$ rpki-client -vvf rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa File: 3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa (raw, json) Hash identifier: VZHkvbzveP1h564Iy05+FNc1buJ+NUe/OEOtBSa02rk= Subject key identifier: A3:84:48:DC:75:81:23:C3:13:89:B4:8A:19:E7:57:AA:E1:0E:09:5A Certificate issuer: /CN=42955E8C3DC21355BF059E242A225C672E72495D Certificate serial: 2F77DCB5D914248B6C0E2B678A2F67B08F1BEEC8 Authority key identifier: 42:95:5E:8C:3D:C2:13:55:BF:05:9E:24:2A:22:5C:67:2E:72:49:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42955E8C3DC21355BF059E242A225C672E72495D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa Signing time: Sun 03 May 2026 02:14:01 +0000 ROA not before: Sun 03 May 2026 02:09:01 +0000 ROA not after: Sun 02 May 2027 02:14:01 +0000 asID: 141461 IP address blocks: 103.111.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/42955E8C3DC21355BF059E242A225C672E72495D.crl rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/42955E8C3DC21355BF059E242A225C672E72495D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42955E8C3DC21355BF059E242A225C672E72495D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:77:dc:b5:d9:14:24:8b:6c:0e:2b:67:8a:2f:67:b0:8f:1b:ee:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42955E8C3DC21355BF059E242A225C672E72495D Validity Not Before: May 3 02:09:01 2026 GMT Not After : May 2 02:14:01 2027 GMT Subject: CN=A38448DC758123C31389B48A19E757AAE10E095A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1f:65:d1:5a:e9:98:3d:ed:49:7c:21:0d:66: ea:f6:b6:da:19:6c:88:23:49:2b:7d:08:ad:6e:2e: 27:5a:54:15:a8:55:b0:9d:c5:6e:c3:07:bc:40:e5: 38:d2:a5:02:d7:ba:f1:2e:51:8a:28:ef:d6:4f:17: 69:71:da:4f:89:5a:c7:af:cd:7a:d6:1f:7f:ad:33: 5e:87:13:77:04:88:c8:0c:c9:9f:46:7a:56:16:63: 8a:01:db:b6:c7:b5:e2:34:23:64:3c:2b:02:0c:6f: 4c:43:b9:93:27:61:ce:72:2a:b3:94:c7:c4:cc:70: 0c:f6:e7:ca:02:a4:66:8b:e0:f8:5c:78:e7:a0:93: 3e:a8:d1:4c:be:ee:f7:c8:cc:c7:17:ef:e9:9c:ed: 55:ee:db:a3:95:92:4c:0a:48:f4:26:3b:90:d9:d3: c6:fd:83:11:e4:57:68:46:09:c2:22:26:22:28:96: 98:9c:fd:40:9a:09:ee:d0:88:63:13:9a:73:a5:8b: fd:84:01:6e:bf:b2:e7:1f:2f:46:29:57:78:07:3f: 3b:4e:96:19:e5:89:c1:74:27:2c:8f:55:12:2d:38: ed:c9:57:ab:c9:db:a2:0b:46:3d:34:d5:74:f7:dc: ea:0f:34:ca:58:9c:c2:ab:cd:8a:c4:1a:20:ed:19: b4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:84:48:DC:75:81:23:C3:13:89:B4:8A:19:E7:57:AA:E1:0E:09:5A X509v3 Authority Key Identifier: keyid:42:95:5E:8C:3D:C2:13:55:BF:05:9E:24:2A:22:5C:67:2E:72:49:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/42955E8C3DC21355BF059E242A225C672E72495D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42955E8C3DC21355BF059E242A225C672E72495D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.140.0/24 Signature Algorithm: sha256WithRSAEncryption 48:0b:e8:ae:9f:45:89:84:34:2a:8e:79:23:97:47:7e:71:6d: 8e:7b:69:89:e6:3a:c1:30:94:2d:e3:44:18:71:0f:d6:c8:fe: 01:1e:90:79:27:3d:e8:ce:c1:1a:ee:17:b4:1e:2d:48:c6:a5: 0c:09:d0:d6:1c:93:f5:07:af:56:1d:07:52:6b:64:8f:8c:70: 63:5d:0b:55:cb:2d:ef:ff:bd:53:b9:c9:a2:f7:ef:01:5c:96: ea:2e:13:99:20:99:c6:7e:df:05:da:1d:4d:54:c4:52:78:21: a6:00:72:f9:4c:2f:cb:c4:e5:6d:85:43:dd:41:b3:8e:ae:bf: ab:1c:35:eb:fe:ce:ef:3b:03:9c:4e:4d:38:60:c4:2c:e3:14: 07:6f:14:03:89:cc:da:57:6a:37:1b:33:79:f5:24:b1:b2:ae: dd:47:4a:da:b5:6a:55:f3:08:2a:ca:96:53:8d:4b:1e:54:6c: 76:58:a8:d5:a8:15:bb:12:95:40:31:46:be:de:c7:ac:55:99: a1:2f:42:eb:01:e9:5c:ea:63:a2:0a:31:27:c7:70:0f:2b:f8: e4:a2:e6:2f:d3:11:e6:99:0c:2a:38:14:aa:a1:33:41:f5:06: 34:41:0f:f8:73:85:e4:00:b3:7e:ff:0c:b0:5a:07:3b:a9:e1: d5:af:07:8b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUL3fctdkUJItsDitnii9nsI8b7sgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI5NTVFOEMzREMyMTM1NUJGMDU5RTI0MkEyMjVDNjcy RTcyNDk1RDAeFw0yNjA1MDMwMjA5MDFaFw0yNzA1MDIwMjE0MDFaMDMxMTAvBgNV BAMTKEEzODQ0OERDNzU4MTIzQzMxMzg5QjQ4QTE5RTc1N0FBRTEwRTA5NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsH2XRWumYPe1JfCENZur2ttoZ bIgjSSt9CK1uLidaVBWoVbCdxW7DB7xA5TjSpQLXuvEuUYoo79ZPF2lx2k+JWsev zXrWH3+tM16HE3cEiMgMyZ9GelYWY4oB27bHteI0I2Q8KwIMb0xDuZMnYc5yKrOU x8TMcAz258oCpGaL4PhceOegkz6o0Uy+7vfIzMcX7+mc7VXu26OVkkwKSPQmO5DZ 08b9gxHkV2hGCcIiJiIolpic/UCaCe7QiGMTmnOli/2EAW6/sucfL0YpV3gHPztO lhnlicF0JyyPVRItOO3JV6vJ26ILRj001XT33OoPNMpYnMKrzYrEGiDtGbRnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUo4RI3HWBI8MTibSKGedXquEOCVowHwYDVR0j BBgwFoAUQpVejD3CE1W/BZ4kKiJcZy5ySV0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTEyN2VhZmQtYTY3NC00NDM3LWFiZjEtZTU1MGRlYzEzN2ZhLzAvNDI5NTVFOEMz REMyMTM1NUJGMDU5RTI0MkEyMjVDNjcyRTcyNDk1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80Mjk1NUU4QzNEQzIxMzU1QkYwNTlFMjQyQTIyNUM2NzJFNzI0 OTVELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzExMjdlYWZkLWE2NzQtNDQzNy1h YmYxLWU1NTBkZWMxMzdmYS8wLzMxMzAzMzJlMzEzMTMxMmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNDM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb4wwDQYJ KoZIhvcNAQELBQADggEBAEgL6K6fRYmENCqOeSOXR35xbY57aYnmOsEwlC3jRBhx D9bI/gEekHknPejOwRruF7QeLUjGpQwJ0NYck/UHr1YdB1JrZI+McGNdC1XLLe// vVO5yaL37wFcluouE5kgmcZ+3wXaHU1UxFJ4IaYAcvlML8vE5W2FQ91Bs46uv6sc Nev+zu87A5xOTThgxCzjFAdvFAOJzNpXajcbM3n1JLGyrt1HStq1alXzCCrKllON Sx5UbHZYqNWoFbsSlUAxRr7ex6xVmaEvQusB6VzqY6IKMSfHcA8r+OSi5i/TEeaZ DCo4FKqhM0H1BjRBD/hzheQAs37/DLBaBzup4dWvB4s= -----END CERTIFICATE-----Generated at Wed May 13 04:09:27 2026 by rpki-client