$ rpki-client -vvf rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa File: 3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa (raw, json) Hash identifier: j4dDYSTdl5zyq2E6gFmPn2O8HAKj+mVFK8qjYvnr4Tk= Subject key identifier: 16:C5:A2:60:06:BD:9F:8B:A9:35:FC:E9:24:3B:FA:DE:B0:56:E7:18 Certificate issuer: /CN=43D0943D0AD49FD34D79A7F436D9F7AF552F6702 Certificate serial: 374221340813028073A0C7BF8AF7A10E7094F085 Authority key identifier: 43:D0:94:3D:0A:D4:9F:D3:4D:79:A7:F4:36:D9:F7:AF:55:2F:67:02 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa Signing time: Sun 03 May 2026 03:01:45 +0000 ROA not before: Sun 03 May 2026 02:56:45 +0000 ROA not after: Sun 02 May 2027 03:01:45 +0000 asID: 140396 IP address blocks: 103.161.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.crl rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:42:21:34:08:13:02:80:73:a0:c7:bf:8a:f7:a1:0e:70:94:f0:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43D0943D0AD49FD34D79A7F436D9F7AF552F6702 Validity Not Before: May 3 02:56:45 2026 GMT Not After : May 2 03:01:45 2027 GMT Subject: CN=16C5A26006BD9F8BA935FCE9243BFADEB056E718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a0:a1:42:4b:dc:32:2c:7e:ff:00:cb:b6:fa: 97:c8:33:93:a8:86:83:48:b8:63:f1:7b:26:cb:a5: 66:21:39:6c:76:ff:b3:77:46:bf:1d:87:4d:b5:0a: dd:e3:07:fd:c8:0b:6b:5f:c3:c3:84:5c:4d:3a:ab: f4:ec:1b:76:67:3f:91:13:b1:2e:c8:86:42:84:f0: ba:f9:ec:4e:60:3f:30:be:6e:e2:af:e1:c0:58:63: 1c:bc:21:35:0b:f7:a4:8b:46:20:b1:1c:3b:60:3c: 0e:49:c3:ea:f2:49:82:81:4a:a9:53:0c:91:3e:75: 3e:6b:7d:9a:6f:e8:ad:67:a3:59:0e:00:35:6c:6e: f0:1c:74:68:61:5a:67:66:c7:0b:11:f5:ad:b9:81: 15:46:61:09:a9:db:ba:e5:10:ac:68:7f:91:ca:59: ca:21:d0:4f:a3:1e:5a:7c:7a:05:03:68:6c:b1:4c: 83:e7:f5:9f:1a:17:c7:3c:d5:ac:0a:1f:ae:d5:20: 24:81:a0:2b:94:36:14:6c:a9:ec:37:ee:ec:93:40: 17:3f:ac:d6:28:d8:d4:4f:8e:8b:c4:fd:03:5a:a0: 7a:65:1e:80:7a:95:01:9e:74:e3:02:1b:e2:2d:bb: 13:d7:3c:4e:34:af:8b:11:d6:79:b0:32:1c:05:a6: 0c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:C5:A2:60:06:BD:9F:8B:A9:35:FC:E9:24:3B:FA:DE:B0:56:E7:18 X509v3 Authority Key Identifier: keyid:43:D0:94:3D:0A:D4:9F:D3:4D:79:A7:F4:36:D9:F7:AF:55:2F:67:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43D0943D0AD49FD34D79A7F436D9F7AF552F6702.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.117.0/24 Signature Algorithm: sha256WithRSAEncryption 67:f0:79:ed:88:60:64:a1:c3:8f:3e:28:bc:e6:d0:2e:a8:e1: 08:1b:7a:69:5e:76:f0:6b:fc:91:26:77:16:20:2d:fa:30:de: 1d:f9:b4:53:0a:dd:a3:68:22:ac:98:24:c3:29:79:10:75:35: bc:40:d0:ea:67:c9:8f:18:a4:8b:1e:bb:b2:dd:4f:9b:89:0e: 93:f0:d5:2a:9a:54:2b:4a:15:05:ac:08:50:77:ad:5e:a1:e0: 51:19:de:13:ed:bf:15:96:a6:45:d9:93:2b:6a:dc:7f:40:7c: 19:55:7b:c1:a1:39:6d:eb:eb:66:b8:aa:05:42:32:95:b3:62: 09:34:57:0f:c4:d1:e6:5c:a3:f1:49:bd:91:7b:23:d6:ed:a0: 1f:73:0c:dd:17:a1:43:f4:76:09:e7:1c:52:a2:84:b3:9c:b1: 17:1d:29:fa:1c:1c:31:c0:f8:4a:26:4d:3e:a5:36:8a:ab:77: af:50:2f:bb:12:70:6d:08:65:c1:a7:ac:f4:6c:b7:02:d7:c2: 81:5d:f6:c6:52:fa:94:d7:f6:1d:e4:0e:d2:24:2d:1c:42:06: 96:c5:f1:6d:01:d0:c1:2c:51:ae:8e:5b:6f:ed:5e:29:6a:48: cb:02:8c:a4:86:92:9e:5b:6c:14:df:64:74:04:f1:06:25:f4: de:1c:a4:c6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUN0IhNAgTAoBzoMe/ivehDnCU8IUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNEMDk0M0QwQUQ0OUZEMzRENzlBN0Y0MzZEOUY3QUY1 NTJGNjcwMjAeFw0yNjA1MDMwMjU2NDVaFw0yNzA1MDIwMzAxNDVaMDMxMTAvBgNV BAMTKDE2QzVBMjYwMDZCRDlGOEJBOTM1RkNFOTI0M0JGQURFQjA1NkU3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtoKFCS9wyLH7/AMu2+pfIM5Oo hoNIuGPxeybLpWYhOWx2/7N3Rr8dh021Ct3jB/3IC2tfw8OEXE06q/TsG3ZnP5ET sS7IhkKE8Lr57E5gPzC+buKv4cBYYxy8ITUL96SLRiCxHDtgPA5Jw+rySYKBSqlT DJE+dT5rfZpv6K1no1kOADVsbvAcdGhhWmdmxwsR9a25gRVGYQmp27rlEKxof5HK Wcoh0E+jHlp8egUDaGyxTIPn9Z8aF8c81awKH67VICSBoCuUNhRsqew37uyTQBc/ rNYo2NRPjovE/QNaoHplHoB6lQGedOMCG+ItuxPXPE40r4sR1nmwMhwFpgzXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFsWiYAa9n4upNfzpJDv63rBW5xgwHwYDVR0j BBgwFoAUQ9CUPQrUn9NNeaf0Ntn3r1UvZwIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjczNTA3ZjMtZjhjMC00MTBiLWIxOWUtNTdlNDhiZjMyMzA1LzAvNDNEMDk0M0Qw QUQ0OUZEMzRENzlBN0Y0MzZEOUY3QUY1NTJGNjcwMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0QwOTQzRDBBRDQ5RkQzNEQ3OUE3RjQzNkQ5RjdBRjU1MkY2 NzAyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I3MzUwN2YzLWY4YzAtNDEwYi1i MTllLTU3ZTQ4YmYzMjMwNS8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoXUwDQYJ KoZIhvcNAQELBQADggEBAGfwee2IYGShw48+KLzm0C6o4QgbemledvBr/JEmdxYg Lfow3h35tFMK3aNoIqyYJMMpeRB1NbxA0OpnyY8YpIseu7LdT5uJDpPw1SqaVCtK FQWsCFB3rV6h4FEZ3hPtvxWWpkXZkytq3H9AfBlVe8GhOW3r62a4qgVCMpWzYgk0 Vw/E0eZco/FJvZF7I9btoB9zDN0XoUP0dgnnHFKihLOcsRcdKfocHDHA+EomTT6l Noqrd69QL7sScG0IZcGnrPRstwLXwoFd9sZS+pTX9h3kDtIkLRxCBpbF8W0B0MEs Ua6OW2/tXilqSMsCjKSGkp5bbBTfZHQE8QYl9N4cpMY= -----END CERTIFICATE-----Generated at Wed May 13 14:17:46 2026 by rpki-client