$ rpki-client -vvf rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa File: 3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa (raw, json) Hash identifier: /ia91hqzHCBrX/q+7Rzu1zW0X5ukwcV1dwBpHbDRCBI= Subject key identifier: 98:F8:C2:24:9C:9D:B0:88:68:D1:BE:5B:95:50:72:08:48:17:08:56 Certificate issuer: /CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Certificate serial: 1E93C932D6044ADAFC7B72B12E38741BE7335904 Authority key identifier: C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa Signing time: Sun 03 May 2026 03:03:15 +0000 ROA not before: Sun 03 May 2026 02:58:15 +0000 ROA not after: Sun 02 May 2027 03:03:15 +0000 asID: 138887 IP address blocks: 103.141.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:93:c9:32:d6:04:4a:da:fc:7b:72:b1:2e:38:74:1b:e7:33:59:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Validity Not Before: May 3 02:58:15 2026 GMT Not After : May 2 03:03:15 2027 GMT Subject: CN=98F8C2249C9DB08868D1BE5B9550720848170856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d6:ce:94:e7:b3:fe:b3:c6:d6:8c:09:bf:f0: 24:db:32:6d:b6:14:77:8b:fd:fc:90:1c:9c:70:14: ff:47:3c:93:38:0f:ed:83:cb:c8:c2:a9:5f:d4:be: 85:4c:d7:29:9a:ea:52:36:10:b7:b3:f0:9e:59:a3: 03:3e:e9:d9:07:b7:0a:f5:95:78:a9:d9:32:a5:f3: 46:25:4d:18:5b:00:2e:2e:02:11:eb:e8:9d:71:54: ab:07:f5:a2:3a:a2:a9:a1:d2:f4:74:b4:0f:d5:53: 4b:62:bd:74:b7:f3:3c:85:91:d7:9b:01:e0:5c:5f: 2c:be:6a:ef:2b:36:64:d9:6d:1c:d1:f7:2f:3a:a5: 53:51:9d:cd:dd:ea:0d:46:a5:87:c8:61:73:89:72: a3:3d:c2:a5:e0:94:5e:78:3c:09:9f:41:23:92:df: a2:f7:73:97:7d:8c:90:09:4c:fc:63:bd:dc:c4:0c: ee:cb:75:74:08:f0:85:78:bf:28:b0:f0:d3:9f:91: 51:4e:33:2c:63:f3:2a:94:70:3c:b9:d0:9a:e7:50: dc:72:ae:88:f2:94:25:69:e4:33:79:07:7e:a9:a1: 5d:40:e7:40:3b:75:4a:79:3b:b6:28:13:08:80:8b: 2c:0e:68:6a:a5:36:28:7f:76:61:c8:a6:fb:a0:e1: 67:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F8:C2:24:9C:9D:B0:88:68:D1:BE:5B:95:50:72:08:48:17:08:56 X509v3 Authority Key Identifier: keyid:C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.20.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:69:0a:fa:ec:d8:65:a3:1a:19:5b:ed:e2:64:f3:b1:7b:52: ae:fa:e3:5d:a9:6d:3d:b1:a0:a9:bc:f3:0d:25:7f:e3:ea:15: 47:f8:04:4e:a8:ab:db:1b:7e:d1:4b:56:99:e6:c6:a3:3d:99: f9:97:63:a7:1a:06:ee:23:26:c1:15:99:7f:af:e0:fe:9c:56: cc:6e:d5:9a:04:33:17:c0:0b:b4:4c:0b:ad:ba:67:53:22:f2: 0e:f3:4c:18:b9:de:5e:f4:31:48:98:1f:fe:87:cc:43:e2:dd: 01:00:36:1c:63:1c:71:a4:35:29:76:5c:19:87:39:52:0e:b9: 76:39:4f:f0:17:16:7b:be:05:cb:64:e7:d3:44:6f:3b:9d:e3: fd:e1:3b:86:01:25:3d:fa:78:14:e1:a1:1f:43:d2:7d:af:83: 94:c2:10:d9:95:82:6b:8f:30:b5:19:1c:43:6a:26:64:39:9c: 2c:b5:4d:98:3a:87:cf:b3:5a:d1:69:66:f2:8b:64:74:e5:92: 47:dc:7d:07:5e:cb:b6:d0:f8:67:33:11:e9:10:27:78:ad:a2: e6:ff:fc:47:12:7c:d5:52:02:18:bd:dd:a3:57:c9:23:bd:fa: 8f:01:86:e8:1d:ed:5e:ea:69:a6:06:db:e4:d2:5d:b1:a3:85: bc:95:f9:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHpPJMtYEStr8e3KxLjh0G+czWQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlFM0NGNzJDMzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0Iw MTcyQjEwNjAeFw0yNjA1MDMwMjU4MTVaFw0yNzA1MDIwMzAzMTVaMDMxMTAvBgNV BAMTKDk4RjhDMjI0OUM5REIwODg2OEQxQkU1Qjk1NTA3MjA4NDgxNzA4NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH1s6U57P+s8bWjAm/8CTbMm22 FHeL/fyQHJxwFP9HPJM4D+2Dy8jCqV/UvoVM1yma6lI2ELez8J5ZowM+6dkHtwr1 lXip2TKl80YlTRhbAC4uAhHr6J1xVKsH9aI6oqmh0vR0tA/VU0tivXS38zyFkdeb AeBcXyy+au8rNmTZbRzR9y86pVNRnc3d6g1GpYfIYXOJcqM9wqXglF54PAmfQSOS 36L3c5d9jJAJTPxjvdzEDO7LdXQI8IV4vyiw8NOfkVFOMyxj8yqUcDy50JrnUNxy rojylCVp5DN5B36poV1A50A7dUp5O7YoEwiAiywOaGqlNih/dmHIpvug4WfHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmPjCJJydsIho0b5blVByCEgXCFYwHwYDVR0j BBgwFoAUyePPcsNH0otLQw23N76AywFysQYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzA3Yzg4ZGEtMmI1Ni00ODdlLTllZmUtNTcxMTcwYjEwMjg2LzAvQzlFM0NGNzJD MzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0IwMTcyQjEwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOUUzQ0Y3MkMzNDdEMjhCNEI0MzBEQjczN0JFODBDQjAxNzJC MTA2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMxMzAzMzJlMzEzNDMxMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ40UMA0GCSqG SIb3DQEBCwUAA4IBAQBvaQr67NhloxoZW+3iZPOxe1Ku+uNdqW09saCpvPMNJX/j 6hVH+AROqKvbG37RS1aZ5sajPZn5l2OnGgbuIybBFZl/r+D+nFbMbtWaBDMXwAu0 TAutumdTIvIO80wYud5e9DFImB/+h8xD4t0BADYcYxxxpDUpdlwZhzlSDrl2OU/w FxZ7vgXLZOfTRG87neP94TuGASU9+ngU4aEfQ9J9r4OUwhDZlYJrjzC1GRxDaiZk OZwstU2YOofPs1rRaWbyi2R05ZJH3H0HXsu20PhnMxHpECd4raLm//xHEnzVUgIY vd2jV8kjvfqPAYboHe1e6mmmBtvk0l2xo4W8lflq -----END CERTIFICATE-----Generated at Wed May 13 12:25:24 2026 by rpki-client