$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa File: 3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa (raw, json) Hash identifier: 0fO4VX4oBEcuTGcIjNy9teGp06wO+0vGySKALzd6ILU= Subject key identifier: F1:84:6B:83:C1:F1:CD:BE:9B:CB:19:E8:29:B5:71:4D:5D:9D:FB:27 Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 7F6CA5F08AC852FEBEEF05DA70C3C72D82586121 Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa Signing time: Sun 03 May 2026 02:59:34 +0000 ROA not before: Sun 03 May 2026 02:54:34 +0000 ROA not after: Sun 02 May 2027 02:59:34 +0000 asID: 149746 IP address blocks: 103.17.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6c:a5:f0:8a:c8:52:fe:be:ef:05:da:70:c3:c7:2d:82:58:61:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:34 2026 GMT Not After : May 2 02:59:34 2027 GMT Subject: CN=F1846B83C1F1CDBE9BCB19E829B5714D5D9DFB27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d5:1a:45:3f:d3:ce:a9:2d:3e:af:56:ba:52: ac:79:fc:06:58:1a:c7:fa:22:2b:7c:21:0f:ca:5b: 2e:39:69:5f:6f:ad:19:32:6d:3e:5d:06:ec:bf:04: 9e:b8:a5:88:47:21:24:0c:ad:7b:76:cd:9a:35:c3: ba:79:63:2c:0c:6e:e5:57:11:e1:cf:d7:0e:22:82: 70:03:04:7d:5f:60:4f:4f:11:12:23:45:60:af:0e: f5:8f:84:0b:f7:6c:a4:44:ca:00:4a:29:a2:27:5b: 55:76:d9:b8:7d:36:89:32:45:4b:94:74:3f:a3:73: ca:16:3f:8a:dc:26:2d:aa:ec:85:01:84:93:a1:30: 6b:f3:38:40:4d:4e:78:ab:b9:dd:b2:30:41:7b:6c: 22:68:b3:a7:14:75:5f:35:a7:36:51:9c:aa:e2:7b: 7e:c3:69:17:4c:57:ea:ee:1d:f5:43:b8:65:1e:cd: 7a:b1:d9:a1:15:89:ab:53:2c:c1:ca:8c:54:b9:3a: fa:ac:48:77:e8:7b:06:28:15:45:fc:e0:68:ab:9c: e6:d7:2f:ba:9f:40:df:36:65:51:26:9a:54:ca:89: 05:c7:2b:ba:6d:e5:39:6a:e4:38:ab:64:b6:af:14: 91:5e:20:66:dd:76:7e:5e:1c:bf:ae:5f:00:4c:67: 3a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:84:6B:83:C1:F1:CD:BE:9B:CB:19:E8:29:B5:71:4D:5D:9D:FB:27 X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.246.0/23 Signature Algorithm: sha256WithRSAEncryption 93:22:fe:7b:06:a1:81:a1:3c:2a:aa:3e:d5:83:f3:72:b5:34: 9e:47:7b:55:23:0e:85:04:f6:2c:61:ba:59:5a:17:9c:a8:13: 87:88:35:7d:c6:fb:f0:68:94:a6:e1:b0:67:83:0b:7f:fc:28: 78:a5:88:ba:bc:22:7f:6a:cf:19:bd:94:a3:2f:56:de:06:14: 5a:fd:18:8b:c8:b0:7d:4c:43:51:c3:9c:49:57:04:8f:a1:79: 06:ea:f2:17:81:0c:c2:f8:12:7a:7f:d4:14:9a:21:60:17:71: 50:c0:09:61:fd:de:0e:17:6d:43:9b:b7:3d:86:21:ae:9b:9a: ac:a6:c3:28:1a:a3:d7:64:28:87:50:3a:5d:98:84:8b:3e:74: 96:e2:f9:e4:fb:19:1d:90:43:00:e9:00:1d:86:34:f0:56:b9: 9e:48:a2:ba:c6:2e:e7:b0:09:20:cf:40:9b:c4:4b:3e:43:7d: 63:e2:05:be:c0:aa:7b:35:13:3c:87:20:bb:a2:64:95:94:bf: 4f:8e:97:57:ab:94:2a:2b:ce:43:87:6c:b5:bd:0a:80:3b:10: 83:85:8e:6c:9b:02:6f:a8:10:a2:94:03:ff:bd:45:71:39:01: 7a:ac:09:2a:04:e6:51:24:5e:b4:83:40:d8:e8:ee:91:2e:f6: a4:fa:1b:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf2yl8IrIUv6+7wXacMPHLYJYYSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MzRaFw0yNzA1MDIwMjU5MzRaMDMxMTAvBgNV BAMTKEYxODQ2QjgzQzFGMUNEQkU5QkNCMTlFODI5QjU3MTRENUQ5REZCMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM1RpFP9POqS0+r1a6Uqx5/AZY Gsf6Iit8IQ/KWy45aV9vrRkybT5dBuy/BJ64pYhHISQMrXt2zZo1w7p5YywMbuVX EeHP1w4ignADBH1fYE9PERIjRWCvDvWPhAv3bKREygBKKaInW1V22bh9NokyRUuU dD+jc8oWP4rcJi2q7IUBhJOhMGvzOEBNTnirud2yMEF7bCJos6cUdV81pzZRnKri e37DaRdMV+ruHfVDuGUezXqx2aEViatTLMHKjFS5OvqsSHfoewYoFUX84GirnObX L7qfQN82ZVEmmlTKiQXHK7pt5Tlq5DirZLavFJFeIGbddn5eHL+uXwBMZzqFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8YRrg8Hxzb6byxnoKbVxTV2d+ycwHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzEzNzJlMzIzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxH2MA0GCSqG SIb3DQEBCwUAA4IBAQCTIv57BqGBoTwqqj7Vg/NytTSeR3tVIw6FBPYsYbpZWhec qBOHiDV9xvvwaJSm4bBngwt//Ch4pYi6vCJ/as8ZvZSjL1beBhRa/RiLyLB9TENR w5xJVwSPoXkG6vIXgQzC+BJ6f9QUmiFgF3FQwAlh/d4OF21Dm7c9hiGum5qspsMo GqPXZCiHUDpdmISLPnSW4vnk+xkdkEMA6QAdhjTwVrmeSKK6xi7nsAkgz0CbxEs+ Q31j4gW+wKp7NRM8hyC7omSVlL9PjpdXq5QqK85Dh2y1vQqAOxCDhY5smwJvqBCi lAP/vUVxOQF6rAkqBOZRJF60g0DY6O6RLvak+hvr -----END CERTIFICATE-----Generated at Wed May 13 07:35:30 2026 by rpki-client