$ rpki-client -vvf rpki-rsync.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3234203d3e20313431303831.roa File: 3130332e3135362e37302e302f32332d3234203d3e20313431303831.roa (raw, json) Hash identifier: ogFXEVAytgNk6SWtWC/grPALKoCzJ8xJnVE6iKhIzy8= Subject key identifier: 97:60:54:B4:BE:39:97:01:CC:D6:9E:BA:40:10:5D:3E:B5:2C:28:CA Certificate issuer: /CN=6FB253A4F99C0F811EAE0D142B7275CAAE49B65E Certificate serial: 373B7B06144706DA02CF343F471DDC98CB1AA02A Authority key identifier: 6F:B2:53:A4:F9:9C:0F:81:1E:AE:0D:14:2B:72:75:CA:AE:49:B6:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6FB253A4F99C0F811EAE0D142B7275CAAE49B65E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3234203d3e20313431303831.roa Signing time: Sun 03 May 2026 03:17:32 +0000 ROA not before: Sun 03 May 2026 03:12:32 +0000 ROA not after: Sun 02 May 2027 03:17:32 +0000 asID: 141081 IP address blocks: 103.156.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/6FB253A4F99C0F811EAE0D142B7275CAAE49B65E.crl rsync://rpki-rsync.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/6FB253A4F99C0F811EAE0D142B7275CAAE49B65E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6FB253A4F99C0F811EAE0D142B7275CAAE49B65E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:3b:7b:06:14:47:06:da:02:cf:34:3f:47:1d:dc:98:cb:1a:a0:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FB253A4F99C0F811EAE0D142B7275CAAE49B65E Validity Not Before: May 3 03:12:32 2026 GMT Not After : May 2 03:17:32 2027 GMT Subject: CN=976054B4BE399701CCD69EBA40105D3EB52C28CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a9:01:fe:03:3b:06:c0:ab:db:7b:de:70:77: 86:62:25:be:0d:ed:e1:4b:c8:a0:a0:97:3c:c9:e4: e7:ae:46:92:1c:38:2a:b4:f7:8e:ee:41:c3:4a:b7: 98:ba:e8:e1:5c:78:8d:61:f4:cd:e9:bc:5a:8f:99: d3:8e:ce:ec:81:3d:28:91:73:bb:d2:80:37:b3:86: a0:bc:ee:8a:8a:6b:bc:43:30:d5:3d:80:70:32:c3: 87:da:c1:fe:49:b2:71:cd:3d:8d:ef:ac:bf:dd:0d: 6d:c3:3a:f1:e0:04:52:e5:fb:20:ec:80:fe:bd:ce: be:1c:98:36:e3:50:f6:de:59:71:44:21:05:f3:7f: 18:f7:61:e4:3b:62:b5:25:7e:39:7b:57:d8:2f:dc: 7a:6a:82:cd:9a:19:fa:72:2c:8b:ba:a0:d2:76:f8: 29:02:d4:67:bb:29:cb:7b:6f:4e:b2:10:91:42:06: 12:cf:50:80:16:4b:82:86:24:aa:19:7d:ef:c5:93: 4b:40:60:a5:77:01:2d:77:d7:03:31:13:f6:fa:19: 22:16:2b:ba:a6:ef:58:ba:57:1a:a3:32:c0:f6:3e: 61:e8:82:1f:5e:5e:b7:07:1d:04:44:57:7a:24:fe: 1b:10:d3:34:78:fd:12:02:cd:df:28:af:6e:32:02: 56:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:60:54:B4:BE:39:97:01:CC:D6:9E:BA:40:10:5D:3E:B5:2C:28:CA X509v3 Authority Key Identifier: keyid:6F:B2:53:A4:F9:9C:0F:81:1E:AE:0D:14:2B:72:75:CA:AE:49:B6:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/6FB253A4F99C0F811EAE0D142B7275CAAE49B65E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6FB253A4F99C0F811EAE0D142B7275CAAE49B65E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3234203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.70.0/23 Signature Algorithm: sha256WithRSAEncryption 15:3d:34:83:54:a4:71:71:47:59:94:cc:34:41:28:b2:59:e9: ca:d4:68:45:c5:05:1d:6d:8e:a3:49:41:06:cd:91:e6:2c:1f: f1:23:5d:49:95:c8:6e:b9:28:76:b6:ef:b9:a8:8f:fb:b0:ff: 78:7b:ff:85:61:b0:86:53:d0:1f:23:a4:c6:36:4e:f4:05:e3: 9a:45:50:fb:6a:5e:64:66:35:a6:7e:9e:5e:c9:23:6d:81:d3: 09:9f:ad:1b:29:c6:92:4d:18:8f:4c:9e:48:4e:df:62:75:7e: cb:57:77:78:e5:e0:d8:c1:da:40:c6:d5:c9:7e:9f:90:01:fe: fb:05:7c:ab:63:5f:03:e5:3c:13:84:5f:f2:84:f8:a4:8b:17: 69:f6:8c:87:09:92:c4:a2:0c:52:e1:e8:1c:58:90:5c:f0:c8: 3c:19:0a:8f:0e:86:6e:d4:53:8f:9c:c8:f6:e4:9b:d1:e7:8c: ae:07:a7:4b:dc:7c:99:9b:cb:77:20:d1:01:23:45:3c:01:d5: d6:8b:05:91:bf:5b:95:23:4b:e3:9c:73:90:c7:68:74:69:c7: e4:ad:08:84:24:ad:2e:8e:8d:5b:58:74:a0:c7:88:36:19:88: ff:6f:0a:2b:0a:63:00:27:dd:ad:ee:dc:c1:dd:f5:43:90:a6: 89:6b:f6:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNzt7BhRHBtoCzzQ/Rx3cmMsaoCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZCMjUzQTRGOTlDMEY4MTFFQUUwRDE0MkI3Mjc1Q0FB RTQ5QjY1RTAeFw0yNjA1MDMwMzEyMzJaFw0yNzA1MDIwMzE3MzJaMDMxMTAvBgNV BAMTKDk3NjA1NEI0QkUzOTk3MDFDQ0Q2OUVCQTQwMTA1RDNFQjUyQzI4Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyqQH+AzsGwKvbe95wd4ZiJb4N 7eFLyKCglzzJ5OeuRpIcOCq0947uQcNKt5i66OFceI1h9M3pvFqPmdOOzuyBPSiR c7vSgDezhqC87oqKa7xDMNU9gHAyw4fawf5JsnHNPY3vrL/dDW3DOvHgBFLl+yDs gP69zr4cmDbjUPbeWXFEIQXzfxj3YeQ7YrUlfjl7V9gv3Hpqgs2aGfpyLIu6oNJ2 +CkC1Ge7Kct7b06yEJFCBhLPUIAWS4KGJKoZfe/Fk0tAYKV3AS131wMxE/b6GSIW K7qm71i6VxqjMsD2PmHogh9eXrcHHQREV3ok/hsQ0zR4/RICzd8or24yAlbrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUl2BUtL45lwHM1p66QBBdPrUsKMowHwYDVR0j BBgwFoAUb7JTpPmcD4Eerg0UK3J1yq5Jtl4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjNiYWJmMGItMTEwMS00YWE5LWE0ZGYtNTI3MTQ5MzRkYjdjLzAvNkZCMjUzQTRG OTlDMEY4MTFFQUUwRDE0MkI3Mjc1Q0FBRTQ5QjY1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82RkIyNTNBNEY5OUMwRjgxMUVBRTBEMTQyQjcyNzVDQUFFNDlC NjVFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5xGMA0GCSqG SIb3DQEBCwUAA4IBAQAVPTSDVKRxcUdZlMw0QSiyWenK1GhFxQUdbY6jSUEGzZHm LB/xI11JlchuuSh2tu+5qI/7sP94e/+FYbCGU9AfI6TGNk70BeOaRVD7al5kZjWm fp5eySNtgdMJn60bKcaSTRiPTJ5ITt9idX7LV3d45eDYwdpAxtXJfp+QAf77BXyr Y18D5TwThF/yhPikixdp9oyHCZLEogxS4egcWJBc8Mg8GQqPDoZu1FOPnMj25JvR 54yuB6dL3HyZm8t3INEBI0U8AdXWiwWRv1uVI0vjnHOQx2h0acfkrQiEJK0ujo1b WHSgx4g2GYj/bworCmMAJ92t7tzB3fVDkKaJa/av -----END CERTIFICATE-----Generated at Wed May 13 04:16:35 2026 by rpki-client