$ rpki-client -vvf rpki-rsync.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa File: 3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa (raw, json) Hash identifier: AheQBKSQ2I3wH55R9fGq5yq1Y0JimW9uyTq22nxAO5s= Subject key identifier: C6:A6:B2:F6:1F:49:24:80:33:40:37:DE:3A:42:AB:3A:90:1D:47:98 Certificate issuer: /CN=41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED Certificate serial: 750A3CDC115790D8B3452D241D5E15DC58389996 Authority key identifier: 41:FE:67:82:3F:53:58:EF:3D:5F:9B:4F:04:FB:CB:A9:56:0D:38:ED Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa Signing time: Sun 03 May 2026 03:09:28 +0000 ROA not before: Sun 03 May 2026 03:04:28 +0000 ROA not after: Sun 02 May 2027 03:09:28 +0000 asID: 147075 IP address blocks: 103.172.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED.crl rsync://rpki-rsync.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:0a:3c:dc:11:57:90:d8:b3:45:2d:24:1d:5e:15:dc:58:38:99:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED Validity Not Before: May 3 03:04:28 2026 GMT Not After : May 2 03:09:28 2027 GMT Subject: CN=C6A6B2F61F492480334037DE3A42AB3A901D4798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:58:60:67:9e:fe:b3:eb:da:d8:80:f3:5a:4c: 72:02:27:bd:11:33:b6:6d:00:0e:b1:98:4b:36:9d: ea:9f:6f:95:7f:1e:ab:55:71:19:4d:f6:12:f5:07: e8:1f:c5:c2:cd:ad:31:f5:b9:f1:bd:18:92:6b:51: 32:ab:e3:12:f5:2b:9d:ea:30:5e:9c:e1:4e:75:c9: 9a:82:75:e7:1f:f6:2d:37:ce:1a:bf:84:95:51:a1: 53:74:73:f0:b4:1d:33:bd:43:d1:33:89:aa:54:44: af:2b:bc:bc:37:c3:7f:e2:25:77:cb:f0:51:d2:5e: d5:79:56:98:c4:9a:ba:2d:c9:8b:73:c1:dd:b0:3a: 43:53:40:ff:03:52:86:de:5d:88:3c:1b:5e:65:ea: 1f:cf:a9:01:fe:30:49:43:7b:7b:ae:c9:7c:e5:05: cb:ee:c4:c1:1f:3f:7b:75:e9:0d:14:92:2b:43:00: 57:0e:8b:a0:fd:aa:e9:19:02:0a:6a:43:8b:a5:4a: dc:6b:6d:60:55:f5:7a:e5:fe:26:84:14:5b:f8:45: 28:ed:74:f3:a6:80:51:8c:06:94:9f:5b:c0:63:ed: 72:1e:7a:af:c1:bf:2c:58:95:fe:78:1c:32:e0:24: 6f:2b:14:28:2c:03:31:65:4c:53:88:ac:6d:9c:5e: c6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A6:B2:F6:1F:49:24:80:33:40:37:DE:3A:42:AB:3A:90:1D:47:98 X509v3 Authority Key Identifier: keyid:41:FE:67:82:3F:53:58:EF:3D:5F:9B:4F:04:FB:CB:A9:56:0D:38:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41FE67823F5358EF3D5F9B4F04FBCBA9560D38ED.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.194.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:15:88:ed:23:a7:91:eb:22:21:c2:c4:ca:67:ca:0b:b4:a7: 43:58:4c:97:41:40:49:5e:52:f9:6e:ad:ec:11:f9:60:b9:05: 7a:86:7d:97:c9:6e:6e:ca:8e:62:7f:4b:31:43:44:e2:16:f2: 5f:02:87:55:26:f3:b7:82:c5:72:12:d3:0b:e5:c1:d4:fe:b3: e3:37:aa:88:c5:b6:ff:24:20:46:95:52:d6:48:df:b9:fa:89: 02:64:82:fa:5d:79:69:d3:1c:e8:c5:7b:ed:77:8d:9a:f7:89: 6a:66:11:7b:c0:9a:9d:78:a4:6a:ac:b0:af:8c:d0:5e:5e:1f: 41:e0:50:9f:e0:d8:d5:6e:6c:da:1c:30:0d:42:26:1b:b0:67: 03:22:a1:80:3a:b7:a1:3a:3d:95:e5:f7:28:df:95:58:5a:67: 5f:96:46:3c:d4:bd:f7:07:01:66:16:8b:e1:e8:3c:5d:00:9d: b4:3c:73:a7:b0:16:7c:0a:c8:d3:d7:c9:30:c5:47:55:54:51: 04:b7:fc:72:4d:bd:97:24:3e:ad:3c:6b:c6:25:79:8d:c0:57: c9:ad:99:21:6c:b5:af:ac:61:48:d3:db:92:8d:cf:db:80:c8: 43:db:69:3f:29:d3:fd:72:00:94:f9:47:a1:ea:9c:11:26:4a: 06:6a:b7:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdQo83BFXkNizRS0kHV4V3Fg4mZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGRTY3ODIzRjUzNThFRjNENUY5QjRGMDRGQkNCQTk1 NjBEMzhFRDAeFw0yNjA1MDMwMzA0MjhaFw0yNzA1MDIwMzA5MjhaMDMxMTAvBgNV BAMTKEM2QTZCMkY2MUY0OTI0ODAzMzQwMzdERTNBNDJBQjNBOTAxRDQ3OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyWGBnnv6z69rYgPNaTHICJ70R M7ZtAA6xmEs2neqfb5V/HqtVcRlN9hL1B+gfxcLNrTH1ufG9GJJrUTKr4xL1K53q MF6c4U51yZqCdecf9i03zhq/hJVRoVN0c/C0HTO9Q9EziapURK8rvLw3w3/iJXfL 8FHSXtV5VpjEmrotyYtzwd2wOkNTQP8DUobeXYg8G15l6h/PqQH+MElDe3uuyXzl BcvuxMEfP3t16Q0UkitDAFcOi6D9qukZAgpqQ4ulStxrbWBV9Xrl/iaEFFv4RSjt dPOmgFGMBpSfW8Bj7XIeeq/BvyxYlf54HDLgJG8rFCgsAzFlTFOIrG2cXsbVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxqay9h9JJIAzQDfeOkKrOpAdR5gwHwYDVR0j BBgwFoAUQf5ngj9TWO89X5tPBPvLqVYNOO0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDNlYzJjYjYtMzVhZC00MTAxLTk4MmUtMmUzNGQ1NjZlZmRhLzAvNDFGRTY3ODIz RjUzNThFRjNENUY5QjRGMDRGQkNCQTk1NjBEMzhFRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUZFNjc4MjNGNTM1OEVGM0Q1RjlCNEYwNEZCQ0JBOTU2MEQz OEVELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzZWMyY2I2LTM1YWQtNDEwMS05 ODJlLTJlMzRkNTY2ZWZkYS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrMIwDQYJ KoZIhvcNAQELBQADggEBAH8ViO0jp5HrIiHCxMpnygu0p0NYTJdBQEleUvlurewR +WC5BXqGfZfJbm7KjmJ/SzFDROIW8l8Ch1Um87eCxXIS0wvlwdT+s+M3qojFtv8k IEaVUtZI37n6iQJkgvpdeWnTHOjFe+13jZr3iWpmEXvAmp14pGqssK+M0F5eH0Hg UJ/g2NVubNocMA1CJhuwZwMioYA6t6E6PZXl9yjflVhaZ1+WRjzUvfcHAWYWi+Ho PF0AnbQ8c6ewFnwKyNPXyTDFR1VUUQS3/HJNvZckPq08a8YleY3AV8mtmSFsta+s YUjT25KNz9uAyEPbaT8p0/1yAJT5R6HqnBEmSgZqt/A= -----END CERTIFICATE-----Generated at Wed May 13 02:59:57 2026 by rpki-client