$ rpki-client -vvf rpki-rsync.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36372e302f32342d3234203d3e20323032373336.roa File: 3130332e3132302e36372e302f32342d3234203d3e20323032373336.roa (raw, json) Hash identifier: 5DeQZnO25GQBg084uvCvhKR3hbUDyeL+NhhXVoCIa64= Subject key identifier: C9:59:24:E1:A0:4A:9B:C2:95:A2:1A:DC:47:EF:9C:59:64:AE:AB:73 Certificate issuer: /CN=FC2134DAE4378B90D9026728D4F693714082E391 Certificate serial: 21C7AD8BD5F69AE0295C55DCD6988C3C27C63321 Authority key identifier: FC:21:34:DA:E4:37:8B:90:D9:02:67:28:D4:F6:93:71:40:82:E3:91 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FC2134DAE4378B90D9026728D4F693714082E391.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36372e302f32342d3234203d3e20323032373336.roa Signing time: Sun 03 May 2026 03:14:36 +0000 ROA not before: Sun 03 May 2026 03:09:36 +0000 ROA not after: Sun 02 May 2027 03:14:36 +0000 asID: 202736 IP address blocks: 103.120.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/FC2134DAE4378B90D9026728D4F693714082E391.crl rsync://rpki-rsync.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/FC2134DAE4378B90D9026728D4F693714082E391.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FC2134DAE4378B90D9026728D4F693714082E391.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c7:ad:8b:d5:f6:9a:e0:29:5c:55:dc:d6:98:8c:3c:27:c6:33:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC2134DAE4378B90D9026728D4F693714082E391 Validity Not Before: May 3 03:09:36 2026 GMT Not After : May 2 03:14:36 2027 GMT Subject: CN=C95924E1A04A9BC295A21ADC47EF9C5964AEAB73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:da:99:a2:09:58:7e:cc:cf:d0:b6:f4:5d: af:14:43:de:69:54:ae:3d:27:bc:91:4a:97:63:11: a3:83:b8:31:3b:b8:7a:35:57:48:aa:ab:d2:d7:f3: 73:04:e4:f9:9d:46:95:a3:ba:17:6a:54:00:e3:11: 3b:cf:f1:79:a3:4f:a9:5e:48:b3:51:fa:d0:13:9b: 11:a3:64:f3:71:6b:b5:0e:08:50:66:6f:29:52:5b: 59:08:fb:27:10:90:90:40:6c:c5:18:f0:02:e6:30: e8:14:e6:17:0d:2c:f7:26:a2:75:3a:06:13:da:32: 8e:fe:80:b5:e8:14:f3:49:fa:64:bd:9b:01:2e:a9: df:fa:33:88:38:8a:db:d6:61:ee:a6:3a:c1:8e:2d: 93:48:b7:c7:cf:05:c8:a2:e0:b7:db:8a:cd:b1:57: 49:db:47:4e:3e:ca:99:fe:eb:35:d4:a4:34:3d:ce: dc:da:a3:c1:68:9e:0d:44:53:9f:d3:3f:de:c0:aa: d4:47:7d:9e:8d:08:33:57:32:89:83:89:f7:65:94: 61:ec:be:6e:03:50:a2:5f:ff:86:5c:01:c9:bd:78: 2b:b7:23:b1:ff:1e:c4:1f:0f:60:2d:53:66:a4:bd: 99:36:6d:fe:93:27:3f:ba:02:a4:3f:c5:fb:2c:00: 47:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:59:24:E1:A0:4A:9B:C2:95:A2:1A:DC:47:EF:9C:59:64:AE:AB:73 X509v3 Authority Key Identifier: keyid:FC:21:34:DA:E4:37:8B:90:D9:02:67:28:D4:F6:93:71:40:82:E3:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/FC2134DAE4378B90D9026728D4F693714082E391.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FC2134DAE4378B90D9026728D4F693714082E391.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36372e302f32342d3234203d3e20323032373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.67.0/24 Signature Algorithm: sha256WithRSAEncryption 07:46:f1:0e:29:dd:3f:f2:d5:fe:ec:fa:9d:4f:ca:cf:c2:ec: c6:a0:5a:18:50:6b:dc:da:26:3e:10:3f:b9:d1:64:81:9c:79: 9c:6f:95:7f:b5:2b:98:38:a9:c6:98:47:ca:7e:f8:2e:8d:82: 0a:57:63:00:b5:8f:1c:6b:9a:98:a7:61:ab:81:0c:6f:01:42: a7:40:27:9a:c0:fd:66:98:e7:fe:f8:f1:74:c5:65:61:ee:e1: fe:c3:e9:81:e5:5b:8b:21:36:53:ba:cf:61:4d:3f:9f:ad:0c: e8:bc:65:ad:2d:3f:76:09:e1:1e:d8:80:f5:63:b8:15:16:68: 31:45:90:41:05:bb:13:44:8e:a8:ec:49:8d:56:2c:90:ef:cf: 5a:a2:eb:c0:bc:4a:fb:e2:1e:41:eb:4d:60:bc:3b:d1:af:b0: 3e:cd:74:f7:81:4e:d1:80:8a:14:6b:3f:ec:4c:87:e4:4b:b4: 99:78:fa:bd:0b:ab:d8:f7:68:e7:a0:e1:5a:20:9b:b8:a3:95: 17:ec:34:10:2f:ee:6b:7b:eb:cc:bf:fe:e0:b7:e0:8b:9c:e8: e9:85:d3:d9:4c:4f:64:7e:55:73:38:08:78:b2:33:f5:59:a0: 68:85:7f:06:44:ce:3f:d1:ba:60:e4:68:bc:f0:a9:b2:a8:31: fb:e3:e8:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIceti9X2muApXFXc1piMPCfGMyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkMyMTM0REFFNDM3OEI5MEQ5MDI2NzI4RDRGNjkzNzE0 MDgyRTM5MTAeFw0yNjA1MDMwMzA5MzZaFw0yNzA1MDIwMzE0MzZaMDMxMTAvBgNV BAMTKEM5NTkyNEUxQTA0QTlCQzI5NUEyMUFEQzQ3RUY5QzU5NjRBRUFCNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiYNqZoglYfszP0Lb0Xa8UQ95p VK49J7yRSpdjEaODuDE7uHo1V0iqq9LX83ME5PmdRpWjuhdqVADjETvP8XmjT6le SLNR+tATmxGjZPNxa7UOCFBmbylSW1kI+ycQkJBAbMUY8ALmMOgU5hcNLPcmonU6 BhPaMo7+gLXoFPNJ+mS9mwEuqd/6M4g4itvWYe6mOsGOLZNIt8fPBcii4Lfbis2x V0nbR04+ypn+6zXUpDQ9ztzao8Fong1EU5/TP97AqtRHfZ6NCDNXMomDifdllGHs vm4DUKJf/4ZcAcm9eCu3I7H/HsQfD2AtU2akvZk2bf6TJz+6AqQ/xfssAEdNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyVkk4aBKm8KVohrcR++cWWSuq3MwHwYDVR0j BBgwFoAU/CE02uQ3i5DZAmco1PaTcUCC45EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTg2ZTQ2ZWMtZGY1Yy00YjRkLWEzMGUtMTBiMmM2ODhjMmZjLzAvRkMyMTM0REFF NDM3OEI5MEQ5MDI2NzI4RDRGNjkzNzE0MDgyRTM5MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQzIxMzREQUU0Mzc4QjkwRDkwMjY3MjhENEY2OTM3MTQwODJF MzkxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U4NmU0NmVjLWRmNWMtNGI0ZC1h MzBlLTEwYjJjNjg4YzJmYy8wLzMxMzAzMzJlMzEzMjMwMmUzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMDMyMzczMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3hDMA0GCSqG SIb3DQEBCwUAA4IBAQAHRvEOKd0/8tX+7PqdT8rPwuzGoFoYUGvc2iY+ED+50WSB nHmcb5V/tSuYOKnGmEfKfvgujYIKV2MAtY8ca5qYp2GrgQxvAUKnQCeawP1mmOf+ +PF0xWVh7uH+w+mB5VuLITZTus9hTT+frQzovGWtLT92CeEe2ID1Y7gVFmgxRZBB BbsTRI6o7EmNViyQ789aouvAvEr74h5B601gvDvRr7A+zXT3gU7RgIoUaz/sTIfk S7SZePq9C6vY92jnoOFaIJu4o5UX7DQQL+5re+vMv/7gt+CLnOjphdPZTE9kflVz OAh4sjP1WaBohX8GRM4/0bpg5Gi88KmyqDH74+gf -----END CERTIFICATE-----Generated at Wed May 13 00:21:42 2026 by rpki-client