$ rpki-client -vvf rpki-rsync.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa File: 3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa (raw, json) Hash identifier: O7VzOc1QQXPH4ovFqaeUilVVeRWPbXN3yznnumHTcH0= Subject key identifier: 7B:9A:E0:C6:D4:3C:02:D1:4F:DD:CE:CB:C5:53:A7:4A:0B:7D:9A:BF Certificate issuer: /CN=96F7885B8F4A0167C86E3083F630FFA26BFA9271 Certificate serial: 64275736E62C8BC079761E29DCE727797D945155 Authority key identifier: 96:F7:88:5B:8F:4A:01:67:C8:6E:30:83:F6:30:FF:A2:6B:FA:92:71 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/96F7885B8F4A0167C86E3083F630FFA26BFA9271.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa Signing time: Sat 02 May 2026 22:44:27 +0000 ROA not before: Sat 02 May 2026 22:39:27 +0000 ROA not after: Sat 01 May 2027 22:44:27 +0000 asID: 58820 IP address blocks: 103.169.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/96F7885B8F4A0167C86E3083F630FFA26BFA9271.crl rsync://rpki-rsync.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/96F7885B8F4A0167C86E3083F630FFA26BFA9271.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/96F7885B8F4A0167C86E3083F630FFA26BFA9271.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:27:57:36:e6:2c:8b:c0:79:76:1e:29:dc:e7:27:79:7d:94:51:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96F7885B8F4A0167C86E3083F630FFA26BFA9271 Validity Not Before: May 2 22:39:27 2026 GMT Not After : May 1 22:44:27 2027 GMT Subject: CN=7B9AE0C6D43C02D14FDDCECBC553A74A0B7D9ABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:51:15:4b:7e:a3:bf:54:f6:f9:fe:e9:06:c3: a8:9b:82:d1:a6:0f:6e:fd:c6:a7:47:50:55:a6:2b: eb:d7:b1:4c:4c:26:34:b8:82:9f:bc:4c:34:94:3a: 64:e4:9d:6a:4d:6c:99:34:3d:b7:88:20:81:ec:b8: da:71:15:42:40:f4:5a:ce:49:96:d2:5b:75:8b:af: a0:7c:4e:34:19:63:63:2a:4f:7f:61:ee:38:8c:7f: cc:17:05:62:1d:47:45:b6:98:2f:94:fb:03:cf:a6: c7:60:63:03:0b:07:eb:aa:f0:c5:03:36:bf:07:af: aa:1a:ea:39:a3:9b:b5:01:d0:42:75:68:c9:ba:fc: 55:a4:ae:f7:97:c1:cd:f1:2d:13:d2:b3:94:68:fb: af:56:75:ab:1a:0a:03:cb:45:c9:79:fd:2e:2b:e3: 5a:74:97:24:83:6c:41:8a:eb:78:ed:d1:4e:11:ab: d3:6c:06:32:2e:f5:40:de:7e:4e:3d:3d:e7:3f:b3: 26:46:f7:6e:60:98:e0:7a:9a:15:d3:9a:3b:99:86: 5e:b5:d4:69:09:a9:71:2f:ff:da:3c:29:28:72:3f: c5:a4:2f:3e:fb:66:00:25:ec:09:cb:63:d8:1f:ba: 59:34:6e:2c:22:87:2e:7c:0c:41:5f:26:30:20:f7: 6c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9A:E0:C6:D4:3C:02:D1:4F:DD:CE:CB:C5:53:A7:4A:0B:7D:9A:BF X509v3 Authority Key Identifier: keyid:96:F7:88:5B:8F:4A:01:67:C8:6E:30:83:F6:30:FF:A2:6B:FA:92:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/96F7885B8F4A0167C86E3083F630FFA26BFA9271.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/96F7885B8F4A0167C86E3083F630FFA26BFA9271.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.210.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:5f:9a:ac:dc:fa:93:c6:6d:2c:ae:58:45:22:c3:bd:36:1f: a7:50:d6:96:cc:b3:11:41:99:bb:5f:10:ee:86:d7:33:28:1b: fe:63:3b:ee:ed:50:b4:12:9e:89:da:55:b0:14:98:6d:26:0d: 52:c7:f3:d8:1f:28:70:b9:09:86:ee:35:72:c1:d2:c7:3f:59: c4:55:aa:34:43:f1:9e:fd:fc:ba:6e:f0:49:73:a3:e2:e7:50: 77:2e:ab:05:ee:cb:f9:a0:0c:06:9a:58:01:4a:11:fd:99:ac: 93:ea:52:e5:6a:b9:4a:c8:3a:3b:4b:d8:00:64:9c:4e:9e:90: 45:5b:fd:98:cf:43:ea:bf:2c:18:ca:b7:13:c5:8e:cb:58:52: a4:63:a7:df:6a:ab:f1:18:f2:cd:65:d8:51:86:ea:7b:68:49: be:f0:99:4e:80:6e:b3:0f:29:54:8a:3f:57:93:7e:5d:35:f1: ed:95:04:19:f1:0e:6a:45:54:69:35:69:03:65:01:9c:da:e7: fe:55:4a:56:49:b4:cf:0d:53:1d:1b:ef:56:10:1f:b8:b8:61: 1e:72:06:36:f7:17:70:7d:fd:91:93:db:29:18:20:67:49:68: f8:9d:ba:46:76:92:3c:2d:8f:2c:8a:2b:c7:f1:06:46:39:55: e5:66:f1:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZCdXNuYsi8B5dh4p3OcneX2UUVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZGNzg4NUI4RjRBMDE2N0M4NkUzMDgzRjYzMEZGQTI2 QkZBOTI3MTAeFw0yNjA1MDIyMjM5MjdaFw0yNzA1MDEyMjQ0MjdaMDMxMTAvBgNV BAMTKDdCOUFFMEM2RDQzQzAyRDE0RkREQ0VDQkM1NTNBNzRBMEI3RDlBQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/URVLfqO/VPb5/ukGw6ibgtGm D279xqdHUFWmK+vXsUxMJjS4gp+8TDSUOmTknWpNbJk0PbeIIIHsuNpxFUJA9FrO SZbSW3WLr6B8TjQZY2MqT39h7jiMf8wXBWIdR0W2mC+U+wPPpsdgYwMLB+uq8MUD Nr8Hr6oa6jmjm7UB0EJ1aMm6/FWkrveXwc3xLRPSs5Ro+69WdasaCgPLRcl5/S4r 41p0lySDbEGK63jt0U4Rq9NsBjIu9UDefk49Pec/syZG925gmOB6mhXTmjuZhl61 1GkJqXEv/9o8KShyP8WkLz77ZgAl7AnLY9gfulk0biwihy58DEFfJjAg92y9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe5rgxtQ8AtFP3c7LxVOnSgt9mr8wHwYDVR0j BBgwFoAUlveIW49KAWfIbjCD9jD/omv6knEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmZhMGRkZWQtMWFjZi00NDJkLTk2NTktOTVhZWNkOGY4ZWE5LzAvOTZGNzg4NUI4 RjRBMDE2N0M4NkUzMDgzRjYzMEZGQTI2QkZBOTI3MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NkY3ODg1QjhGNEEwMTY3Qzg2RTMwODNGNjMwRkZBMjZCRkE5 MjcxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZmYTBkZGVkLTFhY2YtNDQyZC05 NjU5LTk1YWVjZDhmOGVhOS8wLzMxMzAzMzJlMzEzNjM5MmUzMjMxMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6nSMA0GCSqG SIb3DQEBCwUAA4IBAQAPX5qs3PqTxm0srlhFIsO9Nh+nUNaWzLMRQZm7XxDuhtcz KBv+Yzvu7VC0Ep6J2lWwFJhtJg1Sx/PYHyhwuQmG7jVywdLHP1nEVao0Q/Ge/fy6 bvBJc6Pi51B3LqsF7sv5oAwGmlgBShH9mayT6lLlarlKyDo7S9gAZJxOnpBFW/2Y z0PqvywYyrcTxY7LWFKkY6ffaqvxGPLNZdhRhup7aEm+8JlOgG6zDylUij9Xk35d NfHtlQQZ8Q5qRVRpNWkDZQGc2uf+VUpWSbTPDVMdG+9WEB+4uGEecgY29xdwff2R k9spGCBnSWj4nbpGdpI8LY8siivH8QZGOVXlZvHe -----END CERTIFICATE-----Generated at Wed May 13 02:15:35 2026 by rpki-client