$ rpki-client -vvf rpki-rsync.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32332d3233203d3e20313530393434.roa File: 3130332e3130372e3137362e302f32332d3233203d3e20313530393434.roa (raw, json) Hash identifier: BSuw1whkNZvJE4R4/j402PtZbyO7u4uvse4a8U9c4JA= Subject key identifier: 99:0F:03:C1:4D:99:7F:7C:09:07:1B:E5:F7:23:3B:2A:C4:1F:75:E5 Certificate issuer: /CN=D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F Certificate serial: 0F28E76F1EB37A5332D00001618ACC07BA5DB636 Authority key identifier: D8:CB:7F:8B:56:66:E0:7E:57:CB:EF:C0:23:C6:F6:03:46:F2:9D:7F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32332d3233203d3e20313530393434.roa Signing time: Sun 03 May 2026 03:09:19 +0000 ROA not before: Sun 03 May 2026 03:04:19 +0000 ROA not after: Sun 02 May 2027 03:09:19 +0000 asID: 150944 IP address blocks: 103.107.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F.crl rsync://rpki-rsync.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:28:e7:6f:1e:b3:7a:53:32:d0:00:01:61:8a:cc:07:ba:5d:b6:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F Validity Not Before: May 3 03:04:19 2026 GMT Not After : May 2 03:09:19 2027 GMT Subject: CN=990F03C14D997F7C09071BE5F7233B2AC41F75E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:de:bc:f4:0b:c6:8b:61:da:32:e5:d2:fa:52: e4:9d:2f:a0:e6:07:57:d6:61:9c:94:34:11:bb:4f: 8f:4f:23:29:5a:49:d6:99:58:b6:e9:e1:74:3f:85: 16:d7:8c:1f:68:a7:6c:62:dc:82:52:92:c4:2d:da: 29:4d:8f:e4:cb:72:17:c6:e3:aa:a4:2b:d7:8f:b7: 1f:14:0d:b5:33:b1:52:80:d9:8a:f0:b0:82:8a:86: 40:52:34:b7:50:44:49:31:b4:51:67:53:aa:57:98: 62:2b:6b:37:a3:58:1e:e7:e3:25:d7:02:ca:24:ea: 3f:da:ca:8b:5a:3c:f1:64:ac:2c:45:74:f8:dd:9a: 26:f5:13:9e:20:b8:fb:7b:73:30:d3:25:23:c0:5a: 1e:a9:2f:c7:28:54:01:15:31:d3:ee:be:80:be:57: 06:6c:d2:b3:b6:0e:e8:7f:7c:e6:c7:b4:82:cc:d8: f5:1b:4f:df:c9:12:de:0c:4d:4b:de:67:da:ba:5e: 51:a0:5d:4c:e1:ad:7b:9a:52:82:a2:ae:a3:80:43: f5:6e:c6:2f:00:3e:49:d0:b3:90:d9:6f:da:4f:93: 64:94:34:ee:14:9c:b3:04:24:1f:3b:f4:7b:38:66: f0:ab:ba:c8:b0:0a:31:47:fa:26:70:59:33:0e:ee: dc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0F:03:C1:4D:99:7F:7C:09:07:1B:E5:F7:23:3B:2A:C4:1F:75:E5 X509v3 Authority Key Identifier: keyid:D8:CB:7F:8B:56:66:E0:7E:57:CB:EF:C0:23:C6:F6:03:46:F2:9D:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8CB7F8B5666E07E57CBEFC023C6F60346F29D7F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32332d3233203d3e20313530393434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.176.0/23 Signature Algorithm: sha256WithRSAEncryption a0:df:0e:e0:eb:25:ca:e3:ee:6e:93:22:23:26:00:02:61:cb: 4d:bd:ef:0c:62:77:7c:c6:e8:65:f2:ab:6b:68:f1:0b:c0:42: 72:ee:ce:b0:b0:ed:cf:e1:7a:bf:cc:c7:91:f6:b7:f2:39:79: 69:8c:f1:6a:68:e6:c9:a0:ff:d1:64:a5:1d:f3:17:f9:c5:26: 8c:12:13:77:31:17:d0:1f:b7:3c:9e:cc:24:08:23:21:85:b9: 5a:4d:92:d8:a2:9d:ca:2d:0a:b3:0a:c2:95:07:04:a4:35:ed: 75:16:47:01:2f:1d:c4:4e:6b:f3:e4:40:70:ab:62:50:89:cd: 4d:1b:c3:ca:d1:3a:23:80:8f:25:77:67:d5:a8:bf:0e:b9:08: 44:9b:23:21:46:51:30:36:7f:b9:cc:23:2a:3e:88:9e:e4:04: 3c:aa:2f:a7:ea:f9:16:87:87:e4:1c:49:5b:57:e7:05:e3:2b: 93:f4:64:92:89:3a:15:87:d5:7f:99:b0:69:17:0e:f2:02:97: 6f:67:fe:48:97:29:d6:03:7e:fe:9c:27:f5:1f:12:82:c4:ed: 29:99:7f:fd:a7:17:f9:42:16:54:21:19:41:40:ac:a5:78:c4: 19:04:18:d8:40:f6:b0:0e:b6:d7:6a:e7:15:77:64:b2:6b:34: ee:84:ea:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDyjnbx6zelMy0AABYYrMB7pdtjYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhDQjdGOEI1NjY2RTA3RTU3Q0JFRkMwMjNDNkY2MDM0 NkYyOUQ3RjAeFw0yNjA1MDMwMzA0MTlaFw0yNzA1MDIwMzA5MTlaMDMxMTAvBgNV BAMTKDk5MEYwM0MxNEQ5OTdGN0MwOTA3MUJFNUY3MjMzQjJBQzQxRjc1RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO3rz0C8aLYdoy5dL6UuSdL6Dm B1fWYZyUNBG7T49PIylaSdaZWLbp4XQ/hRbXjB9op2xi3IJSksQt2ilNj+TLchfG 46qkK9ePtx8UDbUzsVKA2YrwsIKKhkBSNLdQREkxtFFnU6pXmGIrazejWB7n4yXX Asok6j/ayotaPPFkrCxFdPjdmib1E54guPt7czDTJSPAWh6pL8coVAEVMdPuvoC+ VwZs0rO2Duh/fObHtILM2PUbT9/JEt4MTUveZ9q6XlGgXUzhrXuaUoKirqOAQ/Vu xi8APknQs5DZb9pPk2SUNO4UnLMEJB879Hs4ZvCrusiwCjFH+iZwWTMO7tw9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmQ8DwU2Zf3wJBxvl9yM7KsQfdeUwHwYDVR0j BBgwFoAU2Mt/i1Zm4H5Xy+/AI8b2A0bynX8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDM2YWIwNGQtNjhjNy00MjQ5LWIxMDktNDZiMjhjZjgwM2YzLzAvRDhDQjdGOEI1 NjY2RTA3RTU3Q0JFRkMwMjNDNkY2MDM0NkYyOUQ3Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EOENCN0Y4QjU2NjZFMDdFNTdDQkVGQzAyM0M2RjYwMzQ2RjI5 RDdGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzNmFiMDRkLTY4YzctNDI0OS1i MTA5LTQ2YjI4Y2Y4MDNmMy8wLzMxMzAzMzJlMzEzMDM3MmUzMTM3MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzAzOTM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFna7AwDQYJ KoZIhvcNAQELBQADggEBAKDfDuDrJcrj7m6TIiMmAAJhy0297wxid3zG6GXyq2to 8QvAQnLuzrCw7c/her/Mx5H2t/I5eWmM8Wpo5smg/9FkpR3zF/nFJowSE3cxF9Af tzyezCQIIyGFuVpNktiincotCrMKwpUHBKQ17XUWRwEvHcROa/PkQHCrYlCJzU0b w8rROiOAjyV3Z9Wovw65CESbIyFGUTA2f7nMIyo+iJ7kBDyqL6fq+RaHh+QcSVtX 5wXjK5P0ZJKJOhWH1X+ZsGkXDvICl29n/kiXKdYDfv6cJ/UfEoLE7SmZf/2nF/lC FlQhGUFArKV4xBkEGNhA9rAOttdq5xV3ZLJrNO6E6gM= -----END CERTIFICATE-----Generated at Wed May 13 04:54:11 2026 by rpki-client