$ rpki-client -vvf rpki-rsync.idnic.net/repo/ad440c85-3471-4461-b590-1601e19f5318/0/3130332e3136352e3134372e302f32342d3234203d3e20313431393236.roa File: 3130332e3136352e3134372e302f32342d3234203d3e20313431393236.roa (raw, json) Hash identifier: 4io3eCxu167AtlWBsa6dTLlDoZVSSBjQBvpZbbKn9o4= Subject key identifier: 4A:19:62:BE:E7:C3:84:67:2B:D7:10:2D:3F:D6:02:0B:3A:A6:3C:0A Certificate issuer: /CN=8BA221ECCD92C8CB8DD59503B2722C57C3367BF6 Certificate serial: 2DBF72B03FAB044163B06189FCA90574EF68FDDA Authority key identifier: 8B:A2:21:EC:CD:92:C8:CB:8D:D5:95:03:B2:72:2C:57:C3:36:7B:F6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BA221ECCD92C8CB8DD59503B2722C57C3367BF6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ad440c85-3471-4461-b590-1601e19f5318/0/3130332e3136352e3134372e302f32342d3234203d3e20313431393236.roa Signing time: Sun 03 May 2026 02:58:56 +0000 ROA not before: Sun 03 May 2026 02:53:56 +0000 ROA not after: Sun 02 May 2027 02:58:56 +0000 asID: 141926 IP address blocks: 103.165.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ad440c85-3471-4461-b590-1601e19f5318/0/8BA221ECCD92C8CB8DD59503B2722C57C3367BF6.crl rsync://rpki-rsync.idnic.net/repo/ad440c85-3471-4461-b590-1601e19f5318/0/8BA221ECCD92C8CB8DD59503B2722C57C3367BF6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BA221ECCD92C8CB8DD59503B2722C57C3367BF6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:bf:72:b0:3f:ab:04:41:63:b0:61:89:fc:a9:05:74:ef:68:fd:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA221ECCD92C8CB8DD59503B2722C57C3367BF6 Validity Not Before: May 3 02:53:56 2026 GMT Not After : May 2 02:58:56 2027 GMT Subject: CN=4A1962BEE7C384672BD7102D3FD6020B3AA63C0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:2b:39:8f:f6:75:97:70:03:b3:9e:a7:24: b3:66:8e:6f:14:16:29:58:cf:cb:e7:4b:6f:de:b4: b2:52:d1:42:95:ad:ba:d5:9e:55:16:4f:6b:16:b8: 81:d7:81:76:78:66:29:49:0d:99:9c:4d:1e:5b:bc: 8a:60:fd:79:cf:fd:4e:77:0d:aa:9f:49:e9:89:36: 12:c8:18:13:42:8f:a6:9e:7b:98:6e:9b:fa:fc:2e: d7:55:6e:75:4f:25:25:24:e5:48:49:db:d6:09:aa: 95:ec:08:29:6b:89:f8:62:7a:ba:16:77:f0:5d:5f: e8:67:48:22:a0:20:d6:be:d8:8d:d5:8a:29:97:2d: 0a:18:9c:db:12:c6:53:75:88:a7:d3:7b:40:55:d3: a1:43:f8:16:1a:70:1e:68:ca:ea:2e:12:2c:36:80: be:8f:d5:94:c2:79:b7:c3:d6:92:e0:04:e4:cf:d4: 0b:1e:6e:a0:41:03:63:7f:2e:f5:a1:bd:f5:ec:cf: 47:51:8f:dd:90:e6:f1:f3:ce:8f:0b:5e:55:23:26: 2a:ff:ed:14:32:06:3d:9c:12:f3:39:16:9a:2c:77: 14:91:2d:0a:74:ec:9e:50:af:c8:74:8b:ae:4f:10: 74:8a:d1:26:7e:76:d7:b8:ba:fc:5f:f9:f3:d3:2b: dc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:19:62:BE:E7:C3:84:67:2B:D7:10:2D:3F:D6:02:0B:3A:A6:3C:0A X509v3 Authority Key Identifier: keyid:8B:A2:21:EC:CD:92:C8:CB:8D:D5:95:03:B2:72:2C:57:C3:36:7B:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ad440c85-3471-4461-b590-1601e19f5318/0/8BA221ECCD92C8CB8DD59503B2722C57C3367BF6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BA221ECCD92C8CB8DD59503B2722C57C3367BF6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ad440c85-3471-4461-b590-1601e19f5318/0/3130332e3136352e3134372e302f32342d3234203d3e20313431393236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.147.0/24 Signature Algorithm: sha256WithRSAEncryption 91:0f:06:9c:28:f2:42:d1:04:c2:4f:ba:7a:9d:a7:06:78:54: 44:d0:15:aa:6a:6f:9f:0c:71:ac:fb:aa:4a:01:82:1a:fa:be: 37:76:c1:9f:77:84:b5:e4:da:f9:31:a4:2e:e8:05:4a:0f:c2: 9b:85:95:8b:d8:87:24:35:a2:77:4d:bc:c0:46:64:b8:48:56: 47:80:da:04:a4:99:a7:81:d7:b5:2a:a9:a2:c6:3f:f7:f9:4b: a9:b8:14:65:a2:a1:b7:a8:c9:9e:81:9e:ab:1a:aa:bd:07:db: 71:5f:88:5e:7e:d8:c6:f0:ab:e2:dd:a4:50:1a:0a:dc:ac:ad: 13:8c:bc:f7:d0:27:09:ae:54:4c:23:a4:fd:0b:2a:ed:4d:c9: e6:10:62:e9:c8:3f:23:3a:b7:4d:9c:b0:5a:0f:1c:33:59:6e: ae:34:73:bd:04:00:28:cc:dc:38:d6:a7:76:fa:46:74:cf:45: 34:66:6f:b2:2f:3e:d3:52:c7:84:81:a0:c7:2d:42:60:bc:23: 55:7c:a6:c6:6c:d5:ac:91:db:68:07:07:aa:c9:1d:cc:d3:45: a5:3a:a5:c8:20:8b:22:03:98:86:d7:be:86:29:d5:ac:dd:b2: bf:7a:36:9f:68:c8:8d:cb:7e:bc:d2:48:f4:fd:01:22:9c:7d: d4:9e:9f:1c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULb9ysD+rBEFjsGGJ/KkFdO9o/dowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMjIxRUNDRDkyQzhDQjhERDU5NTAzQjI3MjJDNTdD MzM2N0JGNjAeFw0yNjA1MDMwMjUzNTZaFw0yNzA1MDIwMjU4NTZaMDMxMTAvBgNV BAMTKDRBMTk2MkJFRTdDMzg0NjcyQkQ3MTAyRDNGRDYwMjBCM0FBNjNDMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCECs5j/Z1l3ADs56nJLNmjm8U FilYz8vnS2/etLJS0UKVrbrVnlUWT2sWuIHXgXZ4ZilJDZmcTR5bvIpg/XnP/U53 DaqfSemJNhLIGBNCj6aee5hum/r8LtdVbnVPJSUk5UhJ29YJqpXsCClrifhieroW d/BdX+hnSCKgINa+2I3ViimXLQoYnNsSxlN1iKfTe0BV06FD+BYacB5oyuouEiw2 gL6P1ZTCebfD1pLgBOTP1AsebqBBA2N/LvWhvfXsz0dRj92Q5vHzzo8LXlUjJir/ 7RQyBj2cEvM5FposdxSRLQp07J5Qr8h0i65PEHSK0SZ+dte4uvxf+fPTK9zfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUShlivufDhGcr1xAtP9YCCzqmPAowHwYDVR0j BBgwFoAUi6Ih7M2SyMuN1ZUDsnIsV8M2e/YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWQ0NDBjODUtMzQ3MS00NDYxLWI1OTAtMTYwMWUxOWY1MzE4LzAvOEJBMjIxRUND RDkyQzhDQjhERDU5NTAzQjI3MjJDNTdDMzM2N0JGNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QkEyMjFFQ0NEOTJDOENCOERENTk1MDNCMjcyMkM1N0MzMzY3 QkY2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FkNDQwYzg1LTM0NzEtNDQ2MS1i NTkwLTE2MDFlMTlmNTMxOC8wLzMxMzAzMzJlMzEzNjM1MmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpZMwDQYJ KoZIhvcNAQELBQADggEBAJEPBpwo8kLRBMJPunqdpwZ4VETQFapqb58Mcaz7qkoB ghr6vjd2wZ93hLXk2vkxpC7oBUoPwpuFlYvYhyQ1ondNvMBGZLhIVkeA2gSkmaeB 17UqqaLGP/f5S6m4FGWiobeoyZ6Bnqsaqr0H23FfiF5+2Mbwq+LdpFAaCtysrROM vPfQJwmuVEwjpP0LKu1NyeYQYunIPyM6t02csFoPHDNZbq40c70EACjM3DjWp3b6 RnTPRTRmb7IvPtNSx4SBoMctQmC8I1V8psZs1ayR22gHB6rJHczTRaU6pcggiyID mIbXvoYp1azdsr96Np9oyI3LfrzSSPT9ASKcfdSenxw= -----END CERTIFICATE-----Generated at Wed May 13 14:27:39 2026 by rpki-client