$ rpki-client -vvf rpki-rsync.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa File: 3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: SL/yrP/Fhy/G1QeVkJV1tJKwwMgNUneA0fZ0SOOfhaA= Subject key identifier: 9B:D9:FD:9B:95:5A:73:92:51:E6:02:65:A4:35:25:99:B3:FD:7F:C7 Certificate issuer: /CN=66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF Certificate serial: 1B8C846E80D987115885EBBBCCDC11A13D993056 Authority key identifier: 66:FB:E9:41:5C:F5:BC:2D:3D:9A:B3:A8:76:C9:0F:86:B6:36:C9:AF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 03:12:10 +0000 ROA not before: Sun 03 May 2026 03:07:10 +0000 ROA not after: Sun 02 May 2027 03:12:10 +0000 asID: 9341 IP address blocks: 103.181.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF.crl rsync://rpki-rsync.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8c:84:6e:80:d9:87:11:58:85:eb:bb:cc:dc:11:a1:3d:99:30:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF Validity Not Before: May 3 03:07:10 2026 GMT Not After : May 2 03:12:10 2027 GMT Subject: CN=9BD9FD9B955A739251E60265A4352599B3FD7FC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c5:06:b2:4f:30:26:57:1a:89:da:07:31:79: c6:28:73:a0:19:c5:8e:bb:93:90:01:ee:70:7c:04: 10:77:4e:49:1f:77:54:fc:98:fc:70:2d:84:7c:f1: 4d:17:08:12:a7:81:ac:87:81:ac:5b:70:21:6e:85: 1b:02:f6:ee:ca:a4:75:02:83:86:8d:91:ba:09:b0: 14:7e:ed:3f:f4:5d:e0:f6:c7:cd:28:f5:49:73:40: 6c:f8:d5:c7:1e:2b:b4:72:e8:ff:89:83:57:e3:2c: e7:3b:4f:19:17:14:a4:11:38:ca:81:6c:48:e8:64: 17:82:f3:92:90:de:12:7e:50:8a:0e:29:3d:24:90: 7d:28:91:71:7f:9c:76:77:3b:c8:9f:35:f0:ac:1f: 97:5a:3d:ad:f8:3c:05:f8:60:f5:d7:54:cc:57:c6: 77:cc:24:fb:f0:0c:eb:a8:f4:d0:3d:19:31:d9:e5: e1:bb:d6:42:09:7f:6f:d9:2d:39:fe:63:31:16:fa: c4:c9:8c:74:f6:a3:e6:ab:7a:04:58:d7:12:72:cc: 4a:b1:9a:8b:04:e8:5b:59:86:21:c7:1e:f4:6b:0e: 6b:9f:08:48:c3:ab:7b:b6:ad:e8:05:62:17:91:a9: 0e:89:43:59:a5:3b:23:41:1d:e0:ce:d3:24:29:fc: 75:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D9:FD:9B:95:5A:73:92:51:E6:02:65:A4:35:25:99:B3:FD:7F:C7 X509v3 Authority Key Identifier: keyid:66:FB:E9:41:5C:F5:BC:2D:3D:9A:B3:A8:76:C9:0F:86:B6:36:C9:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66FBE9415CF5BC2D3D9AB3A876C90F86B636C9AF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.251.0/24 Signature Algorithm: sha256WithRSAEncryption 77:db:04:2f:88:f0:0f:fc:f3:be:3e:65:ef:bb:44:a8:b9:d2: 32:2b:1d:b8:d7:14:01:8b:38:18:88:f2:eb:77:e5:46:0e:5b: a5:32:62:65:ad:38:77:cb:7b:4c:ed:26:58:23:b6:c7:7d:84: 9b:3b:a4:ee:5e:75:5a:a3:b8:65:6e:97:08:2c:44:8b:3b:1b: 48:39:fe:1e:9b:c2:2a:80:cb:95:0f:f9:ea:6c:18:1a:3d:49: 2f:4d:c3:b8:e7:dc:98:99:df:f7:07:be:18:7c:b9:58:4b:53: e1:d5:46:32:04:27:9f:fc:56:1d:66:fc:f8:5c:80:ca:a4:c4: 80:64:27:1b:12:83:53:a1:e1:98:37:7c:0f:27:98:88:11:0e: 11:64:97:b6:ff:59:ea:fa:e6:6c:94:2f:c2:29:74:b7:f7:e3: 2d:15:17:1f:80:fb:6e:69:dc:23:cb:bc:f3:03:8a:f5:da:8f: 7e:14:1c:32:4e:5a:59:15:e6:00:3c:df:c7:bb:dd:21:d9:b5: 36:7c:34:bc:ba:fe:b4:30:bf:d8:06:66:75:78:81:ba:16:77: 12:bb:1a:c4:96:aa:82:17:77:56:b0:05:c0:5b:7b:39:50:3b: c0:21:4e:74:02:00:63:82:c5:6f:f6:35:13:1d:d5:72:12:27: ef:b8:1b:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG4yEboDZhxFYheu7zNwRoT2ZMFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZGQkU5NDE1Q0Y1QkMyRDNEOUFCM0E4NzZDOTBGODZC NjM2QzlBRjAeFw0yNjA1MDMwMzA3MTBaFw0yNzA1MDIwMzEyMTBaMDMxMTAvBgNV BAMTKDlCRDlGRDlCOTU1QTczOTI1MUU2MDI2NUE0MzUyNTk5QjNGRDdGQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzxQayTzAmVxqJ2gcxecYoc6AZ xY67k5AB7nB8BBB3Tkkfd1T8mPxwLYR88U0XCBKngayHgaxbcCFuhRsC9u7KpHUC g4aNkboJsBR+7T/0XeD2x80o9UlzQGz41cceK7Ry6P+Jg1fjLOc7TxkXFKQROMqB bEjoZBeC85KQ3hJ+UIoOKT0kkH0okXF/nHZ3O8ifNfCsH5daPa34PAX4YPXXVMxX xnfMJPvwDOuo9NA9GTHZ5eG71kIJf2/ZLTn+YzEW+sTJjHT2o+aregRY1xJyzEqx mosE6FtZhiHHHvRrDmufCEjDq3u2regFYheRqQ6JQ1mlOyNBHeDO0yQp/HW1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUm9n9m5Vac5JR5gJlpDUlmbP9f8cwHwYDVR0j BBgwFoAUZvvpQVz1vC09mrOodskPhrY2ya8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGZhNTg5ZWYtOWYzZC00M2JjLWJhMzAtZmEzMjZiNzFmNzg3LzAvNjZGQkU5NDE1 Q0Y1QkMyRDNEOUFCM0E4NzZDOTBGODZCNjM2QzlBRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NkZCRTk0MTVDRjVCQzJEM0Q5QUIzQTg3NkM5MEY4NkI2MzZD OUFGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVmLTlmM2QtNDNiYy1i YTMwLWZhMzI2YjcxZjc4Ny8wLzMxMzAzMzJlMzEzODMxMmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe1+zANBgkqhkiG 9w0BAQsFAAOCAQEAd9sEL4jwD/zzvj5l77tEqLnSMisduNcUAYs4GIjy63flRg5b pTJiZa04d8t7TO0mWCO2x32Emzuk7l51WqO4ZW6XCCxEizsbSDn+HpvCKoDLlQ/5 6mwYGj1JL03DuOfcmJnf9we+GHy5WEtT4dVGMgQnn/xWHWb8+FyAyqTEgGQnGxKD U6HhmDd8DyeYiBEOEWSXtv9Z6vrmbJQvwil0t/fjLRUXH4D7bmncI8u88wOK9dqP fhQcMk5aWRXmADzfx7vdIdm1Nnw0vLr+tDC/2AZmdXiBuhZ3ErsaxJaqghd3VrAF wFt7OVA7wCFOdAIAY4LFb/Y1Ex3VchIn77gb2Q== -----END CERTIFICATE-----Generated at Tue May 5 13:28:42 2026 by rpki-client