$ rpki-client -vvf rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230372e302f32342d3234203d3e203538333937.roa File: 3130332e34312e3230372e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: eQfKLmnoRcKmmSMjm7w1dd94t1neaLfEfU1VX6jNzeU= Subject key identifier: AF:68:6C:EA:FB:D9:0A:92:57:22:0D:83:34:A2:77:30:17:C7:E7:94 Certificate issuer: /CN=039655B785EC7CB007D8EC3057559737EDFECF68 Certificate serial: 0630CEF8D274EDD3AB0350E797494B42E68FAC52 Authority key identifier: 03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230372e302f32342d3234203d3e203538333937.roa Signing time: Sun 03 May 2026 03:11:11 +0000 ROA not before: Sun 03 May 2026 03:06:11 +0000 ROA not after: Sun 02 May 2027 03:11:11 +0000 asID: 58397 IP address blocks: 103.41.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:30:ce:f8:d2:74:ed:d3:ab:03:50:e7:97:49:4b:42:e6:8f:ac:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=039655B785EC7CB007D8EC3057559737EDFECF68 Validity Not Before: May 3 03:06:11 2026 GMT Not After : May 2 03:11:11 2027 GMT Subject: CN=AF686CEAFBD90A9257220D8334A2773017C7E794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:91:39:1d:1f:4f:06:f7:37:9d:dc:df:b2:22: 01:a4:6c:ca:cc:b8:fc:44:55:52:55:c2:4f:b2:e1: 10:19:ce:07:27:01:0b:85:77:98:be:93:9f:56:27: 65:04:94:56:49:1a:9d:d4:05:6f:b0:56:4a:fb:6b: d7:d5:53:c9:f7:ba:fd:34:8c:f0:20:a3:35:ec:ab: 3f:c8:5c:d2:20:1c:02:b9:85:6a:d1:48:4b:db:bd: 65:b0:e6:02:a0:ff:ae:e2:27:5c:6f:09:f4:2f:74: 72:22:d3:50:06:71:9b:3c:0a:93:4a:a5:16:d8:ab: 2a:ac:55:c6:f8:19:c9:30:06:c8:7a:84:f7:ea:3a: 45:b6:72:ba:af:d3:1b:58:41:c4:c2:1c:d0:1f:16: d4:22:27:17:a7:48:d3:8b:ba:dd:44:b6:51:91:3d: 29:4c:3b:56:da:7f:f9:26:76:94:b7:71:16:44:a9: d3:98:c3:e0:1c:bb:f0:69:9f:a2:78:9b:43:3e:d7: 3a:ee:26:fd:67:96:5f:15:66:f3:89:b0:0c:07:18: 78:51:8a:dc:43:59:94:fe:bb:0a:b0:f8:97:e7:78: 1b:bf:c8:7b:c4:99:5d:1f:66:aa:4d:d5:b6:7b:cd: 5c:b8:14:74:17:7b:ab:ea:f9:47:a5:8f:c9:6e:ca: 1e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:68:6C:EA:FB:D9:0A:92:57:22:0D:83:34:A2:77:30:17:C7:E7:94 X509v3 Authority Key Identifier: keyid:03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230372e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.207.0/24 Signature Algorithm: sha256WithRSAEncryption 65:1c:42:42:bc:e1:4a:1a:40:03:9f:ce:e8:9b:16:df:f1:e7: 19:23:58:ea:43:70:18:11:7c:e0:db:a6:48:b3:29:b1:d5:f2: 4c:cb:cd:ac:85:d4:aa:72:89:43:6f:ee:b7:68:25:30:9e:ee: ca:b4:5a:ad:75:58:77:cb:f2:9b:5b:58:e1:1f:1d:71:10:1a: df:5f:e2:88:31:17:de:70:7e:b3:ba:35:5f:28:51:98:5d:cb: 0a:92:e7:5e:c2:bb:9c:30:04:de:54:a1:ab:1c:0c:74:02:30: 6e:4b:dc:cb:71:91:5e:39:7d:18:e9:14:c4:f7:04:1c:ea:a7: a6:21:61:c5:66:c6:88:1a:b5:a7:57:fc:7d:77:e9:d9:2d:7b: 27:3a:f6:c8:1b:9f:7f:1d:0f:35:17:04:97:e9:5e:f6:02:83: 47:b7:14:68:17:22:8f:10:b5:2d:17:56:62:28:3c:59:b1:04: a7:ad:b6:56:9d:ed:4e:a5:2d:1c:95:c2:e7:d3:4c:69:54:28: 45:6f:16:06:4b:55:98:98:ba:8a:eb:5b:6c:e7:e0:7a:ec:17: b8:68:b3:c9:ee:ed:18:2b:e4:50:d5:12:a3:1d:b6:ff:27:3a: ba:55:22:b8:d8:2a:4f:a1:ac:3b:63:cd:03:af:f6:4b:ca:91: 9c:d9:63:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBjDO+NJ07dOrA1Dnl0lLQuaPrFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdF REZFQ0Y2ODAeFw0yNjA1MDMwMzA2MTFaFw0yNzA1MDIwMzExMTFaMDMxMTAvBgNV BAMTKEFGNjg2Q0VBRkJEOTBBOTI1NzIyMEQ4MzM0QTI3NzMwMTdDN0U3OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfkTkdH08G9zed3N+yIgGkbMrM uPxEVVJVwk+y4RAZzgcnAQuFd5i+k59WJ2UElFZJGp3UBW+wVkr7a9fVU8n3uv00 jPAgozXsqz/IXNIgHAK5hWrRSEvbvWWw5gKg/67iJ1xvCfQvdHIi01AGcZs8CpNK pRbYqyqsVcb4GckwBsh6hPfqOkW2crqv0xtYQcTCHNAfFtQiJxenSNOLut1EtlGR PSlMO1baf/kmdpS3cRZEqdOYw+Acu/Bpn6J4m0M+1zruJv1nll8VZvOJsAwHGHhR itxDWZT+uwqw+JfneBu/yHvEmV0fZqpN1bZ7zVy4FHQXe6vq+Uelj8luyh4dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUr2hs6vvZCpJXIg2DNKJ3MBfH55QwHwYDVR0j BBgwFoAUA5ZVt4XsfLAH2OwwV1WXN+3+z2gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGI4YmE0NWUtZjVkYS00NTgxLWJmZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4 NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdFREZFQ0Y2OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMzk2NTVCNzg1RUM3Q0IwMDdEOEVDMzA1NzU1OTczN0VERkVD RjY4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzAzMzJlMzQzMTJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcpzzANBgkqhkiG 9w0BAQsFAAOCAQEAZRxCQrzhShpAA5/O6JsW3/HnGSNY6kNwGBF84NumSLMpsdXy TMvNrIXUqnKJQ2/ut2glMJ7uyrRarXVYd8vym1tY4R8dcRAa31/iiDEX3nB+s7o1 XyhRmF3LCpLnXsK7nDAE3lShqxwMdAIwbkvcy3GRXjl9GOkUxPcEHOqnpiFhxWbG iBq1p1f8fXfp2S17Jzr2yBuffx0PNRcEl+le9gKDR7cUaBcijxC1LRdWYig8WbEE p622Vp3tTqUtHJXC59NMaVQoRW8WBktVmJi6iutbbOfgeuwXuGizye7tGCvkUNUS ox22/yc6ulUiuNgqT6GsO2PNA6/2S8qRnNljVg== -----END CERTIFICATE-----Generated at Wed May 13 05:43:38 2026 by rpki-client