$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa File: 3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: knn+Cwhk09KfRx4x7E9v1Ql2hZAgWwcY0kUTIDWjIfw= Subject key identifier: 8E:3F:E3:26:32:CF:42:19:17:54:42:86:D2:1B:C4:3A:C3:D1:B6:11 Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 7DF6F96FDE2F623BDB9822FE9ABD172095C09EED Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa Signing time: Sun 03 May 2026 02:59:31 +0000 ROA not before: Sun 03 May 2026 02:54:31 +0000 ROA not after: Sun 02 May 2027 02:59:31 +0000 asID: 55666 IP address blocks: 103.255.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f6:f9:6f:de:2f:62:3b:db:98:22:fe:9a:bd:17:20:95:c0:9e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:31 2026 GMT Not After : May 2 02:59:31 2027 GMT Subject: CN=8E3FE32632CF421917544286D21BC43AC3D1B611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:39:86:ba:96:68:a0:02:92:5b:d6:af:93:6f: e5:08:c7:f0:50:92:97:ab:fa:3b:7a:0b:57:0f:d9: 06:bb:66:88:d7:95:8f:4f:2c:99:c2:ce:c8:0e:c9: 2c:9d:3b:27:7a:af:f5:59:c8:c6:f6:cb:22:10:c8: fd:38:b1:b4:7c:fd:71:44:92:4a:dc:83:e8:53:af: fd:79:a7:2d:78:24:c4:3f:bb:87:68:2b:a1:67:fc: a1:06:5d:99:d6:59:10:b2:33:e0:13:5b:ee:1b:3e: 90:01:4a:68:f5:a9:cc:69:98:c1:ee:2d:76:37:26: 9a:b8:91:21:ee:5a:95:2d:2e:97:50:29:6e:ab:4e: 66:1a:a4:a1:fe:c3:99:ca:bb:e9:ba:08:b1:d3:c0: a0:65:17:21:cb:f9:ab:5f:a9:fe:d4:60:cd:59:64: 1c:e9:f1:9f:86:55:42:d4:36:de:2d:2f:be:04:5b: e8:31:4f:83:1c:d2:b4:14:86:48:94:f0:a6:6b:64: aa:ca:d1:b2:8d:e2:df:c9:61:cc:9e:1c:b8:87:3e: bd:31:d4:cd:42:06:11:53:19:c4:69:c6:7c:c8:72: 7d:c8:42:8f:7b:c1:db:dd:bb:80:3e:c7:99:5b:4a: 56:0a:ca:78:03:9f:5b:41:57:68:1c:ed:8f:00:20: 38:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:3F:E3:26:32:CF:42:19:17:54:42:86:D2:1B:C4:3A:C3:D1:B6:11 X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.240.0/22 Signature Algorithm: sha256WithRSAEncryption 03:26:82:d9:ce:15:e1:e7:3e:e8:59:49:5c:fc:7d:cf:87:74: ae:4e:28:31:eb:02:f5:21:23:7e:88:c1:30:9e:3a:b3:ed:27: 54:73:a4:59:2e:d8:5f:b2:fa:e4:30:fc:d0:4d:42:61:c7:f0: f2:45:8a:78:67:b1:a0:f7:e2:59:70:19:9f:dc:dc:28:92:60: 31:d1:f2:88:ed:93:b3:ac:6e:c3:5d:db:ac:85:3f:07:ce:0c: 50:1c:d1:65:23:11:0d:28:35:d2:e6:8b:0b:71:1a:90:64:e5: b2:41:ea:27:c4:36:97:d0:1c:32:af:91:c8:df:1b:ee:bb:7e: 40:e5:02:0f:09:3d:49:c3:00:66:d3:ac:68:4d:d4:08:44:60: 03:51:ce:7b:63:9e:a9:56:ab:98:9d:a8:54:af:0f:fc:a3:f6: e3:e0:c1:d0:41:2d:1a:27:2c:34:cf:69:99:82:e9:d2:2c:05: 30:ac:7b:26:2b:56:64:0e:35:bc:aa:12:65:37:7c:ce:ec:69: af:94:59:d8:c9:4e:3d:3f:9c:00:a3:b0:81:4e:db:f5:3b:b9: 2c:03:8b:58:74:45:79:48:bd:6c:ff:a9:a2:e1:e3:ac:c8:04: c0:c9:ec:da:1c:b9:8f:fd:8f:51:8c:0a:da:a9:f4:67:c6:bf: e4:5e:53:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUffb5b94vYjvbmCL+mr0XIJXAnu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MzFaFw0yNzA1MDIwMjU5MzFaMDMxMTAvBgNV BAMTKDhFM0ZFMzI2MzJDRjQyMTkxNzU0NDI4NkQyMUJDNDNBQzNEMUI2MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSOYa6lmigApJb1q+Tb+UIx/BQ kper+jt6C1cP2Qa7ZojXlY9PLJnCzsgOySydOyd6r/VZyMb2yyIQyP04sbR8/XFE kkrcg+hTr/15py14JMQ/u4doK6Fn/KEGXZnWWRCyM+ATW+4bPpABSmj1qcxpmMHu LXY3Jpq4kSHuWpUtLpdQKW6rTmYapKH+w5nKu+m6CLHTwKBlFyHL+atfqf7UYM1Z ZBzp8Z+GVULUNt4tL74EW+gxT4Mc0rQUhkiU8KZrZKrK0bKN4t/JYcyeHLiHPr0x 1M1CBhFTGcRpxnzIcn3IQo97wdvdu4A+x5lbSlYKyngDn1tBV2gc7Y8AIDjbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjj/jJjLPQhkXVEKG0hvEOsPRthEwHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNTM1MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ//wMA0GCSqG SIb3DQEBCwUAA4IBAQADJoLZzhXh5z7oWUlc/H3Ph3SuTigx6wL1ISN+iMEwnjqz 7SdUc6RZLthfsvrkMPzQTUJhx/DyRYp4Z7Gg9+JZcBmf3NwokmAx0fKI7ZOzrG7D XdushT8HzgxQHNFlIxENKDXS5osLcRqQZOWyQeonxDaX0Bwyr5HI3xvuu35A5QIP CT1JwwBm06xoTdQIRGADUc57Y56pVquYnahUrw/8o/bj4MHQQS0aJyw0z2mZgunS LAUwrHsmK1ZkDjW8qhJlN3zO7GmvlFnYyU49P5wAo7CBTtv1O7ksA4tYdEV5SL1s /6mi4eOsyATAyezaHLmP/Y9RjAraqfRnxr/kXlOg -----END CERTIFICATE-----Generated at Wed May 13 07:36:04 2026 by rpki-client