$ rpki-client -vvf rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa File: 3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa (raw, json) Hash identifier: h0aJP09uXJR7/Jgpd677SbGBA5UD7o/TwIMtte0LAII= Subject key identifier: 5A:8D:CD:8F:30:E2:B2:F5:04:AA:12:C7:5D:E2:DC:E2:75:DD:73:E5 Certificate issuer: /CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Certificate serial: 621355CC7FD7E0B8A4B0D471863E4C6372AF9710 Authority key identifier: C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa Signing time: Sun 03 May 2026 03:03:15 +0000 ROA not before: Sun 03 May 2026 02:58:15 +0000 ROA not after: Sun 02 May 2027 03:03:15 +0000 asID: 138887 IP address blocks: 103.141.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:13:55:cc:7f:d7:e0:b8:a4:b0:d4:71:86:3e:4c:63:72:af:97:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Validity Not Before: May 3 02:58:15 2026 GMT Not After : May 2 03:03:15 2027 GMT Subject: CN=5A8DCD8F30E2B2F504AA12C75DE2DCE275DD73E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bb:e9:fb:95:d0:46:fe:e3:78:4d:fd:f9:e4: b1:42:32:97:d5:c0:06:17:c9:7f:dc:62:77:2d:f7: e3:35:d1:2d:e1:a0:25:3c:ff:6c:b7:e2:d4:bf:ec: ce:3e:dd:67:c1:1e:79:d3:6f:77:7a:4f:2a:61:62: a2:f9:c5:f4:14:cf:c8:7e:57:e4:b9:23:87:5a:76: 51:91:de:1b:ad:00:dd:b2:94:10:19:23:b0:cb:bc: 24:02:90:91:d3:4e:95:62:3f:ee:cb:5f:cf:25:46: ca:b9:8e:f6:4e:36:10:9a:1b:48:20:d7:0c:70:01: 02:4d:a0:78:15:b4:0c:6c:11:9a:b0:ec:3e:be:97: b6:ec:aa:04:1a:0b:29:3f:27:2f:ba:0e:a4:4e:bd: 23:99:ca:08:8f:30:ce:ce:98:50:38:65:cf:70:03: 63:e5:c8:8b:2b:b3:a7:82:59:42:0f:fc:0c:5c:67: 22:77:be:ff:61:ff:dc:c1:8f:28:5c:e7:c2:6f:d6: c1:3b:64:ba:05:fd:92:07:36:70:8e:00:99:a1:0b: 14:03:b5:43:26:cf:90:7c:f2:66:8a:2a:32:99:7a: 0f:8a:51:d7:70:4d:f9:31:5e:f8:43:87:10:51:88: c8:91:f2:38:bf:c2:1d:a1:91:41:c0:99:fc:16:24: fd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8D:CD:8F:30:E2:B2:F5:04:AA:12:C7:5D:E2:DC:E2:75:DD:73:E5 X509v3 Authority Key Identifier: keyid:C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.20.0/23 Signature Algorithm: sha256WithRSAEncryption 02:2c:15:aa:7c:59:73:dd:93:87:6d:28:52:79:73:98:f0:6a: 80:e0:e2:fc:19:bb:9e:18:40:f7:cc:71:cd:10:a1:da:a6:5a: 97:09:c2:8c:05:e7:b4:1d:25:ed:78:e2:a8:4e:87:2f:b4:c5: de:7a:2e:e8:a4:c7:3c:0e:41:8b:89:8d:ad:59:a8:3d:3c:71: 6f:ce:13:81:fe:aa:3f:f7:5f:17:19:8d:dc:b0:01:59:cd:66: 0a:41:b1:50:00:80:c2:75:6d:3e:48:61:02:6a:21:a0:d9:c2: 9b:55:b6:96:30:9e:56:1f:55:a3:4e:19:d2:fa:49:16:1a:02: 23:7f:3a:30:ed:41:a4:b0:33:cd:e4:c7:1c:70:f5:c9:88:b3: fd:b4:e4:98:e8:c5:98:0d:7c:32:09:89:2b:b2:1f:fa:d7:6b: 1f:1b:b0:76:44:48:18:a4:13:cb:4d:f5:85:b2:6d:13:cf:2f: 75:b0:7d:eb:b0:60:9f:a9:ea:02:f0:52:af:c7:37:b2:37:c3: d3:d4:8b:ba:a5:6b:4f:1f:19:f1:a1:6d:32:81:2a:88:ca:69: 1d:2d:2a:4c:aa:7a:c5:fc:ba:25:76:d3:e0:ce:a1:e0:ff:de: 2b:11:9d:52:d7:32:0d:aa:5b:f0:13:25:81:6e:91:13:e7:9e: 88:ec:3b:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYhNVzH/X4LiksNRxhj5MY3KvlxAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlFM0NGNzJDMzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0Iw MTcyQjEwNjAeFw0yNjA1MDMwMjU4MTVaFw0yNzA1MDIwMzAzMTVaMDMxMTAvBgNV BAMTKDVBOERDRDhGMzBFMkIyRjUwNEFBMTJDNzVERTJEQ0UyNzVERDczRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfu+n7ldBG/uN4Tf355LFCMpfV wAYXyX/cYnct9+M10S3hoCU8/2y34tS/7M4+3WfBHnnTb3d6TyphYqL5xfQUz8h+ V+S5I4dadlGR3hutAN2ylBAZI7DLvCQCkJHTTpViP+7LX88lRsq5jvZONhCaG0gg 1wxwAQJNoHgVtAxsEZqw7D6+l7bsqgQaCyk/Jy+6DqROvSOZygiPMM7OmFA4Zc9w A2PlyIsrs6eCWUIP/AxcZyJ3vv9h/9zBjyhc58Jv1sE7ZLoF/ZIHNnCOAJmhCxQD tUMmz5B88maKKjKZeg+KUddwTfkxXvhDhxBRiMiR8ji/wh2hkUHAmfwWJP09AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWo3NjzDisvUEqhLHXeLc4nXdc+UwHwYDVR0j BBgwFoAUyePPcsNH0otLQw23N76AywFysQYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzA3Yzg4ZGEtMmI1Ni00ODdlLTllZmUtNTcxMTcwYjEwMjg2LzAvQzlFM0NGNzJD MzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0IwMTcyQjEwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOUUzQ0Y3MkMzNDdEMjhCNEI0MzBEQjczN0JFODBDQjAxNzJC MTA2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMxMzAzMzJlMzEzNDMxMmUzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ40UMA0GCSqG SIb3DQEBCwUAA4IBAQACLBWqfFlz3ZOHbShSeXOY8GqA4OL8GbueGED3zHHNEKHa plqXCcKMBee0HSXteOKoTocvtMXeei7opMc8DkGLiY2tWag9PHFvzhOB/qo/918X GY3csAFZzWYKQbFQAIDCdW0+SGECaiGg2cKbVbaWMJ5WH1WjThnS+kkWGgIjfzow 7UGksDPN5McccPXJiLP9tOSY6MWYDXwyCYkrsh/612sfG7B2REgYpBPLTfWFsm0T zy91sH3rsGCfqeoC8FKvxzeyN8PT1Iu6pWtPHxnxoW0ygSqIymkdLSpMqnrF/Lol dtPgzqHg/94rEZ1S1zINqlvwEyWBbpET556I7DuW -----END CERTIFICATE-----Generated at Wed May 13 12:25:32 2026 by rpki-client