$ rpki-client -vvf rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38372e302f32342d3234203d3e2039333431.roa File: 3130332e32302e38372e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: cxf9fFshB4+bhjoui5wSDBBSpnsVcVvhifdGqqzNgz4= Subject key identifier: 6F:56:0A:D9:4A:72:7D:4C:F8:57:9A:88:33:20:B3:99:DA:E7:83:1A Certificate issuer: /CN=50341EA17A6CEE939B2CDFA832DC0324F6C64D51 Certificate serial: 23D86188DC9D0B3B5833634C34B0D491F8FABF37 Authority key identifier: 50:34:1E:A1:7A:6C:EE:93:9B:2C:DF:A8:32:DC:03:24:F6:C6:4D:51 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38372e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 02:58:17 +0000 ROA not before: Sun 03 May 2026 02:53:17 +0000 ROA not after: Sun 02 May 2027 02:58:17 +0000 asID: 9341 IP address blocks: 103.20.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.crl rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d8:61:88:dc:9d:0b:3b:58:33:63:4c:34:b0:d4:91:f8:fa:bf:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50341EA17A6CEE939B2CDFA832DC0324F6C64D51 Validity Not Before: May 3 02:53:17 2026 GMT Not After : May 2 02:58:17 2027 GMT Subject: CN=6F560AD94A727D4CF8579A883320B399DAE7831A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e4:0c:8b:bb:a4:7e:33:2c:6f:29:fa:c1:26: 69:b0:e1:3a:10:d6:22:95:93:cd:aa:73:6c:c9:e7: 8b:85:75:9c:2d:8d:27:11:2d:ac:be:2a:99:cf:23: 9f:35:5b:8a:7a:60:28:9a:82:03:29:68:1f:a3:d3: 0e:3a:e8:3b:e6:fc:48:a6:6e:56:fe:3c:1d:82:1a: dc:94:88:6a:09:14:25:f4:cb:82:4f:af:c6:c9:2c: 7c:5f:7d:e6:14:70:87:f3:d4:99:62:e8:02:69:73: cb:3c:ec:cf:b3:ae:2d:91:be:b0:e6:31:80:e7:0d: 57:f5:b8:3d:3a:80:58:2f:24:75:ae:ee:ea:3a:a0: 62:c3:8d:c4:44:d4:6b:8e:b0:8b:dc:16:59:db:06: b5:21:92:b8:ef:d4:e1:13:81:76:65:01:1e:53:25: c7:43:e2:24:c9:dc:8d:db:ce:dd:8d:d1:79:bb:d5: 34:0c:b8:8f:c6:26:e5:93:41:eb:0c:ad:70:c7:f6: 9a:f4:1d:d3:19:f6:e0:6a:60:39:bf:8b:b8:30:4e: 1f:ee:3f:09:d4:3e:6b:1e:c1:a9:5d:c0:d7:ca:8d: b8:33:1e:55:2a:a4:9f:58:ca:b8:52:fa:1f:46:48: 3c:7e:12:05:9c:8f:b5:6f:68:df:b3:e8:22:7b:66: 89:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:56:0A:D9:4A:72:7D:4C:F8:57:9A:88:33:20:B3:99:DA:E7:83:1A X509v3 Authority Key Identifier: keyid:50:34:1E:A1:7A:6C:EE:93:9B:2C:DF:A8:32:DC:03:24:F6:C6:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38372e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.87.0/24 Signature Algorithm: sha256WithRSAEncryption 52:d3:76:f2:46:d5:89:ed:6f:06:94:b5:a0:ca:7b:98:24:dd: ed:b5:40:90:28:dd:99:ef:6e:a1:02:7b:d4:4a:b1:94:25:68: 79:4d:e7:36:8d:65:9d:ee:2e:10:82:d2:f1:4c:ee:86:2a:b2: 52:91:73:18:67:2c:2c:f1:ba:9f:34:ae:6e:75:60:ec:e7:aa: 00:fe:73:f4:93:9e:ba:14:e4:04:f9:ca:c3:14:7c:e2:5c:af: e3:e8:90:d8:cd:6e:97:88:db:ae:51:be:04:79:5e:9a:c2:f0: 0a:e7:42:ea:69:75:8c:87:1a:e1:6a:ef:fa:4d:cc:eb:bd:0f: 9d:20:79:49:45:18:16:bf:00:42:49:b0:e7:79:2e:8a:20:b2: 22:d6:23:40:60:f5:da:da:25:ee:bc:d1:37:31:c4:58:f8:94: 79:de:7b:3e:40:fd:92:74:af:f3:be:0b:c2:79:22:b1:20:eb: c0:a2:72:7e:0b:29:fa:5f:e9:3a:a9:34:d3:5c:94:b2:0e:63: 44:82:88:1b:7e:c8:46:69:c3:82:a8:02:a4:24:53:d8:24:80: f9:f5:c2:2e:bd:86:d9:d4:ae:db:ba:07:d8:ea:f0:b2:8e:25: 5b:36:cc:3a:5b:3a:6d:26:46:f5:67:35:04:c5:9a:73:a1:ed: 70:55:a7:06 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUI9hhiNydCztYM2NMNLDUkfj6vzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTAzNDFFQTE3QTZDRUU5MzlCMkNERkE4MzJEQzAzMjRG NkM2NEQ1MTAeFw0yNjA1MDMwMjUzMTdaFw0yNzA1MDIwMjU4MTdaMDMxMTAvBgNV BAMTKDZGNTYwQUQ5NEE3MjdENENGODU3OUE4ODMzMjBCMzk5REFFNzgzMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp5AyLu6R+MyxvKfrBJmmw4ToQ 1iKVk82qc2zJ54uFdZwtjScRLay+KpnPI581W4p6YCiaggMpaB+j0w466Dvm/Eim blb+PB2CGtyUiGoJFCX0y4JPr8bJLHxffeYUcIfz1Jli6AJpc8s87M+zri2RvrDm MYDnDVf1uD06gFgvJHWu7uo6oGLDjcRE1GuOsIvcFlnbBrUhkrjv1OETgXZlAR5T JcdD4iTJ3I3bzt2N0Xm71TQMuI/GJuWTQesMrXDH9pr0HdMZ9uBqYDm/i7gwTh/u PwnUPmsewaldwNfKjbgzHlUqpJ9YyrhS+h9GSDx+EgWcj7VvaN+z6CJ7ZokTAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUb1YK2UpyfUz4V5qIMyCzmdrngxowHwYDVR0j BBgwFoAUUDQeoXps7pObLN+oMtwDJPbGTVEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWFhNDg5YTYtNTQ4NS00ODdmLWI1ZGQtOGY0ZWRlYjQ2YmNiLzAvNTAzNDFFQTE3 QTZDRUU5MzlCMkNERkE4MzJEQzAzMjRGNkM2NEQ1MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MDM0MUVBMTdBNkNFRTkzOUIyQ0RGQTgzMkRDMDMyNEY2QzY0 RDUxLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWFhNDg5YTYtNTQ4NS00ODdmLWI1 ZGQtOGY0ZWRlYjQ2YmNiLzAvMzEzMDMzMmUzMjMwMmUzODM3MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnFFcwDQYJKoZIhvcNAQEL BQADggEBAFLTdvJG1YntbwaUtaDKe5gk3e21QJAo3ZnvbqECe9RKsZQlaHlN5zaN ZZ3uLhCC0vFM7oYqslKRcxhnLCzxup80rm51YOznqgD+c/STnroU5AT5ysMUfOJc r+PokNjNbpeI265RvgR5XprC8ArnQuppdYyHGuFq7/pNzOu9D50geUlFGBa/AEJJ sOd5LoogsiLWI0Bg9draJe680TcxxFj4lHneez5A/ZJ0r/O+C8J5IrEg68Cicn4L Kfpf6TqpNNNclLIOY0SCiBt+yEZpw4KoAqQkU9gkgPn1wi69htnUrtu6B9jq8LKO JVs2zDpbOm0mRvVnNQTFmnOh7XBVpwY= -----END CERTIFICATE-----Generated at Tue May 5 13:26:45 2026 by rpki-client