$ rpki-client -vvf rpki-rsync.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa File: 3130332e32302e3139362e302f32332d3234203d3e203538353536.roa (raw, json) Hash identifier: ZEEwsmhHsOyMDqyiN3IxsgHaVc7psNwCzujWldWZaTg= Subject key identifier: A6:60:D8:66:43:0B:BE:0C:83:37:3B:F2:2D:3E:78:7D:01:7B:B5:8B Certificate issuer: /CN=9B50E3124E603F37B0DFC41D28D4FE225D80A80F Certificate serial: 0CF47877682344EB793BBAB001D34C84B17C76FE Authority key identifier: 9B:50:E3:12:4E:60:3F:37:B0:DF:C4:1D:28:D4:FE:22:5D:80:A8:0F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9B50E3124E603F37B0DFC41D28D4FE225D80A80F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa Signing time: Sun 03 May 2026 03:14:42 +0000 ROA not before: Sun 03 May 2026 03:09:42 +0000 ROA not after: Sun 02 May 2027 03:14:42 +0000 asID: 58556 IP address blocks: 103.20.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/9B50E3124E603F37B0DFC41D28D4FE225D80A80F.crl rsync://rpki-rsync.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/9B50E3124E603F37B0DFC41D28D4FE225D80A80F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9B50E3124E603F37B0DFC41D28D4FE225D80A80F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 04:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f4:78:77:68:23:44:eb:79:3b:ba:b0:01:d3:4c:84:b1:7c:76:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B50E3124E603F37B0DFC41D28D4FE225D80A80F Validity Not Before: May 3 03:09:42 2026 GMT Not After : May 2 03:14:42 2027 GMT Subject: CN=A660D866430BBE0C83373BF22D3E787D017BB58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:10:d0:e1:13:35:f1:eb:e8:f3:c6:29:ce:6c: 15:79:0f:4f:18:e7:23:29:0c:d4:a8:b4:27:a0:5f: 47:9d:7d:7a:20:f6:2f:8c:0d:0f:ab:c3:c3:5f:3d: d4:c5:c0:2e:37:53:33:d6:69:c4:61:32:7d:9e:04: 1a:5f:2e:0d:d0:92:31:ea:c2:96:cd:05:94:1c:fb: b0:aa:f7:e4:00:f1:e3:bd:0f:7c:c0:45:e5:37:0e: 7c:12:07:e5:d2:7b:a2:ed:8d:af:03:6c:17:72:ba: da:7d:a3:0d:f4:43:30:f3:68:cc:e5:cc:44:7e:9d: fe:75:ad:a9:2c:27:00:70:e8:e8:eb:8f:ea:db:bd: cb:ae:93:87:db:c1:84:e5:95:f7:ef:77:55:49:b7: 41:c9:4d:70:a5:49:63:92:78:2c:e7:df:3a:b4:c2: 05:41:d5:5e:5b:06:6e:41:35:fc:9a:9d:1c:4d:81: 91:6f:22:33:74:14:31:fc:c0:50:9d:98:d8:db:32: 7c:6f:18:5f:a1:c2:fb:3e:96:38:38:07:d2:9c:73: fc:be:20:f6:4b:66:55:91:91:ac:7d:7a:f6:fc:21: b2:26:01:93:32:20:ce:3a:4e:4c:65:83:5f:46:9d: fb:18:fc:84:51:9e:5b:52:8b:e3:ab:be:15:28:31: f4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:60:D8:66:43:0B:BE:0C:83:37:3B:F2:2D:3E:78:7D:01:7B:B5:8B X509v3 Authority Key Identifier: keyid:9B:50:E3:12:4E:60:3F:37:B0:DF:C4:1D:28:D4:FE:22:5D:80:A8:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/9B50E3124E603F37B0DFC41D28D4FE225D80A80F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9B50E3124E603F37B0DFC41D28D4FE225D80A80F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.196.0/23 Signature Algorithm: sha256WithRSAEncryption 29:52:9c:38:04:0a:50:cf:c4:89:8e:a2:4c:fa:7e:28:16:62: db:ca:a6:c2:02:75:ee:9a:2d:d4:f9:1b:cd:7c:d3:ae:dd:9e: 32:56:7d:28:5b:c4:bc:8d:f8:e0:71:fa:42:08:22:2d:cc:23: f0:d9:70:62:aa:bd:94:82:3c:e5:6f:92:62:78:29:bb:68:57: bc:c6:ba:b7:24:fb:69:38:9a:22:20:0e:a7:eb:39:a6:69:88: 19:a3:3d:92:9a:82:31:18:5a:31:2a:b7:55:d9:81:b2:44:05: f0:ee:93:41:de:e4:d1:58:1f:9e:46:88:5c:e2:39:4e:d2:1c: e7:91:2f:c3:88:4d:91:5f:17:18:ec:f5:f2:0d:0c:7e:b2:8a: 2e:2d:9c:e9:ed:7f:44:2e:4e:44:00:f0:1a:8a:28:09:a0:88: b0:d6:d1:ba:14:66:f8:46:dc:6a:78:b2:39:d9:8b:92:62:04: 2f:6c:00:21:36:c3:30:39:60:e0:f4:38:85:26:f3:f3:47:02: de:a5:e0:98:13:25:e7:a7:1e:8b:7b:da:a5:70:8e:12:ea:a6: c9:dd:fb:cb:42:89:83:d3:1f:9a:8c:21:f0:f7:e0:73:51:0c: 7d:03:82:e9:d4:e6:61:2b:01:e0:03:1b:fb:70:49:4e:16:0c: e0:b6:56:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDPR4d2gjROt5O7qwAdNMhLF8dv4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI1MEUzMTI0RTYwM0YzN0IwREZDNDFEMjhENEZFMjI1 RDgwQTgwRjAeFw0yNjA1MDMwMzA5NDJaFw0yNzA1MDIwMzE0NDJaMDMxMTAvBgNV BAMTKEE2NjBEODY2NDMwQkJFMEM4MzM3M0JGMjJEM0U3ODdEMDE3QkI1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzENDhEzXx6+jzxinObBV5D08Y 5yMpDNSotCegX0edfXog9i+MDQ+rw8NfPdTFwC43UzPWacRhMn2eBBpfLg3QkjHq wpbNBZQc+7Cq9+QA8eO9D3zAReU3DnwSB+XSe6Ltja8DbBdyutp9ow30QzDzaMzl zER+nf51raksJwBw6Ojrj+rbvcuuk4fbwYTllffvd1VJt0HJTXClSWOSeCzn3zq0 wgVB1V5bBm5BNfyanRxNgZFvIjN0FDH8wFCdmNjbMnxvGF+hwvs+ljg4B9Kcc/y+ IPZLZlWRkax9evb8IbImAZMyIM46Tkxlg19GnfsY/IRRnltSi+OrvhUoMfRpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpmDYZkMLvgyDNzvyLT54fQF7tYswHwYDVR0j BBgwFoAUm1DjEk5gPzew38QdKNT+Il2AqA8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTg3YWVlN2YtZDY1Yi00NmVjLWE3ODEtN2NiZWY1YWFlYjgwLzAvOUI1MEUzMTI0 RTYwM0YzN0IwREZDNDFEMjhENEZFMjI1RDgwQTgwRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QjUwRTMxMjRFNjAzRjM3QjBERkM0MUQyOEQ0RkUyMjVEODBB ODBGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U4N2FlZTdmLWQ2NWItNDZlYy1h NzgxLTdjYmVmNWFhZWI4MC8wLzMxMzAzMzJlMzIzMDJlMzEzOTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM1MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcUxDANBgkqhkiG 9w0BAQsFAAOCAQEAKVKcOAQKUM/EiY6iTPp+KBZi28qmwgJ17pot1PkbzXzTrt2e MlZ9KFvEvI344HH6QggiLcwj8NlwYqq9lII85W+SYngpu2hXvMa6tyT7aTiaIiAO p+s5pmmIGaM9kpqCMRhaMSq3VdmBskQF8O6TQd7k0VgfnkaIXOI5TtIc55Evw4hN kV8XGOz18g0MfrKKLi2c6e1/RC5ORADwGoooCaCIsNbRuhRm+EbcaniyOdmLkmIE L2wAITbDMDlg4PQ4hSbz80cC3qXgmBMl56cei3vapXCOEuqmyd37y0KJg9Mfmowh 8Pfgc1EMfQOC6dTmYSsB4AMb+3BJThYM4LZW2A== -----END CERTIFICATE-----Generated at Tue May 12 22:31:52 2026 by rpki-client