$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313531353831.roa File: 3130332e3131322e3133392e302f32342d3234203d3e20313531353831.roa (raw, json) Hash identifier: WaKqkDc0ouK52ognaeUSTfkx6wRBT7bM1uvEek+pi80= Subject key identifier: 4C:1A:30:26:99:0E:9C:03:F6:F5:9F:D9:DF:4B:F6:DD:4E:40:30:EE Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 1C3B3E478A51033C7F9793A931DCDEDA688844B6 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313531353831.roa Signing time: Sun 03 May 2026 02:12:47 +0000 ROA not before: Sun 03 May 2026 02:07:47 +0000 ROA not after: Sun 02 May 2027 02:12:47 +0000 asID: 151581 IP address blocks: 103.112.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:3b:3e:47:8a:51:03:3c:7f:97:93:a9:31:dc:de:da:68:88:44:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:47 2026 GMT Not After : May 2 02:12:47 2027 GMT Subject: CN=4C1A3026990E9C03F6F59FD9DF4BF6DD4E4030EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a5:95:af:b0:a7:c2:92:a6:3e:fd:8b:e7:44: 05:34:c8:a3:5d:1d:e6:3b:35:13:53:f3:ed:2a:8e: 21:f3:42:47:eb:70:1a:75:ca:f2:f9:da:b0:dd:a1: b1:ff:83:8d:15:56:23:68:0a:49:01:4e:b3:38:10: 12:ae:74:95:21:ec:2a:83:b7:c6:bd:3b:24:74:97: 95:b0:11:0d:94:b4:f4:f9:f5:af:b1:a0:99:08:2b: 08:91:dd:b4:3e:5a:24:56:00:be:41:46:d4:61:5c: 89:03:02:31:04:02:60:dd:20:be:59:e2:30:79:81: 92:91:6a:f2:52:24:2d:b5:16:9f:b9:26:15:0f:f4: a9:5c:9f:48:d9:1a:8c:a5:43:a6:f3:2a:e5:ac:23: 49:52:64:7b:31:ae:e5:4c:8d:81:7d:a0:c2:84:2e: f2:2d:1e:90:38:f4:97:71:e3:91:32:5e:75:10:f5: 34:c8:9a:ce:ba:ec:3c:09:16:9c:ff:86:94:7b:29: 17:e4:43:b9:4a:95:6f:a1:cc:fb:d9:aa:27:50:8e: b0:17:57:c3:d7:08:37:6e:5b:95:0c:19:85:2e:cf: 4e:87:a5:fc:47:93:c1:3e:e5:00:fb:2a:23:bd:cd: 21:86:8a:e0:8e:1f:39:cd:b3:97:fa:fb:ee:72:51: c2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1A:30:26:99:0E:9C:03:F6:F5:9F:D9:DF:4B:F6:DD:4E:40:30:EE X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313531353831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.139.0/24 Signature Algorithm: sha256WithRSAEncryption 42:89:0b:b0:55:74:d9:8d:e2:cf:e1:62:0b:dc:01:10:a7:bc: 95:58:b5:fe:10:e2:4a:08:00:97:3f:e6:69:6c:2b:e5:62:59: fc:b5:d4:c4:a4:3f:83:a5:31:7b:20:c7:5b:82:d7:ba:da:9c: 8d:df:1f:53:fc:90:20:a3:0d:07:2e:7c:f0:e6:c8:7c:73:34: 14:dc:e2:17:5e:23:a2:36:2e:ed:b1:fc:f5:b0:a3:28:b3:65: 9e:e7:1d:6c:0e:bb:3e:17:3a:83:29:b3:52:87:2e:d2:d1:54: 58:00:5c:ad:a3:f1:6f:f5:9f:73:7c:f1:22:75:fd:38:c7:49: 70:10:cb:82:a6:70:d8:b3:a4:ab:af:fc:16:e4:7d:d0:e4:e2: 00:68:92:98:ab:4f:10:33:42:d2:18:a7:1d:1f:57:b8:8c:ca: 48:a7:6f:f7:ff:a5:02:4a:16:0e:2a:c8:44:82:56:c9:12:74: d6:0f:59:2c:d7:6c:ee:57:5b:65:ea:ec:13:18:8b:59:b4:4d: 71:9b:1c:db:29:d9:bd:6d:20:9a:73:33:ee:a0:60:20:36:6d: 0f:c2:ef:c3:2d:ff:67:51:c5:94:55:fe:83:fd:ea:bb:14:52: b3:b5:b2:4d:a0:ea:67:28:71:91:84:d2:5f:95:3a:ae:ec:76: d4:33:01:87 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHDs+R4pRAzx/l5OpMdze2miIRLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NDdaFw0yNzA1MDIwMjEyNDdaMDMxMTAvBgNV BAMTKDRDMUEzMDI2OTkwRTlDMDNGNkY1OUZEOURGNEJGNkRENEU0MDMwRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChpZWvsKfCkqY+/YvnRAU0yKNd HeY7NRNT8+0qjiHzQkfrcBp1yvL52rDdobH/g40VViNoCkkBTrM4EBKudJUh7CqD t8a9OyR0l5WwEQ2UtPT59a+xoJkIKwiR3bQ+WiRWAL5BRtRhXIkDAjEEAmDdIL5Z 4jB5gZKRavJSJC21Fp+5JhUP9Klcn0jZGoylQ6bzKuWsI0lSZHsxruVMjYF9oMKE LvItHpA49Jdx45EyXnUQ9TTIms667DwJFpz/hpR7KRfkQ7lKlW+hzPvZqidQjrAX V8PXCDduW5UMGYUuz06HpfxHk8E+5QD7KiO9zSGGiuCOHznNs5f6++5yUcJFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTBowJpkOnAP29Z/Z30v23U5AMO4wHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIswDQYJ KoZIhvcNAQELBQADggEBAEKJC7BVdNmN4s/hYgvcARCnvJVYtf4Q4koIAJc/5mls K+ViWfy11MSkP4OlMXsgx1uC17ranI3fH1P8kCCjDQcufPDmyHxzNBTc4hdeI6I2 Lu2x/PWwoyizZZ7nHWwOuz4XOoMps1KHLtLRVFgAXK2j8W/1n3N88SJ1/TjHSXAQ y4KmcNizpKuv/BbkfdDk4gBokpirTxAzQtIYpx0fV7iMykinb/f/pQJKFg4qyESC VskSdNYPWSzXbO5XW2Xq7BMYi1m0TXGbHNsp2b1tIJpzM+6gYCA2bQ/C78Mt/2dR xZRV/oP96rsUUrO1sk2g6mcocZGE0l+VOq7sdtQzAYc= -----END CERTIFICATE-----Generated at Wed May 13 10:20:13 2026 by rpki-client