$ rpki-client -vvf rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa File: 3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa (raw, json) Hash identifier: 2CMQaUiQoQ303FG9N23TNjSo84VYynTfyliYe9EeUaQ= Subject key identifier: 87:58:D2:78:B8:9A:0A:9B:1F:92:02:DD:13:D8:2B:59:88:2C:E6:C3 Certificate issuer: /CN=42955E8C3DC21355BF059E242A225C672E72495D Certificate serial: 08B8F44F4122578C63BF10B488FF2BFD4EB091DC Authority key identifier: 42:95:5E:8C:3D:C2:13:55:BF:05:9E:24:2A:22:5C:67:2E:72:49:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42955E8C3DC21355BF059E242A225C672E72495D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa Signing time: Sun 03 May 2026 02:14:02 +0000 ROA not before: Sun 03 May 2026 02:09:02 +0000 ROA not after: Sun 02 May 2027 02:14:02 +0000 asID: 141461 IP address blocks: 103.111.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/42955E8C3DC21355BF059E242A225C672E72495D.crl rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/42955E8C3DC21355BF059E242A225C672E72495D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42955E8C3DC21355BF059E242A225C672E72495D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b8:f4:4f:41:22:57:8c:63:bf:10:b4:88:ff:2b:fd:4e:b0:91:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42955E8C3DC21355BF059E242A225C672E72495D Validity Not Before: May 3 02:09:02 2026 GMT Not After : May 2 02:14:02 2027 GMT Subject: CN=8758D278B89A0A9B1F9202DD13D82B59882CE6C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:01:d7:99:8b:44:d0:c1:4b:f4:ab:7e:d4:2c: fc:5c:cf:66:38:1e:c3:37:9e:cc:d7:be:23:e1:28: 57:45:3a:b6:36:7c:5d:69:83:0a:79:67:a4:35:13: 92:55:22:15:29:70:6f:66:63:82:e7:47:5b:ee:36: 31:4a:12:b2:7b:08:63:fe:48:0f:4a:a4:da:ea:c2: af:20:3e:0c:2e:c6:13:68:62:d5:77:a2:ae:1b:5c: 2d:c8:20:1a:f9:de:89:de:dd:7e:ef:93:4d:9d:6d: 4c:68:99:db:ea:97:aa:58:14:27:b6:bf:ac:c7:11: 4b:8d:ab:62:05:fd:ce:0d:b0:8f:79:91:4b:30:74: e9:61:7b:76:6e:c0:b9:ba:8f:b4:6c:4a:5f:58:67: 11:06:bb:8c:d6:b8:f8:29:04:1f:0c:b8:3e:36:87: 07:f3:91:0d:09:ee:ff:1a:1f:22:ea:bc:dc:b6:08: 92:2f:2f:16:a7:ab:7a:36:5f:e1:1e:65:94:43:09: dc:3d:b9:4f:b5:66:4e:82:2c:6a:b3:99:c1:81:53: e9:2e:4a:8c:13:3c:fa:89:c8:e5:14:59:b2:0c:99: ed:46:71:30:f5:3f:7b:35:e6:55:a8:27:05:73:02: e6:2a:d7:eb:1a:e0:0c:58:64:8e:a3:0c:fe:d3:52: 34:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:58:D2:78:B8:9A:0A:9B:1F:92:02:DD:13:D8:2B:59:88:2C:E6:C3 X509v3 Authority Key Identifier: keyid:42:95:5E:8C:3D:C2:13:55:BF:05:9E:24:2A:22:5C:67:2E:72:49:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/42955E8C3DC21355BF059E242A225C672E72495D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42955E8C3DC21355BF059E242A225C672E72495D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.143.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:e3:ec:59:f1:7f:1e:59:f3:b1:e4:85:3d:02:b0:a3:d3:7b: 09:e8:c8:15:6e:b9:a6:4a:97:83:00:06:54:93:d0:29:27:71: 6d:72:c4:9e:48:5b:71:d1:f3:5c:21:aa:f3:ad:ad:94:2f:68: b9:98:67:f1:35:2d:2d:bf:fe:32:6b:bf:36:b1:ee:ad:96:8c: 17:fd:4f:8b:1a:77:c9:02:0a:33:16:ec:d7:cc:3b:1a:93:17: d3:fd:c9:ec:e3:7b:f4:81:e4:ad:1b:0f:26:ca:1f:5d:79:4d: ed:86:9b:29:7b:f7:77:2c:64:ac:ad:2d:70:a0:f2:6a:de:59: 57:07:3c:9f:8a:cf:46:17:f6:4a:87:87:ee:0a:ac:b5:70:a5: eb:8d:9c:f9:a7:70:ea:46:e7:59:c8:52:d6:c2:bd:b5:55:60: ce:8c:8b:33:5f:ee:2b:60:f4:d4:6b:24:34:f1:7b:4a:32:72: e0:a7:79:19:f5:c2:ee:e2:7c:e5:95:a1:0b:2f:54:fb:71:76: 1b:9d:a8:5c:9d:91:c0:0a:20:fb:9a:05:af:11:76:d1:a4:86: fb:48:6b:c6:f1:bc:d1:54:0b:92:4d:0d:b5:7f:92:86:a8:b2: 2d:fa:26:60:67:19:f2:92:f6:c7:22:91:17:0d:f9:a7:d9:43: 36:35:0d:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCLj0T0EiV4xjvxC0iP8r/U6wkdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI5NTVFOEMzREMyMTM1NUJGMDU5RTI0MkEyMjVDNjcy RTcyNDk1RDAeFw0yNjA1MDMwMjA5MDJaFw0yNzA1MDIwMjE0MDJaMDMxMTAvBgNV BAMTKDg3NThEMjc4Qjg5QTBBOUIxRjkyMDJERDEzRDgyQjU5ODgyQ0U2QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNAdeZi0TQwUv0q37ULPxcz2Y4 HsM3nszXviPhKFdFOrY2fF1pgwp5Z6Q1E5JVIhUpcG9mY4LnR1vuNjFKErJ7CGP+ SA9KpNrqwq8gPgwuxhNoYtV3oq4bXC3IIBr53one3X7vk02dbUxomdvql6pYFCe2 v6zHEUuNq2IF/c4NsI95kUswdOlhe3ZuwLm6j7RsSl9YZxEGu4zWuPgpBB8MuD42 hwfzkQ0J7v8aHyLqvNy2CJIvLxanq3o2X+EeZZRDCdw9uU+1Zk6CLGqzmcGBU+ku SowTPPqJyOUUWbIMme1GcTD1P3s15lWoJwVzAuYq1+sa4AxYZI6jDP7TUjR1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUh1jSeLiaCpsfkgLdE9grWYgs5sMwHwYDVR0j BBgwFoAUQpVejD3CE1W/BZ4kKiJcZy5ySV0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTEyN2VhZmQtYTY3NC00NDM3LWFiZjEtZTU1MGRlYzEzN2ZhLzAvNDI5NTVFOEMz REMyMTM1NUJGMDU5RTI0MkEyMjVDNjcyRTcyNDk1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80Mjk1NUU4QzNEQzIxMzU1QkYwNTlFMjQyQTIyNUM2NzJFNzI0 OTVELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzExMjdlYWZkLWE2NzQtNDQzNy1h YmYxLWU1NTBkZWMxMzdmYS8wLzMxMzAzMzJlMzEzMTMxMmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNDM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb48wDQYJ KoZIhvcNAQELBQADggEBAE/j7Fnxfx5Z87HkhT0CsKPTewnoyBVuuaZKl4MABlST 0CkncW1yxJ5IW3HR81whqvOtrZQvaLmYZ/E1LS2//jJrvzax7q2WjBf9T4sad8kC CjMW7NfMOxqTF9P9yezje/SB5K0bDybKH115Te2Gmyl793csZKytLXCg8mreWVcH PJ+Kz0YX9kqHh+4KrLVwpeuNnPmncOpG51nIUtbCvbVVYM6MizNf7itg9NRrJDTx e0oycuCneRn1wu7ifOWVoQsvVPtxdhudqFydkcAKIPuaBa8RdtGkhvtIa8bxvNFU C5JNDbV/koaosi36JmBnGfKS9scikRcN+afZQzY1DSI= -----END CERTIFICATE-----Generated at Wed May 13 04:16:45 2026 by rpki-client