$ rpki-client -vvf rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa File: 3130332e31302e39362e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: h+jOCf2n8qXpyofV0yrwta8TGMspkZPZ+KTwYTU4B7c= Subject key identifier: 4F:F9:40:CD:37:1A:8F:B7:82:BE:F5:04:04:CA:8B:98:2F:F2:C4:2E Certificate issuer: /CN=CF677DC4A0E9F52E458D7F786C11004CBCC06BE6 Certificate serial: 7FC87090A68509C785301518DFE451A920E5F8FB Authority key identifier: CF:67:7D:C4:A0:E9:F5:2E:45:8D:7F:78:6C:11:00:4C:BC:C0:6B:E6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa Signing time: Sun 03 May 2026 03:00:20 +0000 ROA not before: Sun 03 May 2026 02:55:20 +0000 ROA not after: Sun 02 May 2027 03:00:20 +0000 asID: 18103 IP address blocks: 103.10.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.crl rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c8:70:90:a6:85:09:c7:85:30:15:18:df:e4:51:a9:20:e5:f8:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF677DC4A0E9F52E458D7F786C11004CBCC06BE6 Validity Not Before: May 3 02:55:20 2026 GMT Not After : May 2 03:00:20 2027 GMT Subject: CN=4FF940CD371A8FB782BEF50404CA8B982FF2C42E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2d:a7:e2:51:43:b3:ac:4f:1d:f8:f5:34:4f: 9c:75:d4:56:67:78:f2:53:7d:db:1d:21:2b:60:99: f5:e6:0b:26:19:cb:34:48:54:28:90:ab:c9:ab:30: b3:67:1e:6b:e8:1c:86:29:47:bc:e5:2b:30:14:5b: 01:42:9f:9a:30:70:6f:20:ad:7a:f2:bd:49:61:b1: 6c:7c:a0:11:5a:c0:87:d7:ab:90:07:62:f2:80:13: d2:6a:a7:68:97:95:aa:35:22:7c:b1:03:91:6c:e8: 91:17:c2:84:6b:6f:d2:23:03:3a:63:0b:cf:08:46: ac:39:80:96:38:f6:67:6d:f3:c6:fd:8d:fa:e3:65: 73:50:24:ea:4d:b1:24:32:84:2e:4a:a6:9b:b4:cf: 13:21:4a:1c:63:ce:f7:fc:16:3e:4d:90:dd:cb:02: 71:9a:3d:47:3a:da:04:c9:71:cc:27:f7:99:b1:b5: bb:2f:23:40:ee:29:5b:b6:da:d8:8a:c3:e6:f5:36: 7d:24:96:44:6a:26:e0:ce:19:03:85:44:9a:16:9e: 6a:25:cb:e5:76:cc:0a:52:96:96:9b:12:67:54:23: 54:47:78:d8:b0:c4:0e:ab:69:7d:ce:b6:69:3d:33: 2b:fc:3c:a5:40:11:28:7e:24:79:e4:69:66:37:4e: 0a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F9:40:CD:37:1A:8F:B7:82:BE:F5:04:04:CA:8B:98:2F:F2:C4:2E X509v3 Authority Key Identifier: keyid:CF:67:7D:C4:A0:E9:F5:2E:45:8D:7F:78:6C:11:00:4C:BC:C0:6B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.96.0/22 Signature Algorithm: sha256WithRSAEncryption 75:12:00:08:0b:c4:8f:11:f1:ee:12:27:a1:37:9c:b3:21:e3: c8:46:bb:76:56:60:86:40:bb:10:84:55:d8:d1:05:8e:6e:fb: 1b:9b:16:67:af:4c:9c:e4:5c:ad:0b:e3:4b:2b:b6:3d:91:20: 59:64:44:3e:2d:a4:b3:7b:ea:f2:18:02:ab:a5:bc:69:44:e4: 6d:99:c0:2f:d5:22:49:45:27:ed:5a:bf:84:c1:16:2d:67:19: 4f:ec:eb:46:ad:45:04:9a:e9:d6:b2:39:89:0f:2b:c7:33:27: 17:74:c7:e8:b5:bf:34:2b:ba:fc:9d:f2:c8:b7:74:e8:25:b3: eb:8f:a9:40:5a:7c:4c:60:d1:e9:8c:61:f1:21:a1:0b:6c:1c: 7c:bb:54:ef:3b:24:77:1c:b6:00:bb:89:9f:65:eb:9f:90:de: 81:9d:78:d6:e8:18:c8:98:06:4d:34:9a:4a:05:c8:f8:50:15: d5:42:73:7e:31:3d:7d:ff:18:28:2d:ba:38:f4:5a:57:2b:0b: d3:75:c4:d3:78:b2:6d:74:de:2d:bd:d7:d7:7a:4c:0e:78:50: 95:74:36:aa:d8:c1:03:64:0f:49:3b:4b:e2:a2:9e:05:5a:77: 14:e8:ca:c0:32:33:07:67:b6:9c:c6:6f:b4:35:b3:98:6c:c7: f5:8e:ec:7a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUf8hwkKaFCceFMBUY3+RRqSDl+PswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Y2NzdEQzRBMEU5RjUyRTQ1OEQ3Rjc4NkMxMTAwNENC Q0MwNkJFNjAeFw0yNjA1MDMwMjU1MjBaFw0yNzA1MDIwMzAwMjBaMDMxMTAvBgNV BAMTKDRGRjk0MENEMzcxQThGQjc4MkJFRjUwNDA0Q0E4Qjk4MkZGMkM0MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfLafiUUOzrE8d+PU0T5x11FZn ePJTfdsdIStgmfXmCyYZyzRIVCiQq8mrMLNnHmvoHIYpR7zlKzAUWwFCn5owcG8g rXryvUlhsWx8oBFawIfXq5AHYvKAE9Jqp2iXlao1InyxA5Fs6JEXwoRrb9IjAzpj C88IRqw5gJY49mdt88b9jfrjZXNQJOpNsSQyhC5Kppu0zxMhShxjzvf8Fj5NkN3L AnGaPUc62gTJccwn95mxtbsvI0DuKVu22tiKw+b1Nn0klkRqJuDOGQOFRJoWnmol y+V2zApSlpabEmdUI1RHeNiwxA6raX3Otmk9Myv8PKVAESh+JHnkaWY3Tgo5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUT/lAzTcaj7eCvvUEBMqLmC/yxC4wHwYDVR0j BBgwFoAUz2d9xKDp9S5FjX94bBEATLzAa+YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjE5OWMxYWYtZDljNy00ZmZkLWJhMDMtYTNlMWNkZDhhZWUwLzAvQ0Y2NzdEQzRB MEU5RjUyRTQ1OEQ3Rjc4NkMxMTAwNENCQ0MwNkJFNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRjY3N0RDNEEwRTlGNTJFNDU4RDdGNzg2QzExMDA0Q0JDQzA2 QkU2LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMxMzAzMzJlMzEzMDJlMzkzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzgzMTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCmAwDQYJKoZIhvcN AQELBQADggEBAHUSAAgLxI8R8e4SJ6E3nLMh48hGu3ZWYIZAuxCEVdjRBY5u+xub FmevTJzkXK0L40srtj2RIFlkRD4tpLN76vIYAqulvGlE5G2ZwC/VIklFJ+1av4TB Fi1nGU/s60atRQSa6dayOYkPK8czJxd0x+i1vzQruvyd8si3dOgls+uPqUBafExg 0emMYfEhoQtsHHy7VO87JHcctgC7iZ9l65+Q3oGdeNboGMiYBk00mkoFyPhQFdVC c34xPX3/GCgtujj0WlcrC9N1xNN4sm103i2919d6TA54UJV0NqrYwQNkD0k7S+Ki ngVadxToysAyMwdntpzGb7Q1s5hsx/WO7Ho= -----END CERTIFICATE-----Generated at Wed May 13 01:41:01 2026 by rpki-client