$ rpki-client -vvf rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e20313530343635.roa File: 3130332e3136312e3133342e302f32342d3234203d3e20313530343635.roa (raw, json) Hash identifier: uML5u30yWokqHzJ1SmFvpIB0jm9tfbVvuIh4MPBrSV4= Subject key identifier: 54:D2:C2:14:DF:2E:ED:F5:5D:26:20:A6:03:37:6C:B8:D9:43:3A:F8 Certificate issuer: /CN=D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF Certificate serial: 0E1F2800975DCD9402B36BECF0BAA5EB68B9B9 Authority key identifier: D6:E7:68:69:11:E8:CE:E2:4C:FC:0D:A4:96:47:F1:F6:97:9E:E7:CF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e20313530343635.roa Signing time: Sun 03 May 2026 02:47:00 +0000 ROA not before: Sun 03 May 2026 02:42:00 +0000 ROA not after: Sun 02 May 2027 02:47:00 +0000 asID: 150465 IP address blocks: 103.161.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.crl rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:1f:28:00:97:5d:cd:94:02:b3:6b:ec:f0:ba:a5:eb:68:b9:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF Validity Not Before: May 3 02:42:00 2026 GMT Not After : May 2 02:47:00 2027 GMT Subject: CN=54D2C214DF2EEDF55D2620A603376CB8D9433AF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:af:a8:90:b9:ca:0e:e1:49:70:e4:16:74:d5: 5c:43:aa:9e:ca:17:03:e9:cd:78:af:f1:8c:16:e6: 62:3f:d3:78:4b:f0:f7:c1:a1:af:57:59:6d:e2:04: 3d:e6:a3:0e:97:d5:1b:0e:44:54:65:01:e1:b4:50: 2b:76:b6:57:6f:0a:8e:af:51:39:8d:8c:a5:64:90: fc:1a:64:5f:37:35:7c:15:bc:6f:2b:a5:5a:bd:ed: f2:6f:63:a4:c9:31:0f:c9:e9:0c:4e:f9:cc:a1:f1: b7:31:44:52:fc:d5:10:fb:ab:e3:da:7f:df:a1:b0: 23:ce:b6:7c:3c:d9:6a:9b:dd:7c:cc:56:9a:8f:6d: 3d:a5:de:42:4b:9c:97:b0:a3:3d:ff:5f:5a:39:8c: 25:4a:ca:ca:24:c1:fa:90:81:95:f4:13:e9:00:81: 7f:8d:bb:df:bf:5e:a9:25:8a:09:f5:e7:bf:d2:3f: 2f:d7:dc:16:74:82:e9:d2:d3:fd:ae:7a:7f:5a:31: c7:17:5a:46:07:f2:f4:68:95:9f:48:88:3c:69:f5: 75:01:5d:97:c4:d8:1d:27:13:2b:7c:7e:9d:13:96: f9:ee:11:bc:53:82:ca:12:ee:18:47:af:55:03:5b: 24:77:f2:16:c7:5e:11:f8:e7:1b:a3:de:94:c9:cf: c9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D2:C2:14:DF:2E:ED:F5:5D:26:20:A6:03:37:6C:B8:D9:43:3A:F8 X509v3 Authority Key Identifier: keyid:D6:E7:68:69:11:E8:CE:E2:4C:FC:0D:A4:96:47:F1:F6:97:9E:E7:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e20313530343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/24 Signature Algorithm: sha256WithRSAEncryption 57:28:84:3f:58:ee:58:d2:df:df:d3:99:0f:d0:a5:bd:98:33: de:cb:e8:b6:41:f1:10:27:3b:91:0f:58:24:9f:8f:65:a2:d9: 9e:82:a9:a7:01:7a:97:b8:ff:4d:fb:d7:8e:d8:fa:ca:f0:e5: ad:e9:69:1c:08:e7:b6:8e:8a:fb:b2:41:94:dc:67:ed:ce:ed: 95:44:58:df:98:25:fb:56:78:14:5b:91:f3:c9:45:d5:81:bf: c5:31:80:4a:f2:aa:ba:dd:a1:f6:d5:b7:88:b6:de:fc:82:4c: 9f:18:45:37:54:ae:af:36:7b:92:fc:cd:8c:9f:68:e3:ca:ba: bb:c9:c0:59:24:93:23:82:5e:13:04:aa:ae:5c:64:2f:8f:ea: 20:d8:16:79:8f:00:98:f0:a3:fd:ad:d7:3a:be:10:ae:7c:f0: 02:97:39:03:12:4d:86:58:f4:87:44:9b:c5:6c:9d:2f:8c:d7: e5:48:e6:db:4a:c1:41:35:c9:f2:fc:10:c9:33:2a:08:13:91: 7e:99:96:56:3e:7d:e3:19:91:32:0e:20:9f:4d:4e:8e:c1:11: b8:0d:dc:98:b5:a2:9b:69:bf:e2:28:66:17:49:9e:0e:ef:37: 84:e0:70:92:08:ed:56:d0:d0:99:66:1d:88:85:63:74:f1:c8: c7:cf:5e:11 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgITDh8oAJddzZQCs2vs8Lql62i5uTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhENkU3Njg2OTExRThDRUUyNENGQzBEQTQ5NjQ3RjFGNjk3 OUVFN0NGMB4XDTI2MDUwMzAyNDIwMFoXDTI3MDUwMjAyNDcwMFowMzExMC8GA1UE AxMoNTREMkMyMTRERjJFRURGNTVEMjYyMEE2MDMzNzZDQjhEOTQzM0FGODCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKqvqJC5yg7hSXDkFnTVXEOqnsoX A+nNeK/xjBbmYj/TeEvw98Ghr1dZbeIEPeajDpfVGw5EVGUB4bRQK3a2V28Kjq9R OY2MpWSQ/BpkXzc1fBW8byulWr3t8m9jpMkxD8npDE75zKHxtzFEUvzVEPur49p/ 36GwI862fDzZapvdfMxWmo9tPaXeQkucl7CjPf9fWjmMJUrKyiTB+pCBlfQT6QCB f427379eqSWKCfXnv9I/L9fcFnSC6dLT/a56f1oxxxdaRgfy9GiVn0iIPGn1dQFd l8TYHScTK3x+nROW+e4RvFOCyhLuGEevVQNbJHfyFsdeEfjnG6PelMnPyR0CAwEA AaOCAjYwggIyMB0GA1UdDgQWBBRU0sIU3y7t9V0mIKYDN2y42UM6+DAfBgNVHSME GDAWgBTW52hpEejO4kz8DaSWR/H2l57nzzAOBgNVHQ8BAf8EBAMCB4AwgYYGA1Ud HwR/MH0we6B5oHeGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC9ENkU3Njg2OTEx RThDRUUyNENGQzBEQTQ5NjQ3RjFGNjk3OUVFN0NGLmNybDByBggrBgEFBQcBAQRm MGQwYgYIKwYBBQUHMAKGVnJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVw by9JRE5JQy8xL0Q2RTc2ODY5MTFFOENFRTI0Q0ZDMERBNDk2NDdGMUY2OTc5RUU3 Q0YuY2VyMIGnBggrBgEFBQcBCwSBmjCBlzCBlAYIKwYBBQUHMAuGgYdyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODE1NjgwMWYtYTY3Yi00M2RkLThm NjItYjdiMGQ2MDMxN2FmLzAvMzEzMDMzMmUzMTM2MzEyZTMxMzMzNDJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGehhjANBgkq hkiG9w0BAQsFAAOCAQEAVyiEP1juWNLf39OZD9ClvZgz3svotkHxECc7kQ9YJJ+P ZaLZnoKppwF6l7j/TfvXjtj6yvDlrelpHAjnto6K+7JBlNxn7c7tlURY35gl+1Z4 FFuR88lF1YG/xTGASvKqut2h9tW3iLbe/IJMnxhFN1SurzZ7kvzNjJ9o48q6u8nA WSSTI4JeEwSqrlxkL4/qINgWeY8AmPCj/a3XOr4QrnzwApc5AxJNhlj0h0SbxWyd L4zX5Ujm20rBQTXJ8vwQyTMqCBORfpmWVj594xmRMg4gn01OjsERuA3cmLWim2m/ 4ihmF0meDu83hOBwkgjtVtDQmWYdiIVjdPHIx89eEQ== -----END CERTIFICATE-----Generated at Tue May 5 18:55:14 2026 by rpki-client