$ rpki-client -vvf rpki-rsync.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa File: 3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa (raw, json) Hash identifier: g3WbWI1q18vac55oq8gdpUXBjsp4Aidv1FzJgM9YpdM= Subject key identifier: A7:D3:FA:DA:41:AF:72:90:76:C0:C4:ED:3B:FE:5A:40:3F:08:F0:32 Certificate issuer: /CN=DB23849BCF63AE719E7BE4FE89385D166773A883 Certificate serial: 1C6582B0F160465B021FB32622E558DD8875FD8A Authority key identifier: DB:23:84:9B:CF:63:AE:71:9E:7B:E4:FE:89:38:5D:16:67:73:A8:83 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DB23849BCF63AE719E7BE4FE89385D166773A883.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa Signing time: Sun 03 May 2026 02:22:02 +0000 ROA not before: Sun 03 May 2026 02:17:02 +0000 ROA not after: Sun 02 May 2027 02:22:02 +0000 asID: 141105 IP address blocks: 103.157.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/DB23849BCF63AE719E7BE4FE89385D166773A883.crl rsync://rpki-rsync.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/DB23849BCF63AE719E7BE4FE89385D166773A883.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DB23849BCF63AE719E7BE4FE89385D166773A883.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:65:82:b0:f1:60:46:5b:02:1f:b3:26:22:e5:58:dd:88:75:fd:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB23849BCF63AE719E7BE4FE89385D166773A883 Validity Not Before: May 3 02:17:02 2026 GMT Not After : May 2 02:22:02 2027 GMT Subject: CN=A7D3FADA41AF729076C0C4ED3BFE5A403F08F032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:84:ba:a7:cd:ff:e0:8f:6a:06:c7:53:eb:95: 42:25:2a:c7:39:44:9c:60:23:ae:12:0b:9a:4a:0c: eb:65:a3:a2:90:70:f9:e0:5a:ef:58:5b:86:a8:69: e6:ce:ed:40:3d:f7:6f:12:20:13:78:b9:99:19:d1: 63:26:e6:4c:b9:ec:fd:41:4a:f9:b1:16:31:26:10: db:46:90:ca:4b:e4:65:17:ec:79:a9:8c:4c:a0:bc: 1d:98:27:27:31:71:13:21:8a:c5:65:a4:c8:f6:fd: 47:87:5e:81:54:43:f2:3d:f9:1c:75:81:49:6e:94: ef:16:af:1d:d7:ab:89:7c:b9:25:dc:42:c3:27:12: a1:30:aa:2b:b8:8e:b3:29:8d:ce:71:90:4c:a3:06: f6:81:7d:ce:5f:5f:cb:32:7c:ab:88:49:c4:ca:00: bb:31:5f:2a:42:1d:15:52:cc:38:c9:d8:83:c2:5e: 3a:d1:e7:fa:07:68:f1:3d:e1:4a:21:e9:c6:37:c5: ea:51:0b:14:2a:52:8a:25:b2:de:9a:4a:44:0b:ac: 4a:71:ef:e0:96:47:9e:01:2c:88:e3:de:76:30:80: 16:4c:bc:93:57:29:43:ff:4f:dc:3b:63:82:20:fa: 05:fb:45:7c:a2:ed:66:f3:e1:4d:1b:19:81:74:7b: a0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D3:FA:DA:41:AF:72:90:76:C0:C4:ED:3B:FE:5A:40:3F:08:F0:32 X509v3 Authority Key Identifier: keyid:DB:23:84:9B:CF:63:AE:71:9E:7B:E4:FE:89:38:5D:16:67:73:A8:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/DB23849BCF63AE719E7BE4FE89385D166773A883.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DB23849BCF63AE719E7BE4FE89385D166773A883.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.24.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:fd:eb:a6:44:30:3c:d8:d4:71:3b:ef:cd:b8:b8:71:8d:75: 86:9d:54:0f:5f:6b:80:74:f9:c6:cd:df:f3:3d:d3:f2:4f:b9: d8:2e:78:21:60:b1:0e:9c:79:4d:c5:ce:9a:1b:c3:88:1a:22: b3:b0:f5:22:bd:0b:24:5a:ab:40:aa:c4:99:02:3a:e8:8e:e9: 5b:71:e8:9c:97:a4:c4:ec:9f:c3:11:52:8e:2c:5c:9e:6d:08: b4:d9:f6:c2:7f:97:3a:a9:55:c3:88:e9:5e:f7:ed:d3:cb:43: 64:bd:37:7f:47:75:25:c4:20:b5:fb:c8:35:bf:a7:0e:b6:09: 08:62:8a:68:8f:9c:8a:9c:c7:18:29:c7:ff:03:ea:47:d5:a4: 74:bd:83:67:25:81:dc:83:95:a3:7e:1c:10:b6:2b:7c:87:c5: a2:76:20:ec:bc:d7:7d:33:d0:a9:52:27:eb:6a:28:c3:da:a7: 58:12:54:7e:57:1c:b3:b2:2f:75:45:18:29:e2:0f:c0:2a:a5: a4:e9:5f:a4:c5:e9:d2:f6:32:ee:c2:de:21:7f:1c:50:97:9c: c4:a1:ed:13:70:47:b2:2e:5b:5c:f5:7c:bd:fb:e5:f9:fc:42: af:93:33:57:86:2b:a1:85:c9:5a:c9:d1:28:28:d9:27:0a:b3: 82:c1:ff:01 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHGWCsPFgRlsCH7MmIuVY3Yh1/YowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREIyMzg0OUJDRjYzQUU3MTlFN0JFNEZFODkzODVEMTY2 NzczQTg4MzAeFw0yNjA1MDMwMjE3MDJaFw0yNzA1MDIwMjIyMDJaMDMxMTAvBgNV BAMTKEE3RDNGQURBNDFBRjcyOTA3NkMwQzRFRDNCRkU1QTQwM0YwOEYwMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBhLqnzf/gj2oGx1PrlUIlKsc5 RJxgI64SC5pKDOtlo6KQcPngWu9YW4aoaebO7UA9928SIBN4uZkZ0WMm5ky57P1B SvmxFjEmENtGkMpL5GUX7HmpjEygvB2YJycxcRMhisVlpMj2/UeHXoFUQ/I9+Rx1 gUlulO8Wrx3Xq4l8uSXcQsMnEqEwqiu4jrMpjc5xkEyjBvaBfc5fX8syfKuIScTK ALsxXypCHRVSzDjJ2IPCXjrR5/oHaPE94Uoh6cY3xepRCxQqUoolst6aSkQLrEpx 7+CWR54BLIjj3nYwgBZMvJNXKUP/T9w7Y4Ig+gX7RXyi7Wbz4U0bGYF0e6DDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUp9P62kGvcpB2wMTtO/5aQD8I8DIwHwYDVR0j BBgwFoAU2yOEm89jrnGee+T+iThdFmdzqIMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmJjNjViOGMtMzllOS00NzhkLTg3NDItYzUzNWI2MWJhZTU5LzAvREIyMzg0OUJD RjYzQUU3MTlFN0JFNEZFODkzODVEMTY2NzczQTg4My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EQjIzODQ5QkNGNjNBRTcxOUU3QkU0RkU4OTM4NUQxNjY3NzNB ODgzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJiYzY1YjhjLTM5ZTktNDc4ZC04 NzQyLWM1MzViNjFiYWU1OS8wLzMxMzAzMzJlMzEzNTM3MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ50YMA0GCSqG SIb3DQEBCwUAA4IBAQCP/eumRDA82NRxO+/NuLhxjXWGnVQPX2uAdPnGzd/zPdPy T7nYLnghYLEOnHlNxc6aG8OIGiKzsPUivQskWqtAqsSZAjrojulbceicl6TE7J/D EVKOLFyebQi02fbCf5c6qVXDiOle9+3Ty0NkvTd/R3UlxCC1+8g1v6cOtgkIYopo j5yKnMcYKcf/A+pH1aR0vYNnJYHcg5WjfhwQtit8h8WidiDsvNd9M9CpUifraijD 2qdYElR+Vxyzsi91RRgp4g/AKqWk6V+kxenS9jLuwt4hfxxQl5zEoe0TcEeyLltc 9Xy9++X5/EKvkzNXhiuhhclaydEoKNknCrOCwf8B -----END CERTIFICATE-----Generated at Wed May 13 03:48:37 2026 by rpki-client