$ rpki-client -vvf rpki-rsync.idnic.net/repo/ac45c22c-275b-4295-b453-60a783b9c42a/0/3130332e3133362e342e302f32322d3234203d3e203338333230.roa File: 3130332e3133362e342e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: opi4UEK669uRcBpJCe+2Ayk5Lle5+nKJNqzpjbTh2ik= Subject key identifier: CD:57:CF:08:C0:89:12:13:51:E0:7B:C7:3D:E4:9B:44:7C:73:B8:9A Certificate issuer: /CN=5FA887D4C422964FB68CDD877D9AB417360C2EB5 Certificate serial: 266D8456281F68BF1E69395438F7FB0387D8CAE3 Authority key identifier: 5F:A8:87:D4:C4:22:96:4F:B6:8C:DD:87:7D:9A:B4:17:36:0C:2E:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FA887D4C422964FB68CDD877D9AB417360C2EB5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ac45c22c-275b-4295-b453-60a783b9c42a/0/3130332e3133362e342e302f32322d3234203d3e203338333230.roa Signing time: Sun 03 May 2026 02:58:37 +0000 ROA not before: Sun 03 May 2026 02:53:37 +0000 ROA not after: Sun 02 May 2027 02:58:37 +0000 asID: 38320 IP address blocks: 103.136.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ac45c22c-275b-4295-b453-60a783b9c42a/0/5FA887D4C422964FB68CDD877D9AB417360C2EB5.crl rsync://rpki-rsync.idnic.net/repo/ac45c22c-275b-4295-b453-60a783b9c42a/0/5FA887D4C422964FB68CDD877D9AB417360C2EB5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FA887D4C422964FB68CDD877D9AB417360C2EB5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:6d:84:56:28:1f:68:bf:1e:69:39:54:38:f7:fb:03:87:d8:ca:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FA887D4C422964FB68CDD877D9AB417360C2EB5 Validity Not Before: May 3 02:53:37 2026 GMT Not After : May 2 02:58:37 2027 GMT Subject: CN=CD57CF08C089121351E07BC73DE49B447C73B89A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ad:38:cf:22:83:5c:f1:db:61:45:d4:52:ea: 99:81:05:8d:ef:4e:71:56:d0:bf:61:20:8a:7b:e2: 32:8a:1e:62:25:e7:3c:8b:d3:e9:3b:f6:a9:1b:bd: 0c:ce:17:0b:86:f1:7d:a2:db:ab:f6:85:95:f2:0f: 86:b4:cb:f9:45:a1:3d:96:64:3e:8c:87:fc:42:b2: f7:4e:9f:4a:59:de:4e:8a:fd:d1:5f:5c:ce:e4:4d: 7c:86:93:4b:db:cc:5e:83:22:64:41:a8:b0:1b:21: 51:9e:53:c4:51:eb:92:48:e8:02:3b:45:72:b3:62: 9e:1f:13:07:29:f3:61:e1:19:64:06:69:7e:8d:96: 5c:70:94:76:8b:18:e9:c6:bb:09:2f:4d:95:05:f9: e6:96:2a:bc:8f:e7:de:88:28:1b:83:24:da:89:a4: 6c:de:de:b2:11:14:76:75:26:bc:75:c1:08:58:58: 05:64:2a:04:69:03:25:8e:ab:d8:5b:fb:7a:b9:9d: da:09:77:56:55:2a:e9:0f:93:e6:08:91:3b:9f:5c: a8:25:cb:ff:e3:b8:6d:cd:c7:6d:20:8b:3d:53:78: de:e5:cd:10:63:72:80:c7:30:d9:d3:57:8f:89:4c: 08:24:5d:95:ae:21:a0:dd:cb:71:bd:67:16:96:61: 44:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:57:CF:08:C0:89:12:13:51:E0:7B:C7:3D:E4:9B:44:7C:73:B8:9A X509v3 Authority Key Identifier: keyid:5F:A8:87:D4:C4:22:96:4F:B6:8C:DD:87:7D:9A:B4:17:36:0C:2E:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ac45c22c-275b-4295-b453-60a783b9c42a/0/5FA887D4C422964FB68CDD877D9AB417360C2EB5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FA887D4C422964FB68CDD877D9AB417360C2EB5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ac45c22c-275b-4295-b453-60a783b9c42a/0/3130332e3133362e342e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.4.0/22 Signature Algorithm: sha256WithRSAEncryption c2:ec:44:7a:c5:74:54:06:31:4e:63:0b:c8:81:4b:4f:14:49: f2:61:15:99:71:5d:9d:b7:2f:b3:69:b9:5f:01:85:3d:c5:8f: 66:59:17:9f:91:91:2e:43:0e:00:7c:b9:0b:25:e4:df:2d:a1: 08:17:ac:d0:7e:25:98:71:59:02:fa:60:2c:95:88:d2:20:04: 11:13:32:00:d0:b8:67:e7:24:0e:42:00:d7:85:5f:d7:00:f7: 25:8a:f0:ff:e0:ed:03:f7:d3:ff:72:21:96:2d:36:c1:23:5f: 7c:8e:33:29:fa:bc:01:b3:14:47:34:6e:cf:33:de:ac:a4:a7: 4f:3f:6c:c8:4b:ee:6d:ba:09:d2:af:49:fa:38:28:ef:92:fc: dd:58:37:f0:c5:ea:df:17:79:2c:03:0e:69:6f:84:49:17:ff: 11:51:10:3e:16:0d:0a:79:05:d0:83:22:d2:88:99:43:78:8b: 05:9d:76:7c:a2:af:d5:46:ff:2a:12:a2:a5:c9:92:e6:b3:7b: 45:03:85:d2:8a:cc:3a:9e:ff:00:b8:95:f6:5c:8d:6c:b6:4e: 21:c4:32:a2:86:df:5a:27:38:da:6a:e4:12:d2:c3:a2:41:75: e5:9f:7c:52:01:25:39:8a:6e:db:34:e1:90:1f:ea:8b:df:84: 64:34:6e:68 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJm2EVigfaL8eaTlUOPf7A4fYyuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZBODg3RDRDNDIyOTY0RkI2OENERDg3N0Q5QUI0MTcz NjBDMkVCNTAeFw0yNjA1MDMwMjUzMzdaFw0yNzA1MDIwMjU4MzdaMDMxMTAvBgNV BAMTKENENTdDRjA4QzA4OTEyMTM1MUUwN0JDNzNERTQ5QjQ0N0M3M0I4OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgrTjPIoNc8dthRdRS6pmBBY3v TnFW0L9hIIp74jKKHmIl5zyL0+k79qkbvQzOFwuG8X2i26v2hZXyD4a0y/lFoT2W ZD6Mh/xCsvdOn0pZ3k6K/dFfXM7kTXyGk0vbzF6DImRBqLAbIVGeU8RR65JI6AI7 RXKzYp4fEwcp82HhGWQGaX6NllxwlHaLGOnGuwkvTZUF+eaWKryP596IKBuDJNqJ pGze3rIRFHZ1Jrx1wQhYWAVkKgRpAyWOq9hb+3q5ndoJd1ZVKukPk+YIkTufXKgl y//juG3Nx20giz1TeN7lzRBjcoDHMNnTV4+JTAgkXZWuIaDdy3G9ZxaWYUQJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzVfPCMCJEhNR4HvHPeSbRHxzuJowHwYDVR0j BBgwFoAUX6iH1MQilk+2jN2HfZq0FzYMLrUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWM0NWMyMmMtMjc1Yi00Mjk1LWI0NTMtNjBhNzgzYjljNDJhLzAvNUZBODg3RDRD NDIyOTY0RkI2OENERDg3N0Q5QUI0MTczNjBDMkVCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkE4ODdENEM0MjI5NjRGQjY4Q0REODc3RDlBQjQxNzM2MEMy RUI1LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FjNDVjMjJjLTI3NWItNDI5NS1i NDUzLTYwYTc4M2I5YzQyYS8wLzMxMzAzMzJlMzEzMzM2MmUzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzMzMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJniAQwDQYJKoZIhvcN AQELBQADggEBAMLsRHrFdFQGMU5jC8iBS08USfJhFZlxXZ23L7NpuV8BhT3Fj2ZZ F5+RkS5DDgB8uQsl5N8toQgXrNB+JZhxWQL6YCyViNIgBBETMgDQuGfnJA5CANeF X9cA9yWK8P/g7QP30/9yIZYtNsEjX3yOMyn6vAGzFEc0bs8z3qykp08/bMhL7m26 CdKvSfo4KO+S/N1YN/DF6t8XeSwDDmlvhEkX/xFRED4WDQp5BdCDItKImUN4iwWd dnyir9VG/yoSoqXJkuaze0UDhdKKzDqe/wC4lfZcjWy2TiHEMqKG31onONpq5BLS w6JBdeWffFIBJTmKbts04ZAf6ovfhGQ0bmg= -----END CERTIFICATE-----Generated at Wed May 13 12:39:36 2026 by rpki-client