$ rpki-client -vvf rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa File: 3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa (raw, json) Hash identifier: +WK4iRrSPfnkrJEz8Gq8cT5bkygdZQkUoe49fePODB0= Subject key identifier: 67:3F:DD:0B:61:18:B2:94:CC:C2:D0:BE:4F:65:CA:71:8B:73:0D:DA Certificate issuer: /CN=F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A Certificate serial: 43CBF4D123C5B933C74B587C0131D222159477B2 Authority key identifier: F5:E1:33:BC:E5:01:4B:7A:79:AE:6E:8E:48:0B:C3:5B:D3:C3:18:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa Signing time: Sun 03 May 2026 03:17:36 +0000 ROA not before: Sun 03 May 2026 03:12:36 +0000 ROA not after: Sun 02 May 2027 03:17:36 +0000 asID: 133354 IP address blocks: 103.217.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.crl rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:cb:f4:d1:23:c5:b9:33:c7:4b:58:7c:01:31:d2:22:15:94:77:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A Validity Not Before: May 3 03:12:36 2026 GMT Not After : May 2 03:17:36 2027 GMT Subject: CN=673FDD0B6118B294CCC2D0BE4F65CA718B730DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:52:3e:8d:ec:fc:d0:fd:b1:e3:de:1b:b1:07: fd:29:3c:43:c7:0a:2b:6a:fc:39:51:c5:a2:8d:01: 3e:53:6a:92:24:d5:e6:c2:87:e1:45:48:5c:e3:12: 70:fb:e1:44:40:72:01:31:cb:11:d2:96:4a:8e:da: 93:02:7a:c7:29:fc:55:48:d2:ed:0d:ff:fe:da:70: bc:51:d1:24:09:d0:ae:b6:37:e7:1a:2f:9a:a4:53: a1:d2:58:c4:af:7f:7c:96:a0:4b:be:77:a2:8f:db: 1d:10:91:31:5e:40:0e:d8:d4:ef:a1:13:f3:06:97: c8:d9:05:c2:71:9b:aa:42:27:39:64:d9:a4:df:e5: 01:c8:79:51:69:ff:6e:63:d1:df:33:25:a8:f6:54: e3:25:7d:1f:07:ac:9e:a0:ae:49:2a:a2:0b:4d:3c: f4:4c:71:fb:1e:95:23:3b:53:ce:ce:4c:e5:67:74: 3a:dd:f9:cb:29:c7:18:9c:43:75:59:c2:04:fe:2c: 7e:e9:83:71:4b:cd:53:b1:6e:71:86:46:4e:84:14: 1b:9f:b8:5a:3d:64:db:dd:5a:eb:f0:19:92:0f:60: e0:6b:05:c5:5b:49:24:53:56:67:f9:4b:a8:08:33: 90:24:81:1e:7c:4b:9f:6f:0d:96:11:01:17:5c:22: 2b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3F:DD:0B:61:18:B2:94:CC:C2:D0:BE:4F:65:CA:71:8B:73:0D:DA X509v3 Authority Key Identifier: keyid:F5:E1:33:BC:E5:01:4B:7A:79:AE:6E:8E:48:0B:C3:5B:D3:C3:18:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.172.0/23 Signature Algorithm: sha256WithRSAEncryption 67:58:a8:dc:2f:bc:8d:cc:c0:fb:94:d8:89:75:27:37:56:10: 7e:95:91:b3:da:d7:31:60:3e:a7:0a:0f:6c:c2:3c:ce:2a:ec: fc:e7:e3:90:fe:3b:30:48:e5:3f:a7:a9:02:46:d6:8b:d2:2a: 77:ac:98:c4:25:07:79:c5:8c:12:51:b1:c8:f7:1b:1c:17:03: 21:d8:5d:39:18:a5:ad:59:d2:11:d5:32:18:a0:2b:00:fa:74: 65:30:68:f1:66:42:81:c3:98:d1:6b:9f:80:5b:69:f1:d8:b1: 6f:c3:5b:68:07:1f:1d:eb:5e:09:99:ae:90:01:13:0c:3c:19: 49:3c:39:a0:90:39:fd:60:6a:e6:6f:96:6f:84:20:76:bb:0b: 86:f2:90:5f:69:ae:55:e2:9f:3c:41:70:28:66:4c:7c:52:fd: 25:90:3c:cf:06:9b:76:91:4c:1d:3c:1e:18:38:bd:68:37:97: aa:6a:91:48:9a:65:25:b3:6a:55:d0:a9:fd:78:d3:b2:d7:16: 1e:ff:c6:58:95:3d:20:fe:eb:ce:16:81:22:24:42:08:fe:f0: 42:3a:a6:b4:49:5b:f9:e7:3e:b4:50:f0:f3:fc:ff:a6:13:aa: e6:5d:1d:f6:4a:95:cc:d7:df:47:da:a3:96:84:82:1a:f4:c8: f9:83:a7:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ8v00SPFuTPHS1h8ATHSIhWUd7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVFMTMzQkNFNTAxNEI3QTc5QUU2RThFNDgwQkMzNUJE M0MzMTg3QTAeFw0yNjA1MDMwMzEyMzZaFw0yNzA1MDIwMzE3MzZaMDMxMTAvBgNV BAMTKDY3M0ZERDBCNjExOEIyOTRDQ0MyRDBCRTRGNjVDQTcxOEI3MzBEREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiUj6N7PzQ/bHj3huxB/0pPEPH Citq/DlRxaKNAT5TapIk1ebCh+FFSFzjEnD74URAcgExyxHSlkqO2pMCescp/FVI 0u0N//7acLxR0SQJ0K62N+caL5qkU6HSWMSvf3yWoEu+d6KP2x0QkTFeQA7Y1O+h E/MGl8jZBcJxm6pCJzlk2aTf5QHIeVFp/25j0d8zJaj2VOMlfR8HrJ6grkkqogtN PPRMcfselSM7U87OTOVndDrd+cspxxicQ3VZwgT+LH7pg3FLzVOxbnGGRk6EFBuf uFo9ZNvdWuvwGZIPYOBrBcVbSSRTVmf5S6gIM5AkgR58S59vDZYRARdcIis3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZz/dC2EYspTMwtC+T2XKcYtzDdowHwYDVR0j BBgwFoAU9eEzvOUBS3p5rm6OSAvDW9PDGHowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjNlNDUwMzktNmVkMC00ODNkLWExYjktYzRmNDg1NGM1Y2Y1LzAvRjVFMTMzQkNF NTAxNEI3QTc5QUU2RThFNDgwQkMzNUJEM0MzMTg3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GNUUxMzNCQ0U1MDE0QjdBNzlBRTZFOEU0ODBCQzM1QkQzQzMx ODdBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn2awwDQYJ KoZIhvcNAQELBQADggEBAGdYqNwvvI3MwPuU2Il1JzdWEH6VkbPa1zFgPqcKD2zC PM4q7Pzn45D+OzBI5T+nqQJG1ovSKnesmMQlB3nFjBJRscj3GxwXAyHYXTkYpa1Z 0hHVMhigKwD6dGUwaPFmQoHDmNFrn4BbafHYsW/DW2gHHx3rXgmZrpABEww8GUk8 OaCQOf1gauZvlm+EIHa7C4bykF9prlXinzxBcChmTHxS/SWQPM8Gm3aRTB08Hhg4 vWg3l6pqkUiaZSWzalXQqf1407LXFh7/xliVPSD+684WgSIkQgj+8EI6prRJW/nn PrRQ8PP8/6YTquZdHfZKlczX30fao5aEghr0yPmDpyo= -----END CERTIFICATE-----Generated at Wed May 13 07:46:28 2026 by rpki-client