$ rpki-client -vvf rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa File: 3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa (raw, json) Hash identifier: oeT54NjL50r7xCLxIqfzZvTu9HtL0qe2DtlLMw9OJ/s= Subject key identifier: 55:23:22:A2:5E:8D:7D:A6:ED:16:4E:79:BB:FA:09:A7:3C:AB:4C:A9 Certificate issuer: /CN=D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF Certificate serial: 3C224CED8A09778D86D25EA1752546E222383990 Authority key identifier: D6:E7:68:69:11:E8:CE:E2:4C:FC:0D:A4:96:47:F1:F6:97:9E:E7:CF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa Signing time: Sun 03 May 2026 02:46:59 +0000 ROA not before: Sun 03 May 2026 02:41:59 +0000 ROA not after: Sun 02 May 2027 02:46:59 +0000 asID: 150465 IP address blocks: 103.161.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.crl rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:22:4c:ed:8a:09:77:8d:86:d2:5e:a1:75:25:46:e2:22:38:39:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF Validity Not Before: May 3 02:41:59 2026 GMT Not After : May 2 02:46:59 2027 GMT Subject: CN=552322A25E8D7DA6ED164E79BBFA09A73CAB4CA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:23:a9:5d:d3:d4:2f:74:f4:d3:8a:de:c5: 02:87:04:a7:86:f6:58:5e:31:19:45:d8:b1:dc:19: 4d:0e:39:d1:69:6f:4b:9d:c0:cd:81:59:8e:79:28: 52:96:c0:72:fe:2d:15:a2:6d:0c:e9:a1:92:30:8b: f6:09:8f:0d:ab:b5:e2:6e:d8:81:fc:07:c6:80:5d: 0f:62:49:86:eb:d5:3f:f5:b1:1c:12:d3:ec:18:fa: 31:64:b4:40:66:09:4a:b8:28:46:00:c5:18:e7:8a: 29:13:70:fd:6d:30:3b:6c:f0:7a:3b:9d:db:76:a7: 87:62:dc:75:19:3a:25:73:94:cf:61:78:32:83:f9: 8f:1d:54:9f:09:ac:3e:26:19:8a:fc:3f:b4:7e:15: 1c:86:d7:fe:5a:bb:f1:de:39:08:59:11:2d:7d:83: fa:e8:6e:c6:32:8c:af:57:8a:c8:0f:ac:6c:02:37: 12:36:1a:d9:20:6e:51:07:ff:40:bd:a3:15:83:69: b3:ed:0f:b0:bd:78:ef:5a:86:53:64:96:80:de:05: 78:a1:29:16:2a:3c:88:39:64:bc:8b:a2:08:db:9f: e8:14:96:31:77:a7:18:c1:4a:a1:90:83:b7:7c:c6: 34:ae:08:9a:5b:d0:1f:7e:2b:ca:ec:bf:55:51:06: 38:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:23:22:A2:5E:8D:7D:A6:ED:16:4E:79:BB:FA:09:A7:3C:AB:4C:A9 X509v3 Authority Key Identifier: keyid:D6:E7:68:69:11:E8:CE:E2:4C:FC:0D:A4:96:47:F1:F6:97:9E:E7:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D6E7686911E8CEE24CFC0DA49647F1F6979EE7CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.135.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:be:3d:54:4d:14:46:50:d1:87:68:47:01:c9:8a:ad:8a:09: 18:3c:85:d1:8b:6a:a9:89:1d:f3:99:16:fc:90:ad:25:56:91: ca:5e:91:92:0d:7d:b6:cb:42:55:f8:59:91:0d:60:b3:02:e0: 6d:b5:0f:d7:a6:07:0c:85:1e:a2:df:67:04:17:6c:8a:91:38: a4:aa:2f:0f:00:09:00:fd:0c:b2:7b:27:ef:a3:5c:bd:6f:0e: 06:2c:55:31:cc:ca:df:5a:d9:34:5a:2b:37:ac:7f:4d:35:a6: 02:0c:24:26:14:45:18:90:97:62:3c:b4:8a:83:a8:ca:f1:47: 95:a2:dc:c9:a9:8f:e9:0b:6f:48:ce:ad:07:43:19:57:07:86: 75:da:1e:45:99:df:ec:eb:43:ba:00:02:6d:81:18:e0:77:df: 12:92:53:68:55:2b:7f:c8:c5:47:64:76:b6:15:ca:1e:8e:be: 50:84:d7:32:86:a1:03:47:58:fd:96:6b:b2:f5:10:e1:7e:bc: e6:db:df:45:7c:93:7e:ef:02:78:df:2b:da:87:c0:57:df:f4: d2:2a:d9:45:7d:d3:84:bb:b5:d3:18:91:ad:b2:3c:cc:cc:64: ca:ef:87:d3:dc:c4:d7:58:f5:70:35:04:45:6b:40:63:77:97: 0e:14:b6:f3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPCJM7YoJd42G0l6hdSVG4iI4OZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZFNzY4NjkxMUU4Q0VFMjRDRkMwREE0OTY0N0YxRjY5 NzlFRTdDRjAeFw0yNjA1MDMwMjQxNTlaFw0yNzA1MDIwMjQ2NTlaMDMxMTAvBgNV BAMTKDU1MjMyMkEyNUU4RDdEQTZFRDE2NEU3OUJCRkEwOUE3M0NBQjRDQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7tiOpXdPUL3T004rexQKHBKeG 9lheMRlF2LHcGU0OOdFpb0udwM2BWY55KFKWwHL+LRWibQzpoZIwi/YJjw2rteJu 2IH8B8aAXQ9iSYbr1T/1sRwS0+wY+jFktEBmCUq4KEYAxRjniikTcP1tMDts8Ho7 ndt2p4di3HUZOiVzlM9heDKD+Y8dVJ8JrD4mGYr8P7R+FRyG1/5au/HeOQhZES19 g/robsYyjK9XisgPrGwCNxI2GtkgblEH/0C9oxWDabPtD7C9eO9ahlNkloDeBXih KRYqPIg5ZLyLogjbn+gUljF3pxjBSqGQg7d8xjSuCJpb0B9+K8rsv1VRBjh5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVSMiol6NfabtFk55u/oJpzyrTKkwHwYDVR0j BBgwFoAU1udoaRHozuJM/A2klkfx9pee588wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODE1NjgwMWYtYTY3Yi00M2RkLThmNjItYjdiMGQ2MDMxN2FmLzAvRDZFNzY4Njkx MUU4Q0VFMjRDRkMwREE0OTY0N0YxRjY5NzlFRTdDRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENkU3Njg2OTExRThDRUUyNENGQzBEQTQ5NjQ3RjFGNjk3OUVF N0NGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoYcwDQYJ KoZIhvcNAQELBQADggEBAAq+PVRNFEZQ0YdoRwHJiq2KCRg8hdGLaqmJHfOZFvyQ rSVWkcpekZINfbbLQlX4WZENYLMC4G21D9emBwyFHqLfZwQXbIqROKSqLw8ACQD9 DLJ7J++jXL1vDgYsVTHMyt9a2TRaKzesf001pgIMJCYURRiQl2I8tIqDqMrxR5Wi 3Mmpj+kLb0jOrQdDGVcHhnXaHkWZ3+zrQ7oAAm2BGOB33xKSU2hVK3/IxUdkdrYV yh6OvlCE1zKGoQNHWP2Wa7L1EOF+vObb30V8k37vAnjfK9qHwFff9NIq2UV904S7 tdMYka2yPMzMZMrvh9PcxNdY9XA1BEVrQGN3lw4UtvM= -----END CERTIFICATE-----Generated at Tue May 5 18:56:34 2026 by rpki-client