$ rpki-client -vvf rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: N+subOKk1O0aLwezy/FI1acpxPEti6iKIkHeL/X8z5w= Subject key identifier: 5A:5A:B4:89:30:97:C2:70:65:B3:71:3F:E6:F7:6A:A5:74:0D:9E:51 Certificate issuer: /CN=62531E8BF877F9190055D7D857C21ECBDCFAC237 Certificate serial: 4C9A6B7C7688DF38D7C2790DBFCBB385201F146B Authority key identifier: 62:53:1E:8B:F8:77:F9:19:00:55:D7:D8:57:C2:1E:CB:DC:FA:C2:37 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62531E8BF877F9190055D7D857C21ECBDCFAC237.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa Signing time: Sun 03 May 2026 02:16:53 +0000 ROA not before: Sun 03 May 2026 02:11:53 +0000 ROA not after: Sun 02 May 2027 02:16:53 +0000 asID: 140456 IP address blocks: 103.153.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/62531E8BF877F9190055D7D857C21ECBDCFAC237.crl rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/62531E8BF877F9190055D7D857C21ECBDCFAC237.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62531E8BF877F9190055D7D857C21ECBDCFAC237.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:9a:6b:7c:76:88:df:38:d7:c2:79:0d:bf:cb:b3:85:20:1f:14:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62531E8BF877F9190055D7D857C21ECBDCFAC237 Validity Not Before: May 3 02:11:53 2026 GMT Not After : May 2 02:16:53 2027 GMT Subject: CN=5A5AB4893097C27065B3713FE6F76AA5740D9E51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:07:5a:03:07:62:8c:27:df:0a:0f:b8:f2:b2: f5:f2:67:3c:b3:52:56:f2:47:ed:f1:c6:00:10:8f: 3c:79:16:73:67:c3:9f:d5:ce:27:3b:32:3f:84:2b: ea:71:f9:6b:88:0d:5d:eb:9f:18:bd:db:4f:cc:42: 2a:63:1d:41:04:16:5f:c7:b4:ee:f9:af:e8:20:20: 79:33:a5:16:72:dc:38:3d:38:92:d9:de:15:5f:7a: 2c:20:d0:2b:bb:d4:c6:4e:c6:12:f3:83:d9:af:53: 24:9a:70:7e:49:cd:ee:bc:fd:38:36:d9:be:ee:ad: d3:10:5f:22:38:75:51:2a:89:f7:ca:88:68:64:0e: b0:62:e8:6d:a7:42:6c:b1:fc:82:ef:e0:21:9d:a1: d9:1d:81:37:30:72:cd:7b:5a:1c:07:95:df:fe:9a: 18:2e:18:02:9e:eb:27:40:6f:46:32:0e:a4:63:90: f8:ed:0c:4f:10:f9:5a:52:3e:03:be:52:e0:28:55: b8:c0:b8:db:27:47:59:2a:0b:52:24:e3:22:4c:09: df:38:cf:72:e2:01:e5:ab:2d:0d:4f:bf:ca:7f:e7: 1f:12:b9:08:ee:59:d7:fe:fc:79:c9:c7:06:90:e3: 33:a2:ed:79:e2:f4:a5:0e:d1:a7:6c:d3:f1:d5:1a: 0f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5A:B4:89:30:97:C2:70:65:B3:71:3F:E6:F7:6A:A5:74:0D:9E:51 X509v3 Authority Key Identifier: keyid:62:53:1E:8B:F8:77:F9:19:00:55:D7:D8:57:C2:1E:CB:DC:FA:C2:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/62531E8BF877F9190055D7D857C21ECBDCFAC237.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62531E8BF877F9190055D7D857C21ECBDCFAC237.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/24 Signature Algorithm: sha256WithRSAEncryption a6:7e:95:1b:70:8c:30:bc:71:2c:e8:77:37:6d:75:25:9c:5c: 61:85:55:f0:9c:55:99:bb:79:a3:1e:ef:78:54:c8:bc:0f:89: a6:ef:53:0b:9d:6e:34:29:27:de:97:7f:e7:e5:74:fa:a4:91: 32:fb:5f:f0:d3:ab:db:4c:f1:5c:58:e1:93:22:79:a2:27:5a: 23:8e:74:79:36:aa:1d:ac:66:dc:5b:8a:25:26:76:79:d9:38: 76:21:d9:8f:72:c7:9b:5f:cc:a6:94:06:49:ab:0e:3d:8f:6c: 9d:b1:4a:11:c6:63:12:da:ba:f6:84:0f:42:74:3c:81:48:4c: aa:98:5a:1c:57:23:49:91:b2:d3:8d:6f:97:0e:07:e5:ac:ec: ba:1f:83:41:a0:9a:a7:8d:b6:30:bc:0f:92:d0:fe:a2:2a:ff: 56:54:e0:73:00:46:6a:37:21:16:22:65:2e:00:98:77:7d:b6: 29:d6:8f:c8:09:3a:6d:21:af:73:16:b3:d8:cf:83:28:21:df: d4:a0:49:58:17:32:72:42:63:57:9f:84:37:98:cb:e5:8b:18: f1:06:07:82:0e:1c:38:e9:cf:cb:4f:24:fa:66:d0:6b:91:dd: 25:47:bf:53:e2:03:5a:d8:b0:1f:8d:cb:40:7e:31:56:ed:6d: 85:f1:10:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTJprfHaI3zjXwnkNv8uzhSAfFGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI1MzFFOEJGODc3RjkxOTAwNTVEN0Q4NTdDMjFFQ0JE Q0ZBQzIzNzAeFw0yNjA1MDMwMjExNTNaFw0yNzA1MDIwMjE2NTNaMDMxMTAvBgNV BAMTKDVBNUFCNDg5MzA5N0MyNzA2NUIzNzEzRkU2Rjc2QUE1NzQwRDlFNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOB1oDB2KMJ98KD7jysvXyZzyz UlbyR+3xxgAQjzx5FnNnw5/Vzic7Mj+EK+px+WuIDV3rnxi920/MQipjHUEEFl/H tO75r+ggIHkzpRZy3Dg9OJLZ3hVfeiwg0Cu71MZOxhLzg9mvUySacH5Jze68/Tg2 2b7urdMQXyI4dVEqiffKiGhkDrBi6G2nQmyx/ILv4CGdodkdgTcwcs17WhwHld/+ mhguGAKe6ydAb0YyDqRjkPjtDE8Q+VpSPgO+UuAoVbjAuNsnR1kqC1Ik4yJMCd84 z3LiAeWrLQ1Pv8p/5x8SuQjuWdf+/HnJxwaQ4zOi7Xni9KUO0ads0/HVGg/XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWlq0iTCXwnBls3E/5vdqpXQNnlEwHwYDVR0j BBgwFoAUYlMei/h3+RkAVdfYV8Iey9z6wjcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWE5NTIwZmQtOGRlNS00YTY5LTg1ZjEtYzQ0ODk3YWU2MTIxLzAvNjI1MzFFOEJG ODc3RjkxOTAwNTVEN0Q4NTdDMjFFQ0JEQ0ZBQzIzNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjUzMUU4QkY4NzdGOTE5MDA1NUQ3RDg1N0MyMUVDQkRDRkFD MjM3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k8MA0GCSqG SIb3DQEBCwUAA4IBAQCmfpUbcIwwvHEs6Hc3bXUlnFxhhVXwnFWZu3mjHu94VMi8 D4mm71MLnW40KSfel3/n5XT6pJEy+1/w06vbTPFcWOGTInmiJ1ojjnR5NqodrGbc W4olJnZ52Th2IdmPcsebX8ymlAZJqw49j2ydsUoRxmMS2rr2hA9CdDyBSEyqmFoc VyNJkbLTjW+XDgflrOy6H4NBoJqnjbYwvA+S0P6iKv9WVOBzAEZqNyEWImUuAJh3 fbYp1o/ICTptIa9zFrPYz4MoId/UoElYFzJyQmNXn4Q3mMvlixjxBgeCDhw46c/L TyT6ZtBrkd0lR79T4gNa2LAfjctAfjFW7W2F8RA5 -----END CERTIFICATE-----Generated at Wed May 13 09:14:37 2026 by rpki-client