$ rpki-client -vvf rpki-rsync.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa File: 3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa (raw, json) Hash identifier: 77vqSQ2vYJSpRPJK+Drkv/GhwqBRFPysUVhKsIiSCoU= Subject key identifier: 40:17:0A:DB:53:2C:3B:76:54:3C:F6:01:5A:58:BC:4D:89:83:77:64 Certificate issuer: /CN=4C87F894274B3B0E1928C39974942F14C8A8B54C Certificate serial: 562404AAE0F867FF85F65E6D3602D6B52FE79E3C Authority key identifier: 4C:87:F8:94:27:4B:3B:0E:19:28:C3:99:74:94:2F:14:C8:A8:B5:4C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C87F894274B3B0E1928C39974942F14C8A8B54C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa Signing time: Sun 03 May 2026 02:15:52 +0000 ROA not before: Sun 03 May 2026 02:10:52 +0000 ROA not after: Sun 02 May 2027 02:15:52 +0000 asID: 140474 IP address blocks: 103.153.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/4C87F894274B3B0E1928C39974942F14C8A8B54C.crl rsync://rpki-rsync.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/4C87F894274B3B0E1928C39974942F14C8A8B54C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C87F894274B3B0E1928C39974942F14C8A8B54C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:24:04:aa:e0:f8:67:ff:85:f6:5e:6d:36:02:d6:b5:2f:e7:9e:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C87F894274B3B0E1928C39974942F14C8A8B54C Validity Not Before: May 3 02:10:52 2026 GMT Not After : May 2 02:15:52 2027 GMT Subject: CN=40170ADB532C3B76543CF6015A58BC4D89837764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7e:9c:1e:f0:e9:83:39:e0:d7:09:10:4f:f6: ba:1c:bd:9b:eb:a1:76:cf:df:0a:95:b1:22:98:0b: 2b:a0:74:d3:5c:62:b1:ad:e4:19:f5:72:c5:fe:db: 0e:06:d4:a1:07:10:e9:65:cc:de:8e:34:ff:c1:1a: ed:95:15:ca:ea:eb:bd:b3:b1:c8:b8:e0:48:59:65: 25:eb:01:19:67:74:d4:a9:52:15:ec:d6:86:bc:af: 85:b2:2a:51:17:ac:bd:3c:29:c3:e9:e7:58:26:52: 84:e9:db:f4:c4:1b:06:cd:c9:14:45:dc:62:d9:28: 51:9b:b8:c3:7c:19:e6:12:2e:23:fa:d1:9d:b5:92: 67:cf:38:74:52:68:1e:25:8f:f9:d3:e2:a7:b7:e7: 1f:f1:5f:4f:6c:d9:b1:33:1c:77:93:f0:0c:cc:7a: 29:62:37:b9:be:c0:a0:8a:b3:f0:d5:ed:58:b6:1d: 09:30:22:16:7a:15:e1:d6:fe:5c:9f:d9:9e:0c:ae: 48:fb:13:5c:38:1b:ce:8a:26:75:f5:cc:52:9c:2e: 26:fd:2f:94:d1:e6:6d:ed:3b:f9:04:78:74:c2:01: 33:9e:1e:79:9d:91:8d:ed:9e:46:bf:d7:76:57:f3: 5d:f2:73:80:a7:c9:bc:63:4d:6d:4b:2f:2f:7f:e6: f9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:17:0A:DB:53:2C:3B:76:54:3C:F6:01:5A:58:BC:4D:89:83:77:64 X509v3 Authority Key Identifier: keyid:4C:87:F8:94:27:4B:3B:0E:19:28:C3:99:74:94:2F:14:C8:A8:B5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/4C87F894274B3B0E1928C39974942F14C8A8B54C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C87F894274B3B0E1928C39974942F14C8A8B54C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.244.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:92:f7:05:40:91:e9:fa:d5:5b:7d:60:c5:df:9f:d0:e7:d2: b5:24:df:7a:7c:61:19:4e:af:da:a2:e4:57:e8:c1:98:7f:57: d5:60:56:8c:6d:f3:56:1a:ec:94:1e:6e:1a:27:27:48:ba:ec: 89:6a:f5:7e:9a:2a:89:74:87:78:17:47:f0:c6:d8:ed:9f:f6: 56:1b:ca:5a:9f:7c:4e:bc:9d:8c:89:ee:42:13:ce:f1:3a:e7: 5b:b8:e0:20:c5:14:7b:82:45:48:85:14:77:e2:e9:4c:de:c6: 73:ec:55:90:d3:79:af:c2:57:53:e0:1c:ff:f5:63:f9:2a:2a: 09:73:f9:12:36:1b:81:d9:ab:16:f3:17:96:e9:9c:d1:52:f1: cf:39:8a:22:42:fb:37:b0:40:ba:74:3f:63:7c:6b:f8:01:55: 07:b0:bc:aa:10:bb:cb:80:7e:fc:78:f7:e4:03:93:1e:b9:33: 8b:37:f8:b9:4c:06:fd:08:de:10:8a:d0:da:d2:33:ce:de:6a: 1c:b5:20:33:d9:86:be:25:2f:98:87:24:50:bd:12:92:af:1b: 42:a3:f4:78:30:9c:0e:c3:77:56:39:2a:5d:17:32:8c:81:2e: af:bc:fc:77:68:c9:f7:6a:18:4d:75:87:ed:93:77:54:a5:e9: a5:5d:d7:89 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUViQEquD4Z/+F9l5tNgLWtS/nnjwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM4N0Y4OTQyNzRCM0IwRTE5MjhDMzk5NzQ5NDJGMTRD OEE4QjU0QzAeFw0yNjA1MDMwMjEwNTJaFw0yNzA1MDIwMjE1NTJaMDMxMTAvBgNV BAMTKDQwMTcwQURCNTMyQzNCNzY1NDNDRjYwMTVBNThCQzREODk4Mzc3NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqfpwe8OmDOeDXCRBP9rocvZvr oXbP3wqVsSKYCyugdNNcYrGt5Bn1csX+2w4G1KEHEOllzN6ONP/BGu2VFcrq672z sci44EhZZSXrARlndNSpUhXs1oa8r4WyKlEXrL08KcPp51gmUoTp2/TEGwbNyRRF 3GLZKFGbuMN8GeYSLiP60Z21kmfPOHRSaB4lj/nT4qe35x/xX09s2bEzHHeT8AzM eiliN7m+wKCKs/DV7Vi2HQkwIhZ6FeHW/lyf2Z4Mrkj7E1w4G86KJnX1zFKcLib9 L5TR5m3tO/kEeHTCATOeHnmdkY3tnka/13ZX813yc4CnybxjTW1LLy9/5vnbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQBcK21MsO3ZUPPYBWli8TYmDd2QwHwYDVR0j BBgwFoAUTIf4lCdLOw4ZKMOZdJQvFMiotUwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdlMjZhYTMtMzA3My00Mjc2LWJkNzQtYWQ4NmYwOTljMjUzLzAvNEM4N0Y4OTQy NzRCM0IwRTE5MjhDMzk5NzQ5NDJGMTRDOEE4QjU0Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80Qzg3Rjg5NDI3NEIzQjBFMTkyOEMzOTk3NDk0MkYxNEM4QThC NTRDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3ZTI2YWEzLTMwNzMtNDI3Ni1i ZDc0LWFkODZmMDk5YzI1My8wLzMxMzAzMzJlMzEzNTMzMmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmfQwDQYJ KoZIhvcNAQELBQADggEBAHyS9wVAken61Vt9YMXfn9Dn0rUk33p8YRlOr9qi5Ffo wZh/V9VgVoxt81Ya7JQebhonJ0i67Ilq9X6aKol0h3gXR/DG2O2f9lYbylqffE68 nYyJ7kITzvE651u44CDFFHuCRUiFFHfi6UzexnPsVZDTea/CV1PgHP/1Y/kqKglz +RI2G4HZqxbzF5bpnNFS8c85iiJC+zewQLp0P2N8a/gBVQewvKoQu8uAfvx49+QD kx65M4s3+LlMBv0I3hCK0NrSM87eahy1IDPZhr4lL5iHJFC9EpKvG0Kj9HgwnA7D d1Y5Kl0XMoyBLq+8/HdoyfdqGE11h+2Td1Sl6aVd14k= -----END CERTIFICATE-----Generated at Wed May 13 11:50:32 2026 by rpki-client