$ rpki-client -vvf rpki-rsync.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa File: 3130332e3136362e33362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: lTZ01/fJUOFqaJRWKnNIALG7LB1k+HJpJA/DEXbiNSg= Subject key identifier: AF:E3:2D:CF:58:B7:D9:71:9C:E6:AE:44:88:4B:35:2A:CE:E4:AD:73 Certificate issuer: /CN=644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46 Certificate serial: 630388541D646A220DB1D682EF3D0DA5479B30BA Authority key identifier: 64:4E:AB:DD:F7:7A:AB:A7:E9:F8:B2:FA:38:2A:C5:5E:5E:E7:5F:46 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:51:20 +0000 ROA not before: Sun 03 May 2026 02:46:20 +0000 ROA not after: Sun 02 May 2027 02:51:20 +0000 asID: 17995 IP address blocks: 103.166.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46.crl rsync://rpki-rsync.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 17:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:03:88:54:1d:64:6a:22:0d:b1:d6:82:ef:3d:0d:a5:47:9b:30:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46 Validity Not Before: May 3 02:46:20 2026 GMT Not After : May 2 02:51:20 2027 GMT Subject: CN=AFE32DCF58B7D9719CE6AE44884B352ACEE4AD73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5d:80:e5:53:77:54:e1:6f:a5:d0:f6:fe:f2: f0:0b:1f:7b:72:5b:fb:f9:54:be:08:05:e1:c0:9a: af:6b:cb:5b:18:a0:c1:1d:df:dd:a0:59:c2:ce:55: fa:6f:94:70:2c:aa:dc:cc:83:12:6f:e1:58:5c:d8: c8:95:1c:ea:44:7b:b3:d3:e1:25:77:68:0a:de:4e: 21:17:f4:54:9f:e0:61:20:54:42:13:6b:17:cc:56: 25:83:2a:54:a5:cb:0c:2f:ac:ed:d3:1f:8c:58:c1: 57:e1:8c:a4:5d:be:64:38:9d:d1:17:bb:d5:34:68: b6:64:9a:ee:bf:38:37:e9:63:a1:d4:d2:dc:11:47: 91:cc:ec:72:49:85:1b:3e:44:fe:22:72:35:88:db: 3a:07:80:99:fe:11:69:09:6a:cb:06:5f:8b:34:c5: 5d:a3:f6:bd:11:2c:6d:3b:2b:48:3e:36:4e:db:7c: 81:37:21:45:a6:6e:11:23:64:6f:eb:18:f8:2b:30: be:53:58:ee:2e:e7:14:03:6a:22:99:1e:55:26:05: ca:30:87:75:8d:72:fc:b4:3b:7c:50:51:b7:5d:bc: 65:dc:7b:f3:4d:87:f7:9b:12:78:27:d5:85:8f:39: 35:16:9d:6e:54:6c:fe:ec:7f:75:36:92:38:b8:31: df:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E3:2D:CF:58:B7:D9:71:9C:E6:AE:44:88:4B:35:2A:CE:E4:AD:73 X509v3 Authority Key Identifier: keyid:64:4E:AB:DD:F7:7A:AB:A7:E9:F8:B2:FA:38:2A:C5:5E:5E:E7:5F:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/644EABDDF77AABA7E9F8B2FA382AC55E5EE75F46.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.36.0/23 Signature Algorithm: sha256WithRSAEncryption 68:da:0b:15:7c:95:e9:e6:be:49:da:1b:44:1c:17:a6:52:76: ab:88:b2:b7:cb:8a:53:78:0a:7e:16:69:b1:5b:b3:e7:e8:66: de:18:a8:4d:b9:5c:41:10:ca:fa:3f:d3:1f:76:15:df:1d:4c: d5:27:b2:a2:06:35:bf:f3:b1:c1:f9:46:b4:0b:6f:80:ca:34: f5:2d:7e:b9:1a:5c:af:b4:67:0d:cc:4f:f0:2d:10:b7:68:97: 4d:ce:18:f3:12:95:81:0c:cd:69:25:cc:76:c4:ba:cf:4d:76: 3f:36:b0:4b:f6:bf:f7:cc:6f:1f:50:91:99:aa:d3:f9:9b:8f: ac:57:b7:6c:e4:a1:8a:2e:20:a4:84:31:4f:83:af:83:d0:df: 20:7d:e1:c3:39:49:00:bf:ff:cb:9a:26:a4:ff:29:f1:29:3e: f1:b9:e0:b5:21:a8:d9:fe:fd:8d:38:87:11:5a:3f:01:ad:b5: 93:97:cd:e3:b6:c9:22:ee:fa:ed:b5:ae:3a:f5:fe:86:4b:b0: f4:42:3f:73:e9:5f:bc:70:c8:c4:e1:f3:23:4c:54:85:40:fa: bd:c6:bf:5a:42:78:16:73:7a:b8:8c:62:3b:00:55:0f:63:66: 7e:77:56:53:67:d6:b0:8b:44:69:32:13:b2:10:ad:de:32:1a: 5e:ed:09:1a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYwOIVB1kaiINsdaC7z0NpUebMLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ0RUFCRERGNzdBQUJBN0U5RjhCMkZBMzgyQUM1NUU1 RUU3NUY0NjAeFw0yNjA1MDMwMjQ2MjBaFw0yNzA1MDIwMjUxMjBaMDMxMTAvBgNV BAMTKEFGRTMyRENGNThCN0Q5NzE5Q0U2QUU0NDg4NEIzNTJBQ0VFNEFENzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+XYDlU3dU4W+l0Pb+8vALH3ty W/v5VL4IBeHAmq9ry1sYoMEd392gWcLOVfpvlHAsqtzMgxJv4Vhc2MiVHOpEe7PT 4SV3aAreTiEX9FSf4GEgVEITaxfMViWDKlSlywwvrO3TH4xYwVfhjKRdvmQ4ndEX u9U0aLZkmu6/ODfpY6HU0twRR5HM7HJJhRs+RP4icjWI2zoHgJn+EWkJassGX4s0 xV2j9r0RLG07K0g+Nk7bfIE3IUWmbhEjZG/rGPgrML5TWO4u5xQDaiKZHlUmBcow h3WNcvy0O3xQUbddvGXce/NNh/ebEngn1YWPOTUWnW5UbP7sf3U2kji4Md/hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUr+Mtz1i32XGc5q5EiEs1Ks7krXMwHwYDVR0j BBgwFoAUZE6r3fd6q6fp+LL6OCrFXl7nX0YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGY3OWE0MDItZGU1Yi00OWU1LWE2ZjUtZWVhYmFjMDg0ZjQxLzAvNjQ0RUFCRERG NzdBQUJBN0U5RjhCMkZBMzgyQUM1NUU1RUU3NUY0Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NDRFQUJEREY3N0FBQkE3RTlGOEIyRkEzODJBQzU1RTVFRTc1 RjQ2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhmNzlhNDAyLWRlNWItNDllNS1h NmY1LWVlYWJhYzA4NGY0MS8wLzMxMzAzMzJlMzEzNjM2MmUzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWemJDANBgkqhkiG 9w0BAQsFAAOCAQEAaNoLFXyV6ea+SdobRBwXplJ2q4iyt8uKU3gKfhZpsVuz5+hm 3hioTblcQRDK+j/TH3YV3x1M1SeyogY1v/OxwflGtAtvgMo09S1+uRpcr7RnDcxP 8C0Qt2iXTc4Y8xKVgQzNaSXMdsS6z012PzawS/a/98xvH1CRmarT+ZuPrFe3bOSh ii4gpIQxT4Ovg9DfIH3hwzlJAL//y5ompP8p8Sk+8bngtSGo2f79jTiHEVo/Aa21 k5fN47bJIu767bWuOvX+hkuw9EI/c+lfvHDIxOHzI0xUhUD6vca/WkJ4FnN6uIxi OwBVD2NmfndWU2fWsItEaTITshCt3jIaXu0JGg== -----END CERTIFICATE-----Generated at Fri May 8 06:34:28 2026 by rpki-client