$ rpki-client -vvf rpki-rsync.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa File: 3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa (raw, json) Hash identifier: 2aIQ3QBHP7J+Ky6wBfEPSC4GdD2wiOq9JYf33DaTyyo= Subject key identifier: 0E:FC:94:82:E0:FE:7E:F5:89:80:BE:11:B0:09:D7:4B:83:72:D5:DB Certificate issuer: /CN=DD4AD6DE56A2267FC5F27E4AEAED444B28715722 Certificate serial: 21261A0B620778DD38BFA95E2226A92CA82F876A Authority key identifier: DD:4A:D6:DE:56:A2:26:7F:C5:F2:7E:4A:EA:ED:44:4B:28:71:57:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD4AD6DE56A2267FC5F27E4AEAED444B28715722.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa Signing time: Sun 03 May 2026 02:59:24 +0000 ROA not before: Sun 03 May 2026 02:54:24 +0000 ROA not after: Sun 02 May 2027 02:59:24 +0000 asID: 142373 IP address blocks: 103.171.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/DD4AD6DE56A2267FC5F27E4AEAED444B28715722.crl rsync://rpki-rsync.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/DD4AD6DE56A2267FC5F27E4AEAED444B28715722.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD4AD6DE56A2267FC5F27E4AEAED444B28715722.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:26:1a:0b:62:07:78:dd:38:bf:a9:5e:22:26:a9:2c:a8:2f:87:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD4AD6DE56A2267FC5F27E4AEAED444B28715722 Validity Not Before: May 3 02:54:24 2026 GMT Not After : May 2 02:59:24 2027 GMT Subject: CN=0EFC9482E0FE7EF58980BE11B009D74B8372D5DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:09:08:7e:1a:9f:54:c8:d0:c3:d6:e6:5e:b1: 8f:11:f1:9f:69:de:bf:99:07:7f:20:ac:7d:ca:3f: fe:aa:63:9a:11:9c:58:95:02:a2:2e:f8:f2:5a:f5: a3:74:16:47:bb:ee:37:b4:11:0c:ca:c5:f0:c9:b5: 7f:8a:fc:e2:1c:5e:4f:f3:5c:77:88:48:56:ef:47: 1a:8b:a2:d2:f2:cb:82:28:0b:2a:b4:db:f5:e6:52: f4:c6:b8:27:07:1d:d6:1b:f8:e8:52:2d:bf:c0:de: de:45:48:5b:c9:2f:c1:09:21:32:db:87:36:0c:a2: 2e:7f:30:c4:40:1e:14:af:0d:60:8d:5e:4c:ff:35: f0:63:cc:80:4d:11:c3:38:14:25:3e:a0:64:5d:c3: 46:49:74:5f:4f:65:49:da:db:0f:b8:ca:bb:91:d2: 21:61:6d:42:0c:39:3d:5b:ab:14:e6:99:bd:a7:76: ae:ae:27:6d:db:bb:f4:c9:e8:61:fd:36:f2:71:b7: 63:5c:46:a6:9e:cb:f9:12:45:42:f2:39:c0:cc:5d: e9:8a:41:ac:05:dc:73:1b:51:c0:9a:62:60:31:33: 21:93:d4:94:54:5b:db:71:89:6f:56:eb:2f:bb:91: bc:86:44:9d:5f:83:3d:ce:f5:65:fa:68:07:11:c9: b4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FC:94:82:E0:FE:7E:F5:89:80:BE:11:B0:09:D7:4B:83:72:D5:DB X509v3 Authority Key Identifier: keyid:DD:4A:D6:DE:56:A2:26:7F:C5:F2:7E:4A:EA:ED:44:4B:28:71:57:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/DD4AD6DE56A2267FC5F27E4AEAED444B28715722.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD4AD6DE56A2267FC5F27E4AEAED444B28715722.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.83.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:48:06:e0:f4:48:78:0c:84:55:9d:58:6d:84:13:b8:df:8c: 85:85:f3:61:0e:b4:d7:b5:ed:cf:cc:bb:2c:e3:6c:0c:43:f5: a9:6d:80:9e:58:2b:7f:80:b3:a4:d7:d3:c4:37:ad:c6:f5:8b: 42:de:d6:d2:0f:b6:64:10:c4:b4:73:75:f6:14:d6:20:96:98: fa:65:ba:35:e4:d5:1e:01:12:2a:88:8e:3e:f5:04:44:39:f0: 6d:ff:8d:09:a7:ff:bd:92:d8:e9:b3:b0:71:f2:e7:24:74:66: 0a:99:0a:b1:da:0a:93:e2:81:43:de:41:8e:1e:4b:d2:ce:8e: 0a:6c:7f:a2:7c:00:d9:25:a8:7a:c9:3f:f7:b6:2f:9a:1d:a0: 2b:d6:10:d8:d5:60:e3:74:7f:c9:b4:96:65:6a:b3:e7:da:52: ff:f5:5e:9b:47:6c:5b:3f:bf:1e:cc:79:f1:c1:3e:58:d0:eb: d1:ea:a9:f9:f4:de:6a:ef:09:e3:22:93:26:5d:83:fd:e7:60: 7f:3e:63:3a:2c:ee:c7:ee:13:72:25:56:16:6e:32:57:f5:fb: 5f:f8:81:0e:d3:78:fb:a2:34:fc:11:4f:e4:b7:62:ab:43:18: 02:44:47:16:79:f5:0e:75:71:92:5c:52:d1:f3:79:6b:75:8e: bc:c7:b4:89 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUISYaC2IHeN04v6leIiapLKgvh2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ0QUQ2REU1NkEyMjY3RkM1RjI3RTRBRUFFRDQ0NEIy ODcxNTcyMjAeFw0yNjA1MDMwMjU0MjRaFw0yNzA1MDIwMjU5MjRaMDMxMTAvBgNV BAMTKDBFRkM5NDgyRTBGRTdFRjU4OTgwQkUxMUIwMDlENzRCODM3MkQ1REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfCQh+Gp9UyNDD1uZesY8R8Z9p 3r+ZB38grH3KP/6qY5oRnFiVAqIu+PJa9aN0Fke77je0EQzKxfDJtX+K/OIcXk/z XHeISFbvRxqLotLyy4IoCyq02/XmUvTGuCcHHdYb+OhSLb/A3t5FSFvJL8EJITLb hzYMoi5/MMRAHhSvDWCNXkz/NfBjzIBNEcM4FCU+oGRdw0ZJdF9PZUna2w+4yruR 0iFhbUIMOT1bqxTmmb2ndq6uJ23bu/TJ6GH9NvJxt2NcRqaey/kSRULyOcDMXemK QawF3HMbUcCaYmAxMyGT1JRUW9txiW9W6y+7kbyGRJ1fgz3O9WX6aAcRybTfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDvyUguD+fvWJgL4RsAnXS4Ny1dswHwYDVR0j BBgwFoAU3UrW3laiJn/F8n5K6u1ESyhxVyIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWU4OWU4NTktM2MyYy00YTA5LWE0YTktMzczMjNlYTVkZTIyLzAvREQ0QUQ2REU1 NkEyMjY3RkM1RjI3RTRBRUFFRDQ0NEIyODcxNTcyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERDRBRDZERTU2QTIyNjdGQzVGMjdFNEFFQUVENDQ0QjI4NzE1 NzIyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tTMA0GCSqG SIb3DQEBCwUAA4IBAQAtSAbg9Eh4DIRVnVhthBO434yFhfNhDrTXte3PzLss42wM Q/WpbYCeWCt/gLOk19PEN63G9YtC3tbSD7ZkEMS0c3X2FNYglpj6Zbo15NUeARIq iI4+9QREOfBt/40Jp/+9ktjps7Bx8uckdGYKmQqx2gqT4oFD3kGOHkvSzo4KbH+i fADZJah6yT/3ti+aHaAr1hDY1WDjdH/JtJZlarPn2lL/9V6bR2xbP78ezHnxwT5Y 0OvR6qn59N5q7wnjIpMmXYP952B/PmM6LO7H7hNyJVYWbjJX9ftf+IEO03j7ojT8 EU/kt2KrQxgCREcWefUOdXGSXFLR83lrdY68x7SJ -----END CERTIFICATE-----Generated at Wed May 13 04:19:08 2026 by rpki-client