$ rpki-client -vvf rpki-rsync.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/3130332e3136382e34362e302f32332d3233203d3e20313432333130.roa File: 3130332e3136382e34362e302f32332d3233203d3e20313432333130.roa (raw, json) Hash identifier: XnY6jK2gEUwRMFx70/AxEALWyGk5ejl1ympKR9nQjRE= Subject key identifier: CA:2A:79:82:61:49:03:BA:0F:12:E5:18:0E:C2:BF:0B:58:59:FD:DC Certificate issuer: /CN=848CD3643B388F52B8A91CEA8C426741F718DEE6 Certificate serial: 723ACE2FB5EF47B59E300F9199ECC4460F453392 Authority key identifier: 84:8C:D3:64:3B:38:8F:52:B8:A9:1C:EA:8C:42:67:41:F7:18:DE:E6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/848CD3643B388F52B8A91CEA8C426741F718DEE6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/3130332e3136382e34362e302f32332d3233203d3e20313432333130.roa Signing time: Sun 03 May 2026 03:17:40 +0000 ROA not before: Sun 03 May 2026 03:12:40 +0000 ROA not after: Sun 02 May 2027 03:17:40 +0000 asID: 142310 IP address blocks: 103.168.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/848CD3643B388F52B8A91CEA8C426741F718DEE6.crl rsync://rpki-rsync.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/848CD3643B388F52B8A91CEA8C426741F718DEE6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/848CD3643B388F52B8A91CEA8C426741F718DEE6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:3a:ce:2f:b5:ef:47:b5:9e:30:0f:91:99:ec:c4:46:0f:45:33:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=848CD3643B388F52B8A91CEA8C426741F718DEE6 Validity Not Before: May 3 03:12:40 2026 GMT Not After : May 2 03:17:40 2027 GMT Subject: CN=CA2A7982614903BA0F12E5180EC2BF0B5859FDDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:63:ca:3a:b3:f2:29:1c:89:eb:92:51:83:77: 55:b5:27:d0:4f:93:7f:15:8c:1c:6c:fa:5e:00:83: 40:e9:aa:31:4f:8a:0f:11:13:38:12:71:37:5e:ec: 58:96:13:4d:b9:da:4d:f2:d8:56:0d:74:44:8f:b4: 0b:28:2d:44:5f:e8:35:2b:9b:b1:27:6f:1b:e3:0a: c4:71:ea:8c:db:59:c4:02:00:60:97:cc:27:34:06: 91:e8:56:0e:76:56:74:35:cd:23:d1:ad:5f:5f:63: ef:87:19:c2:d8:83:99:d4:45:db:3f:22:6d:e2:1c: 86:ed:07:34:f5:2d:8d:12:1e:e9:b1:14:81:d6:f5: ec:e2:91:f4:56:1f:d0:5e:df:18:eb:16:63:d0:59: fe:d6:10:fb:0e:85:36:bf:55:be:52:00:22:29:f4: 94:f1:2a:fb:e1:02:75:b3:52:f4:00:aa:43:d2:6e: 71:07:9c:f7:1e:e5:54:a6:83:6c:5b:ab:11:20:c6: 53:b7:0e:3a:85:28:fe:69:d2:92:08:2f:99:bf:c6: c8:aa:4f:4c:a9:63:74:e2:0a:b0:bc:ab:4d:5f:8e: 32:d3:36:01:3d:de:99:a3:87:4f:57:3b:5f:ca:28: 20:d2:73:ac:c4:ce:6d:26:fb:ef:23:39:41:99:06: 20:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:2A:79:82:61:49:03:BA:0F:12:E5:18:0E:C2:BF:0B:58:59:FD:DC X509v3 Authority Key Identifier: keyid:84:8C:D3:64:3B:38:8F:52:B8:A9:1C:EA:8C:42:67:41:F7:18:DE:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/848CD3643B388F52B8A91CEA8C426741F718DEE6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/848CD3643B388F52B8A91CEA8C426741F718DEE6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/3130332e3136382e34362e302f32332d3233203d3e20313432333130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.46.0/23 Signature Algorithm: sha256WithRSAEncryption 75:96:08:c6:ff:e5:d1:f2:06:e1:94:51:9f:52:cd:8d:6f:39: e5:0f:88:0b:b4:f2:1c:e9:83:ca:af:95:cf:b1:63:75:af:ee: 12:77:d4:91:cb:07:c9:77:e8:06:c8:e3:b1:06:68:a0:39:16: 36:0c:32:dd:80:8b:0f:c7:f2:12:46:fa:7d:94:3f:e9:04:61: df:bb:06:e6:fc:d3:b9:71:b4:88:32:d8:4b:c9:2f:66:af:f6: 86:1a:13:9f:e9:50:dd:cf:e5:77:52:9b:6b:c8:29:09:08:b2: 75:77:2e:ca:50:39:3d:7d:c8:3b:38:a8:5c:1b:40:ae:04:69: 9c:45:9f:22:f8:d1:75:1e:5d:d5:16:40:2c:a5:cc:bc:fa:22: 74:24:f3:24:3c:b7:41:45:b8:b2:e6:07:07:87:4b:6d:b8:7c: fa:df:f2:de:45:dc:fd:21:2a:3a:8d:2b:aa:1f:d0:ad:c4:66: f9:ed:85:16:02:53:0b:9f:60:37:ff:40:b4:18:c9:ce:eb:8a: b8:d8:e0:42:b4:ca:99:ec:3e:fc:36:65:dc:51:76:be:d3:ff: 59:49:04:6a:37:35:98:43:dd:7a:2a:37:ca:37:9b:60:f7:f9: 85:8e:bc:21:58:b9:67:df:44:50:12:0c:ec:c7:fe:3f:82:2a: b5:aa:d8:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcjrOL7XvR7WeMA+RmezERg9FM5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ4Q0QzNjQzQjM4OEY1MkI4QTkxQ0VBOEM0MjY3NDFG NzE4REVFNjAeFw0yNjA1MDMwMzEyNDBaFw0yNzA1MDIwMzE3NDBaMDMxMTAvBgNV BAMTKENBMkE3OTgyNjE0OTAzQkEwRjEyRTUxODBFQzJCRjBCNTg1OUZEREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFY8o6s/IpHInrklGDd1W1J9BP k38VjBxs+l4Ag0DpqjFPig8REzgScTde7FiWE0252k3y2FYNdESPtAsoLURf6DUr m7EnbxvjCsRx6ozbWcQCAGCXzCc0BpHoVg52VnQ1zSPRrV9fY++HGcLYg5nURds/ Im3iHIbtBzT1LY0SHumxFIHW9ezikfRWH9Be3xjrFmPQWf7WEPsOhTa/Vb5SACIp 9JTxKvvhAnWzUvQAqkPSbnEHnPce5VSmg2xbqxEgxlO3DjqFKP5p0pIIL5m/xsiq T0ypY3TiCrC8q01fjjLTNgE93pmjh09XO1/KKCDSc6zEzm0m++8jOUGZBiC5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyip5gmFJA7oPEuUYDsK/C1hZ/dwwHwYDVR0j BBgwFoAUhIzTZDs4j1K4qRzqjEJnQfcY3uYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjQyOTNjNjQtZWEwMC00MTNmLTkwOTAtMmIxOTBiMWE0NWFmLzAvODQ4Q0QzNjQz QjM4OEY1MkI4QTkxQ0VBOEM0MjY3NDFGNzE4REVFNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NDhDRDM2NDNCMzg4RjUyQjhBOTFDRUE4QzQyNjc0MUY3MThE RUU2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y0MjkzYzY0LWVhMDAtNDEzZi05 MDkwLTJiMTkwYjFhNDVhZi8wLzMxMzAzMzJlMzEzNjM4MmUzNDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMyMzMzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6guMA0GCSqG SIb3DQEBCwUAA4IBAQB1lgjG/+XR8gbhlFGfUs2NbznlD4gLtPIc6YPKr5XPsWN1 r+4Sd9SRywfJd+gGyOOxBmigORY2DDLdgIsPx/ISRvp9lD/pBGHfuwbm/NO5cbSI MthLyS9mr/aGGhOf6VDdz+V3UptryCkJCLJ1dy7KUDk9fcg7OKhcG0CuBGmcRZ8i +NF1Hl3VFkAspcy8+iJ0JPMkPLdBRbiy5gcHh0ttuHz63/LeRdz9ISo6jSuqH9Ct xGb57YUWAlMLn2A3/0C0GMnO64q42OBCtMqZ7D78NmXcUXa+0/9ZSQRqNzWYQ916 KjfKN5tg9/mFjrwhWLln30RQEgzsx/4/giq1qtj+ -----END CERTIFICATE-----Generated at Wed May 13 04:25:49 2026 by rpki-client