$ rpki-client -vvf rpki-rsync.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136332e302f32342d3234203d3e203137393935.roa File: 3130332e3135382e3136332e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: 9sxhuASFKHOXbj0DOd/0uIHrTBma/ztKpCl/pA1bt+4= Subject key identifier: 21:DD:35:23:6B:A8:F4:F5:7F:87:B5:F8:37:69:8C:A0:0C:9A:57:E4 Certificate issuer: /CN=C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2 Certificate serial: 443F49377FB80B2463DEFC77FCA75238F8D83211 Authority key identifier: C4:60:5A:0F:B7:F0:E2:C2:D0:54:43:3A:9E:4F:CB:C4:F1:5E:A4:F2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136332e302f32342d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:15:36 +0000 ROA not before: Sun 03 May 2026 02:10:36 +0000 ROA not after: Sun 02 May 2027 02:15:36 +0000 asID: 17995 IP address blocks: 103.158.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2.crl rsync://rpki-rsync.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 16:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:3f:49:37:7f:b8:0b:24:63:de:fc:77:fc:a7:52:38:f8:d8:32:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2 Validity Not Before: May 3 02:10:36 2026 GMT Not After : May 2 02:15:36 2027 GMT Subject: CN=21DD35236BA8F4F57F87B5F837698CA00C9A57E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:06:ae:06:0f:44:f5:60:d7:49:66:00:bc:0c: ba:8a:38:86:7b:2d:d8:c1:52:9a:22:78:85:3d:1c: 34:e3:e0:e9:cd:8c:cf:59:c4:a7:64:52:01:85:b4: 35:fc:2a:5a:7c:80:95:4b:33:60:31:6d:e9:c4:3c: 6f:87:8d:39:c7:fb:ee:ff:9d:bc:6c:36:35:a2:83: 4c:a6:cd:d6:76:62:9a:b0:1e:b7:69:8d:f5:ad:80: ef:b2:b2:6d:6c:c7:15:a8:3f:df:6d:1b:2c:80:04: 25:b8:3f:3f:73:ca:c0:08:bd:9c:d4:90:24:23:f1: 69:67:05:00:cd:f8:42:41:4d:f8:d1:60:51:5d:be: 21:06:c8:e5:a4:29:78:ab:96:4a:25:dc:21:98:67: c0:a3:48:b4:1d:85:08:b9:2a:29:8b:93:20:84:08: d3:4c:b5:c4:a8:83:c8:b7:cf:e6:13:4b:87:b7:16: 61:21:6b:12:18:96:1a:35:fa:cf:fc:e9:b6:35:97: 77:ec:d5:b4:c3:be:1b:a4:45:f3:62:b4:a5:09:36: 90:19:3f:7a:3a:fd:23:70:29:6b:59:20:c4:8f:84: ff:5a:ec:0f:0a:e4:ad:8e:12:51:61:bd:66:23:b9: a8:e5:f2:f3:69:d1:1b:ae:c5:aa:c1:71:ef:64:10: 28:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DD:35:23:6B:A8:F4:F5:7F:87:B5:F8:37:69:8C:A0:0C:9A:57:E4 X509v3 Authority Key Identifier: keyid:C4:60:5A:0F:B7:F0:E2:C2:D0:54:43:3A:9E:4F:CB:C4:F1:5E:A4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C4605A0FB7F0E2C2D054433A9E4FCBC4F15EA4F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136332e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.163.0/24 Signature Algorithm: sha256WithRSAEncryption 99:d8:bd:18:ac:2c:15:70:28:eb:3c:19:b0:48:b8:09:52:62: 08:58:9d:8d:44:de:c2:7a:ee:c5:24:4a:69:ec:59:7a:44:5b: dc:37:92:bd:d9:6b:e7:c9:6f:0f:ea:d5:30:57:82:06:f7:07: a0:63:80:b9:e6:3e:c1:a7:13:ce:49:16:43:2c:51:89:d7:f7: c5:5b:24:c1:4c:85:de:ce:2d:38:92:86:a0:91:2c:94:f1:22: 98:e7:e0:a4:4c:5d:57:26:b1:43:30:ec:dc:c0:30:79:88:09: 31:bd:26:2c:60:d5:09:26:c5:3b:02:7f:87:68:ed:a3:76:7a: 45:66:aa:79:38:87:8f:dc:ef:bb:eb:5b:2d:46:cd:72:a5:69: 5c:e5:22:69:6c:df:78:50:fd:1e:51:e7:b6:c1:e4:a6:c2:b5: 31:dd:01:2b:5a:18:30:49:5f:8a:12:80:50:90:a1:5c:05:24: f5:aa:1b:1a:20:1d:0c:b0:97:2a:e1:c4:78:b0:6e:8f:9f:83: 1a:24:42:06:5b:ef:66:26:3a:d5:dc:fc:57:46:d7:e1:fe:e3: c6:5f:a0:0a:85:5e:ba:aa:7f:44:4c:fe:af:51:50:9f:7f:fb: f9:e5:05:ab:48:73:06:f8:7b:50:cd:9a:b3:03:cf:86:e3:c4: 0e:94:fd:89 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURD9JN3+4CyRj3vx3/KdSOPjYMhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ2MDVBMEZCN0YwRTJDMkQwNTQ0MzNBOUU0RkNCQzRG MTVFQTRGMjAeFw0yNjA1MDMwMjEwMzZaFw0yNzA1MDIwMjE1MzZaMDMxMTAvBgNV BAMTKDIxREQzNTIzNkJBOEY0RjU3Rjg3QjVGODM3Njk4Q0EwMEM5QTU3RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZBq4GD0T1YNdJZgC8DLqKOIZ7 LdjBUpoieIU9HDTj4OnNjM9ZxKdkUgGFtDX8Klp8gJVLM2AxbenEPG+HjTnH++7/ nbxsNjWig0ymzdZ2YpqwHrdpjfWtgO+ysm1sxxWoP99tGyyABCW4Pz9zysAIvZzU kCQj8WlnBQDN+EJBTfjRYFFdviEGyOWkKXirlkol3CGYZ8CjSLQdhQi5KimLkyCE CNNMtcSog8i3z+YTS4e3FmEhaxIYlho1+s/86bY1l3fs1bTDvhukRfNitKUJNpAZ P3o6/SNwKWtZIMSPhP9a7A8K5K2OElFhvWYjuajl8vNp0RuuxarBce9kECj7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUId01I2uo9PV/h7X4N2mMoAyaV+QwHwYDVR0j BBgwFoAUxGBaD7fw4sLQVEM6nk/LxPFepPIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTZjMWM1MjktNjI0NC00NTAzLWFmNTYtNjk0NTllNGE3NjBmLzAvQzQ2MDVBMEZC N0YwRTJDMkQwNTQ0MzNBOUU0RkNCQzRGMTVFQTRGMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNDYwNUEwRkI3RjBFMkMyRDA1NDQzM0E5RTRGQ0JDNEYxNUVB NEYyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE2YzFjNTI5LTYyNDQtNDUwMy1h ZjU2LTY5NDU5ZTRhNzYwZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ56jMA0GCSqG SIb3DQEBCwUAA4IBAQCZ2L0YrCwVcCjrPBmwSLgJUmIIWJ2NRN7Ceu7FJEpp7Fl6 RFvcN5K92WvnyW8P6tUwV4IG9wegY4C55j7BpxPOSRZDLFGJ1/fFWyTBTIXezi04 koagkSyU8SKY5+CkTF1XJrFDMOzcwDB5iAkxvSYsYNUJJsU7An+HaO2jdnpFZqp5 OIeP3O+761stRs1ypWlc5SJpbN94UP0eUee2weSmwrUx3QErWhgwSV+KEoBQkKFc BST1qhsaIB0MsJcq4cR4sG6Pn4MaJEIGW+9mJjrV3PxXRtfh/uPGX6AKhV66qn9E TP6vUVCff/v55QWrSHMG+HtQzZqzA8+G48QOlP2J -----END CERTIFICATE-----Generated at Fri May 8 06:36:50 2026 by rpki-client