$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa File: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (raw, json) Hash identifier: eU4i0Mhd/q+mYMVjCXIfd0DHyb4s/+BNKr0BLfdT+jA= Subject key identifier: 41:F3:16:90:B9:70:08:86:F2:E7:A5:FA:65:99:47:67:CD:49:F2:F0 Certificate issuer: /CN=EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479 Certificate serial: 0FD00D49C5B7AD9C6D7C7EA82AB2CF7C32621E50 Authority key identifier: EB:0B:E2:F2:F4:9F:0E:2E:D0:DC:A4:50:CC:7A:70:E3:7E:6C:44:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa Signing time: Sun 03 May 2026 02:21:43 +0000 ROA not before: Sun 03 May 2026 02:16:43 +0000 ROA not after: Sun 02 May 2027 02:21:43 +0000 asID: 133815 IP address blocks: 103.130.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.crl rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d0:0d:49:c5:b7:ad:9c:6d:7c:7e:a8:2a:b2:cf:7c:32:62:1e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479 Validity Not Before: May 3 02:16:43 2026 GMT Not After : May 2 02:21:43 2027 GMT Subject: CN=41F31690B9700886F2E7A5FA65994767CD49F2F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d2:33:31:33:32:79:51:63:d2:06:2d:d6:71: a1:21:46:6d:e8:67:97:e0:5a:8b:7e:6f:c2:28:a9: 6b:f7:fd:f9:0f:59:9c:f3:8f:b0:44:9a:c9:16:d1: 1f:96:5a:75:94:22:f0:c3:60:ca:69:a2:80:98:19: b6:90:92:55:c0:e9:8f:70:d2:8d:3b:da:08:6d:ec: 52:ee:1d:d8:8e:fb:40:c4:5f:d7:eb:72:a7:6f:98: f5:ca:34:55:af:25:ea:42:50:ba:fa:9b:f7:8f:99: 2f:1b:9d:74:e5:94:14:73:c9:a8:f2:9d:1a:39:50: 84:33:10:f3:6c:e6:c7:5a:8e:37:fe:04:36:b6:48: 69:0d:ad:c4:d4:81:07:34:68:0e:0d:80:19:83:9b: 92:dd:28:39:19:fe:5f:5d:bc:ea:20:15:c6:51:d0: 57:2b:a1:7a:d3:8c:5d:cf:d4:9e:fb:38:3f:9a:d9: fc:d3:c1:7c:be:a3:3d:72:fa:53:e0:58:7d:ef:ca: 6c:4b:67:d7:f0:76:70:71:fa:ce:13:16:71:90:7c: cd:27:b1:92:f0:ec:00:cf:63:04:13:a1:25:7c:3c: 35:34:9f:25:0d:de:d7:d5:17:94:43:a4:9f:6c:a5: 08:b2:ed:bc:d0:c9:0b:d5:d0:b9:94:c7:80:8a:34: 66:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F3:16:90:B9:70:08:86:F2:E7:A5:FA:65:99:47:67:CD:49:F2:F0 X509v3 Authority Key Identifier: keyid:EB:0B:E2:F2:F4:9F:0E:2E:D0:DC:A4:50:CC:7A:70:E3:7E:6C:44:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.136.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:96:90:d3:bd:16:9c:40:9f:ea:ba:c2:3b:6c:57:84:98:2c: f0:31:69:fe:10:8d:fd:73:28:ad:c9:a0:b6:6c:e0:76:ed:4e: 7b:5e:4c:43:99:10:94:a9:08:cc:e9:17:ae:f2:5a:d9:9f:3b: dd:43:3c:70:7f:6f:3b:a0:84:3a:0f:fe:b8:ba:65:2a:20:c1: bb:5f:cf:1b:e8:5a:05:06:39:b5:32:e6:7d:52:41:65:97:6c: 90:ef:fb:ea:d7:59:98:e9:20:9b:1c:16:97:74:09:b3:3b:40: be:37:fb:dc:e8:19:d1:98:da:4c:30:6e:d4:bb:75:bb:c4:4a: c3:b6:53:ff:57:51:78:c9:17:38:f1:f3:cb:6a:f8:a5:43:8c: 8f:14:88:45:9b:b6:18:76:69:7a:12:b1:10:28:31:85:31:3c: b6:81:5e:93:fd:b9:42:ac:d7:8c:f7:66:e0:6c:95:1c:fa:23: c6:bc:39:0c:88:ce:2d:af:f4:d9:93:9f:00:88:f9:13:28:2b: 84:2f:ef:c0:e9:23:14:53:b6:4f:1d:a2:9d:8d:bb:9e:42:7c: e3:6a:61:7c:59:77:a4:64:49:dc:31:3b:0c:af:37:3e:ec:18: cb:bb:4b:61:4d:d7:7b:8f:bd:08:5f:b5:4b:91:55:cb:6e:dc: 2b:71:55:2d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD9ANScW3rZxtfH6oKrLPfDJiHlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUIwQkUyRjJGNDlGMEUyRUQwRENBNDUwQ0M3QTcwRTM3 RTZDNDQ3OTAeFw0yNjA1MDMwMjE2NDNaFw0yNzA1MDIwMjIxNDNaMDMxMTAvBgNV BAMTKDQxRjMxNjkwQjk3MDA4ODZGMkU3QTVGQTY1OTk0NzY3Q0Q0OUYyRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh0jMxMzJ5UWPSBi3WcaEhRm3o Z5fgWot+b8IoqWv3/fkPWZzzj7BEmskW0R+WWnWUIvDDYMppooCYGbaQklXA6Y9w 0o072ght7FLuHdiO+0DEX9frcqdvmPXKNFWvJepCULr6m/ePmS8bnXTllBRzyajy nRo5UIQzEPNs5sdajjf+BDa2SGkNrcTUgQc0aA4NgBmDm5LdKDkZ/l9dvOogFcZR 0FcroXrTjF3P1J77OD+a2fzTwXy+oz1y+lPgWH3vymxLZ9fwdnBx+s4TFnGQfM0n sZLw7ADPYwQToSV8PDU0nyUN3tfVF5RDpJ9spQiy7bzQyQvV0LmUx4CKNGapAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQfMWkLlwCIby56X6ZZlHZ81J8vAwHwYDVR0j BBgwFoAU6wvi8vSfDi7Q3KRQzHpw435sRHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmEzYWU0ODUtYTY1OC00YzVjLWFiZTItMWU3ZmQ4YjAzOGEwLzAvRUIwQkUyRjJG NDlGMEUyRUQwRENBNDUwQ0M3QTcwRTM3RTZDNDQ3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQjBCRTJGMkY0OUYwRTJFRDBEQ0E0NTBDQzdBNzBFMzdFNkM0 NDc5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMxMzAzMzJlMzEzMzMwMmUzMTMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJngogwDQYJ KoZIhvcNAQELBQADggEBACqWkNO9FpxAn+q6wjtsV4SYLPAxaf4Qjf1zKK3JoLZs 4HbtTnteTEOZEJSpCMzpF67yWtmfO91DPHB/bzughDoP/ri6ZSogwbtfzxvoWgUG ObUy5n1SQWWXbJDv++rXWZjpIJscFpd0CbM7QL43+9zoGdGY2kwwbtS7dbvESsO2 U/9XUXjJFzjx88tq+KVDjI8UiEWbthh2aXoSsRAoMYUxPLaBXpP9uUKs14z3ZuBs lRz6I8a8OQyIzi2v9NmTnwCI+RMoK4Qv78DpIxRTtk8dop2Nu55CfONqYXxZd6Rk SdwxOwyvNz7sGMu7S2FN13uPvQhftUuRVctu3CtxVS0= -----END CERTIFICATE-----Generated at Wed May 13 14:47:38 2026 by rpki-client