$ rpki-client -vvf rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa File: 3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa (raw, json) Hash identifier: H/rwQ/f8aUBtc58OK4kWZL1DduHZ4X5rHCUaLkdQAjM= Subject key identifier: 8B:4D:23:F0:A2:88:25:9A:5B:25:CB:9E:68:E4:DC:6D:F5:94:9C:16 Certificate issuer: /CN=4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA Certificate serial: 7A7692860DF5E0E67C60D71C829D1DF91765DD61 Authority key identifier: 4F:C4:8D:D4:A0:4D:6F:39:93:1A:F1:E8:DE:E3:5A:BD:F9:C7:76:FA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa Signing time: Sun 03 May 2026 03:06:56 +0000 ROA not before: Sun 03 May 2026 03:01:56 +0000 ROA not after: Sun 02 May 2027 03:06:56 +0000 asID: 142399 IP address blocks: 103.171.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.crl rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:76:92:86:0d:f5:e0:e6:7c:60:d7:1c:82:9d:1d:f9:17:65:dd:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA Validity Not Before: May 3 03:01:56 2026 GMT Not After : May 2 03:06:56 2027 GMT Subject: CN=8B4D23F0A288259A5B25CB9E68E4DC6DF5949C16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bb:20:24:da:6c:64:f4:ef:7d:dc:e5:e7:78: 4a:e7:b5:e5:52:56:01:71:bd:e0:9b:6c:4d:d3:5c: 9d:af:65:f4:50:ea:56:53:90:08:ee:52:d0:d7:3e: 3e:10:71:75:f4:49:34:25:2f:bf:61:d1:7c:fc:91: d2:56:59:11:d0:59:b3:0e:02:65:22:36:ac:e0:a8: 91:57:ab:92:1c:c9:64:fa:24:4d:29:7e:22:04:f3: 73:33:d2:13:32:25:fa:c1:35:b3:27:b6:62:63:38: a9:07:13:74:66:12:4f:dd:d4:72:40:01:eb:a4:08: 6e:9f:3b:ac:70:70:f5:ad:ce:41:7b:07:5f:19:be: cc:ab:cc:cd:bc:d3:7d:2a:6e:6b:4c:ab:f5:70:3f: 3e:a1:d7:c7:94:4c:81:f7:96:0f:bb:d5:8e:e0:a6: 71:19:49:e0:eb:15:d9:92:06:c3:2b:6c:16:06:00: ad:cb:ea:7d:de:82:45:d0:28:ea:b8:d7:77:1f:86: a7:b0:4e:7a:b6:fe:a5:13:c0:3f:c3:ef:91:06:67: fc:af:b1:6b:76:59:46:1b:79:92:f5:06:37:8a:9f: eb:af:73:53:24:37:48:47:b9:f8:60:2d:9d:02:3e: 47:ac:0d:74:09:8b:47:4c:9d:5e:84:a0:a8:df:ea: 76:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:4D:23:F0:A2:88:25:9A:5B:25:CB:9E:68:E4:DC:6D:F5:94:9C:16 X509v3 Authority Key Identifier: keyid:4F:C4:8D:D4:A0:4D:6F:39:93:1A:F1:E8:DE:E3:5A:BD:F9:C7:76:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FC48DD4A04D6F39931AF1E8DEE35ABDF9C776FA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.255.0/24 Signature Algorithm: sha256WithRSAEncryption ba:e4:28:c2:11:0a:d3:2e:06:6c:eb:52:7f:6d:7b:c4:23:69: d1:79:dc:15:27:39:44:a6:59:f6:83:6c:f2:66:e0:d9:09:3d: 3e:e0:31:d1:0d:bd:ae:4d:22:af:b5:36:ba:7b:1b:cb:00:e0: 03:94:24:6b:e8:ed:aa:a4:dd:52:a1:d6:d1:d1:08:c7:53:e5: 88:6b:f8:89:cd:a1:eb:62:c5:2a:43:4e:df:1a:08:b8:4a:df: d5:fb:b1:49:40:3c:f5:28:35:78:81:60:83:46:ed:ab:f4:21: e8:d7:c1:f7:b9:17:5f:80:78:f6:c3:5b:a4:dc:83:51:43:76: 96:f4:e2:3b:f5:25:d1:18:5f:94:f6:0e:eb:15:a8:49:fe:cc: f2:34:50:a1:e5:b8:fc:ac:44:32:b8:ff:24:b7:a1:79:a5:ec: c8:a4:ef:04:b0:3e:44:4a:28:27:cb:74:7c:9b:f0:2c:09:fd: c0:1b:cf:58:24:67:8a:00:37:eb:55:23:dd:b5:61:fb:97:c1: 1c:85:3f:3f:0e:11:80:4d:be:10:57:3a:6d:c4:76:5b:74:d5: 5a:65:37:cf:a7:2f:c7:49:61:56:eb:a1:bb:d3:d8:2a:bb:dd: de:18:1b:92:b7:2f:6c:33:91:79:e3:8a:6a:79:fc:98:3d:8d: 49:27:59:d7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUenaShg314OZ8YNccgp0d+Rdl3WEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZDNDhERDRBMDRENkYzOTkzMUFGMUU4REVFMzVBQkRG OUM3NzZGQTAeFw0yNjA1MDMwMzAxNTZaFw0yNzA1MDIwMzA2NTZaMDMxMTAvBgNV BAMTKDhCNEQyM0YwQTI4ODI1OUE1QjI1Q0I5RTY4RTREQzZERjU5NDlDMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8uyAk2mxk9O993OXneErnteVS VgFxveCbbE3TXJ2vZfRQ6lZTkAjuUtDXPj4QcXX0STQlL79h0Xz8kdJWWRHQWbMO AmUiNqzgqJFXq5IcyWT6JE0pfiIE83Mz0hMyJfrBNbMntmJjOKkHE3RmEk/d1HJA AeukCG6fO6xwcPWtzkF7B18ZvsyrzM28030qbmtMq/VwPz6h18eUTIH3lg+71Y7g pnEZSeDrFdmSBsMrbBYGAK3L6n3egkXQKOq413cfhqewTnq2/qUTwD/D75EGZ/yv sWt2WUYbeZL1BjeKn+uvc1MkN0hHufhgLZ0CPkesDXQJi0dMnV6EoKjf6nYHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi00j8KKIJZpbJcueaOTcbfWUnBYwHwYDVR0j BBgwFoAUT8SN1KBNbzmTGvHo3uNavfnHdvowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2IwMWM5NjctOTlkMC00YzIxLTk2NDItODdhZGE2NzE1NWM4LzAvNEZDNDhERDRB MDRENkYzOTkzMUFGMUU4REVFMzVBQkRGOUM3NzZGQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RkM0OERENEEwNEQ2RjM5OTMxQUYxRThERUUzNUFCREY5Qzc3 NkZBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NiMDFjOTY3LTk5ZDAtNGMyMS05 NjQyLTg3YWRhNjcxNTVjOC8wLzMxMzAzMzJlMzEzNzMxMmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq/8wDQYJ KoZIhvcNAQELBQADggEBALrkKMIRCtMuBmzrUn9te8QjadF53BUnOUSmWfaDbPJm 4NkJPT7gMdENva5NIq+1Nrp7G8sA4AOUJGvo7aqk3VKh1tHRCMdT5Yhr+InNoeti xSpDTt8aCLhK39X7sUlAPPUoNXiBYING7av0IejXwfe5F1+AePbDW6Tcg1FDdpb0 4jv1JdEYX5T2DusVqEn+zPI0UKHluPysRDK4/yS3oXml7Mik7wSwPkRKKCfLdHyb 8CwJ/cAbz1gkZ4oAN+tVI921YfuXwRyFPz8OEYBNvhBXOm3Edlt01VplN8+nL8dJ YVbrobvT2Cq73d4YG5K3L2wzkXnjimp5/Jg9jUknWdc= -----END CERTIFICATE-----Generated at Wed May 13 10:40:02 2026 by rpki-client