$ rpki-client -vvf rpki-rsync.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa File: 3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa (raw, json) Hash identifier: tYzh/ONrnE/vB4p4w+wsr7jUrg+O1DSqJcNbYqdE1O4= Subject key identifier: 96:72:B5:66:65:7C:82:B7:CD:65:ED:2D:18:C4:1E:0C:0A:97:AD:EE Certificate issuer: /CN=D710E47438E099E6B0ED245674ED2233E1D2B2C0 Certificate serial: 7BA822F8ECE41275B43E93EF52FC7FE123506254 Authority key identifier: D7:10:E4:74:38:E0:99:E6:B0:ED:24:56:74:ED:22:33:E1:D2:B2:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D710E47438E099E6B0ED245674ED2233E1D2B2C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa Signing time: Sun 03 May 2026 03:09:45 +0000 ROA not before: Sun 03 May 2026 03:04:45 +0000 ROA not after: Sun 02 May 2027 03:09:45 +0000 asID: 141947 IP address blocks: 103.166.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/D710E47438E099E6B0ED245674ED2233E1D2B2C0.crl rsync://rpki-rsync.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/D710E47438E099E6B0ED245674ED2233E1D2B2C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D710E47438E099E6B0ED245674ED2233E1D2B2C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a8:22:f8:ec:e4:12:75:b4:3e:93:ef:52:fc:7f:e1:23:50:62:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D710E47438E099E6B0ED245674ED2233E1D2B2C0 Validity Not Before: May 3 03:04:45 2026 GMT Not After : May 2 03:09:45 2027 GMT Subject: CN=9672B566657C82B7CD65ED2D18C41E0C0A97ADEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:a6:d5:77:fd:50:67:c3:00:84:34:a6:20:e7: 94:4d:2f:6f:a4:4b:5e:c7:78:0e:0d:22:e7:46:35: b6:13:4f:51:9f:42:7a:f6:3a:7c:6b:36:d6:6f:35: b5:2b:54:5c:4f:9c:f9:4f:2a:34:36:2c:b2:69:81: f1:ea:28:45:db:85:c2:f7:45:7a:fb:e5:d8:4c:3a: 9e:c4:a4:77:66:87:91:a2:76:7d:ad:27:c0:be:50: f6:f1:79:1c:49:aa:8d:68:2a:5a:5f:f0:db:8c:72: ed:c8:57:86:8b:fe:a5:2a:70:3d:e5:c2:19:46:64: 7d:e1:2e:c3:81:1a:f0:b2:5e:ab:8f:59:fb:4b:31: 98:2e:ae:63:85:c5:e7:55:83:8f:40:2e:73:58:c1: b1:33:c7:fc:d6:33:ca:f4:1e:f6:ed:f9:b8:b0:22: 22:00:d7:a0:a2:08:e5:e1:9a:27:77:e7:1b:a8:bc: dc:cd:5d:35:74:09:d7:a8:27:bd:ae:2c:5e:1c:bc: 1a:60:e1:e5:35:a0:b1:3d:6d:63:45:18:8c:ae:7b: 18:12:0b:21:ec:4d:51:29:a9:26:27:02:c2:6b:6f: 49:0c:de:ee:e1:65:62:16:40:e9:72:ee:f5:13:d3: 02:b9:59:80:64:9e:24:a7:4c:0a:6e:c0:a2:e0:c7: 0f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:72:B5:66:65:7C:82:B7:CD:65:ED:2D:18:C4:1E:0C:0A:97:AD:EE X509v3 Authority Key Identifier: keyid:D7:10:E4:74:38:E0:99:E6:B0:ED:24:56:74:ED:22:33:E1:D2:B2:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/D710E47438E099E6B0ED245674ED2233E1D2B2C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D710E47438E099E6B0ED245674ED2233E1D2B2C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.124.0/24 Signature Algorithm: sha256WithRSAEncryption 35:c9:23:47:ae:5f:82:4e:70:b4:e3:82:f3:8d:7e:19:b4:75: 46:f5:35:e8:cc:f3:03:93:7f:2b:92:e4:c8:d0:32:74:3c:35: 73:5b:f2:90:1b:c9:18:43:b6:b8:5c:4c:e8:2d:91:5a:7b:40: 92:d6:58:f3:a8:8f:f2:bc:e7:8f:d9:63:e2:ba:e1:6d:59:3a: 59:ff:9e:ad:ee:bc:6d:fb:c0:ce:92:4d:ce:61:4e:92:dd:11: 72:8a:27:09:19:2a:aa:b3:26:5c:6a:31:37:4e:3d:d4:7c:8a: 2b:4c:5f:55:17:8c:d5:b6:57:5e:c1:3a:75:d4:29:08:d4:06: f6:86:25:84:19:5b:61:10:9b:8d:34:39:0f:6b:aa:12:70:93: fe:a7:4f:69:00:9e:49:01:ab:e2:22:e8:a4:5f:67:d1:7e:9a: ac:23:f8:36:db:f2:4e:28:25:9d:0e:56:87:99:e1:24:dd:a1: 24:ee:f7:5b:a1:36:9e:9d:70:5b:9d:53:99:2b:bb:6b:f3:06: 04:f7:2a:96:59:dd:77:c1:fb:9e:0e:7b:9e:0e:ab:af:8a:cc: 32:1a:0f:f0:da:b2:12:c6:60:94:1e:f6:d7:12:f9:f7:d8:79: 24:fd:7d:88:d8:88:d1:09:92:8a:29:14:83:d5:4b:7f:dd:f0: 2d:73:a9:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe6gi+OzkEnW0PpPvUvx/4SNQYlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDcxMEU0NzQzOEUwOTlFNkIwRUQyNDU2NzRFRDIyMzNF MUQyQjJDMDAeFw0yNjA1MDMwMzA0NDVaFw0yNzA1MDIwMzA5NDVaMDMxMTAvBgNV BAMTKDk2NzJCNTY2NjU3QzgyQjdDRDY1RUQyRDE4QzQxRTBDMEE5N0FERUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyptV3/VBnwwCENKYg55RNL2+k S17HeA4NIudGNbYTT1GfQnr2OnxrNtZvNbUrVFxPnPlPKjQ2LLJpgfHqKEXbhcL3 RXr75dhMOp7EpHdmh5Gidn2tJ8C+UPbxeRxJqo1oKlpf8NuMcu3IV4aL/qUqcD3l whlGZH3hLsOBGvCyXquPWftLMZgurmOFxedVg49ALnNYwbEzx/zWM8r0Hvbt+biw IiIA16CiCOXhmid35xuovNzNXTV0CdeoJ72uLF4cvBpg4eU1oLE9bWNFGIyuexgS CyHsTVEpqSYnAsJrb0kM3u7hZWIWQOly7vUT0wK5WYBkniSnTApuwKLgxw/TAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlnK1ZmV8grfNZe0tGMQeDAqXre4wHwYDVR0j BBgwFoAU1xDkdDjgmeaw7SRWdO0iM+HSssAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDU0ZTQ1NmQtZGJlMi00NjBjLTg2ZDQtZWJjMmQxMTU2MTc2LzAvRDcxMEU0NzQz OEUwOTlFNkIwRUQyNDU2NzRFRDIyMzNFMUQyQjJDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENzEwRTQ3NDM4RTA5OUU2QjBFRDI0NTY3NEVEMjIzM0UxRDJC MkMwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpnwwDQYJ KoZIhvcNAQELBQADggEBADXJI0euX4JOcLTjgvONfhm0dUb1NejM8wOTfyuS5MjQ MnQ8NXNb8pAbyRhDtrhcTOgtkVp7QJLWWPOoj/K854/ZY+K64W1ZOln/nq3uvG37 wM6STc5hTpLdEXKKJwkZKqqzJlxqMTdOPdR8iitMX1UXjNW2V17BOnXUKQjUBvaG JYQZW2EQm400OQ9rqhJwk/6nT2kAnkkBq+Ii6KRfZ9F+mqwj+Dbb8k4oJZ0OVoeZ 4STdoSTu91uhNp6dcFudU5kru2vzBgT3KpZZ3XfB+54Oe54Oq6+KzDIaD/DashLG YJQe9tcS+ffYeST9fYjYiNEJkoopFIPVS3/d8C1zqSg= -----END CERTIFICATE-----Generated at Wed May 13 02:50:09 2026 by rpki-client