:12:4b:99:79: 3d:f5:1f:ba:b5:e9:5d:50:4f:c3:54:4d:fd:04:40:34:0f:c4: 0c:69:9a:b8:ae:50:c5:f5:b5:8a:f5:aa:30:b4:51:44:86:26: 19:f3:fa:a2:06:9b:dc:29:fa:be:85:ae:b2:9e:4f:d4:f0:85: 2e:f4:a4:20:ab:1f:6c:32:66:9e:fa:9d:d4:4f:c6:cb:a3:cb: 75:36:be:b1:b5:3d:df:00:55:b9:48:9f:db:d3:7b:37:2e:44: f0:80:d0:45:34:a1:3a:20:78:4c:84:89:61:e9:34:31:92:54: d4:7f:bf:aa:cc:cf:3f:28:b1:68:d6:b3:81:72:09:2d:30:f7: 75:e7:a7:2d:fa:a1:f5:c9:77:5c:45:95:7e:d2:8b:45:76:21: 96:67:28:da:d3:94:5b:03:7a:44:73:07:98:b1:27:98:4e:c4: 0b:44:74:b1:54:25:a1:12:d3:f1:30:ca:11:1a:1b:b2:e5:80: 3c:8c:64:0e:f0:86:c0:d7:43:04:56:11:d2:47:d3:9d:ed:e1: c6:0a:e4:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY3qSO2yZVXCsU/NYorFU/U5WVOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0M0M0MjBDOTUzOERFMDAzREI5NjA0N0FDRTdGMkZF MUI4MzQ1NDAeFw0yNjA1MDMwMjUzMjlaFw0yNzA1MDIwMjU4MjlaMDMxMTAvBgNV BAMTKDhCQUYyRjJFNzcyMERERTFFRTQyNDE2ODM2RUFEM0M2QTk2M0E3OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeUFP9wGMym62DbSGq9vypjr8g G1R758xAuPMjotQttI86kdsvg3ymlP6moLRx1mT8GsRDlDAIgnXossx4qieI8Suw +EMYgdYG89Zaoz8kmPeNxwn5dax58xm9jaXmYk3Ki0jwNvyWDwNOgyga78/STx8l +brCbPGTweG+k/xisAutIq4JJ01hKMgsEAYlib3L5SklaRVgmZIBwjl/g64NeYSD 6pD4iJSUja1IHAVuDBgDVzrotUSErc61g42K15RcA7XJJylwDqgWZePKge86mJIq bnClRkpMutBV5cX5ePSwzgEyemtZm3K0GQovbVoDDmKlGBQFkFHm9n//5JJzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUi68vLncg3eHuQkFoNurTxqljp4wwHwYDVR0j BBgwFoAUKEPEIMlTjeAD25YEes5/L+G4NFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWJhOTA5NDQtNjU2ZC00YWE3LTkxNzMtNTkxMjgwODMzZjgxLzAvMjg0M0M0MjBD OTUzOERFMDAzREI5NjA0N0FDRTdGMkZFMUI4MzQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODQzQzQyMEM5NTM4REUwMDNEQjk2MDQ3QUNFN0YyRkUxQjgz NDU0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FiYTkwOTQ0LTY1NmQtNGFhNy05 MTczLTU5MTI4MDgzM2Y4MS8wLzMxMzAzMzJlMzYzNjJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzOTM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCPzANBgkqhkiG 9w0BAQsFAAOCAQEAMmtPxTyK+YnlvEcGnyRlMR0k/Bk0U5yStQNhgM7u79DV3cFO q5oN973JhlR7YyuX6MoSS5l5PfUfurXpXVBPw1RN/QRANA/EDGmauK5QxfW1ivWq MLRRRIYmGfP6ogab3Cn6voWusp5P1PCFLvSkIKsfbDJmnvqd1E/Gy6PLdTa+sbU9 3wBVuUif29N7Ny5E8IDQRTShOiB4TISJYek0MZJU1H+/qszPPyixaNazgXIJLTD3 deenLfqh9cl3XEWVftKLRXYhlmco2tOUWwN6RHMHmLEnmE7EC0R0sVQloRLT8TDK ERobsuWAPIxkDvCGwNdDBFYR0kfTne3hxgrkSQ== -----END CERTIFICATE-----Generated at Wed May 13 02:19:37 2026 by rpki-client