$ rpki-client -vvf rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3230392e302f32342d3234203d3e20313336303735.roa File: 3130332e38342e3230392e302f32342d3234203d3e20313336303735.roa (raw, json) Hash identifier: JW7IEWkOPNdgKaYLCXHUM+vHpx6tYM1AUk5vvxwywUg= Subject key identifier: C4:DD:1F:30:91:76:52:1D:BC:B3:27:AF:49:81:E0:51:10:7F:DD:0C Certificate issuer: /CN=AE70603036AD2614B0A87825C6E2788B1AD6F663 Certificate serial: 4E554790BD8019765453FB651EA89DB23432B97A Authority key identifier: AE:70:60:30:36:AD:26:14:B0:A8:78:25:C6:E2:78:8B:1A:D6:F6:63 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE70603036AD2614B0A87825C6E2788B1AD6F663.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3230392e302f32342d3234203d3e20313336303735.roa Signing time: Sun 03 May 2026 02:59:10 +0000 ROA not before: Sun 03 May 2026 02:54:10 +0000 ROA not after: Sun 02 May 2027 02:59:10 +0000 asID: 136075 IP address blocks: 103.84.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/AE70603036AD2614B0A87825C6E2788B1AD6F663.crl rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/AE70603036AD2614B0A87825C6E2788B1AD6F663.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE70603036AD2614B0A87825C6E2788B1AD6F663.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:55:47:90:bd:80:19:76:54:53:fb:65:1e:a8:9d:b2:34:32:b9:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE70603036AD2614B0A87825C6E2788B1AD6F663 Validity Not Before: May 3 02:54:10 2026 GMT Not After : May 2 02:59:10 2027 GMT Subject: CN=C4DD1F309176521DBCB327AF4981E051107FDD0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fd:a9:d5:64:54:5e:e7:23:d8:2e:c4:37:9d: 5b:e8:b0:c2:71:08:06:9b:1a:8f:c8:ce:ed:82:89: 41:32:7a:c3:bd:cf:b2:b1:72:b9:b8:db:4f:c4:ed: 4a:e7:ca:3e:71:99:4f:ff:87:fe:0d:34:a2:13:08: d7:25:49:49:d6:79:01:e2:82:91:b9:fb:65:86:aa: be:7d:80:c7:73:80:45:0b:fb:15:f7:a1:81:e3:c6: 09:d6:b0:f8:7b:a5:52:f0:6a:8e:47:cc:14:00:c9: 8c:95:8e:47:df:81:98:7f:fa:af:b8:bb:52:94:f8: de:57:6f:8e:0c:7b:42:6a:2d:54:33:82:2a:74:45: c1:2e:c9:94:e5:fc:b3:e6:75:86:f5:96:ec:ab:0b: 67:2c:f1:9e:a2:06:a8:5f:20:86:96:c9:8f:35:c0: 0c:c4:b9:f3:44:0b:2a:f7:4e:ec:4a:f5:bc:aa:ff: 82:8c:e0:46:00:17:a5:69:e7:fd:9b:30:35:cf:54: 83:0b:58:f2:5d:67:09:04:3a:91:b5:2d:33:84:6f: 52:31:74:16:85:52:35:7e:44:2b:95:4b:00:d2:ec: 0c:6e:c5:89:08:20:93:00:b4:84:e3:68:48:88:c7: 98:88:1f:e0:b9:d4:1e:1f:79:6d:20:56:0b:50:10: 73:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DD:1F:30:91:76:52:1D:BC:B3:27:AF:49:81:E0:51:10:7F:DD:0C X509v3 Authority Key Identifier: keyid:AE:70:60:30:36:AD:26:14:B0:A8:78:25:C6:E2:78:8B:1A:D6:F6:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/AE70603036AD2614B0A87825C6E2788B1AD6F663.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE70603036AD2614B0A87825C6E2788B1AD6F663.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3230392e302f32342d3234203d3e20313336303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.209.0/24 Signature Algorithm: sha256WithRSAEncryption 75:7e:ae:60:b7:01:21:37:e4:28:b3:ca:7e:29:00:67:49:9c: 2e:94:56:96:16:64:9b:40:87:bf:b3:3f:9e:12:21:a3:eb:46: c5:db:7a:44:bb:46:3a:9f:aa:ad:68:8d:7f:16:bb:25:a2:72: 82:cf:a5:f1:ea:5d:fa:25:65:6b:3f:98:77:f9:b1:6d:f1:3c: a3:df:0f:cc:54:4e:5f:89:0b:0c:49:9c:63:94:b7:2a:42:e8: 19:e7:ec:51:a3:5f:1b:85:b2:7f:9f:b6:39:19:f6:ec:02:d8: 8c:0a:35:2c:98:6b:e7:e7:d3:68:26:6d:a0:59:a4:63:ff:bd: 4f:9e:91:6f:b8:28:f9:68:45:92:de:96:16:f1:2d:be:8e:0d: 04:41:cc:1d:d1:e2:ad:d8:23:df:2d:9f:a9:02:52:e6:fb:97: 90:59:15:95:e6:b1:9e:f6:ef:43:69:7a:d9:f1:59:2c:1f:f0: a4:e2:a9:63:fb:7d:92:56:b7:47:19:c6:06:ed:c8:2b:d0:86: 2a:dc:8c:86:c4:dc:cf:43:72:d4:8c:b5:c2:20:ab:a8:66:fb: 85:0b:5b:17:f4:bf:53:d1:00:68:ce:b5:14:5a:b7:aa:ab:8d: 52:85:82:75:10:6d:2d:af:be:12:b4:46:a7:2e:c8:13:15:28: ce:56:6f:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTlVHkL2AGXZUU/tlHqidsjQyuXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3MDYwMzAzNkFEMjYxNEIwQTg3ODI1QzZFMjc4OEIx QUQ2RjY2MzAeFw0yNjA1MDMwMjU0MTBaFw0yNzA1MDIwMjU5MTBaMDMxMTAvBgNV BAMTKEM0REQxRjMwOTE3NjUyMURCQ0IzMjdBRjQ5ODFFMDUxMTA3RkREMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ/anVZFRe5yPYLsQ3nVvosMJx CAabGo/Izu2CiUEyesO9z7Kxcrm420/E7Urnyj5xmU//h/4NNKITCNclSUnWeQHi gpG5+2WGqr59gMdzgEUL+xX3oYHjxgnWsPh7pVLwao5HzBQAyYyVjkffgZh/+q+4 u1KU+N5Xb44Me0JqLVQzgip0RcEuyZTl/LPmdYb1luyrC2cs8Z6iBqhfIIaWyY81 wAzEufNECyr3TuxK9byq/4KM4EYAF6Vp5/2bMDXPVIMLWPJdZwkEOpG1LTOEb1Ix dBaFUjV+RCuVSwDS7AxuxYkIIJMAtITjaEiIx5iIH+C51B4feW0gVgtQEHMZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxN0fMJF2Uh28syevSYHgURB/3QwwHwYDVR0j BBgwFoAUrnBgMDatJhSwqHglxuJ4ixrW9mMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWUwZTVhYzItYjZiYi00YmVjLTlkYzktZTQzMGE2NzMzMjE2LzAvQUU3MDYwMzAz NkFEMjYxNEIwQTg3ODI1QzZFMjc4OEIxQUQ2RjY2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRTcwNjAzMDM2QUQyNjE0QjBBODc4MjVDNkUyNzg4QjFBRDZG NjYzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlMGU1YWMyLWI2YmItNGJlYy05 ZGM5LWU0MzBhNjczMzIxNi8wLzMxMzAzMzJlMzgzNDJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1TRMA0GCSqG SIb3DQEBCwUAA4IBAQB1fq5gtwEhN+Qos8p+KQBnSZwulFaWFmSbQIe/sz+eEiGj 60bF23pEu0Y6n6qtaI1/FrslonKCz6Xx6l36JWVrP5h3+bFt8Tyj3w/MVE5fiQsM SZxjlLcqQugZ5+xRo18bhbJ/n7Y5GfbsAtiMCjUsmGvn59NoJm2gWaRj/71PnpFv uCj5aEWS3pYW8S2+jg0EQcwd0eKt2CPfLZ+pAlLm+5eQWRWV5rGe9u9DaXrZ8Vks H/Ck4qlj+32SVrdHGcYG7cgr0IYq3IyGxNzPQ3LUjLXCIKuoZvuFC1sX9L9T0QBo zrUUWreqq41ShYJ1EG0tr74StEanLsgTFSjOVm9k -----END CERTIFICATE-----Generated at Wed May 13 02:12:58 2026 by rpki-client