$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa File: 3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: jIKXa26EJIti6zoWk205tbdwHju56rwlPhb8cVXzYUE= Subject key identifier: B5:29:78:90:F3:22:84:01:1A:74:BE:D6:3D:A4:0B:AD:66:C8:DE:63 Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 466201C8B6A3288503C837A630ACC031A026DF07 Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa Signing time: Sun 03 May 2026 02:59:33 +0000 ROA not before: Sun 03 May 2026 02:54:33 +0000 ROA not after: Sun 02 May 2027 02:59:33 +0000 asID: 149746 IP address blocks: 103.17.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:62:01:c8:b6:a3:28:85:03:c8:37:a6:30:ac:c0:31:a0:26:df:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:33 2026 GMT Not After : May 2 02:59:33 2027 GMT Subject: CN=B5297890F32284011A74BED63DA40BAD66C8DE63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:9b:d4:66:42:12:2e:1b:8f:ca:b6:d0:34: e2:a9:d9:0c:75:5a:80:b7:78:f2:45:3f:1b:4f:6c: 5c:f2:d5:af:ac:87:7e:32:0f:be:7a:e4:1a:61:6f: ee:3b:8e:e2:37:e4:5c:7f:c3:8a:bd:f0:b6:b9:8f: 25:54:51:be:1d:8c:fd:59:c4:70:f4:65:44:98:3a: 94:59:91:9f:84:81:ce:33:09:2e:d7:36:53:4b:3e: 09:3b:29:14:10:93:e4:98:ee:b9:da:80:7f:d8:ea: f1:31:c7:58:98:93:3a:bb:a7:8f:f7:f4:84:aa:a2: 2e:b2:ed:6f:d8:3b:cb:df:21:36:57:a9:1a:7e:4c: 58:4c:9e:46:4d:1b:b7:ee:f1:52:d9:4f:82:2d:c5: 07:c2:ed:ae:dc:56:5e:e7:2a:d8:e0:df:b4:d2:46: 9a:00:db:5c:36:94:eb:1b:f5:6c:48:c4:53:5d:a8: 97:cf:bb:2e:38:d5:78:fd:f5:94:76:c6:07:33:36: d3:58:4a:36:60:5f:f7:7e:de:51:24:8e:17:9b:28: 22:c2:1c:40:58:99:17:26:ae:55:21:da:33:ed:93: f1:41:67:90:79:89:13:eb:30:78:a6:ed:89:4f:5b: 0b:95:47:a2:45:fe:38:8c:8a:63:42:30:d0:eb:d0: ed:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:29:78:90:F3:22:84:01:1A:74:BE:D6:3D:A4:0B:AD:66:C8:DE:63 X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.245.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:56:f7:b0:3d:b0:a7:c9:98:f2:72:63:9b:05:2f:2f:12:1f: 1e:40:b9:77:1e:99:00:d4:86:b0:67:d2:2a:bb:ed:92:f3:10: e5:73:53:ec:27:18:00:7d:1b:c3:76:d5:45:de:74:eb:85:3d: da:81:0c:39:9f:89:2b:1f:4f:91:54:dd:b9:4e:79:0d:85:73: 99:f2:db:36:4a:4d:fe:2f:4a:b3:73:5e:da:5a:d3:e2:45:8e: 62:48:8c:aa:2d:7c:53:d6:91:ae:fb:66:93:95:50:f9:91:16: 98:fb:9c:eb:ff:28:e6:88:d0:63:3f:a4:ab:23:8c:ee:ab:c6: a4:77:64:59:a7:8e:46:f7:17:54:ca:3d:9f:0f:8a:8f:90:9e: 78:fc:6f:9a:ec:d1:5b:89:d3:a3:4d:78:0b:8b:6d:16:c0:db: 98:07:e6:6c:cb:8c:e5:1f:11:6b:0c:87:78:14:20:a0:18:0f: c8:c0:81:56:83:2e:be:eb:93:4c:e3:aa:d7:cf:29:78:e7:35: 71:fc:ce:84:e6:1d:46:69:05:04:55:b6:22:21:4f:02:de:09: 6e:26:32:bd:65:69:78:24:e8:5c:ef:33:df:3a:e7:44:88:63: 56:f4:92:3e:ce:bd:41:6e:61:5d:4f:0e:d0:b7:b8:bc:da:5b: dc:85:14:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURmIByLajKIUDyDemMKzAMaAm3wcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MzNaFw0yNzA1MDIwMjU5MzNaMDMxMTAvBgNV BAMTKEI1Mjk3ODkwRjMyMjg0MDExQTc0QkVENjNEQTQwQkFENjZDOERFNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDbJvUZkISLhuPyrbQNOKp2Qx1 WoC3ePJFPxtPbFzy1a+sh34yD7565Bphb+47juI35Fx/w4q98La5jyVUUb4djP1Z xHD0ZUSYOpRZkZ+Egc4zCS7XNlNLPgk7KRQQk+SY7rnagH/Y6vExx1iYkzq7p4/3 9ISqoi6y7W/YO8vfITZXqRp+TFhMnkZNG7fu8VLZT4ItxQfC7a7cVl7nKtjg37TS RpoA21w2lOsb9WxIxFNdqJfPuy441Xj99ZR2xgczNtNYSjZgX/d+3lEkjhebKCLC HEBYmRcmrlUh2jPtk/FBZ5B5iRPrMHim7YlPWwuVR6JF/jiMimNCMNDr0O0nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtSl4kPMihAEadL7WPaQLrWbI3mMwHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzEzNzJlMzIzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxH1MA0GCSqG SIb3DQEBCwUAA4IBAQBvVvewPbCnyZjycmObBS8vEh8eQLl3HpkA1IawZ9Iqu+2S 8xDlc1PsJxgAfRvDdtVF3nTrhT3agQw5n4krH0+RVN25TnkNhXOZ8ts2Sk3+L0qz c17aWtPiRY5iSIyqLXxT1pGu+2aTlVD5kRaY+5zr/yjmiNBjP6SrI4zuq8akd2RZ p45G9xdUyj2fD4qPkJ54/G+a7NFbidOjTXgLi20WwNuYB+Zsy4zlHxFrDId4FCCg GA/IwIFWgy6+65NM46rXzyl45zVx/M6E5h1GaQUEVbYiIU8C3gluJjK9ZWl4JOhc 7zPfOudEiGNW9JI+zr1BbmFdTw7Qt7i82lvchRTC -----END CERTIFICATE-----Generated at Wed May 13 08:00:26 2026 by rpki-client