$ rpki-client -vvf rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa File: 3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: pZiifrcLbDchRtYwQAPaQx4TCr202zft6iysN0v48zg= Subject key identifier: 68:BE:19:9F:AE:E6:70:8E:4A:3D:16:3D:CD:8B:4A:64:CC:03:11:22 Certificate issuer: /CN=F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A Certificate serial: 1678B13F42ED06C2D43827DFA5E7A6FD6F34058D Authority key identifier: F5:E1:33:BC:E5:01:4B:7A:79:AE:6E:8E:48:0B:C3:5B:D3:C3:18:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa Signing time: Sun 03 May 2026 03:17:35 +0000 ROA not before: Sun 03 May 2026 03:12:35 +0000 ROA not after: Sun 02 May 2027 03:17:35 +0000 asID: 133354 IP address blocks: 103.217.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.crl rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:78:b1:3f:42:ed:06:c2:d4:38:27:df:a5:e7:a6:fd:6f:34:05:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A Validity Not Before: May 3 03:12:35 2026 GMT Not After : May 2 03:17:35 2027 GMT Subject: CN=68BE199FAEE6708E4A3D163DCD8B4A64CC031122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f2:04:e7:c1:29:4d:10:d5:21:a5:98:06:7d: ba:22:df:cc:10:29:27:9b:0c:68:18:07:26:f6:cb: 23:95:00:c3:17:2b:fb:ba:d9:48:c9:d4:1f:7c:0f: 64:e7:2e:42:e5:eb:d5:df:5d:e1:29:93:b3:0a:ad: 22:12:8e:f5:ce:dc:16:84:89:2a:c0:c0:99:40:29: 65:fd:f8:80:a7:ba:7a:b2:22:94:9e:cf:16:a0:9c: 53:65:8b:18:96:cd:85:0e:69:64:d3:fb:d0:d4:18: 99:32:58:b4:70:70:fa:3b:ba:50:7f:57:9f:40:ff: 9c:f5:fc:3a:08:8b:cb:ee:e0:bf:64:34:f9:b9:c1: 69:07:99:e7:fb:32:6a:f9:49:99:42:8b:f8:51:39: 64:90:b9:b4:6c:8d:c6:7e:3b:1b:27:f1:f7:5d:2c: 0c:be:c8:65:50:d5:45:92:d5:70:5f:3f:38:74:ed: 3b:ef:bd:e0:1c:6f:36:28:7f:09:d6:9f:1b:10:af: 41:7b:94:86:f3:46:2e:32:c4:72:ec:a3:7f:f6:f3: bc:42:5b:5a:47:70:d2:e7:f3:52:8c:e5:45:5f:70: 46:80:04:fe:48:a1:04:77:13:a7:2d:46:5a:06:04: b5:31:52:13:b5:e8:37:61:fe:9f:d4:1c:85:61:3a: 78:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:BE:19:9F:AE:E6:70:8E:4A:3D:16:3D:CD:8B:4A:64:CC:03:11:22 X509v3 Authority Key Identifier: keyid:F5:E1:33:BC:E5:01:4B:7A:79:AE:6E:8E:48:0B:C3:5B:D3:C3:18:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F5E133BCE5014B7A79AE6E8E480BC35BD3C3187A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.173.0/24 Signature Algorithm: sha256WithRSAEncryption a7:a7:c0:5a:3b:90:a7:b3:25:83:e4:84:78:45:84:43:eb:f2: cc:2e:e4:5a:d2:6f:ed:83:42:4e:38:36:dc:1e:bf:d4:fe:c9: d3:11:6f:5d:03:da:96:9c:3d:c3:7a:1e:a8:19:5b:cf:1b:7a: 25:9b:6c:91:08:ec:ce:4b:81:a2:e2:73:7c:40:15:7f:0e:a3: 4b:2d:75:4a:74:ef:41:42:b0:76:fc:52:ea:60:e3:3f:e1:da: 9e:8b:bb:be:00:53:30:4e:ab:54:37:88:a8:26:2f:7b:c1:cf: 53:b1:73:bf:40:31:e8:5b:bd:0e:fe:79:c0:22:67:ae:5d:24: d1:99:28:38:2e:92:11:11:61:e1:98:c0:7a:ef:25:52:81:93: 69:4e:ab:44:3c:70:86:0a:f3:16:50:39:2c:97:35:08:47:9d: 58:b3:64:b2:fc:ed:b6:e1:1e:0a:ad:5a:5d:62:60:55:d8:1f: 19:6c:8b:75:30:56:b3:d7:3d:1d:3c:f6:13:a5:21:2e:69:be: d7:81:57:1f:ab:c3:b6:eb:e1:51:08:c9:3e:12:12:e1:f1:ff: d7:73:d8:f3:01:47:2e:0a:7f:36:0e:e0:89:3a:06:77:7a:e8: 4b:76:78:03:b8:f6:76:49:e5:ae:a5:20:28:5c:82:af:6f:e1: ed:39:0a:01 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFnixP0LtBsLUOCffpeem/W80BY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVFMTMzQkNFNTAxNEI3QTc5QUU2RThFNDgwQkMzNUJE M0MzMTg3QTAeFw0yNjA1MDMwMzEyMzVaFw0yNzA1MDIwMzE3MzVaMDMxMTAvBgNV BAMTKDY4QkUxOTlGQUVFNjcwOEU0QTNEMTYzRENEOEI0QTY0Q0MwMzExMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT8gTnwSlNENUhpZgGfboi38wQ KSebDGgYByb2yyOVAMMXK/u62UjJ1B98D2TnLkLl69XfXeEpk7MKrSISjvXO3BaE iSrAwJlAKWX9+ICnunqyIpSezxagnFNlixiWzYUOaWTT+9DUGJkyWLRwcPo7ulB/ V59A/5z1/DoIi8vu4L9kNPm5wWkHmef7Mmr5SZlCi/hROWSQubRsjcZ+Oxsn8fdd LAy+yGVQ1UWS1XBfPzh07TvvveAcbzYofwnWnxsQr0F7lIbzRi4yxHLso3/287xC W1pHcNLn81KM5UVfcEaABP5IoQR3E6ctRloGBLUxUhO16Ddh/p/UHIVhOngfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaL4Zn67mcI5KPRY9zYtKZMwDESIwHwYDVR0j BBgwFoAU9eEzvOUBS3p5rm6OSAvDW9PDGHowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjNlNDUwMzktNmVkMC00ODNkLWExYjktYzRmNDg1NGM1Y2Y1LzAvRjVFMTMzQkNF NTAxNEI3QTc5QUU2RThFNDgwQkMzNUJEM0MzMTg3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GNUUxMzNCQ0U1MDE0QjdBNzlBRTZFOEU0ODBCQzM1QkQzQzMx ODdBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2a0wDQYJ KoZIhvcNAQELBQADggEBAKenwFo7kKezJYPkhHhFhEPr8swu5FrSb+2DQk44Ntwe v9T+ydMRb10D2pacPcN6HqgZW88beiWbbJEI7M5LgaLic3xAFX8Oo0stdUp070FC sHb8Uupg4z/h2p6Lu74AUzBOq1Q3iKgmL3vBz1Oxc79AMehbvQ7+ecAiZ65dJNGZ KDgukhERYeGYwHrvJVKBk2lOq0Q8cIYK8xZQOSyXNQhHnVizZLL87bbhHgqtWl1i YFXYHxlsi3UwVrPXPR089hOlIS5pvteBVx+rw7br4VEIyT4SEuHx/9dz2PMBRy4K fzYO4Ik6Bnd66Et2eAO49nZJ5a6lIChcgq9v4e05CgE= -----END CERTIFICATE-----Generated at Wed May 13 12:39:13 2026 by rpki-client