$ rpki-client -vvf rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa File: 3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa (raw, json) Hash identifier: OzarGbzrKygn581G2dCLdzA7C4q7lKqki8T+O4VVozc= Subject key identifier: 64:7F:27:E7:E0:0E:50:75:DF:C7:34:2D:CC:E9:BC:99:BA:C6:C0:D7 Certificate issuer: /CN=8DD710534DF68AAB08361EE28306B8FDEE71D144 Certificate serial: 3AD25ADFB83DEA4F48A0C0AA958349776541A499 Authority key identifier: 8D:D7:10:53:4D:F6:8A:AB:08:36:1E:E2:83:06:B8:FD:EE:71:D1:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8DD710534DF68AAB08361EE28306B8FDEE71D144.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa Signing time: Sun 03 May 2026 03:01:43 +0000 ROA not before: Sun 03 May 2026 02:56:43 +0000 ROA not after: Sun 02 May 2027 03:01:43 +0000 asID: 141129 IP address blocks: 103.158.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.crl rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8DD710534DF68AAB08361EE28306B8FDEE71D144.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:d2:5a:df:b8:3d:ea:4f:48:a0:c0:aa:95:83:49:77:65:41:a4:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DD710534DF68AAB08361EE28306B8FDEE71D144 Validity Not Before: May 3 02:56:43 2026 GMT Not After : May 2 03:01:43 2027 GMT Subject: CN=647F27E7E00E5075DFC7342DCCE9BC99BAC6C0D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b2:21:2f:6a:fd:90:de:ad:bf:8e:e4:3e:3d: 20:eb:84:b7:ae:ec:88:bc:17:e7:2b:61:27:64:a3: 24:81:0c:29:4a:72:f6:7f:26:5c:4d:73:09:0d:0b: 5a:a7:78:16:ab:35:66:2f:3c:18:5a:ca:0c:f4:a1: 2a:a1:7c:ca:06:20:87:f7:9d:e5:11:38:f4:6e:20: a7:fe:3d:ba:1d:cc:05:ec:fc:22:f5:bd:c4:4b:4f: fb:13:bb:c7:93:f0:07:f1:ff:f5:ce:f7:96:c2:37: 5c:29:62:61:4f:18:5b:c4:50:92:1a:20:29:e4:9e: b9:ca:f7:0d:03:ed:a8:71:70:f4:78:dc:85:1e:94: 05:7e:09:8c:32:3c:43:a7:f3:a1:04:30:c6:7c:05: 2e:6c:0c:ee:74:3f:c7:47:a9:fd:0e:e9:8c:41:90: a3:68:3b:c4:c5:0a:dd:94:e4:56:c2:ac:7c:b9:01: 39:b7:83:e3:e0:f2:99:d2:fe:9d:ce:06:46:7a:87: 8d:57:2f:c6:1f:d7:fc:70:f8:70:23:c8:e9:58:5b: ec:fe:54:00:30:91:63:8d:90:14:60:7f:04:dc:d7: 6c:e3:86:ac:8e:b5:e3:52:0b:44:05:cc:7c:88:2b: f9:43:32:61:4e:e5:40:c1:45:cd:19:12:a0:dc:80: 77:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7F:27:E7:E0:0E:50:75:DF:C7:34:2D:CC:E9:BC:99:BA:C6:C0:D7 X509v3 Authority Key Identifier: keyid:8D:D7:10:53:4D:F6:8A:AB:08:36:1E:E2:83:06:B8:FD:EE:71:D1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8DD710534DF68AAB08361EE28306B8FDEE71D144.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.102.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:dc:2f:36:d6:fe:be:75:b8:7f:d8:56:ca:97:e9:e6:23:8c: f6:e7:c5:82:1b:5b:1c:e5:9e:a5:b9:30:9c:65:76:22:3b:36: 61:c9:89:62:95:56:37:fe:ff:fc:b1:bd:a2:51:21:b9:24:3f: 97:4c:30:45:d0:ea:e1:7f:4c:90:01:1b:26:e9:e1:3a:63:64: 70:ed:1e:de:d9:27:56:a9:c9:da:c9:67:61:31:7b:dc:ae:57: 11:73:fe:12:03:cd:00:11:21:c3:95:1b:e4:b7:73:78:2a:c7: ec:bf:ac:f9:24:72:f0:cb:ce:98:cb:63:5d:0d:3e:a7:f4:b4: 14:52:ed:1d:69:4b:f7:50:a9:01:0b:c1:fd:13:0d:4d:7e:35: c3:cd:d2:8e:7d:6e:de:95:fd:35:a6:24:65:e2:b4:ad:59:3c: 46:ea:77:10:7a:4e:69:c1:e1:bd:c4:c5:b3:70:44:0a:8f:ff: 6a:9f:98:78:0a:49:6a:04:16:32:25:48:c2:7e:f3:e8:d1:8a: 71:87:4a:82:1f:fb:f3:0b:9f:da:f6:ce:4c:36:40:7d:05:0c: 69:d4:9f:74:95:ae:bb:98:08:90:53:95:3f:75:51:e5:04:1e: a9:6a:d9:9c:54:8f:22:5c:2f:ed:a9:33:73:0f:43:2d:c2:1c: 73:65:89:31 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOtJa37g96k9IoMCqlYNJd2VBpJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERENzEwNTM0REY2OEFBQjA4MzYxRUUyODMwNkI4RkRF RTcxRDE0NDAeFw0yNjA1MDMwMjU2NDNaFw0yNzA1MDIwMzAxNDNaMDMxMTAvBgNV BAMTKDY0N0YyN0U3RTAwRTUwNzVERkM3MzQyRENDRTlCQzk5QkFDNkMwRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwsiEvav2Q3q2/juQ+PSDrhLeu 7Ii8F+crYSdkoySBDClKcvZ/JlxNcwkNC1qneBarNWYvPBhaygz0oSqhfMoGIIf3 neUROPRuIKf+PbodzAXs/CL1vcRLT/sTu8eT8Afx//XO95bCN1wpYmFPGFvEUJIa ICnknrnK9w0D7ahxcPR43IUelAV+CYwyPEOn86EEMMZ8BS5sDO50P8dHqf0O6YxB kKNoO8TFCt2U5FbCrHy5ATm3g+Pg8pnS/p3OBkZ6h41XL8Yf1/xw+HAjyOlYW+z+ VAAwkWONkBRgfwTc12zjhqyOteNSC0QFzHyIK/lDMmFO5UDBRc0ZEqDcgHcnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZH8n5+AOUHXfxzQtzOm8mbrGwNcwHwYDVR0j BBgwFoAUjdcQU032iqsINh7igwa4/e5x0UQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjcyNGU0NWItMjU0Yi00ZmViLWJmOGUtN2JmMTIwOTEyYWY3LzAvOERENzEwNTM0 REY2OEFBQjA4MzYxRUUyODMwNkI4RkRFRTcxRDE0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84REQ3MTA1MzRERjY4QUFCMDgzNjFFRTI4MzA2QjhGREVFNzFE MTQ0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I3MjRlNDViLTI1NGItNGZlYi1i ZjhlLTdiZjEyMDkxMmFmNy8wLzMxMzAzMzJlMzEzNTM4MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnmYwDQYJ KoZIhvcNAQELBQADggEBAHvcLzbW/r51uH/YVsqX6eYjjPbnxYIbWxzlnqW5MJxl diI7NmHJiWKVVjf+//yxvaJRIbkkP5dMMEXQ6uF/TJABGybp4TpjZHDtHt7ZJ1ap ydrJZ2Exe9yuVxFz/hIDzQARIcOVG+S3c3gqx+y/rPkkcvDLzpjLY10NPqf0tBRS 7R1pS/dQqQELwf0TDU1+NcPN0o59bt6V/TWmJGXitK1ZPEbqdxB6TmnB4b3ExbNw RAqP/2qfmHgKSWoEFjIlSMJ+8+jRinGHSoIf+/MLn9r2zkw2QH0FDGnUn3SVrruY CJBTlT91UeUEHqlq2ZxUjyJcL+2pM3MPQy3CHHNliTE= -----END CERTIFICATE-----Generated at Wed May 13 06:38:08 2026 by rpki-client