$ rpki-client -vvf rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa File: 3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa (raw, json) Hash identifier: K8RuD4iVWNDoq5/nKnK+l+BvrNOPQLNp6COtNPtCMfY= Subject key identifier: 74:68:DE:76:C3:4C:C5:4C:EB:48:FD:17:77:53:60:49:A9:15:54:98 Certificate issuer: /CN=8638D28E3BD2280125963C7B30C34A226398A39F Certificate serial: 60CA2D8C4075378FE20D0BE06AF88B435C992425 Authority key identifier: 86:38:D2:8E:3B:D2:28:01:25:96:3C:7B:30:C3:4A:22:63:98:A3:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8638D28E3BD2280125963C7B30C34A226398A39F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa Signing time: Sun 03 May 2026 03:10:19 +0000 ROA not before: Sun 03 May 2026 03:05:19 +0000 ROA not after: Sun 02 May 2027 03:10:19 +0000 asID: 141955 IP address blocks: 103.166.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8638D28E3BD2280125963C7B30C34A226398A39F.crl rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8638D28E3BD2280125963C7B30C34A226398A39F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8638D28E3BD2280125963C7B30C34A226398A39F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:44:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ca:2d:8c:40:75:37:8f:e2:0d:0b:e0:6a:f8:8b:43:5c:99:24:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8638D28E3BD2280125963C7B30C34A226398A39F Validity Not Before: May 3 03:05:19 2026 GMT Not After : May 2 03:10:19 2027 GMT Subject: CN=7468DE76C34CC54CEB48FD1777536049A9155498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ff:37:96:50:32:06:4a:22:55:71:b1:38:70: 21:ff:48:b2:9d:d4:e2:f3:7f:c6:5f:2c:3d:77:c1: ba:23:43:7c:d4:d8:4d:9e:41:17:64:b2:0b:8e:40: 71:e6:4c:1e:61:18:2f:b5:e6:c7:9a:4d:8b:eb:37: e2:66:e5:d9:d1:59:60:8e:cf:cc:47:bd:4e:59:cd: bc:f4:74:61:86:66:22:8e:d6:47:97:fc:30:c2:00: bf:6d:d6:80:87:1f:72:c6:a6:55:63:82:69:3c:f7: d5:7f:ea:e9:24:d5:a4:cb:53:7c:34:57:bf:07:69: 4a:fa:8e:e0:fd:73:fe:0a:34:a2:bb:8c:00:ab:e7: 92:e8:2c:41:ec:b7:3f:22:68:f1:8a:42:75:75:b4: 17:12:64:96:65:0a:66:ff:28:0f:12:ac:8b:c3:70: 86:97:1c:65:c9:13:9b:cb:63:20:83:e7:15:c0:86: b2:39:6b:27:88:eb:2f:f9:2b:de:db:d3:7f:46:9c: c4:f0:47:b2:0c:34:77:0a:5c:aa:19:c5:32:9c:12: 69:79:e9:ae:d1:08:19:f7:91:9f:f8:bf:5e:1f:0d: 96:2d:10:90:33:4c:d5:e9:6e:69:16:e3:b0:b9:5e: 56:24:2d:a9:63:1e:d0:c6:4a:d3:70:9c:e2:37:d2: 25:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:68:DE:76:C3:4C:C5:4C:EB:48:FD:17:77:53:60:49:A9:15:54:98 X509v3 Authority Key Identifier: keyid:86:38:D2:8E:3B:D2:28:01:25:96:3C:7B:30:C3:4A:22:63:98:A3:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8638D28E3BD2280125963C7B30C34A226398A39F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8638D28E3BD2280125963C7B30C34A226398A39F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.159.0/24 Signature Algorithm: sha256WithRSAEncryption 09:19:cf:50:92:b1:de:ba:57:a3:fe:eb:f1:86:1d:fd:f4:fe: 3f:16:01:d8:40:13:a3:38:da:da:f6:bf:2d:3c:d2:b6:44:97: 96:3d:90:69:64:e5:18:b8:2a:8c:58:92:8d:f5:db:0b:0b:d3: 44:26:d7:0b:51:f1:95:3a:00:ea:ab:17:95:ee:72:3c:3d:6d: 63:bb:f7:0b:83:33:1e:4f:3b:25:51:6e:7d:cc:10:43:f5:32: f1:84:5a:ca:b9:54:df:77:6f:31:58:95:d9:4a:e7:6e:48:9b: b6:30:5f:32:c9:09:07:6a:57:8c:50:85:66:8a:e3:dd:2e:31: f1:c2:81:dc:f3:0d:57:27:31:54:9a:ff:57:05:89:92:e1:a6: 57:29:f8:48:96:f3:f4:06:7b:83:00:04:8d:39:44:38:d4:7f: 40:77:2e:86:e8:50:ec:fb:53:f5:0c:22:a4:70:34:64:77:e2: 50:e6:f1:b8:12:44:31:b0:8e:bf:27:67:68:6f:7d:59:73:db: ae:6a:55:39:ab:31:7a:97:85:24:5c:72:45:fb:dd:e5:59:a0: 62:3d:0c:1f:e2:52:99:d4:9b:88:cd:4d:78:26:ad:7a:d6:3d: 94:6d:5a:fb:8d:5e:05:ff:6e:13:c4:20:4f:c4:ae:a7:ca:4e: 73:87:55:d2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYMotjEB1N4/iDQvgaviLQ1yZJCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYzOEQyOEUzQkQyMjgwMTI1OTYzQzdCMzBDMzRBMjI2 Mzk4QTM5RjAeFw0yNjA1MDMwMzA1MTlaFw0yNzA1MDIwMzEwMTlaMDMxMTAvBgNV BAMTKDc0NjhERTc2QzM0Q0M1NENFQjQ4RkQxNzc3NTM2MDQ5QTkxNTU0OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl/zeWUDIGSiJVcbE4cCH/SLKd 1OLzf8ZfLD13wbojQ3zU2E2eQRdksguOQHHmTB5hGC+15seaTYvrN+Jm5dnRWWCO z8xHvU5Zzbz0dGGGZiKO1keX/DDCAL9t1oCHH3LGplVjgmk899V/6ukk1aTLU3w0 V78HaUr6juD9c/4KNKK7jACr55LoLEHstz8iaPGKQnV1tBcSZJZlCmb/KA8SrIvD cIaXHGXJE5vLYyCD5xXAhrI5ayeI6y/5K97b039GnMTwR7IMNHcKXKoZxTKcEml5 6a7RCBn3kZ/4v14fDZYtEJAzTNXpbmkW47C5XlYkLaljHtDGStNwnOI30iXHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdGjedsNMxUzrSP0Xd1NgSakVVJgwHwYDVR0j BBgwFoAUhjjSjjvSKAElljx7MMNKImOYo58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDdmZjAxZDAtMjZmOS00YjIwLWEzMTgtYzMxMWMyNjdmMmFmLzAvODYzOEQyOEUz QkQyMjgwMTI1OTYzQzdCMzBDMzRBMjI2Mzk4QTM5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NjM4RDI4RTNCRDIyODAxMjU5NjNDN0IzMEMzNEEyMjYzOThB MzlGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q3ZmYwMWQwLTI2ZjktNGIyMC1h MzE4LWMzMTFjMjY3ZjJhZi8wLzMxMzAzMzJlMzEzNjM2MmUzMTM1MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpp8wDQYJ KoZIhvcNAQELBQADggEBAAkZz1CSsd66V6P+6/GGHf30/j8WAdhAE6M42tr2vy08 0rZEl5Y9kGlk5Ri4KoxYko312wsL00Qm1wtR8ZU6AOqrF5Xucjw9bWO79wuDMx5P OyVRbn3MEEP1MvGEWsq5VN93bzFYldlK525Im7YwXzLJCQdqV4xQhWaK490uMfHC gdzzDVcnMVSa/1cFiZLhplcp+EiW8/QGe4MABI05RDjUf0B3LoboUOz7U/UMIqRw NGR34lDm8bgSRDGwjr8nZ2hvfVlz265qVTmrMXqXhSRcckX73eVZoGI9DB/iUpnU m4jNTXgmrXrWPZRtWvuNXgX/bhPEIE/ErqfKTnOHVdI= -----END CERTIFICATE-----Generated at Wed May 13 12:08:27 2026 by rpki-client