$ rpki-client -vvf rpki-rsync.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa File: 3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: FJTfWibvDfJlxKwSdQvd1OlEmo/01QfGdYhuzrqBBYc= Subject key identifier: 47:AD:89:A7:E7:98:A2:3B:C3:E7:4F:9A:5C:1B:AA:D5:A1:43:C8:67 Certificate issuer: /CN=CF5CA5E302311CD0DB0FEA840E7450370C063135 Certificate serial: 0AF5463F0911FBA572C98CA5107899DBD7507F37 Authority key identifier: CF:5C:A5:E3:02:31:1C:D0:DB:0F:EA:84:0E:74:50:37:0C:06:31:35 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF5CA5E302311CD0DB0FEA840E7450370C063135.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 May 2026 02:14:02 +0000 ROA not before: Sun 03 May 2026 02:09:02 +0000 ROA not after: Sun 02 May 2027 02:14:02 +0000 asID: 58369 IP address blocks: 103.106.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/CF5CA5E302311CD0DB0FEA840E7450370C063135.crl rsync://rpki-rsync.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/CF5CA5E302311CD0DB0FEA840E7450370C063135.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF5CA5E302311CD0DB0FEA840E7450370C063135.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f5:46:3f:09:11:fb:a5:72:c9:8c:a5:10:78:99:db:d7:50:7f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF5CA5E302311CD0DB0FEA840E7450370C063135 Validity Not Before: May 3 02:09:02 2026 GMT Not After : May 2 02:14:02 2027 GMT Subject: CN=47AD89A7E798A23BC3E74F9A5C1BAAD5A143C867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:fc:d9:c3:f1:05:df:74:78:1f:c4:70:4f: 0e:e2:aa:bc:ce:4b:1c:59:d6:c1:2b:50:85:84:a7: 13:1c:c4:ca:e0:e2:17:d8:a1:9c:37:9a:55:25:15: 21:c7:9c:22:27:d0:6e:db:60:64:f3:d3:86:8c:e2: 44:2a:ec:c7:b1:6c:83:3d:89:91:ab:cf:2d:bf:cb: cf:ec:c0:de:69:50:d5:b6:b8:37:04:34:7c:70:c5: c6:eb:eb:42:6f:46:95:58:92:88:ca:19:ba:93:2b: d4:59:14:91:a1:76:58:49:c6:97:8a:c5:57:8e:7e: 88:5e:70:64:81:95:d3:80:9a:c9:ad:bb:42:c5:86: 26:54:a3:91:57:0f:47:99:70:73:0b:8b:17:63:bf: 24:39:c8:17:6c:97:53:b7:c8:1b:f0:34:5e:b9:1b: 24:bb:38:ea:f8:d1:1b:06:6a:6d:0b:6c:02:84:42: 7a:e6:39:b5:5e:c7:d8:4b:14:12:e7:db:2f:3f:e4: 39:33:ef:90:26:79:87:0a:af:1f:de:0d:ff:fa:7f: 8e:29:36:96:6c:99:2a:88:ec:47:bc:26:ab:1b:92: 52:dd:b7:2a:4d:31:76:b9:de:14:b8:a0:0c:2c:18: 28:58:43:c0:55:17:bb:ca:c4:61:fa:e1:f7:ca:5f: 6a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:AD:89:A7:E7:98:A2:3B:C3:E7:4F:9A:5C:1B:AA:D5:A1:43:C8:67 X509v3 Authority Key Identifier: keyid:CF:5C:A5:E3:02:31:1C:D0:DB:0F:EA:84:0E:74:50:37:0C:06:31:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/CF5CA5E302311CD0DB0FEA840E7450370C063135.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF5CA5E302311CD0DB0FEA840E7450370C063135.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.145.0/24 Signature Algorithm: sha256WithRSAEncryption 59:02:d1:74:6e:ee:cc:71:27:2e:ad:54:08:71:27:8e:04:ca: 59:e9:6a:f4:1d:52:6f:dd:10:b9:7c:37:d2:ac:87:40:17:30: 98:0d:c8:26:5c:f8:9f:cf:f7:1d:1d:0f:a7:27:df:e3:d2:d8: 8b:45:46:de:8c:39:69:b6:82:ac:c4:13:9b:bc:c5:30:ee:a0: 9a:c2:be:0b:fe:34:33:1c:eb:87:f9:60:c7:53:99:a5:e9:1d: 02:03:f2:c9:d6:be:34:85:76:07:ca:7e:17:d0:ad:46:1b:31: 8a:2f:5d:9e:b4:e0:a0:7d:ad:71:8e:a9:cb:45:68:90:c5:74: f6:65:f7:78:6a:c3:e6:df:c2:54:39:72:ff:34:b4:a7:64:8a: d2:81:48:00:c7:59:d1:21:0f:f2:4b:19:77:b8:6b:a4:55:21: 38:e7:80:e3:25:e9:46:fd:15:7e:d0:d8:95:1b:33:10:b1:5a: 0b:53:7d:31:94:33:00:8d:a3:34:3b:1e:2e:39:35:06:cb:4e: f3:21:2c:e9:44:33:14:06:5c:b1:e3:0b:02:93:44:31:fe:9b: 63:4e:5a:af:d5:76:c1:4f:55:a9:22:74:0f:73:83:8f:8a:ac: c4:00:a9:d1:4f:53:2b:ee:61:2b:64:a8:0e:84:dd:d9:95:da: de:a8:2a:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCvVGPwkR+6VyyYylEHiZ29dQfzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Y1Q0E1RTMwMjMxMUNEMERCMEZFQTg0MEU3NDUwMzcw QzA2MzEzNTAeFw0yNjA1MDMwMjA5MDJaFw0yNzA1MDIwMjE0MDJaMDMxMTAvBgNV BAMTKDQ3QUQ4OUE3RTc5OEEyM0JDM0U3NEY5QTVDMUJBQUQ1QTE0M0M4NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpDvzZw/EF33R4H8RwTw7iqrzO SxxZ1sErUIWEpxMcxMrg4hfYoZw3mlUlFSHHnCIn0G7bYGTz04aM4kQq7MexbIM9 iZGrzy2/y8/swN5pUNW2uDcENHxwxcbr60JvRpVYkojKGbqTK9RZFJGhdlhJxpeK xVeOfohecGSBldOAmsmtu0LFhiZUo5FXD0eZcHMLixdjvyQ5yBdsl1O3yBvwNF65 GyS7OOr40RsGam0LbAKEQnrmObVex9hLFBLn2y8/5Dkz75AmeYcKrx/eDf/6f44p NpZsmSqI7Ee8JqsbklLdtypNMXa53hS4oAwsGChYQ8BVF7vKxGH64ffKX2pzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR62Jp+eYojvD50+aXBuq1aFDyGcwHwYDVR0j BBgwFoAUz1yl4wIxHNDbD+qEDnRQNwwGMTUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTE3OTFiNzMtYmIwOC00YTgzLWExOTctYjYzNjBmMWQ0N2RlLzAvQ0Y1Q0E1RTMw MjMxMUNEMERCMEZFQTg0MEU3NDUwMzcwQzA2MzEzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRjVDQTVFMzAyMzExQ0QwREIwRkVBODQwRTc0NTAzNzBDMDYz MTM1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzExNzkxYjczLWJiMDgtNGE4My1h MTk3LWI2MzYwZjFkNDdkZS8wLzMxMzAzMzJlMzEzMDM2MmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2qRMA0GCSqG SIb3DQEBCwUAA4IBAQBZAtF0bu7McScurVQIcSeOBMpZ6Wr0HVJv3RC5fDfSrIdA FzCYDcgmXPifz/cdHQ+nJ9/j0tiLRUbejDlptoKsxBObvMUw7qCawr4L/jQzHOuH +WDHU5ml6R0CA/LJ1r40hXYHyn4X0K1GGzGKL12etOCgfa1xjqnLRWiQxXT2Zfd4 asPm38JUOXL/NLSnZIrSgUgAx1nRIQ/ySxl3uGukVSE454DjJelG/RV+0NiVGzMQ sVoLU30xlDMAjaM0Ox4uOTUGy07zISzpRDMUBlyx4wsCk0Qx/ptjTlqv1XbBT1Wp InQPc4OPiqzEAKnRT1Mr7mErZKgOhN3ZldreqCol -----END CERTIFICATE-----Generated at Wed May 13 07:17:59 2026 by rpki-client