$ rpki-client -vvf rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa File: 3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa (raw, json) Hash identifier: QjvSUWXkehuis++c3tdVVUbDO47gQG2w6XSjtlUzYcs= Subject key identifier: 91:0A:08:CD:DA:B7:BC:8C:6F:02:0F:D9:15:45:34:CD:75:46:A6:5A Certificate issuer: /CN=D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF Certificate serial: 3F67FE4ED6F3D2ABE4DB2423FA57B6174061B4F7 Authority key identifier: D6:E7:68:69:11:E8:CE:E2:4C:FC:0D:A4:96:47:F1:F6:97:9E:E7:CF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa Signing time: Sun 03 May 2026 02:46:58 +0000 ROA not before: Sun 03 May 2026 02:41:58 +0000 ROA not after: Sun 02 May 2027 02:46:58 +0000 asID: 59282 IP address blocks: 103.161.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.crl rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:67:fe:4e:d6:f3:d2:ab:e4:db:24:23:fa:57:b6:17:40:61:b4:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF Validity Not Before: May 3 02:41:58 2026 GMT Not After : May 2 02:46:58 2027 GMT Subject: CN=910A08CDDAB7BC8C6F020FD9154534CD7546A65A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:2e:f0:75:ce:8f:ee:87:fd:b0:99:54:ec: c9:1a:9c:2e:f2:0f:e7:12:f0:f8:3a:a6:3c:48:9c: 90:00:d7:f8:8e:a3:32:72:bd:66:c3:22:fa:f4:ec: 36:7f:24:21:c4:f4:a5:bf:d3:06:db:53:bb:de:90: 95:39:27:54:81:ff:ae:9f:cd:4a:59:50:d1:77:69: 10:df:c1:c8:65:8e:e5:37:6b:ef:3b:35:5b:a1:ac: 2e:e5:66:09:89:79:a8:3a:60:6d:2f:18:6c:d6:7a: 12:cc:d4:08:76:09:02:3a:70:0f:49:80:bb:49:44: 26:16:97:ea:ec:50:53:8d:20:30:bc:03:c6:80:83: 7e:bd:08:be:6c:1b:b1:b3:1a:35:bf:08:52:5f:be: 47:99:c6:8c:5c:f6:70:c6:71:40:09:b3:d6:69:07: 91:fc:b7:fd:82:2c:c3:45:cb:5e:08:95:21:42:47: f3:50:8f:64:4a:c9:e6:0a:60:7b:c9:ab:8e:ec:df: d8:8d:ea:d9:d5:9a:7f:37:e2:f8:49:91:f0:59:24: 0f:03:4b:09:95:64:18:17:3e:7e:5b:9a:bc:d8:38: 75:3c:c0:0e:fb:ce:06:0e:d9:e7:88:99:2e:50:20: 0d:78:ef:62:26:e8:64:c3:9f:63:cc:04:90:54:6b: ab:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:0A:08:CD:DA:B7:BC:8C:6F:02:0F:D9:15:45:34:CD:75:46:A6:5A X509v3 Authority Key Identifier: keyid:D6:E7:68:69:11:E8:CE:E2:4C:FC:0D:A4:96:47:F1:F6:97:9E:E7:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/23 Signature Algorithm: sha256WithRSAEncryption 59:bd:c1:1a:da:3c:f4:09:d8:9d:9a:ec:bb:e0:66:54:2e:66: 69:3e:5c:c2:84:99:12:8a:02:25:95:cf:c7:f8:c3:cf:ad:53: cd:23:d7:a4:cc:0a:ac:ce:e9:b8:30:2e:9c:48:0f:e9:4a:ac: 69:34:cb:59:6f:38:5f:08:9c:a7:31:7c:8e:48:84:ec:ce:42: 91:bf:f9:ac:57:a8:1f:ca:30:88:cf:56:d3:8a:a6:7d:ab:5f: db:53:e9:1f:51:8e:e9:b5:df:c6:d4:82:19:51:8e:4d:2a:72: eb:21:54:76:4e:0b:6f:1b:72:3d:8b:01:0b:86:62:dc:b4:94: 20:1b:00:1d:d8:32:31:72:10:43:0b:27:0f:60:ce:83:cb:a9: cc:e0:3a:a8:f7:7a:d6:9e:a0:6c:b6:27:1a:0a:34:d3:ff:4d: 1b:33:be:f1:d7:0c:d8:b9:b4:57:72:b7:17:08:2c:5b:56:c1: 6d:48:a0:99:0d:e1:05:ac:43:15:16:a0:7f:8f:fb:35:15:47: 69:a9:6d:1d:96:c4:f2:0d:76:2b:80:b9:96:26:10:31:b9:43: e0:62:4d:32:63:8c:36:a5:a5:00:92:67:37:42:fc:f5:67:2d: d8:5f:97:e1:60:b0:4b:bc:de:ca:a0:44:8a:04:ce:a4:af:ad: fd:82:af:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP2f+Ttbz0qvk2yQj+le2F0BhtPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZFNzY4NjkxMUU4Q0VFMjRDRkMwREE0OTY0N0YxRjY5 NzlFRTdDRjAeFw0yNjA1MDMwMjQxNThaFw0yNzA1MDIwMjQ2NThaMDMxMTAvBgNV BAMTKDkxMEEwOENEREFCN0JDOEM2RjAyMEZEOTE1NDUzNENENzU0NkE2NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF6y7wdc6P7of9sJlU7MkanC7y D+cS8Pg6pjxInJAA1/iOozJyvWbDIvr07DZ/JCHE9KW/0wbbU7vekJU5J1SB/66f zUpZUNF3aRDfwchljuU3a+87NVuhrC7lZgmJeag6YG0vGGzWehLM1Ah2CQI6cA9J gLtJRCYWl+rsUFONIDC8A8aAg369CL5sG7GzGjW/CFJfvkeZxoxc9nDGcUAJs9Zp B5H8t/2CLMNFy14IlSFCR/NQj2RKyeYKYHvJq47s39iN6tnVmn834vhJkfBZJA8D SwmVZBgXPn5bmrzYOHU8wA77zgYO2eeImS5QIA1472Im6GTDn2PMBJBUa6sDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkQoIzdq3vIxvAg/ZFUU0zXVGplowHwYDVR0j BBgwFoAU1udoaRHozuJM/A2klkfx9pee588wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODE1NjgwMWYtYTY3Yi00M2RkLThmNjItYjdiMGQ2MDMxN2FmLzAvRDZFNzY4Njkx MUU4Q0VFMjRDRkMwREE0OTY0N0YxRjY5NzlFRTdDRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENkU3Njg2OTExRThDRUUyNENGQzBEQTQ5NjQ3RjFGNjk3OUVF N0NGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6GGMA0GCSqG SIb3DQEBCwUAA4IBAQBZvcEa2jz0Cdidmuy74GZULmZpPlzChJkSigIllc/H+MPP rVPNI9ekzAqszum4MC6cSA/pSqxpNMtZbzhfCJynMXyOSITszkKRv/msV6gfyjCI z1bTiqZ9q1/bU+kfUY7ptd/G1IIZUY5NKnLrIVR2TgtvG3I9iwELhmLctJQgGwAd 2DIxchBDCycPYM6Dy6nM4Dqo93rWnqBsticaCjTT/00bM77x1wzYubRXcrcXCCxb VsFtSKCZDeEFrEMVFqB/j/s1FUdpqW0dlsTyDXYrgLmWJhAxuUPgYk0yY4w2paUA kmc3Qvz1Zy3YX5fhYLBLvN7KoESKBM6kr639gq/V -----END CERTIFICATE-----Generated at Tue May 5 18:54:57 2026 by rpki-client