$ rpki-client -vvf rpki-rsync.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31362e302f32342d3234203d3e203137393935.roa File: 3130332e3136342e31362e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: IAPE0EDL07eBOAUYgqUUBY8IxNeYuADU8ero1ox/JUo= Subject key identifier: AF:83:BB:E1:D2:A7:6F:90:51:A2:62:9C:5A:37:56:70:5B:D6:7E:3C Certificate issuer: /CN=42842AAEE7117FB6F7F441F21019E9D0E143FACE Certificate serial: 1243F44A4180D42A302276D3CEBC0C9D0CCE4A49 Authority key identifier: 42:84:2A:AE:E7:11:7F:B6:F7:F4:41:F2:10:19:E9:D0:E1:43:FA:CE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42842AAEE7117FB6F7F441F21019E9D0E143FACE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31362e302f32342d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:20:36 +0000 ROA not before: Sun 03 May 2026 02:15:36 +0000 ROA not after: Sun 02 May 2027 02:20:36 +0000 asID: 17995 IP address blocks: 103.164.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/42842AAEE7117FB6F7F441F21019E9D0E143FACE.crl rsync://rpki-rsync.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/42842AAEE7117FB6F7F441F21019E9D0E143FACE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42842AAEE7117FB6F7F441F21019E9D0E143FACE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 19:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:43:f4:4a:41:80:d4:2a:30:22:76:d3:ce:bc:0c:9d:0c:ce:4a:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42842AAEE7117FB6F7F441F21019E9D0E143FACE Validity Not Before: May 3 02:15:36 2026 GMT Not After : May 2 02:20:36 2027 GMT Subject: CN=AF83BBE1D2A76F9051A2629C5A3756705BD67E3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b3:a2:6b:b3:b7:ae:1e:7b:4c:a2:21:a3:de: ab:59:cb:67:19:01:07:62:2b:d8:14:fb:4f:3f:98: 5e:8e:fd:8e:39:e7:aa:4b:12:70:fb:de:c8:c7:46: 26:5d:17:3f:ef:cd:25:ec:4d:33:b6:ed:3d:b6:b1: 79:7a:8b:2b:d8:77:39:d4:6a:ce:f2:c0:d5:0e:c7: 81:1f:3b:12:e6:06:4e:ad:8a:51:be:8c:11:fe:a1: bd:fa:6c:de:54:89:ff:72:76:13:21:83:25:ec:e0: 93:1b:0a:a5:93:ee:c7:d7:48:3b:46:54:a5:2f:8c: 14:3b:3b:b5:bf:42:85:7a:a3:57:9f:b9:bb:16:77: f0:16:a5:fd:41:af:bf:2f:b3:d8:25:60:a0:72:3b: 55:de:a4:64:25:90:b7:89:cc:49:9a:ac:fb:d9:ea: 4b:f0:09:c9:37:1e:a1:93:e8:01:ec:26:2d:ed:9b: 57:59:9d:de:82:a5:d6:68:de:39:b0:07:6c:53:fb: 47:f7:a6:1e:a3:f8:0a:f6:b3:1a:70:eb:e9:eb:0b: 3e:75:ef:eb:0d:d3:fa:33:f2:91:10:30:37:98:ec: 0c:c9:e2:e1:a4:2f:88:fd:f7:c8:2b:ae:31:ba:c4: 44:79:00:5a:5c:de:7c:9d:09:6e:51:13:7f:31:5c: b8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:83:BB:E1:D2:A7:6F:90:51:A2:62:9C:5A:37:56:70:5B:D6:7E:3C X509v3 Authority Key Identifier: keyid:42:84:2A:AE:E7:11:7F:B6:F7:F4:41:F2:10:19:E9:D0:E1:43:FA:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/42842AAEE7117FB6F7F441F21019E9D0E143FACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42842AAEE7117FB6F7F441F21019E9D0E143FACE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31362e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.16.0/24 Signature Algorithm: sha256WithRSAEncryption 67:a5:c5:d9:b2:14:c3:39:75:f0:be:31:50:6d:62:a3:4a:23: 7d:fb:74:ec:44:42:ee:68:30:f8:17:a7:6e:65:cd:f7:ad:5f: f5:96:3c:fa:fa:d4:d2:f3:32:ea:3e:cc:6d:5e:4e:c6:ff:1f: 92:fd:97:93:2e:a3:f3:21:f4:18:9f:68:ea:10:69:1f:7d:b9: a7:a0:3f:7a:96:ac:43:34:5f:c0:33:c6:31:09:23:ed:d0:50: 00:12:09:18:0d:c6:6e:f7:ad:46:59:aa:ba:d7:ab:7b:3c:38: e8:6d:27:dd:0c:07:7c:18:5f:6b:d7:22:a8:41:91:5d:18:1d: 11:be:dd:44:4f:97:a4:a3:d2:a3:1b:06:59:20:01:63:f7:05: 10:6d:1a:19:31:a6:e6:ed:97:84:cf:fe:60:30:ec:80:be:f3: a0:32:e3:d1:a4:a8:3c:22:9f:b1:eb:00:89:28:d2:0b:14:b9: 63:b7:d0:fa:12:1b:61:c1:67:db:28:55:b2:3c:8d:46:5f:ed: d4:d1:e3:0f:9b:0a:c8:19:02:5c:f1:03:22:a6:eb:f3:b1:bd: 7b:02:aa:ae:bd:27:95:32:72:32:90:f2:91:79:a5:37:dd:9a: 6a:ef:8c:0d:f6:1c:8c:8f:9d:4a:c2:c0:c7:32:f6:d7:ec:83: 07:e6:e8:b8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEkP0SkGA1CowInbTzrwMnQzOSkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4NDJBQUVFNzExN0ZCNkY3RjQ0MUYyMTAxOUU5RDBF MTQzRkFDRTAeFw0yNjA1MDMwMjE1MzZaFw0yNzA1MDIwMjIwMzZaMDMxMTAvBgNV BAMTKEFGODNCQkUxRDJBNzZGOTA1MUEyNjI5QzVBMzc1NjcwNUJENjdFM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxs6Jrs7euHntMoiGj3qtZy2cZ AQdiK9gU+08/mF6O/Y4556pLEnD73sjHRiZdFz/vzSXsTTO27T22sXl6iyvYdznU as7ywNUOx4EfOxLmBk6tilG+jBH+ob36bN5Uif9ydhMhgyXs4JMbCqWT7sfXSDtG VKUvjBQ7O7W/QoV6o1efubsWd/AWpf1Br78vs9glYKByO1XepGQlkLeJzEmarPvZ 6kvwCck3HqGT6AHsJi3tm1dZnd6CpdZo3jmwB2xT+0f3ph6j+Ar2sxpw6+nrCz51 7+sN0/oz8pEQMDeY7AzJ4uGkL4j998grrjG6xER5AFpc3nydCW5RE38xXLjdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUr4O74dKnb5BRomKcWjdWcFvWfjwwHwYDVR0j BBgwFoAUQoQqrucRf7b39EHyEBnp0OFD+s4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjY3N2IwMGMtZGMyYy00MTljLWExMDAtNTBiMmZjN2IxYmMxLzAvNDI4NDJBQUVF NzExN0ZCNkY3RjQ0MUYyMTAxOUU5RDBFMTQzRkFDRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80Mjg0MkFBRUU3MTE3RkI2RjdGNDQxRjIxMDE5RTlEMEUxNDNG QUNFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI2NzdiMDBjLWRjMmMtNDE5Yy1h MTAwLTUwYjJmYzdiMWJjMS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGekEDANBgkqhkiG 9w0BAQsFAAOCAQEAZ6XF2bIUwzl18L4xUG1io0ojfft07ERC7mgw+BenbmXN961f 9ZY8+vrU0vMy6j7MbV5Oxv8fkv2Xky6j8yH0GJ9o6hBpH325p6A/epasQzRfwDPG MQkj7dBQABIJGA3GbvetRlmquterezw46G0n3QwHfBhfa9ciqEGRXRgdEb7dRE+X pKPSoxsGWSABY/cFEG0aGTGm5u2XhM/+YDDsgL7zoDLj0aSoPCKfsesAiSjSCxS5 Y7fQ+hIbYcFn2yhVsjyNRl/t1NHjD5sKyBkCXPEDIqbr87G9ewKqrr0nlTJyMpDy kXmlN92aau+MDfYcjI+dSsLAxzL21+yDB+bouA== -----END CERTIFICATE-----Generated at Fri May 8 06:34:46 2026 by rpki-client