$ rpki-client -vvf rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa File: 3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa (raw, json) Hash identifier: Y5XB9rqhcbsV9IQfUbYmWZisnqag3EEZWqXjsPcCSU4= Subject key identifier: BA:27:E9:77:4A:EB:66:D1:40:4A:9B:1E:1F:99:68:93:9D:FD:E7:EC Certificate issuer: /CN=4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA Certificate serial: 08F703A556EE827CDF28FBC60013DEB51618A7DF Authority key identifier: 4F:C4:8D:D4:A0:4D:6F:39:93:1A:F1:E8:DE:E3:5A:BD:F9:C7:76:FA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa Signing time: Sun 03 May 2026 03:06:56 +0000 ROA not before: Sun 03 May 2026 03:01:56 +0000 ROA not after: Sun 02 May 2027 03:06:56 +0000 asID: 142399 IP address blocks: 103.171.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.crl rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f7:03:a5:56:ee:82:7c:df:28:fb:c6:00:13:de:b5:16:18:a7:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA Validity Not Before: May 3 03:01:56 2026 GMT Not After : May 2 03:06:56 2027 GMT Subject: CN=BA27E9774AEB66D1404A9B1E1F9968939DFDE7EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e9:8e:e8:b0:e4:7d:f5:a4:e0:e2:03:75:c2: cb:4d:45:10:1f:b3:7a:b3:d0:86:ea:4c:f1:69:9f: 99:e1:88:80:0c:b2:33:d3:f1:06:9f:d5:fd:d8:6f: ef:15:d6:a4:1a:e3:88:f6:98:c1:8f:c5:f3:97:c1: b2:ef:af:c9:db:6d:25:e1:ee:ce:b2:96:e0:21:d2: 24:87:7a:25:f1:9f:4e:40:86:65:0f:3d:15:71:4b: 3d:fb:a8:a5:78:76:65:2f:3a:d0:81:64:8d:9b:55: ea:bb:17:66:71:12:6c:76:bd:e9:c2:9e:0b:b0:1b: a1:42:05:d3:83:aa:a3:2b:e0:c8:a3:83:2d:ce:57: e8:dc:15:75:15:0d:a7:0c:3e:61:68:53:f1:98:8e: 68:71:9c:0e:a9:56:94:03:7d:1d:ca:fb:59:42:6d: 6a:e2:bd:de:a5:31:11:2b:bf:58:56:93:1f:e0:c6: da:d4:2c:81:54:8d:64:9b:c6:45:ad:e4:6c:cb:aa: cf:6f:ca:e8:01:13:12:95:ea:e2:e6:bb:ca:bb:15: cd:8a:27:4a:69:7a:63:27:84:9c:51:22:d8:7a:d3: 6f:3d:75:03:38:7c:eb:1d:d6:53:5f:c4:ff:da:08: 80:6e:76:e5:64:89:61:39:3e:05:3b:31:ec:2a:4d: 04:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:27:E9:77:4A:EB:66:D1:40:4A:9B:1E:1F:99:68:93:9D:FD:E7:EC X509v3 Authority Key Identifier: keyid:4F:C4:8D:D4:A0:4D:6F:39:93:1A:F1:E8:DE:E3:5A:BD:F9:C7:76:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.254.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:38:82:38:40:7d:a3:c6:a9:69:74:43:75:43:51:88:4b:bb: de:c1:a1:20:81:d2:73:f9:e6:42:a1:87:86:fb:89:86:ab:d1: db:80:92:b4:5f:7d:fd:b7:39:ed:af:eb:ad:8d:a9:15:2c:81: 2f:8c:09:35:22:69:60:32:fd:ae:31:db:15:13:14:48:d0:58: 98:89:58:f1:8d:ce:13:f6:1c:c0:e4:01:1d:9c:4b:d6:21:c2: 70:b5:69:1a:76:33:c4:bb:33:76:b1:b6:27:7a:32:66:7a:10: 81:0c:9d:1d:d7:d2:e5:b1:70:b5:a6:b2:77:3f:3a:e8:33:aa: 58:76:95:2e:0a:ae:e9:eb:1b:1f:73:38:39:19:1e:35:19:50: a7:64:b9:f2:e7:77:e5:fd:31:be:f0:af:fc:c1:b7:97:04:8f: ab:89:bc:71:23:8a:56:ca:ff:d5:be:7a:d9:d4:60:05:70:2c: 4a:45:20:c2:04:ea:4d:5a:90:5e:a6:b2:bb:0d:c8:3f:f7:6c: ed:4c:98:d3:0f:13:3b:4f:da:90:1d:a9:41:21:e8:42:2c:5a: 86:33:66:5c:9c:fc:3a:8e:80:44:a3:82:56:3a:f2:c8:ec:02: 40:f5:64:97:4f:2c:c9:a6:34:95:20:51:7e:93:f6:fb:a0:51: 60:26:d3:17 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCPcDpVbugnzfKPvGABPetRYYp98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZDNDhERDRBMDRENkYzOTkzMUFGMUU4REVFMzVBQkRG OUM3NzZGQTAeFw0yNjA1MDMwMzAxNTZaFw0yNzA1MDIwMzA2NTZaMDMxMTAvBgNV BAMTKEJBMjdFOTc3NEFFQjY2RDE0MDRBOUIxRTFGOTk2ODkzOURGREU3RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/6Y7osOR99aTg4gN1wstNRRAf s3qz0IbqTPFpn5nhiIAMsjPT8Qaf1f3Yb+8V1qQa44j2mMGPxfOXwbLvr8nbbSXh 7s6yluAh0iSHeiXxn05AhmUPPRVxSz37qKV4dmUvOtCBZI2bVeq7F2ZxEmx2venC nguwG6FCBdODqqMr4Mijgy3OV+jcFXUVDacMPmFoU/GYjmhxnA6pVpQDfR3K+1lC bWrivd6lMRErv1hWkx/gxtrULIFUjWSbxkWt5GzLqs9vyugBExKV6uLmu8q7Fc2K J0ppemMnhJxRIth60289dQM4fOsd1lNfxP/aCIBuduVkiWE5PgU7MewqTQSdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuifpd0rrZtFASpseH5lok5395+wwHwYDVR0j BBgwFoAUT8SN1KBNbzmTGvHo3uNavfnHdvowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2IwMWM5NjctOTlkMC00YzIxLTk2NDItODdhZGE2NzE1NWM4LzAvNEZDNDhERDRB MDRENkYzOTkzMUFGMUU4REVFMzVBQkRGOUM3NzZGQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RkM0OERENEEwNEQ2RjM5OTMxQUYxRThERUUzNUFCREY5Qzc3 NkZBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NiMDFjOTY3LTk5ZDAtNGMyMS05 NjQyLTg3YWRhNjcxNTVjOC8wLzMxMzAzMzJlMzEzNzMxMmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq/4wDQYJ KoZIhvcNAQELBQADggEBAI44gjhAfaPGqWl0Q3VDUYhLu97BoSCB0nP55kKhh4b7 iYar0duAkrRfff23Oe2v662NqRUsgS+MCTUiaWAy/a4x2xUTFEjQWJiJWPGNzhP2 HMDkAR2cS9YhwnC1aRp2M8S7M3axtid6MmZ6EIEMnR3X0uWxcLWmsnc/Ougzqlh2 lS4KrunrGx9zODkZHjUZUKdkufLnd+X9Mb7wr/zBt5cEj6uJvHEjilbK/9W+etnU YAVwLEpFIMIE6k1akF6msrsNyD/3bO1MmNMPEztP2pAdqUEh6EIsWoYzZlyc/DqO gESjglY68sjsAkD1ZJdPLMmmNJUgUX6T9vugUWAm0xc= -----END CERTIFICATE-----Generated at Wed May 13 10:33:07 2026 by rpki-client