$ rpki-client -vvf rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa File: 3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa (raw, json) Hash identifier: w0l4Z0QTqPW7n9jh4ktHZnj4TWLQC1w9BHsCnnP0SC0= Subject key identifier: 1D:37:72:97:A4:62:F7:38:16:0C:82:45:5F:76:93:ED:21:8F:13:77 Certificate issuer: /CN=2E5B4D919AE6E098454A21D83BEE489C0A1DF687 Certificate serial: 5F41A105C23D8C23FE53BC795393BB901DD8CE5F Authority key identifier: 2E:5B:4D:91:9A:E6:E0:98:45:4A:21:D8:3B:EE:48:9C:0A:1D:F6:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa Signing time: Sun 03 May 2026 02:17:16 +0000 ROA not before: Sun 03 May 2026 02:12:16 +0000 ROA not after: Sun 02 May 2027 02:17:16 +0000 asID: 140395 IP address blocks: 103.150.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.crl rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:41:a1:05:c2:3d:8c:23:fe:53:bc:79:53:93:bb:90:1d:d8:ce:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E5B4D919AE6E098454A21D83BEE489C0A1DF687 Validity Not Before: May 3 02:12:16 2026 GMT Not After : May 2 02:17:16 2027 GMT Subject: CN=1D377297A462F738160C82455F7693ED218F1377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e8:50:e1:da:c6:68:b9:22:9d:40:29:52:32: 6e:a5:fa:fb:5c:8e:8b:9a:18:ff:92:ed:0f:36:37: fb:e8:af:a3:06:5f:33:38:dc:53:a7:2b:5c:64:1a: d8:02:7d:2b:ae:48:dc:43:6d:28:9b:0c:10:4a:10: 18:e9:9d:63:35:ed:c5:fc:fd:98:18:82:d7:ad:e8: 55:aa:ea:75:bf:55:7b:d5:94:dd:11:d5:00:85:3e: 7f:44:a8:ff:6f:63:7d:0f:d9:ad:f2:de:36:9e:86: 16:bc:0f:18:85:5b:24:6a:79:56:13:10:ee:e0:f9: 83:b6:e5:aa:3f:e6:d8:97:da:7e:61:9f:4e:37:f8: 18:a7:42:21:28:02:77:56:9c:78:71:63:54:b7:99: 21:4f:37:58:27:f1:f2:b1:51:ee:47:31:eb:c8:3a: c0:ba:b8:5a:63:e9:a9:49:55:79:4f:a5:ac:60:4a: 80:9a:c7:1f:d0:e6:d8:cf:45:8c:da:1e:ed:c4:36: 61:f0:af:fd:e6:39:d1:62:0d:38:83:96:b7:96:c2: c6:2a:91:7f:bd:20:1e:56:75:66:c2:49:8d:7e:96: 9a:d5:b8:25:9d:f1:ad:33:08:37:52:95:ce:bf:91: 78:94:3e:cc:bf:5b:cf:9e:36:d9:40:97:5f:ac:b0: b2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:37:72:97:A4:62:F7:38:16:0C:82:45:5F:76:93:ED:21:8F:13:77 X509v3 Authority Key Identifier: keyid:2E:5B:4D:91:9A:E6:E0:98:45:4A:21:D8:3B:EE:48:9C:0A:1D:F6:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.150.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:43:72:54:cd:a2:f7:0e:10:5c:23:4a:fd:00:01:17:1f:e9: b4:46:73:9c:19:2c:a5:bc:fd:c9:f8:3e:a8:7d:3b:42:01:53: d9:61:b7:ca:71:87:77:5b:aa:86:cb:d8:0d:5e:9c:82:44:51: ea:2f:76:3d:b8:7c:e9:b9:7c:06:01:b1:2c:84:70:9e:fa:92: d8:e0:46:d7:f6:b6:17:cd:35:8c:d1:0d:cc:e2:57:f9:d3:4d: ea:00:88:b0:5d:fc:37:5b:51:63:a1:f3:16:ad:88:f4:33:35: bd:d1:67:8f:23:b8:f2:44:2d:98:cc:26:44:0b:d4:0b:82:e2: 1c:c0:83:24:da:3b:a2:5f:f1:53:0d:a6:48:24:cc:50:04:24: df:5e:65:c0:f6:9e:7e:3e:19:98:b7:7e:7e:fa:7f:c5:a3:04: af:b7:ad:1e:ef:f2:be:a3:d0:a8:7c:f9:ff:98:a2:51:61:e3: 83:6f:a2:42:38:24:c4:ec:34:e9:13:1e:08:e0:bc:4b:f8:85: 8f:21:ff:75:d7:0d:40:ad:a3:18:bf:cc:6b:12:7c:3d:e8:e6: af:59:df:d4:97:09:36:aa:22:96:85:3a:b3:38:52:c1:95:b5: bd:52:ea:00:b9:6f:00:eb:98:9a:c4:41:af:2b:f4:f3:9a:f9: 51:f8:f0:02 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX0GhBcI9jCP+U7x5U5O7kB3Yzl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU1QjREOTE5QUU2RTA5ODQ1NEEyMUQ4M0JFRTQ4OUMw QTFERjY4NzAeFw0yNjA1MDMwMjEyMTZaFw0yNzA1MDIwMjE3MTZaMDMxMTAvBgNV BAMTKDFEMzc3Mjk3QTQ2MkY3MzgxNjBDODI0NTVGNzY5M0VEMjE4RjEzNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI6FDh2sZouSKdQClSMm6l+vtc jouaGP+S7Q82N/vor6MGXzM43FOnK1xkGtgCfSuuSNxDbSibDBBKEBjpnWM17cX8 /ZgYgtet6FWq6nW/VXvVlN0R1QCFPn9EqP9vY30P2a3y3jaehha8DxiFWyRqeVYT EO7g+YO25ao/5tiX2n5hn043+BinQiEoAndWnHhxY1S3mSFPN1gn8fKxUe5HMevI OsC6uFpj6alJVXlPpaxgSoCaxx/Q5tjPRYzaHu3ENmHwr/3mOdFiDTiDlreWwsYq kX+9IB5WdWbCSY1+lprVuCWd8a0zCDdSlc6/kXiUPsy/W8+eNtlAl1+ssLK3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHTdyl6Ri9zgWDIJFX3aT7SGPE3cwHwYDVR0j BBgwFoAULltNkZrm4JhFSiHYO+5InAod9ocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWJkM2RkNzktODYzNS00ODU3LThhM2MtOTg1OTU0NTE2ZjllLzAvMkU1QjREOTE5 QUU2RTA5ODQ1NEEyMUQ4M0JFRTQ4OUMwQTFERjY4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRTVCNEQ5MTlBRTZFMDk4NDU0QTIxRDgzQkVFNDg5QzBBMURG Njg3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiZDNkZDc5LTg2MzUtNDg1Ny04 YTNjLTk4NTk1NDUxNmY5ZS8wLzMxMzAzMzJlMzEzNTMwMmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlpYwDQYJ KoZIhvcNAQELBQADggEBAB5DclTNovcOEFwjSv0AARcf6bRGc5wZLKW8/cn4Pqh9 O0IBU9lht8pxh3dbqobL2A1enIJEUeovdj24fOm5fAYBsSyEcJ76ktjgRtf2thfN NYzRDcziV/nTTeoAiLBd/DdbUWOh8xatiPQzNb3RZ48juPJELZjMJkQL1AuC4hzA gyTaO6Jf8VMNpkgkzFAEJN9eZcD2nn4+GZi3fn76f8WjBK+3rR7v8r6j0Kh8+f+Y olFh44NvokI4JMTsNOkTHgjgvEv4hY8h/3XXDUCtoxi/zGsSfD3o5q9Z39SXCTaq IpaFOrM4UsGVtb1S6gC5bwDrmJrEQa8r9POa+VH48AI= -----END CERTIFICATE-----Generated at Wed May 13 12:39:39 2026 by rpki-client