$ rpki-client -vvf rpki-rsync.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa File: 3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa (raw, json) Hash identifier: xiHN/v3vXzzSYuBqvcK2Zxp9gL/Vai3nTROredoBVU8= Subject key identifier: D6:F6:97:4F:86:08:59:6F:31:39:A1:88:27:C6:AE:93:10:1D:38:97 Certificate issuer: /CN=9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C Certificate serial: 5AF9CF9AE3466ADBDD46F3A85ED1380F5E34215C Authority key identifier: 9D:68:AC:E3:A8:F4:CD:6B:9B:D7:AB:C6:95:E6:A2:16:24:B1:C5:6C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa Signing time: Sun 03 May 2026 03:16:47 +0000 ROA not before: Sun 03 May 2026 03:11:47 +0000 ROA not after: Sun 02 May 2027 03:16:47 +0000 asID: 141588 IP address blocks: 103.160.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C.crl rsync://rpki-rsync.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f9:cf:9a:e3:46:6a:db:dd:46:f3:a8:5e:d1:38:0f:5e:34:21:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C Validity Not Before: May 3 03:11:47 2026 GMT Not After : May 2 03:16:47 2027 GMT Subject: CN=D6F6974F8608596F3139A18827C6AE93101D3897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d4:09:c2:c2:ca:c5:75:31:95:93:d9:10:b1: 0f:bf:73:8d:bc:b8:ab:24:c0:2c:90:2d:ab:6f:58: 2a:28:70:b6:b1:13:d8:91:4f:6e:c7:60:24:ad:1d: d9:93:0d:44:47:bc:6b:b1:11:13:72:be:09:06:d6: 6a:59:26:2f:90:a8:34:ee:ee:7c:d0:88:b7:86:93: 8d:25:bf:7b:d2:37:40:1c:70:e5:bf:db:37:75:7a: 45:fe:a0:a0:fc:04:92:6c:3e:02:f0:26:df:3e:dc: af:93:70:ed:2d:ef:1a:a1:35:6f:5b:69:71:f9:29: c9:fe:5f:2a:ea:88:79:83:65:97:33:7e:68:bf:16: 5f:0b:59:b0:88:10:14:09:8e:1b:b8:a5:fc:65:41: d0:f7:0e:11:c5:1a:20:b9:b9:b5:7d:7b:6b:a1:47: 66:7f:cb:9f:78:e4:ad:9c:7a:56:07:b4:93:29:2f: b8:f8:e7:48:75:b7:d4:ed:1f:68:85:1b:b0:c8:45: 37:40:dc:1a:16:c5:5d:3a:45:85:11:39:8f:11:3e: 03:17:74:d9:e8:c3:28:c7:d2:06:00:58:7e:c6:3e: 0a:46:02:c2:50:39:5b:20:e1:dd:a3:8c:0c:87:c3: 95:8b:5e:7d:be:23:b5:5f:c2:ab:bb:2c:32:ef:b5: 3e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F6:97:4F:86:08:59:6F:31:39:A1:88:27:C6:AE:93:10:1D:38:97 X509v3 Authority Key Identifier: keyid:9D:68:AC:E3:A8:F4:CD:6B:9B:D7:AB:C6:95:E6:A2:16:24:B1:C5:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D68ACE3A8F4CD6B9BD7ABC695E6A21624B1C56C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.136.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:c2:f1:d8:ba:75:55:4e:be:04:cc:50:63:2b:77:cc:99:ab: d9:d7:c1:67:3e:94:d2:98:7f:8d:5a:96:62:7e:79:77:d0:cd: dc:a5:f5:72:c7:a5:e7:fc:90:d5:a4:05:7d:b3:6a:4e:40:9f: 4f:77:3f:be:ef:cf:1c:17:c9:46:b9:31:53:ba:5f:2c:6a:7b: ec:d7:3a:f4:a2:94:bf:08:6d:66:cf:2c:e7:20:5a:7b:32:b3: aa:90:eb:dc:a6:16:ed:cd:6d:e1:b8:be:3b:9b:a0:d4:85:57: d8:dd:83:29:8b:9c:7f:13:9c:8a:fc:6f:39:37:01:ca:89:db: 79:14:a2:ba:a5:3e:55:59:a9:ee:bf:e6:77:e5:eb:5b:84:8e: 82:99:1d:69:b8:0e:5e:a4:6a:b4:8d:5b:e1:b9:e6:e7:3f:d5: 79:57:b8:48:84:73:75:7e:20:f3:2b:32:ec:b3:3e:f2:d6:b0: 8f:0e:f4:07:cf:d9:c3:e1:40:e2:b8:8f:71:01:45:d6:17:7b: 72:dc:df:41:2b:74:e0:d4:34:15:25:9e:5f:5e:50:14:b4:36: d8:f4:f6:4a:16:3b:62:e5:d0:5b:d5:05:b5:03:87:f0:2f:c3: 2c:96:b0:26:79:e9:c2:fe:fb:2b:03:2c:06:47:e6:46:7a:91: f4:7e:2b:26 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWvnPmuNGatvdRvOoXtE4D140IVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ2OEFDRTNBOEY0Q0Q2QjlCRDdBQkM2OTVFNkEyMTYy NEIxQzU2QzAeFw0yNjA1MDMwMzExNDdaFw0yNzA1MDIwMzE2NDdaMDMxMTAvBgNV BAMTKEQ2RjY5NzRGODYwODU5NkYzMTM5QTE4ODI3QzZBRTkzMTAxRDM4OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC51AnCwsrFdTGVk9kQsQ+/c428 uKskwCyQLatvWCoocLaxE9iRT27HYCStHdmTDURHvGuxERNyvgkG1mpZJi+QqDTu 7nzQiLeGk40lv3vSN0AccOW/2zd1ekX+oKD8BJJsPgLwJt8+3K+TcO0t7xqhNW9b aXH5Kcn+XyrqiHmDZZczfmi/Fl8LWbCIEBQJjhu4pfxlQdD3DhHFGiC5ubV9e2uh R2Z/y5945K2celYHtJMpL7j450h1t9TtH2iFG7DIRTdA3BoWxV06RYUROY8RPgMX dNnowyjH0gYAWH7GPgpGAsJQOVsg4d2jjAyHw5WLXn2+I7Vfwqu7LDLvtT4jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1vaXT4YIWW8xOaGIJ8aukxAdOJcwHwYDVR0j BBgwFoAUnWis46j0zWub16vGleaiFiSxxWwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjFlZWQwOWMtNjA2OC00MDdhLWIwYTYtNTliN2QwYjg3ODU1LzAvOUQ2OEFDRTNB OEY0Q0Q2QjlCRDdBQkM2OTVFNkEyMTYyNEIxQzU2Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RDY4QUNFM0E4RjRDRDZCOUJEN0FCQzY5NUU2QTIxNjI0QjFD NTZDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YxZWVkMDljLTYwNjgtNDA3YS1i MGE2LTU5YjdkMGI4Nzg1NS8wLzMxMzAzMzJlMzEzNjMwMmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNTM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoIgwDQYJ KoZIhvcNAQELBQADggEBAJ3C8di6dVVOvgTMUGMrd8yZq9nXwWc+lNKYf41almJ+ eXfQzdyl9XLHpef8kNWkBX2zak5An093P77vzxwXyUa5MVO6Xyxqe+zXOvSilL8I bWbPLOcgWnsys6qQ69ymFu3NbeG4vjuboNSFV9jdgymLnH8TnIr8bzk3AcqJ23kU orqlPlVZqe6/5nfl61uEjoKZHWm4Dl6karSNW+G55uc/1XlXuEiEc3V+IPMrMuyz PvLWsI8O9AfP2cPhQOK4j3EBRdYXe3Lc30ErdODUNBUlnl9eUBS0Ntj09koWO2Ll 0FvVBbUDh/AvwyyWsCZ56cL++ysDLAZH5kZ6kfR+KyY= -----END CERTIFICATE-----Generated at Wed May 13 12:24:27 2026 by rpki-client