$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32342d3234203d3e203436303236.roa File: 3130332e3133352e37322e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: HE8Pj52+IZhV7TEkL1SN8xO4SlYdr60vODvajC36cyk= Subject key identifier: 4B:64:89:BE:3A:2F:5B:F9:B6:FC:56:76:72:CD:E1:7E:AF:1D:4C:4A Certificate issuer: /CN=A668BCDA89AD035D496B64CF27245A5F2E3B079C Certificate serial: 45D0881F6E6C2892AAE3C5B066E2990E31998280 Authority key identifier: A6:68:BC:DA:89:AD:03:5D:49:6B:64:CF:27:24:5A:5F:2E:3B:07:9C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A668BCDA89AD035D496B64CF27245A5F2E3B079C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32342d3234203d3e203436303236.roa Signing time: Sun 03 May 2026 02:18:34 +0000 ROA not before: Sun 03 May 2026 02:13:34 +0000 ROA not after: Sun 02 May 2027 02:18:34 +0000 asID: 46026 IP address blocks: 103.135.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/A668BCDA89AD035D496B64CF27245A5F2E3B079C.crl rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/A668BCDA89AD035D496B64CF27245A5F2E3B079C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A668BCDA89AD035D496B64CF27245A5F2E3B079C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:d0:88:1f:6e:6c:28:92:aa:e3:c5:b0:66:e2:99:0e:31:99:82:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A668BCDA89AD035D496B64CF27245A5F2E3B079C Validity Not Before: May 3 02:13:34 2026 GMT Not After : May 2 02:18:34 2027 GMT Subject: CN=4B6489BE3A2F5BF9B6FC567672CDE17EAF1D4C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:77:07:49:5e:a2:9e:c3:c0:d2:44:09:47:a2: aa:23:fc:5e:a6:a9:66:4e:36:04:77:21:55:f4:b9: 79:80:7c:5d:65:3d:47:68:b7:34:b6:53:2c:e6:47: 80:71:16:31:ae:77:6f:9a:35:1f:30:42:90:50:23: ed:94:3b:d4:c1:69:92:0a:ec:be:36:78:81:e4:71: da:fc:5d:28:7a:1a:c0:84:2d:cf:f9:d3:77:f4:b7: c6:7e:02:fb:9e:b7:8c:3d:fd:a8:71:fb:48:86:43: a7:a5:a3:9b:72:96:26:90:4a:bd:fb:6f:1d:0f:c6: 8a:84:a6:ef:d3:b9:49:99:a1:0d:07:54:01:bd:8f: 34:58:67:f5:15:c2:ab:d8:20:02:59:9e:89:6d:1b: 3c:05:d2:a3:a3:21:3f:41:a7:8a:bf:b7:d5:4a:e1: 08:21:e7:93:41:69:c7:9a:33:97:78:e6:70:33:7a: 45:e9:27:a3:ee:50:b2:ab:34:58:4c:b2:ca:b9:c5: 07:35:8d:ea:b6:1e:9d:fc:3e:7d:40:e1:a7:c8:a8: b6:d6:9c:d0:60:28:14:67:28:8e:74:51:b7:4b:58: 1c:7a:3e:8e:b6:cb:c3:6f:42:e7:4a:b9:13:67:52: f3:80:80:21:89:b1:d2:13:dc:95:f6:ab:4a:7e:08: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:64:89:BE:3A:2F:5B:F9:B6:FC:56:76:72:CD:E1:7E:AF:1D:4C:4A X509v3 Authority Key Identifier: keyid:A6:68:BC:DA:89:AD:03:5D:49:6B:64:CF:27:24:5A:5F:2E:3B:07:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/A668BCDA89AD035D496B64CF27245A5F2E3B079C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A668BCDA89AD035D496B64CF27245A5F2E3B079C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.72.0/24 Signature Algorithm: sha256WithRSAEncryption aa:fa:ea:cd:ac:9b:cc:69:ae:d6:d5:fd:96:cb:8a:08:06:55: ff:5a:5a:08:31:57:72:81:22:f3:be:cf:03:5e:46:33:4a:cf: b5:37:6d:80:8f:4b:d0:ef:49:4b:a9:41:a3:36:38:50:a5:1e: 3e:3b:71:cf:78:57:99:64:68:f3:51:cb:0d:c2:38:2b:83:3a: a3:8d:3b:60:15:5e:7a:59:43:79:1e:81:b5:ee:1d:86:32:62: 2a:d8:bf:ed:44:fd:0a:1a:b3:3e:78:6c:c6:b1:0f:a5:54:a2: d9:c9:91:24:8d:e7:2c:7c:60:75:87:a0:c0:34:b2:6c:a7:30: 01:04:7e:fa:b0:a9:16:80:d2:b1:43:2e:c2:29:eb:fd:de:31: f5:a6:0d:94:57:0a:99:be:af:cf:d5:2a:62:f4:a7:27:ac:85: 05:f3:0f:3f:7e:f9:89:2f:bb:23:dc:fd:e8:ab:7e:ce:8f:f8: a8:7c:a3:7c:91:b2:5a:67:85:ca:98:c9:3a:5f:6a:d6:27:54: a1:54:e1:e1:23:f6:15:43:c0:96:a6:51:e6:3d:3e:ef:b6:fd: b3:9a:25:58:0b:01:28:54:17:5c:19:bb:6a:a3:b0:90:4d:c8: 9e:8c:06:7a:e6:02:19:06:89:bb:50:4e:7f:af:ef:33:6f:9c: 65:97:53:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURdCIH25sKJKq48WwZuKZDjGZgoAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY2OEJDREE4OUFEMDM1RDQ5NkI2NENGMjcyNDVBNUYy RTNCMDc5QzAeFw0yNjA1MDMwMjEzMzRaFw0yNzA1MDIwMjE4MzRaMDMxMTAvBgNV BAMTKDRCNjQ4OUJFM0EyRjVCRjlCNkZDNTY3NjcyQ0RFMTdFQUYxRDRDNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWdwdJXqKew8DSRAlHoqoj/F6m qWZONgR3IVX0uXmAfF1lPUdotzS2UyzmR4BxFjGud2+aNR8wQpBQI+2UO9TBaZIK 7L42eIHkcdr8XSh6GsCELc/503f0t8Z+Avuet4w9/ahx+0iGQ6elo5tyliaQSr37 bx0PxoqEpu/TuUmZoQ0HVAG9jzRYZ/UVwqvYIAJZnoltGzwF0qOjIT9Bp4q/t9VK 4Qgh55NBaceaM5d45nAzekXpJ6PuULKrNFhMssq5xQc1jeq2Hp38Pn1A4afIqLbW nNBgKBRnKI50UbdLWBx6Po62y8NvQudKuRNnUvOAgCGJsdIT3JX2q0p+CPBDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUS2SJvjovW/m2/FZ2cs3hfq8dTEowHwYDVR0j BBgwFoAUpmi82omtA11Ja2TPJyRaXy47B5wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWZmNGViY2QtMjljZi00ZWVjLWE5MmEtZDExMzZmNWY5OTM2LzAvQTY2OEJDREE4 OUFEMDM1RDQ5NkI2NENGMjcyNDVBNUYyRTNCMDc5Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BNjY4QkNEQTg5QUQwMzVENDk2QjY0Q0YyNzI0NUE1RjJFM0Iw NzlDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzAzMzJlMzEzMzM1MmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeHSDANBgkqhkiG 9w0BAQsFAAOCAQEAqvrqzaybzGmu1tX9lsuKCAZV/1paCDFXcoEi877PA15GM0rP tTdtgI9L0O9JS6lBozY4UKUePjtxz3hXmWRo81HLDcI4K4M6o407YBVeellDeR6B te4dhjJiKti/7UT9ChqzPnhsxrEPpVSi2cmRJI3nLHxgdYegwDSybKcwAQR++rCp FoDSsUMuwinr/d4x9aYNlFcKmb6vz9UqYvSnJ6yFBfMPP375iS+7I9z96Kt+zo/4 qHyjfJGyWmeFypjJOl9q1idUoVTh4SP2FUPAlqZR5j0+77b9s5olWAsBKFQXXBm7 aqOwkE3InowGeuYCGQaJu1BOf6/vM2+cZZdTCg== -----END CERTIFICATE-----Generated at Wed May 13 01:14:31 2026 by rpki-client