$ rpki-client -vvf rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa File: 3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa (raw, json) Hash identifier: M8k9bViShtt4AmWU/AyDsamC5/RbL8EE0iMthIH76R4= Subject key identifier: 9D:6D:2B:02:8B:D4:E3:C0:09:C1:6F:39:11:49:E3:9D:2B:56:4D:F4 Certificate issuer: /CN=EEEEDDCDA44B0713B397D27040721EEC4848E5DC Certificate serial: 48999A4045CD582B734642B86E0F393DD3CBE082 Authority key identifier: EE:EE:DD:CD:A4:4B:07:13:B3:97:D2:70:40:72:1E:EC:48:48:E5:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa Signing time: Sun 03 May 2026 03:19:18 +0000 ROA not before: Sun 03 May 2026 03:14:18 +0000 ROA not after: Sun 02 May 2027 03:19:18 +0000 asID: 131740 IP address blocks: 103.21.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.crl rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:99:9a:40:45:cd:58:2b:73:46:42:b8:6e:0f:39:3d:d3:cb:e0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEEEDDCDA44B0713B397D27040721EEC4848E5DC Validity Not Before: May 3 03:14:18 2026 GMT Not After : May 2 03:19:18 2027 GMT Subject: CN=9D6D2B028BD4E3C009C16F391149E39D2B564DF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:22:8e:54:87:bd:38:69:94:bd:cd:f6:60:7f: c7:89:fd:41:f4:83:ab:15:af:12:12:50:25:76:cb: 23:a8:42:84:e7:44:56:04:1e:0b:ad:9d:09:af:3f: 20:9a:44:e9:6d:6c:30:f6:80:ea:db:26:57:be:9a: b6:4f:8e:d6:0a:88:07:63:7d:77:6c:32:86:c0:08: 76:79:2b:e1:fa:09:53:b1:64:19:5a:12:21:27:7f: fb:dc:4a:b8:74:4c:dd:28:0e:7a:4c:1f:32:10:64: 3a:c7:a0:0f:13:7a:bb:76:36:a6:7f:2c:9a:be:3d: f4:30:51:68:74:d7:23:3f:c0:65:f9:64:69:cc:e9: af:a4:52:5b:6f:42:a9:f7:2c:32:e5:08:46:e4:4d: d4:0a:2f:09:6c:38:a2:23:c7:f5:3d:92:33:5c:2b: 24:ac:8f:fb:f5:7c:b0:cc:0b:3a:7a:f6:f2:cd:86: cc:29:bf:ef:74:45:dd:2e:5a:0e:58:53:2a:3b:96: 0f:71:ab:02:a2:2d:85:9d:6f:58:ae:7d:09:cd:74: d4:23:cc:a0:f7:4d:5d:76:e7:a7:85:48:17:e6:0f: 9a:60:d4:2b:fd:d1:e0:5f:15:f4:df:c0:b6:29:26: 80:88:61:ec:e3:14:11:e7:73:eb:4d:41:a9:74:d4: d5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6D:2B:02:8B:D4:E3:C0:09:C1:6F:39:11:49:E3:9D:2B:56:4D:F4 X509v3 Authority Key Identifier: keyid:EE:EE:DD:CD:A4:4B:07:13:B3:97:D2:70:40:72:1E:EC:48:48:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.224.0/24 Signature Algorithm: sha256WithRSAEncryption 22:ca:2f:c9:5c:c3:c7:f2:9d:51:68:8a:c6:d9:96:08:47:f4: f9:1e:60:26:a9:0c:99:df:ed:ec:02:8b:81:15:6a:17:26:fc: 36:3b:61:2d:1b:b7:64:80:0d:6f:c4:bb:ed:06:8b:1a:c7:07: f6:6c:96:53:5d:52:1d:f7:d2:b5:97:70:85:6e:4d:09:14:fe: 28:87:9d:8b:17:1a:51:53:eb:ec:8b:53:31:d2:21:c7:5c:7e: 73:41:cc:89:d9:f0:83:35:e3:cf:bf:94:fc:08:72:0c:f4:5f: 4e:c4:97:d6:ce:59:a8:a2:9d:d6:38:c8:63:6b:c2:a2:06:dd: f8:4f:9f:b5:89:59:a5:3b:86:df:db:c2:d2:5e:1b:da:96:b3: e7:57:19:11:eb:38:90:ad:02:2a:c5:1c:25:0f:00:50:eb:2c: d4:ee:05:bf:4d:cf:d6:12:6d:02:f4:ce:9c:c8:ac:07:f2:7a: 96:45:a4:ac:5b:05:62:0e:1b:d3:59:21:33:e3:1b:34:a2:66: 2b:ee:6c:3f:2d:e3:a4:98:9b:d8:65:9b:95:7c:65:a9:12:f5: 34:09:ea:8b:9e:25:05:5f:14:3a:8f:99:1b:93:aa:cc:b0:a2: e0:f3:79:18:d3:25:8c:07:15:8e:e4:d3:9f:d9:5e:9e:81:51: 67:35:ed:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSJmaQEXNWCtzRkK4bg85PdPL4IIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVFRUREQ0RBNDRCMDcxM0IzOTdEMjcwNDA3MjFFRUM0 ODQ4RTVEQzAeFw0yNjA1MDMwMzE0MThaFw0yNzA1MDIwMzE5MThaMDMxMTAvBgNV BAMTKDlENkQyQjAyOEJENEUzQzAwOUMxNkYzOTExNDlFMzlEMkI1NjRERjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRIo5Uh704aZS9zfZgf8eJ/UH0 g6sVrxISUCV2yyOoQoTnRFYEHgutnQmvPyCaROltbDD2gOrbJle+mrZPjtYKiAdj fXdsMobACHZ5K+H6CVOxZBlaEiEnf/vcSrh0TN0oDnpMHzIQZDrHoA8Tert2NqZ/ LJq+PfQwUWh01yM/wGX5ZGnM6a+kUltvQqn3LDLlCEbkTdQKLwlsOKIjx/U9kjNc KySsj/v1fLDMCzp69vLNhswpv+90Rd0uWg5YUyo7lg9xqwKiLYWdb1iufQnNdNQj zKD3TV1256eFSBfmD5pg1Cv90eBfFfTfwLYpJoCIYezjFBHnc+tNQal01NVDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnW0rAovU48AJwW85EUnjnStWTfQwHwYDVR0j BBgwFoAU7u7dzaRLBxOzl9JwQHIe7EhI5dwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmM2ZjgzMmItNWE5ZS00Y2FhLWJkZDQtMjYzNDcyN2E5ZWQ0LzAvRUVFRUREQ0RB NDRCMDcxM0IzOTdEMjcwNDA3MjFFRUM0ODQ4RTVEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRUVFRERDREE0NEIwNzEzQjM5N0QyNzA0MDcyMUVFQzQ4NDhF NURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZjNmY4MzJiLTVhOWUtNGNhYS1i ZGQ0LTI2MzQ3MjdhOWVkNC8wLzMxMzAzMzJlMzIzMTJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXgMA0GCSqG SIb3DQEBCwUAA4IBAQAiyi/JXMPH8p1RaIrG2ZYIR/T5HmAmqQyZ3+3sAouBFWoX Jvw2O2EtG7dkgA1vxLvtBosaxwf2bJZTXVId99K1l3CFbk0JFP4oh52LFxpRU+vs i1Mx0iHHXH5zQcyJ2fCDNePPv5T8CHIM9F9OxJfWzlmoop3WOMhja8KiBt34T5+1 iVmlO4bf28LSXhvalrPnVxkR6ziQrQIqxRwlDwBQ6yzU7gW/Tc/WEm0C9M6cyKwH 8nqWRaSsWwViDhvTWSEz4xs0omYr7mw/LeOkmJvYZZuVfGWpEvU0CeqLniUFXxQ6 j5kbk6rMsKLg83kY0yWMBxWO5NOf2V6egVFnNe29 -----END CERTIFICATE-----Generated at Wed May 13 03:17:01 2026 by rpki-client