$ rpki-client -vvf rpki-rsync.idnic.net/repo/c3d7f9eb-3c2d-41a1-9081-0780a58873ea/0/3130332e3130342e39392e302f32342d3234203d3e20313336383839.roa File: 3130332e3130342e39392e302f32342d3234203d3e20313336383839.roa (raw, json) Hash identifier: mN5cWIUuUL1fnGvlZsaLohBNga7Bn6CrhTgI7eY4kEs= Subject key identifier: 22:FF:97:56:FE:9F:69:2A:EE:C1:00:74:01:5D:E6:04:05:AD:83:D1 Certificate issuer: /CN=B97B101303D652EE5C0234A7A800429959745FF3 Certificate serial: 66BC4A92560054FE85FE6AD1D2A553B2F7991165 Authority key identifier: B9:7B:10:13:03:D6:52:EE:5C:02:34:A7:A8:00:42:99:59:74:5F:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B97B101303D652EE5C0234A7A800429959745FF3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c3d7f9eb-3c2d-41a1-9081-0780a58873ea/0/3130332e3130342e39392e302f32342d3234203d3e20313336383839.roa Signing time: Sun 03 May 2026 03:04:44 +0000 ROA not before: Sun 03 May 2026 02:59:44 +0000 ROA not after: Sun 02 May 2027 03:04:44 +0000 asID: 136889 IP address blocks: 103.104.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c3d7f9eb-3c2d-41a1-9081-0780a58873ea/0/B97B101303D652EE5C0234A7A800429959745FF3.crl rsync://rpki-rsync.idnic.net/repo/c3d7f9eb-3c2d-41a1-9081-0780a58873ea/0/B97B101303D652EE5C0234A7A800429959745FF3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B97B101303D652EE5C0234A7A800429959745FF3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:bc:4a:92:56:00:54:fe:85:fe:6a:d1:d2:a5:53:b2:f7:99:11:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B97B101303D652EE5C0234A7A800429959745FF3 Validity Not Before: May 3 02:59:44 2026 GMT Not After : May 2 03:04:44 2027 GMT Subject: CN=22FF9756FE9F692AEEC10074015DE60405AD83D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9b:64:dc:b8:01:2e:d8:ff:5b:2f:70:a7:98: 4e:08:d7:92:48:0b:5e:ac:df:06:fc:bd:72:01:f2: 59:00:22:0f:54:b8:de:3a:c7:9e:9c:ba:1f:d9:23: a7:1d:4b:01:80:56:99:c7:64:ac:e7:bf:6a:86:4e: a0:8c:d7:22:a7:9c:ba:8e:30:4d:5a:20:51:27:70: c8:99:17:82:02:a2:53:ec:0f:ce:ff:5a:5e:9b:75: 92:ce:c8:5a:74:20:36:5e:fa:d5:f1:f3:7c:78:a3: 46:05:90:6a:79:cb:b5:76:56:d5:94:d0:1a:c5:6d: 3d:42:ac:d8:fe:db:99:43:67:53:d5:ad:f9:7b:50: 1b:e7:d1:44:5c:f2:d6:38:af:36:49:13:32:8f:3c: 90:19:8d:9c:f0:0f:99:40:2d:1e:31:0b:2a:45:83: 9a:28:2e:a6:e2:0d:b8:44:56:b5:31:4c:fb:70:1a: 73:35:2a:84:d8:ff:f9:b4:52:71:c5:c3:31:33:5e: 33:5c:79:23:a5:d5:be:63:2d:49:f3:8c:01:64:71: ca:99:c3:82:07:55:d7:fc:82:7c:52:3c:48:a6:7c: b4:af:ff:3e:85:0c:cd:08:ba:ff:45:a1:a3:88:48: f4:34:9b:4f:c6:d8:db:c0:8e:c2:44:16:1c:59:e0: 95:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FF:97:56:FE:9F:69:2A:EE:C1:00:74:01:5D:E6:04:05:AD:83:D1 X509v3 Authority Key Identifier: keyid:B9:7B:10:13:03:D6:52:EE:5C:02:34:A7:A8:00:42:99:59:74:5F:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c3d7f9eb-3c2d-41a1-9081-0780a58873ea/0/B97B101303D652EE5C0234A7A800429959745FF3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B97B101303D652EE5C0234A7A800429959745FF3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c3d7f9eb-3c2d-41a1-9081-0780a58873ea/0/3130332e3130342e39392e302f32342d3234203d3e20313336383839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.99.0/24 Signature Algorithm: sha256WithRSAEncryption 63:6e:ba:b5:e5:5a:56:24:df:c9:c5:fb:ae:ad:ad:1b:64:2b: 78:b3:8d:8c:2f:87:33:cd:d6:b4:f8:86:53:d6:0b:58:43:7c: ea:a9:22:c9:49:30:98:63:23:9b:70:67:ff:ff:48:06:44:30: 79:1a:37:48:1d:c0:c9:28:43:d2:b8:ba:05:11:94:8b:57:2d: 9d:a8:9f:ba:a5:74:da:3d:d0:63:67:b9:01:c1:d6:6b:28:0e: 83:63:6a:a1:64:f6:a6:d7:2c:7d:c7:cc:fc:b3:d8:2a:42:d6: b0:61:c5:5c:c4:6f:a9:69:e9:60:4b:3e:65:57:09:dc:cc:e0: c6:61:0c:86:b5:da:66:69:57:a7:a7:81:f6:94:e3:2a:ef:95: 1c:44:82:7c:23:f5:51:5c:30:f0:b0:ac:4a:45:5f:b0:01:b1: 73:c5:c0:22:8b:33:aa:4c:bb:55:fe:ec:13:3c:0f:61:d0:6d: ab:df:90:3d:a7:df:26:61:1f:8c:4a:61:76:e9:0b:68:03:4b: 4e:ea:3a:70:6d:bb:3a:68:b8:3c:be:a1:02:9d:3c:2c:5b:70: 81:00:e6:f9:08:12:5c:25:87:3d:be:70:21:22:b3:de:49:ae: f6:9b:dc:56:07:46:5a:79:4b:89:6b:e2:ec:36:db:71:70:11: e1:e7:07:e3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZrxKklYAVP6F/mrR0qVTsveZEWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk3QjEwMTMwM0Q2NTJFRTVDMDIzNEE3QTgwMDQyOTk1 OTc0NUZGMzAeFw0yNjA1MDMwMjU5NDRaFw0yNzA1MDIwMzA0NDRaMDMxMTAvBgNV BAMTKDIyRkY5NzU2RkU5RjY5MkFFRUMxMDA3NDAxNURFNjA0MDVBRDgzRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbm2TcuAEu2P9bL3CnmE4I15JI C16s3wb8vXIB8lkAIg9UuN46x56cuh/ZI6cdSwGAVpnHZKznv2qGTqCM1yKnnLqO ME1aIFEncMiZF4IColPsD87/Wl6bdZLOyFp0IDZe+tXx83x4o0YFkGp5y7V2VtWU 0BrFbT1CrNj+25lDZ1PVrfl7UBvn0URc8tY4rzZJEzKPPJAZjZzwD5lALR4xCypF g5ooLqbiDbhEVrUxTPtwGnM1KoTY//m0UnHFwzEzXjNceSOl1b5jLUnzjAFkccqZ w4IHVdf8gnxSPEimfLSv/z6FDM0Iuv9FoaOISPQ0m0/G2NvAjsJEFhxZ4JWrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIv+XVv6faSruwQB0AV3mBAWtg9EwHwYDVR0j BBgwFoAUuXsQEwPWUu5cAjSnqABCmVl0X/MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzNkN2Y5ZWItM2MyZC00MWExLTkwODEtMDc4MGE1ODg3M2VhLzAvQjk3QjEwMTMw M0Q2NTJFRTVDMDIzNEE3QTgwMDQyOTk1OTc0NUZGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTdCMTAxMzAzRDY1MkVFNUMwMjM0QTdBODAwNDI5OTU5NzQ1 RkYzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzZDdmOWViLTNjMmQtNDFhMS05 MDgxLTA3ODBhNTg4NzNlYS8wLzMxMzAzMzJlMzEzMDM0MmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2hjMA0GCSqG SIb3DQEBCwUAA4IBAQBjbrq15VpWJN/Jxfuura0bZCt4s42ML4czzda0+IZT1gtY Q3zqqSLJSTCYYyObcGf//0gGRDB5GjdIHcDJKEPSuLoFEZSLVy2dqJ+6pXTaPdBj Z7kBwdZrKA6DY2qhZPam1yx9x8z8s9gqQtawYcVcxG+paelgSz5lVwnczODGYQyG tdpmaVenp4H2lOMq75UcRIJ8I/VRXDDwsKxKRV+wAbFzxcAiizOqTLtV/uwTPA9h 0G2r35A9p98mYR+MSmF26QtoA0tO6jpwbbs6aLg8vqECnTwsW3CBAOb5CBJcJYc9 vnAhIrPeSa72m9xWB0ZaeUuJa+LsNttxcBHh5wfj -----END CERTIFICATE-----Generated at Wed May 13 04:52:00 2026 by rpki-client