$ rpki-client -vvf rpki-rsync.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa File: 3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa (raw, json) Hash identifier: 0qq48OCHi8iCltrRIsd13nb6wvElWiiJ+LXwYMuIHYw= Subject key identifier: 5B:3A:A5:8A:66:BD:76:DC:AC:C1:00:BB:B0:14:76:FF:F4:75:17:65 Certificate issuer: /CN=66770FA373CD2744142D0B56F662714EF6D9C8DB Certificate serial: 71AE09F7F8EDDF8C1C8A59DCCC82BC4C02F21415 Authority key identifier: 66:77:0F:A3:73:CD:27:44:14:2D:0B:56:F6:62:71:4E:F6:D9:C8:DB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66770FA373CD2744142D0B56F662714EF6D9C8DB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa Signing time: Sun 03 May 2026 03:16:57 +0000 ROA not before: Sun 03 May 2026 03:11:57 +0000 ROA not after: Sun 02 May 2027 03:16:57 +0000 asID: 137371 IP address blocks: 103.116.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/66770FA373CD2744142D0B56F662714EF6D9C8DB.crl rsync://rpki-rsync.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/66770FA373CD2744142D0B56F662714EF6D9C8DB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66770FA373CD2744142D0B56F662714EF6D9C8DB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ae:09:f7:f8:ed:df:8c:1c:8a:59:dc:cc:82:bc:4c:02:f2:14:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66770FA373CD2744142D0B56F662714EF6D9C8DB Validity Not Before: May 3 03:11:57 2026 GMT Not After : May 2 03:16:57 2027 GMT Subject: CN=5B3AA58A66BD76DCACC100BBB01476FFF4751765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:67:fa:ca:43:ce:52:2c:b1:cc:40:49:02: ee:07:70:8c:74:02:91:b2:e2:c1:af:ef:fe:cf:1b: 28:23:97:49:65:d4:07:7d:d9:c2:8e:4d:ab:a8:91: 29:1f:48:5d:0a:65:98:e5:1f:34:f5:11:7f:7e:c8: 50:c4:a2:8b:36:c1:93:8b:df:71:ed:57:42:cd:46: 88:c4:40:9c:30:1b:f1:39:ab:75:ec:21:b0:98:fa: 08:55:bd:c9:ff:ea:c7:1c:03:29:7b:b8:ab:29:aa: 68:a7:ca:de:a4:b2:ff:9c:64:0d:7b:1f:46:d6:34: 4f:da:50:d4:56:82:00:e0:3b:8b:fa:31:17:81:aa: b4:62:62:5f:81:0f:cb:00:d5:f8:6d:76:a0:2b:57: 4c:70:ba:3b:84:84:2c:a2:60:75:0b:13:7f:e0:8f: f7:15:78:55:c3:c6:45:e6:27:1a:2a:96:e5:9e:5e: 07:86:57:6e:00:52:32:16:80:4f:a4:a1:c5:4d:66: b0:94:a4:e0:cc:fb:d4:f2:00:0a:3e:8a:07:3f:34: a0:3d:da:63:72:d2:f3:ca:b5:2d:ef:8e:55:cd:22: dc:b8:a8:84:d9:da:8d:7d:5d:0e:0e:8f:e7:75:ef: 61:8d:11:a0:29:5e:ae:32:ed:12:75:2c:1f:a8:9f: 08:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3A:A5:8A:66:BD:76:DC:AC:C1:00:BB:B0:14:76:FF:F4:75:17:65 X509v3 Authority Key Identifier: keyid:66:77:0F:A3:73:CD:27:44:14:2D:0B:56:F6:62:71:4E:F6:D9:C8:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/66770FA373CD2744142D0B56F662714EF6D9C8DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66770FA373CD2744142D0B56F662714EF6D9C8DB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.168.0/24 Signature Algorithm: sha256WithRSAEncryption a4:f9:5c:a1:a5:3f:5e:cc:94:9b:f4:76:fb:60:a3:bf:f5:f9: 94:8b:bf:5a:28:d0:ca:dc:ec:2d:9d:6d:b0:f2:49:fc:b5:d6: 1f:9f:33:e1:fa:aa:71:80:17:c7:36:b4:3a:a4:ed:04:db:61: ef:45:27:61:f6:a3:93:6e:97:0f:f3:2f:9f:cc:69:e6:9c:1e: 86:6e:01:52:05:72:51:c0:23:38:06:06:68:3d:7a:85:e6:11: 43:77:d6:2e:d7:4f:3d:55:e7:06:bb:a7:f4:04:ac:a4:9b:3a: cd:30:5c:47:a7:7d:84:ad:7b:58:92:3d:34:3f:82:d6:c5:76: 6a:bb:42:42:53:3f:a7:fd:f0:bd:b5:b4:a9:da:b7:2d:76:7f: 44:05:55:89:b0:62:61:7a:3d:ff:e5:a0:d4:e1:79:77:7f:f8: ae:f0:14:4c:e6:a4:e9:30:7e:ea:5f:b1:a5:23:4b:6c:a1:29: c5:6f:a2:f1:da:67:90:11:8d:f1:af:a5:55:38:48:60:e9:4c: 0e:7e:af:47:0d:30:dc:56:76:2a:39:62:3b:f7:9c:91:97:dc: f8:e3:39:ac:0d:86:66:36:39:c8:21:76:e1:a8:0c:11:22:c8: e8:ea:71:bf:44:14:ba:c2:3a:9b:35:f1:93:eb:6a:85:2a:56: 9b:49:03:29 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUca4J9/jt34wcilnczIK8TALyFBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3NzBGQTM3M0NEMjc0NDE0MkQwQjU2RjY2MjcxNEVG NkQ5QzhEQjAeFw0yNjA1MDMwMzExNTdaFw0yNzA1MDIwMzE2NTdaMDMxMTAvBgNV BAMTKDVCM0FBNThBNjZCRDc2RENBQ0MxMDBCQkIwMTQ3NkZGRjQ3NTE3NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCa2f6ykPOUiyxzEBJAu4HcIx0 ApGy4sGv7/7PGygjl0ll1Ad92cKOTauokSkfSF0KZZjlHzT1EX9+yFDEoos2wZOL 33HtV0LNRojEQJwwG/E5q3XsIbCY+ghVvcn/6sccAyl7uKspqminyt6ksv+cZA17 H0bWNE/aUNRWggDgO4v6MReBqrRiYl+BD8sA1fhtdqArV0xwujuEhCyiYHULE3/g j/cVeFXDxkXmJxoqluWeXgeGV24AUjIWgE+kocVNZrCUpODM+9TyAAo+igc/NKA9 2mNy0vPKtS3vjlXNIty4qITZ2o19XQ4Oj+d172GNEaApXq4y7RJ1LB+onwjBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWzqlima9dtyswQC7sBR2//R1F2UwHwYDVR0j BBgwFoAUZncPo3PNJ0QULQtW9mJxTvbZyNswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjMyNmU0Y2EtNTRlNC00OGJjLTllNzktYTYyZWZhZWFkMDMyLzAvNjY3NzBGQTM3 M0NEMjc0NDE0MkQwQjU2RjY2MjcxNEVGNkQ5QzhEQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82Njc3MEZBMzczQ0QyNzQ0MTQyRDBCNTZGNjYyNzE0RUY2RDlD OERCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzMjZlNGNhLTU0ZTQtNDhiYy05 ZTc5LWE2MmVmYWVhZDAzMi8wLzMxMzAzMzJlMzEzMTM2MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndKgwDQYJ KoZIhvcNAQELBQADggEBAKT5XKGlP17MlJv0dvtgo7/1+ZSLv1oo0Mrc7C2dbbDy Sfy11h+fM+H6qnGAF8c2tDqk7QTbYe9FJ2H2o5Nulw/zL5/MaeacHoZuAVIFclHA IzgGBmg9eoXmEUN31i7XTz1V5wa7p/QErKSbOs0wXEenfYSte1iSPTQ/gtbFdmq7 QkJTP6f98L21tKnaty12f0QFVYmwYmF6Pf/loNTheXd/+K7wFEzmpOkwfupfsaUj S2yhKcVvovHaZ5ARjfGvpVU4SGDpTA5+r0cNMNxWdio5Yjv3nJGX3PjjOawNhmY2 OcghduGoDBEiyOjqcb9EFLrCOps18ZPraoUqVptJAyk= -----END CERTIFICATE-----Generated at Wed May 13 05:44:14 2026 by rpki-client