$ rpki-client -vvf rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134392e302f32342d3234203d3e20313432333339.roa File: 3130332e3136392e3134392e302f32342d3234203d3e20313432333339.roa (raw, json) Hash identifier: OOkicQA5K86MoBkSuxZ02oUQ15K4MqZ+HWDN0IRHS5w= Subject key identifier: 21:82:06:ED:12:B7:F4:21:90:E1:B3:D4:8E:A0:C9:BD:9E:73:09:E4 Certificate issuer: /CN=498FC3DB03528A64214589740CA13E84E4775306 Certificate serial: 75758D264E966CC261111A0996404B9F9C60AFBF Authority key identifier: 49:8F:C3:DB:03:52:8A:64:21:45:89:74:0C:A1:3E:84:E4:77:53:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134392e302f32342d3234203d3e20313432333339.roa Signing time: Sun 03 May 2026 02:14:05 +0000 ROA not before: Sun 03 May 2026 02:09:05 +0000 ROA not after: Sun 02 May 2027 02:14:05 +0000 asID: 142339 IP address blocks: 103.169.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.crl rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:75:8d:26:4e:96:6c:c2:61:11:1a:09:96:40:4b:9f:9c:60:af:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498FC3DB03528A64214589740CA13E84E4775306 Validity Not Before: May 3 02:09:05 2026 GMT Not After : May 2 02:14:05 2027 GMT Subject: CN=218206ED12B7F42190E1B3D48EA0C9BD9E7309E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:19:58:49:f8:ee:c0:63:28:46:18:9e:69:e4: 36:a5:b3:fe:13:12:17:8b:72:06:95:9d:6b:d2:4c: ce:b4:c1:41:63:28:69:f4:cd:18:e5:ff:b2:c0:cd: 78:0d:55:91:dc:18:62:d0:9e:21:dd:91:22:f8:b3: a0:44:07:fd:ca:e7:eb:e9:00:7a:d9:62:12:8f:3c: 5e:ef:10:94:1e:52:61:65:c2:6f:89:d8:30:b1:90: f3:a1:15:46:97:2b:0f:6f:29:0b:4c:00:8e:2e:47: 14:30:d2:b4:23:46:3a:d9:b9:25:fc:58:e0:1c:0a: 9c:4f:17:7e:3d:26:0e:ee:2c:81:e5:bd:de:d3:c2: 4a:24:c0:0d:27:f8:94:54:ee:ac:56:70:9b:33:8b: ed:10:8d:ac:e1:fd:32:d9:1d:7b:3b:55:1e:e8:1a: 62:7b:7e:7e:1a:e3:ea:82:73:2d:0b:29:eb:e6:7b: 68:91:38:d7:51:b8:bb:c1:34:57:2c:bd:63:6e:e6: 16:42:96:fc:5c:2f:bb:5e:64:84:55:a6:24:f1:c4: 4d:3f:95:35:29:06:3c:eb:33:7c:a3:fe:9e:c3:b7: e9:28:ff:04:39:54:18:02:55:54:60:4d:f9:35:9f: ce:ff:92:7d:79:c8:9c:15:c9:d3:5d:cf:ef:be:e8: 5a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:82:06:ED:12:B7:F4:21:90:E1:B3:D4:8E:A0:C9:BD:9E:73:09:E4 X509v3 Authority Key Identifier: keyid:49:8F:C3:DB:03:52:8A:64:21:45:89:74:0C:A1:3E:84:E4:77:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134392e302f32342d3234203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.149.0/24 Signature Algorithm: sha256WithRSAEncryption 03:af:c1:53:93:7c:6a:d3:1f:b0:ea:ad:48:8c:43:5b:dc:84: 9c:40:b2:25:38:1f:c0:3a:4d:2f:ea:b0:72:aa:46:bf:53:6a: 17:4a:e3:fa:9c:4f:a1:ee:32:c7:cd:6f:81:05:69:64:51:30: 7e:36:c1:1b:6c:d2:de:b1:18:8d:2e:5c:6d:27:bf:4e:dc:46: 34:6c:ef:05:b1:ef:8d:37:a7:ce:db:34:a5:6e:35:cb:f8:20: 72:c5:8c:08:b8:c2:a8:ac:0a:da:00:8e:ff:ad:3a:73:5f:1f: f8:54:8e:fb:d2:e3:49:41:69:c9:78:ae:f4:ff:d7:1b:1a:61: db:00:18:68:e6:0b:6a:ec:e2:ea:eb:57:02:eb:46:7a:4e:83: 96:73:47:75:f5:74:1e:43:3b:08:c1:26:42:05:ab:d5:80:b9: e9:a8:27:d1:f1:79:0e:22:e7:37:9d:18:f7:68:33:88:20:af: 06:e1:86:79:89:f2:6e:99:7a:69:cd:4f:08:16:00:0d:76:cd: bb:3f:a7:ee:7b:ab:82:8f:ea:4a:7d:5c:5a:c8:6b:9a:21:87: 2b:6d:ce:8b:cb:16:1c:87:25:d2:a7:3d:82:e2:a4:fd:54:02: 58:da:6b:b9:64:0f:c2:ec:49:e8:d0:00:c5:60:d0:62:b2:51: df:58:b5:d6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdXWNJk6WbMJhERoJlkBLn5xgr78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk4RkMzREIwMzUyOEE2NDIxNDU4OTc0MENBMTNFODRF NDc3NTMwNjAeFw0yNjA1MDMwMjA5MDVaFw0yNzA1MDIwMjE0MDVaMDMxMTAvBgNV BAMTKDIxODIwNkVEMTJCN0Y0MjE5MEUxQjNENDhFQTBDOUJEOUU3MzA5RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNGVhJ+O7AYyhGGJ5p5Dals/4T EheLcgaVnWvSTM60wUFjKGn0zRjl/7LAzXgNVZHcGGLQniHdkSL4s6BEB/3K5+vp AHrZYhKPPF7vEJQeUmFlwm+J2DCxkPOhFUaXKw9vKQtMAI4uRxQw0rQjRjrZuSX8 WOAcCpxPF349Jg7uLIHlvd7TwkokwA0n+JRU7qxWcJszi+0Qjazh/TLZHXs7VR7o GmJ7fn4a4+qCcy0LKevme2iRONdRuLvBNFcsvWNu5hZClvxcL7teZIRVpiTxxE0/ lTUpBjzrM3yj/p7Dt+ko/wQ5VBgCVVRgTfk1n87/kn15yJwVydNdz+++6FoTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIYIG7RK39CGQ4bPUjqDJvZ5zCeQwHwYDVR0j BBgwFoAUSY/D2wNSimQhRYl0DKE+hOR3UwYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTE5MjAyMWUtMzkwNC00MTE1LWFmNWUtM2VkYjcxM2JhYTE0LzAvNDk4RkMzREIw MzUyOEE2NDIxNDU4OTc0MENBMTNFODRFNDc3NTMwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80OThGQzNEQjAzNTI4QTY0MjE0NTg5NzQwQ0ExM0U4NEU0Nzc1 MzA2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqZUwDQYJ KoZIhvcNAQELBQADggEBAAOvwVOTfGrTH7DqrUiMQ1vchJxAsiU4H8A6TS/qsHKq Rr9TahdK4/qcT6HuMsfNb4EFaWRRMH42wRts0t6xGI0uXG0nv07cRjRs7wWx7403 p87bNKVuNcv4IHLFjAi4wqisCtoAjv+tOnNfH/hUjvvS40lBacl4rvT/1xsaYdsA GGjmC2rs4urrVwLrRnpOg5ZzR3X1dB5DOwjBJkIFq9WAuemoJ9HxeQ4i5zedGPdo M4ggrwbhhnmJ8m6ZemnNTwgWAA12zbs/p+57q4KP6kp9XFrIa5ohhyttzovLFhyH JdKnPYLipP1UAljaa7lkD8LsSejQAMVg0GKyUd9YtdY= -----END CERTIFICATE-----Generated at Wed May 13 20:23:03 2026 by rpki-client