$ rpki-client -vvf rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32342d3234203d3e203538333738.roa File: 3130332e3136312e3131362e302f32342d3234203d3e203538333738.roa (raw, json) Hash identifier: lOYan/tTMeCFnrAywnM0SljREMtkE1qDoXn8AuN63bo= Subject key identifier: AA:46:BB:C1:B3:53:10:15:FF:FC:76:3F:91:B0:8F:AC:4D:3B:7E:C7 Certificate issuer: /CN=43D0943D0AD49FD34D79A7F436D9F7AF552F6702 Certificate serial: 069BA0CBEFE04B1826A545A37EC3D86842BC7492 Authority key identifier: 43:D0:94:3D:0A:D4:9F:D3:4D:79:A7:F4:36:D9:F7:AF:55:2F:67:02 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32342d3234203d3e203538333738.roa Signing time: Sun 03 May 2026 03:01:44 +0000 ROA not before: Sun 03 May 2026 02:56:44 +0000 ROA not after: Sun 02 May 2027 03:01:44 +0000 asID: 58378 IP address blocks: 103.161.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.crl rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:9b:a0:cb:ef:e0:4b:18:26:a5:45:a3:7e:c3:d8:68:42:bc:74:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43D0943D0AD49FD34D79A7F436D9F7AF552F6702 Validity Not Before: May 3 02:56:44 2026 GMT Not After : May 2 03:01:44 2027 GMT Subject: CN=AA46BBC1B3531015FFFC763F91B08FAC4D3B7EC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e6:15:f8:54:e5:ff:fd:27:34:90:85:03:fa: aa:25:f1:b8:6b:73:38:4b:a4:6d:83:4c:a3:10:c9: f8:1d:88:c7:1c:4d:eb:1d:bb:2b:a9:3a:8a:ef:5f: 2b:0e:d2:28:be:7a:28:90:ab:68:43:a5:c3:12:e0: 45:d2:67:2c:d2:25:1f:a6:9a:a4:b7:47:b6:49:7f: 4a:03:88:84:cd:0c:a0:b2:b5:e2:5d:d6:bf:43:56: 5d:ad:e3:b4:af:e5:ca:4d:b3:7f:f1:f6:1d:c0:ce: 46:53:0d:b7:63:4a:e8:23:58:f2:17:cb:c1:10:5e: 88:5e:84:ec:1d:9f:0a:df:64:27:2d:fc:8c:90:16: 7b:40:94:51:aa:b1:57:89:1b:ad:21:ce:93:43:20: e9:6e:0d:78:1e:da:85:2a:ca:5f:36:37:53:a2:ff: 73:de:2d:81:fc:a5:d3:ad:5e:a5:97:33:18:9a:a6: 4a:5e:a2:85:00:9e:a3:dd:4f:64:38:aa:98:4d:9f: 43:db:9e:cf:8e:74:52:72:4d:7c:3b:9e:79:9c:e8: 30:90:88:25:6c:4e:3a:43:b9:dd:90:31:94:61:d2: 30:96:10:09:ca:ff:b2:23:71:fb:72:0a:25:2b:32: 38:2c:93:e5:9c:fc:48:4b:ab:3b:e1:04:2d:05:10: 73:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:46:BB:C1:B3:53:10:15:FF:FC:76:3F:91:B0:8F:AC:4D:3B:7E:C7 X509v3 Authority Key Identifier: keyid:43:D0:94:3D:0A:D4:9F:D3:4D:79:A7:F4:36:D9:F7:AF:55:2F:67:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131362e302f32342d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.116.0/24 Signature Algorithm: sha256WithRSAEncryption 09:59:d2:02:4a:50:24:26:42:f2:4c:72:34:2f:5f:78:d8:1b: bf:7e:d1:b6:6b:10:ce:0d:37:fc:06:4e:96:ba:99:8d:cd:cf: 66:cb:5d:f1:8d:a7:14:e0:d9:2e:46:0f:25:44:bd:45:3e:19: e6:98:d3:da:7c:29:c9:b0:6e:fa:29:d5:76:c0:bc:49:71:c2: c0:25:62:d8:86:1f:70:f5:40:00:70:56:e3:ca:80:ab:8f:fc: 2d:c5:12:76:02:e5:11:6b:20:a7:20:94:46:19:e2:60:1b:ef: 5e:f1:12:e4:ed:0f:49:34:98:ad:a8:b8:bb:9f:cb:58:1e:e3: bd:63:b2:a4:cd:cf:ca:59:6d:39:3e:43:52:36:c9:93:02:0f: 98:ed:b4:4e:24:d5:31:e4:9d:2d:0b:f5:c4:fe:1d:91:17:27: d7:65:1d:f6:e2:c0:b0:27:a8:03:29:8d:3a:4c:26:b7:93:9f: 7b:31:c5:88:4b:b0:34:b5:0d:3e:09:40:87:4e:7a:06:b4:63: e3:1b:57:b3:70:cb:e7:7a:03:5c:c8:9f:9b:d5:9f:0d:b7:6b: 3b:72:d6:6d:c4:5a:2f:ba:4d:12:b0:3f:65:fb:b2:76:2d:fc: b4:93:3a:1a:be:95:cc:0b:c6:15:24:24:f1:b8:84:0c:c1:ed: 3a:ec:78:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBpugy+/gSxgmpUWjfsPYaEK8dJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNEMDk0M0QwQUQ0OUZEMzRENzlBN0Y0MzZEOUY3QUY1 NTJGNjcwMjAeFw0yNjA1MDMwMjU2NDRaFw0yNzA1MDIwMzAxNDRaMDMxMTAvBgNV BAMTKEFBNDZCQkMxQjM1MzEwMTVGRkZDNzYzRjkxQjA4RkFDNEQzQjdFQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb5hX4VOX//Sc0kIUD+qol8bhr czhLpG2DTKMQyfgdiMccTesduyupOorvXysO0ii+eiiQq2hDpcMS4EXSZyzSJR+m mqS3R7ZJf0oDiITNDKCyteJd1r9DVl2t47Sv5cpNs3/x9h3AzkZTDbdjSugjWPIX y8EQXohehOwdnwrfZCct/IyQFntAlFGqsVeJG60hzpNDIOluDXge2oUqyl82N1Oi /3PeLYH8pdOtXqWXMxiapkpeooUAnqPdT2Q4qphNn0Pbns+OdFJyTXw7nnmc6DCQ iCVsTjpDud2QMZRh0jCWEAnK/7IjcftyCiUrMjgsk+Wc/EhLqzvhBC0FEHPVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqka7wbNTEBX//HY/kbCPrE07fscwHwYDVR0j BBgwFoAUQ9CUPQrUn9NNeaf0Ntn3r1UvZwIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjczNTA3ZjMtZjhjMC00MTBiLWIxOWUtNTdlNDhiZjMyMzA1LzAvNDNEMDk0M0Qw QUQ0OUZEMzRENzlBN0Y0MzZEOUY3QUY1NTJGNjcwMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0QwOTQzRDBBRDQ5RkQzNEQ3OUE3RjQzNkQ5RjdBRjU1MkY2 NzAyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I3MzUwN2YzLWY4YzAtNDEwYi1i MTllLTU3ZTQ4YmYzMjMwNS8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6F0MA0GCSqG SIb3DQEBCwUAA4IBAQAJWdICSlAkJkLyTHI0L1942Bu/ftG2axDODTf8Bk6WupmN zc9my13xjacU4NkuRg8lRL1FPhnmmNPafCnJsG76KdV2wLxJccLAJWLYhh9w9UAA cFbjyoCrj/wtxRJ2AuURayCnIJRGGeJgG+9e8RLk7Q9JNJitqLi7n8tYHuO9Y7Kk zc/KWW05PkNSNsmTAg+Y7bROJNUx5J0tC/XE/h2RFyfXZR324sCwJ6gDKY06TCa3 k597McWIS7A0tQ0+CUCHTnoGtGPjG1ezcMvnegNcyJ+b1Z8Nt2s7ctZtxFovuk0S sD9l+7J2Lfy0kzoavpXMC8YVJCTxuIQMwe067Hix -----END CERTIFICATE-----Generated at Wed May 13 12:41:12 2026 by rpki-client