$ rpki-client -vvf rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa File: 3130332e382e39362e302f32322d3234203d3e203137343530.roa (raw, json) Hash identifier: op7PBlCux7baoU5Dzq/XmCUCefiNctSGk3W+HUFHPCM= Subject key identifier: FC:4E:3A:29:62:2A:FB:C9:B0:2D:88:C9:A7:BA:20:6E:55:1A:56:1F Certificate issuer: /CN=C97B9AA5127BAC47DAF01727DFF25E26F638643C Certificate serial: 5ED29E7CF5D918D7481A25ECE325809BB891C899 Authority key identifier: C9:7B:9A:A5:12:7B:AC:47:DA:F0:17:27:DF:F2:5E:26:F6:38:64:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa Signing time: Sun 03 May 2026 02:29:25 +0000 ROA not before: Sun 03 May 2026 02:24:25 +0000 ROA not after: Sun 02 May 2027 02:29:25 +0000 asID: 17450 IP address blocks: 103.8.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.crl rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d2:9e:7c:f5:d9:18:d7:48:1a:25:ec:e3:25:80:9b:b8:91:c8:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C97B9AA5127BAC47DAF01727DFF25E26F638643C Validity Not Before: May 3 02:24:25 2026 GMT Not After : May 2 02:29:25 2027 GMT Subject: CN=FC4E3A29622AFBC9B02D88C9A7BA206E551A561F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:09:80:8b:93:b8:a5:14:a5:3e:b5:d1:d9: 5f:d6:b4:5b:64:df:30:b1:5d:d6:e1:3e:de:98:cf: 09:c6:4e:bc:83:6e:af:2e:bc:9d:cf:70:dc:5d:99: 70:25:ed:4d:1b:b9:0e:65:b8:05:9a:ce:25:50:db: 7e:9a:18:f4:62:35:8b:b4:02:68:5a:0c:cd:64:f1: 3a:65:95:dc:1e:86:a1:32:5f:23:a9:8a:f5:a5:8c: 54:63:1a:fe:2a:b5:ff:08:de:9e:23:32:fb:44:92: a7:47:3f:cb:63:20:9f:88:5a:f8:1e:1f:5f:95:66: f9:86:a3:28:8a:70:46:5a:d4:a4:ba:17:05:fb:01: 7c:3f:e5:e8:ab:4f:d7:10:79:de:1b:4c:fc:ed:40: ec:d8:c3:b5:ed:74:c1:e1:4e:32:58:c7:b9:c6:8d: 77:47:2e:49:4b:ca:5d:df:03:06:da:95:f0:59:6c: 9b:23:1f:14:36:66:d7:37:72:25:1c:84:a2:f0:dd: d4:a5:f7:de:ce:a6:92:53:19:59:ee:29:f9:0f:6d: f3:cc:e2:48:6f:e2:f8:3c:ab:71:e6:b4:23:40:b6: 06:1a:a1:7a:d7:9f:38:b9:6d:fc:63:a6:20:bf:2e: 68:8c:e9:ec:7a:01:a7:b6:76:d0:91:11:77:f6:c8: e2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4E:3A:29:62:2A:FB:C9:B0:2D:88:C9:A7:BA:20:6E:55:1A:56:1F X509v3 Authority Key Identifier: keyid:C9:7B:9A:A5:12:7B:AC:47:DA:F0:17:27:DF:F2:5E:26:F6:38:64:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.96.0/22 Signature Algorithm: sha256WithRSAEncryption 68:d5:fc:f1:a4:d3:12:36:97:a1:4e:c4:41:0a:df:21:1a:f1: d4:25:ba:01:23:5a:8f:92:9b:96:4a:e2:79:d9:f8:5a:02:fe: fd:86:b4:cd:0c:10:db:8c:dc:7f:25:18:8f:c1:e7:78:c4:7b: 9a:4b:7b:fe:3a:f9:d1:66:aa:b5:99:85:62:52:48:f6:db:b0: 57:56:0a:f4:f2:f1:4e:93:4c:f4:91:5a:6d:63:84:8f:5e:93: 5b:70:52:76:eb:4e:65:25:c8:36:01:5e:c3:e9:2b:37:86:ca: 7d:a1:49:12:7a:4f:92:ad:e6:f6:cd:b6:43:de:6f:0b:b4:1e: 80:e3:11:73:45:bf:8b:d0:d2:7c:e6:09:f6:a3:b1:12:d9:38: 16:53:d3:43:7b:be:a6:3f:6a:5f:15:fd:9d:53:09:3a:1a:c0: c5:0d:15:d7:af:60:04:84:e0:7d:b2:03:ed:8e:4f:e3:47:ed: 3d:03:0c:39:6b:1d:27:6c:54:b8:36:f0:33:01:fe:eb:b4:e5: 1c:be:e3:4c:4c:1c:7f:9e:ce:af:4f:fe:a0:8c:82:cc:da:0a: 63:53:34:8b:ef:37:bc:72:1a:ab:19:60:9a:c2:7f:c9:42:37: 9f:78:a2:bb:04:01:d7:e6:5e:13:28:11:fe:62:1e:c7:5d:a9: ed:a6:8c:86 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUXtKefPXZGNdIGiXs4yWAm7iRyJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3QjlBQTUxMjdCQUM0N0RBRjAxNzI3REZGMjVFMjZG NjM4NjQzQzAeFw0yNjA1MDMwMjI0MjVaFw0yNzA1MDIwMjI5MjVaMDMxMTAvBgNV BAMTKEZDNEUzQTI5NjIyQUZCQzlCMDJEODhDOUE3QkEyMDZFNTUxQTU2MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvwmAi5O4pRSlPrXR2V/WtFtk 3zCxXdbhPt6YzwnGTryDbq8uvJ3PcNxdmXAl7U0buQ5luAWaziVQ236aGPRiNYu0 AmhaDM1k8TplldwehqEyXyOpivWljFRjGv4qtf8I3p4jMvtEkqdHP8tjIJ+IWvge H1+VZvmGoyiKcEZa1KS6FwX7AXw/5eirT9cQed4bTPztQOzYw7XtdMHhTjJYx7nG jXdHLklLyl3fAwbalfBZbJsjHxQ2Ztc3ciUchKLw3dSl997OppJTGVnuKfkPbfPM 4khv4vg8q3HmtCNAtgYaoXrXnzi5bfxjpiC/LmiM6ex6Aae2dtCREXf2yOJxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU/E46KWIq+8mwLYjJp7ogblUaVh8wHwYDVR0j BBgwFoAUyXuapRJ7rEfa8Bcn3/JeJvY4ZDwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDM4MDYxZjEtZmEzMC00YmQ2LTgxYTAtMmVjNjcwODM2YzQyLzAvQzk3QjlBQTUx MjdCQUM0N0RBRjAxNzI3REZGMjVFMjZGNjM4NjQzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOTdCOUFBNTEyN0JBQzQ3REFGMDE3MjdERkYyNUUyNkY2Mzg2 NDNDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDM4MDYxZjEtZmEzMC00YmQ2LTgx YTAtMmVjNjcwODM2YzQyLzAvMzEzMDMzMmUzODJlMzkzNjJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCGAwDQYJKoZIhvcNAQEL BQADggEBAGjV/PGk0xI2l6FOxEEK3yEa8dQlugEjWo+Sm5ZK4nnZ+FoC/v2GtM0M ENuM3H8lGI/B53jEe5pLe/46+dFmqrWZhWJSSPbbsFdWCvTy8U6TTPSRWm1jhI9e k1twUnbrTmUlyDYBXsPpKzeGyn2hSRJ6T5Kt5vbNtkPebwu0HoDjEXNFv4vQ0nzm CfajsRLZOBZT00N7vqY/al8V/Z1TCToawMUNFdevYASE4H2yA+2OT+NH7T0DDDlr HSdsVLg28DMB/uu05Ry+40xMHH+ezq9P/qCMgszaCmNTNIvvN7xyGqsZYJrCf8lC N594orsEAdfmXhMoEf5iHsddqe2mjIY= -----END CERTIFICATE-----Generated at Tue May 5 10:15:16 2026 by rpki-client