$ rpki-client -vvf rpki-rsync.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e203137393935.roa File: 3130332e3137302e3139362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: AgnX33hKegMwrYhAa6LMCbwyf/iL+aW4yQiILvHBf5M= Subject key identifier: 85:3A:F3:83:56:C7:AC:DB:42:49:00:83:ED:75:5F:0D:7C:E4:A4:9B Certificate issuer: /CN=378918D305E0BE46A36AC59393759E41074DA43B Certificate serial: 68EA439DAED9E9B11FE6013E479E2CE17A1F9B13 Authority key identifier: 37:89:18:D3:05:E0:BE:46:A3:6A:C5:93:93:75:9E:41:07:4D:A4:3B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/378918D305E0BE46A36AC59393759E41074DA43B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:51:47 +0000 ROA not before: Sun 03 May 2026 02:46:47 +0000 ROA not after: Sun 02 May 2027 02:51:47 +0000 asID: 17995 IP address blocks: 103.170.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/378918D305E0BE46A36AC59393759E41074DA43B.crl rsync://rpki-rsync.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/378918D305E0BE46A36AC59393759E41074DA43B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/378918D305E0BE46A36AC59393759E41074DA43B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 03:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ea:43:9d:ae:d9:e9:b1:1f:e6:01:3e:47:9e:2c:e1:7a:1f:9b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=378918D305E0BE46A36AC59393759E41074DA43B Validity Not Before: May 3 02:46:47 2026 GMT Not After : May 2 02:51:47 2027 GMT Subject: CN=853AF38356C7ACDB42490083ED755F0D7CE4A49B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:aa:eb:b6:e4:8f:d6:c5:64:86:01:d8:2b: 0f:6e:11:28:49:85:06:e3:50:a0:1a:e1:eb:5c:83: ee:1e:e2:39:2e:0e:09:c1:e6:c8:41:2b:11:78:c6: 91:7c:6c:45:77:4c:64:97:6f:eb:5f:89:29:77:6b: a2:60:1d:ca:3a:59:5b:17:91:d5:7a:7e:05:1d:4f: 22:6b:6b:09:cd:5d:70:f5:a1:51:c1:e6:08:f9:d5: 80:53:e8:64:45:2b:12:24:19:c6:4a:18:53:34:dd: 5b:88:ea:72:76:10:ab:cf:a8:06:f2:26:4c:ae:96: 67:6c:13:d1:e4:cd:c3:b3:b8:8d:e6:38:86:c9:f4: 42:ea:f1:e6:99:89:7f:aa:17:d8:72:e7:03:c7:6f: 3a:e4:c9:c9:d8:32:d1:c5:1d:11:41:93:fe:44:75: eb:47:17:cb:09:aa:9c:34:e0:0d:48:ba:8b:13:44: 75:13:6f:12:d5:c2:47:22:f1:e6:17:6c:e2:df:60: a3:d3:b9:5e:c0:0b:a5:91:d5:b8:29:b3:a9:25:d9: 68:12:da:46:c0:db:4e:01:d7:3f:5c:da:26:86:e2: d0:5e:8c:69:f5:de:4c:dc:03:db:e9:d3:a7:15:68: da:38:27:1e:c5:5e:4c:a5:9c:60:ea:51:e1:f8:e0: ff:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3A:F3:83:56:C7:AC:DB:42:49:00:83:ED:75:5F:0D:7C:E4:A4:9B X509v3 Authority Key Identifier: keyid:37:89:18:D3:05:E0:BE:46:A3:6A:C5:93:93:75:9E:41:07:4D:A4:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/378918D305E0BE46A36AC59393759E41074DA43B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/378918D305E0BE46A36AC59393759E41074DA43B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.196.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:57:dd:1c:f4:80:c4:67:b7:44:09:7d:37:3e:c5:28:17:12: 84:21:77:d9:72:9c:0a:78:fa:20:00:b0:b3:0c:eb:d1:71:9d: f9:29:fc:2f:4e:5e:8e:97:ab:e2:35:13:b3:be:9a:8d:e9:f4: f2:d5:6a:31:4c:69:4a:bf:bf:27:9a:c2:5e:76:13:33:c1:b8: bf:82:5d:2c:68:9e:a5:94:aa:27:57:0c:b9:27:f6:90:06:75: 63:0c:70:48:e0:a5:cb:98:50:08:46:b0:7a:ef:72:c4:12:72: ed:9e:2d:36:fc:04:66:b9:84:22:fe:2e:4d:fb:f9:42:46:be: 25:72:f4:67:a3:46:91:79:f9:62:1f:fa:40:7b:9d:00:eb:06: b0:4a:c9:98:e2:84:76:fb:14:6d:32:3c:05:6b:3c:e3:58:5b: 47:93:0f:86:9b:64:74:66:9c:7a:f6:c8:18:4b:b1:36:5c:32: a4:01:c3:22:12:cb:39:ed:9e:83:33:e5:b7:a7:13:54:84:b4: 8e:d8:8e:1b:66:90:76:8e:60:52:8e:7c:76:86:a1:c0:66:ae: 19:7f:8c:d6:37:8e:5f:20:ee:4a:c0:a6:aa:05:d1:98:fa:e8: 95:09:d7:a6:8e:dd:05:06:66:7a:bc:e7:a3:86:50:03:96:ab: 96:ab:ee:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaOpDna7Z6bEf5gE+R54s4XofmxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzc4OTE4RDMwNUUwQkU0NkEzNkFDNTkzOTM3NTlFNDEw NzREQTQzQjAeFw0yNjA1MDMwMjQ2NDdaFw0yNzA1MDIwMjUxNDdaMDMxMTAvBgNV BAMTKDg1M0FGMzgzNTZDN0FDREI0MjQ5MDA4M0VENzU1RjBEN0NFNEE0OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZvarrtuSP1sVkhgHYKw9uEShJ hQbjUKAa4etcg+4e4jkuDgnB5shBKxF4xpF8bEV3TGSXb+tfiSl3a6JgHco6WVsX kdV6fgUdTyJrawnNXXD1oVHB5gj51YBT6GRFKxIkGcZKGFM03VuI6nJ2EKvPqAby JkyulmdsE9HkzcOzuI3mOIbJ9ELq8eaZiX+qF9hy5wPHbzrkycnYMtHFHRFBk/5E detHF8sJqpw04A1IuosTRHUTbxLVwkci8eYXbOLfYKPTuV7AC6WR1bgps6kl2WgS 2kbA204B1z9c2iaG4tBejGn13kzcA9vp06cVaNo4Jx7FXkylnGDqUeH44P+vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhTrzg1bHrNtCSQCD7XVfDXzkpJswHwYDVR0j BBgwFoAUN4kY0wXgvkajasWTk3WeQQdNpDswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTExYTc0NmUtNTNlMy00YzIzLWI5ZTUtZjY0ZjNlZjNkMTM2LzAvMzc4OTE4RDMw NUUwQkU0NkEzNkFDNTkzOTM3NTlFNDEwNzREQTQzQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNzg5MThEMzA1RTBCRTQ2QTM2QUM1OTM5Mzc1OUU0MTA3NERB NDNCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxMWE3NDZlLTUzZTMtNGMyMy1i OWU1LWY2NGYzZWYzZDEzNi8wLzMxMzAzMzJlMzEzNzMwMmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6rEMA0GCSqG SIb3DQEBCwUAA4IBAQA7V90c9IDEZ7dECX03PsUoFxKEIXfZcpwKePogALCzDOvR cZ35KfwvTl6Ol6viNROzvpqN6fTy1WoxTGlKv78nmsJedhMzwbi/gl0saJ6llKon Vwy5J/aQBnVjDHBI4KXLmFAIRrB673LEEnLtni02/ARmuYQi/i5N+/lCRr4lcvRn o0aRefliH/pAe50A6wawSsmY4oR2+xRtMjwFazzjWFtHkw+Gm2R0Zpx69sgYS7E2 XDKkAcMiEss57Z6DM+W3pxNUhLSO2I4bZpB2jmBSjnx2hqHAZq4Zf4zWN45fIO5K wKaqBdGY+uiVCdemjt0FBmZ6vOejhlADlquWq+51 -----END CERTIFICATE-----Generated at Fri May 8 06:36:37 2026 by rpki-client