$ rpki-client -vvf rpki-rsync.idnic.net/repo/a57e5b0e-5964-463f-8041-337f8055643c/0/3130332e3136362e36362e302f32332d3234203d3e203137393935.roa File: 3130332e3136362e36362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: /TEOvHICrNlzqHKdTSQimWH4eZASaMfqjyKyEfSs2B4= Subject key identifier: 35:4A:C3:4A:1F:84:E0:B3:69:A1:E1:D4:CE:44:03:35:31:02:15:D0 Certificate issuer: /CN=C685EF86C3EED3646B26DDA717952CDBC1AF938B Certificate serial: 38DAC90A7FA071106768E426804A87C951608C58 Authority key identifier: C6:85:EF:86:C3:EE:D3:64:6B:26:DD:A7:17:95:2C:DB:C1:AF:93:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C685EF86C3EED3646B26DDA717952CDBC1AF938B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a57e5b0e-5964-463f-8041-337f8055643c/0/3130332e3136362e36362e302f32332d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:56:41 +0000 ROA not before: Sun 03 May 2026 02:51:41 +0000 ROA not after: Sun 02 May 2027 02:56:41 +0000 asID: 17995 IP address blocks: 103.166.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a57e5b0e-5964-463f-8041-337f8055643c/0/C685EF86C3EED3646B26DDA717952CDBC1AF938B.crl rsync://rpki-rsync.idnic.net/repo/a57e5b0e-5964-463f-8041-337f8055643c/0/C685EF86C3EED3646B26DDA717952CDBC1AF938B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C685EF86C3EED3646B26DDA717952CDBC1AF938B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 18:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:da:c9:0a:7f:a0:71:10:67:68:e4:26:80:4a:87:c9:51:60:8c:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C685EF86C3EED3646B26DDA717952CDBC1AF938B Validity Not Before: May 3 02:51:41 2026 GMT Not After : May 2 02:56:41 2027 GMT Subject: CN=354AC34A1F84E0B369A1E1D4CE440335310215D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5a:dd:32:62:6f:98:aa:22:67:a6:74:72:71: 48:d4:2c:4c:e9:d7:3b:1a:d3:5a:e9:de:87:dd:d1: 41:d6:37:31:f0:22:6c:e8:05:f8:6a:85:e2:9f:e0: 93:01:89:d1:c4:bc:21:04:77:70:61:7b:2c:ab:fb: 22:79:46:0f:3a:68:e7:d0:04:23:4e:79:7e:26:d2: 4d:44:98:65:61:7b:05:5a:f4:2d:b0:f4:78:1d:9b: 3d:e3:e3:34:28:89:c4:1c:2e:0e:b5:52:1d:4c:03: 13:95:e1:e0:00:69:85:2f:2c:bc:ec:f3:ff:f2:67: a7:54:8a:1c:c7:e3:35:5c:63:14:ca:ae:c5:0c:6e: fe:07:d9:72:1b:6d:16:a4:b5:39:8b:cb:54:25:c2: 24:b7:9f:73:36:d4:04:4d:37:f6:61:3a:b2:7b:33: c2:bd:49:9b:9b:ad:74:33:21:05:d3:4c:55:7c:ae: 7b:7c:68:b2:28:2d:cb:16:1f:57:25:a4:6f:9d:f1: 29:a0:2f:94:70:1a:b3:70:14:9a:7a:be:13:a1:e2: 6c:e4:fe:99:45:27:38:e1:2d:b3:c7:33:1a:df:ca: 1d:39:71:f1:57:5e:fa:40:b3:5f:58:f5:37:db:31: c4:18:73:15:cb:26:23:cc:fa:4d:09:7e:02:08:ee: 5a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:4A:C3:4A:1F:84:E0:B3:69:A1:E1:D4:CE:44:03:35:31:02:15:D0 X509v3 Authority Key Identifier: keyid:C6:85:EF:86:C3:EE:D3:64:6B:26:DD:A7:17:95:2C:DB:C1:AF:93:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a57e5b0e-5964-463f-8041-337f8055643c/0/C685EF86C3EED3646B26DDA717952CDBC1AF938B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C685EF86C3EED3646B26DDA717952CDBC1AF938B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a57e5b0e-5964-463f-8041-337f8055643c/0/3130332e3136362e36362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.66.0/23 Signature Algorithm: sha256WithRSAEncryption 66:35:0d:24:00:d4:3d:c8:91:9a:1f:24:4d:44:69:aa:60:99: 41:68:9d:94:1d:b1:08:3c:30:3a:b4:61:c5:f1:ab:40:9a:39: 6a:e0:ca:c9:3a:80:02:66:b0:c8:64:26:ad:bf:95:01:42:f2: 11:6a:b9:f2:62:e2:15:4e:59:a4:14:cc:57:51:3c:67:34:c7: fe:8c:8a:41:07:82:31:ea:80:0b:7e:b2:e0:df:1b:f9:da:fd: bc:1e:37:20:af:1d:26:1e:06:47:fd:42:24:88:5d:09:60:a7: 9b:1b:e6:40:c0:f5:f3:ed:de:dd:0b:27:eb:00:67:48:c4:57: cd:92:63:1c:96:18:38:d0:98:29:a2:e7:4b:06:af:5e:95:d1: 00:d2:9b:9f:d8:58:33:c6:88:12:2f:de:74:6a:c0:64:f6:8c: c8:4c:47:7e:93:18:33:d8:f9:7d:97:fb:d5:4c:1b:69:8a:27: 88:be:95:d1:3a:dd:a9:2d:65:79:ef:46:59:f6:64:92:ae:b7: 73:47:19:9c:49:57:6c:91:c1:1e:95:32:ce:00:9f:5d:46:ce: b6:dd:32:3e:35:bf:04:2f:ec:ad:01:b9:2a:96:52:ad:27:14: 9e:9f:47:83:9e:00:84:91:1b:ab:10:7b:17:08:0a:50:da:76: e7:fe:c7:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUONrJCn+gcRBnaOQmgEqHyVFgjFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY4NUVGODZDM0VFRDM2NDZCMjZEREE3MTc5NTJDREJD MUFGOTM4QjAeFw0yNjA1MDMwMjUxNDFaFw0yNzA1MDIwMjU2NDFaMDMxMTAvBgNV BAMTKDM1NEFDMzRBMUY4NEUwQjM2OUExRTFENENFNDQwMzM1MzEwMjE1RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbWt0yYm+YqiJnpnRycUjULEzp 1zsa01rp3ofd0UHWNzHwImzoBfhqheKf4JMBidHEvCEEd3Bheyyr+yJ5Rg86aOfQ BCNOeX4m0k1EmGVhewVa9C2w9Hgdmz3j4zQoicQcLg61Uh1MAxOV4eAAaYUvLLzs 8//yZ6dUihzH4zVcYxTKrsUMbv4H2XIbbRaktTmLy1QlwiS3n3M21ARNN/ZhOrJ7 M8K9SZubrXQzIQXTTFV8rnt8aLIoLcsWH1clpG+d8SmgL5RwGrNwFJp6vhOh4mzk /plFJzjhLbPHMxrfyh05cfFXXvpAs19Y9TfbMcQYcxXLJiPM+k0JfgII7lqTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNUrDSh+E4LNpoeHUzkQDNTECFdAwHwYDVR0j BBgwFoAUxoXvhsPu02RrJt2nF5Us28Gvk4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTU3ZTViMGUtNTk2NC00NjNmLTgwNDEtMzM3ZjgwNTU2NDNjLzAvQzY4NUVGODZD M0VFRDM2NDZCMjZEREE3MTc5NTJDREJDMUFGOTM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNjg1RUY4NkMzRUVEMzY0NkIyNkREQTcxNzk1MkNEQkMxQUY5 MzhCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E1N2U1YjBlLTU5NjQtNDYzZi04 MDQxLTMzN2Y4MDU1NjQzYy8wLzMxMzAzMzJlMzEzNjM2MmUzNjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWemQjANBgkqhkiG 9w0BAQsFAAOCAQEAZjUNJADUPciRmh8kTURpqmCZQWidlB2xCDwwOrRhxfGrQJo5 auDKyTqAAmawyGQmrb+VAULyEWq58mLiFU5ZpBTMV1E8ZzTH/oyKQQeCMeqAC36y 4N8b+dr9vB43IK8dJh4GR/1CJIhdCWCnmxvmQMD18+3e3Qsn6wBnSMRXzZJjHJYY ONCYKaLnSwavXpXRANKbn9hYM8aIEi/edGrAZPaMyExHfpMYM9j5fZf71UwbaYon iL6V0TrdqS1lee9GWfZkkq63c0cZnElXbJHBHpUyzgCfXUbOtt0yPjW/BC/srQG5 KpZSrScUnp9Hg54AhJEbqxB7FwgKUNp25/7HpQ== -----END CERTIFICATE-----Generated at Fri May 8 06:35:42 2026 by rpki-client