$ rpki-client -vvf rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa File: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (raw, json) Hash identifier: S6GOyjGvuJioIHLVuYqgKhP5jh9zLHefQ/VHuPP8g0o= Subject key identifier: 89:A4:BC:8F:AB:2B:D8:DA:10:BE:53:0F:CE:1A:A3:42:0B:28:45:81 Certificate issuer: /CN=387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8 Certificate serial: 51D60E2DEAFEAF7E766D2B75147C5279B4116E Authority key identifier: 38:7D:A9:5F:F9:9D:3F:CB:2B:BB:D2:F3:B2:29:D9:F3:37:2D:D3:B8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa Signing time: Sun 03 May 2026 02:22:14 +0000 ROA not before: Sun 03 May 2026 02:17:14 +0000 ROA not after: Sun 02 May 2027 02:22:14 +0000 asID: 151575 IP address blocks: 103.99.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.crl rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d6:0e:2d:ea:fe:af:7e:76:6d:2b:75:14:7c:52:79:b4:11:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8 Validity Not Before: May 3 02:17:14 2026 GMT Not After : May 2 02:22:14 2027 GMT Subject: CN=89A4BC8FAB2BD8DA10BE530FCE1AA3420B284581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cc:b5:01:ee:9f:ac:fd:66:22:7c:25:9e:a4: 2a:f0:56:c0:2f:d1:f3:53:5a:5d:14:fa:2c:13:a1: 59:9b:b6:bd:8f:d2:5d:b7:7e:df:86:4b:71:ce:22: 00:97:da:8b:a0:0e:1c:cc:14:34:2f:70:0b:56:90: c3:a0:94:ff:f1:47:d9:8b:d1:dc:4f:f2:37:4b:54: 4e:20:2e:d2:5c:14:40:af:e9:5c:14:5c:21:f9:e5: 94:24:d6:86:0b:0e:57:d8:20:bd:56:08:2e:5c:28: 79:5a:f3:64:b9:01:fa:e3:74:a6:fb:ac:cc:8e:6a: 41:94:08:e2:21:a0:05:b5:01:1a:ed:f6:7f:63:6d: 2a:e4:95:c1:e6:36:cb:59:29:b9:9b:41:6f:be:6c: cf:37:2c:4f:41:6d:49:58:d0:4a:94:3e:fc:3f:1a: d5:03:f9:8f:3a:3a:72:72:15:33:a4:d5:27:c5:38: b5:6c:9b:f3:9b:ff:70:a3:30:40:e6:38:3c:e6:18: 2d:01:00:9e:8b:16:db:d9:b2:dd:0b:30:72:db:ef: c8:64:04:c9:ce:c7:28:dc:10:0b:2a:dd:8c:b1:54: e1:e2:fa:a1:ef:58:b8:d3:73:c1:ac:50:08:e8:57: 0f:22:a7:1a:03:9a:d3:a1:c0:43:7a:ed:de:18:07: 6a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A4:BC:8F:AB:2B:D8:DA:10:BE:53:0F:CE:1A:A3:42:0B:28:45:81 X509v3 Authority Key Identifier: keyid:38:7D:A9:5F:F9:9D:3F:CB:2B:BB:D2:F3:B2:29:D9:F3:37:2D:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.136.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f9:55:1a:8c:3e:5a:49:1d:5b:df:6d:98:a4:71:c5:1b:79: 46:a5:25:b5:8c:1d:4a:c0:d9:93:26:0e:05:ee:03:aa:b1:3d: d1:d9:57:bc:45:1a:d9:0f:8b:b0:34:d1:78:cb:4c:3e:e8:59: 8f:2b:ba:13:9a:21:5e:d4:d6:f6:c2:59:64:95:1e:ea:63:3d: d9:cb:d0:04:0f:87:b7:8f:ff:ae:54:7a:eb:77:c0:63:66:8c: d2:6d:b6:28:a7:88:11:56:49:af:99:17:d9:19:50:0a:86:54: df:d2:74:7d:84:31:24:b7:df:5f:b8:4d:93:0c:15:0b:9b:08: 7b:ff:4d:2e:7d:6b:2e:b3:68:f6:3c:94:4d:72:7e:f2:41:9b: d6:d7:be:15:f1:b1:51:5d:55:13:58:95:81:7d:25:0b:32:02: d8:e8:e8:00:1c:46:e1:d6:68:a2:c1:88:ef:65:37:9f:18:65: 49:2d:c1:51:7e:65:bd:92:05:61:9d:5e:ac:70:b3:ed:ba:bf: 4d:a1:db:57:13:09:6e:12:55:45:61:00:12:09:19:cb:ff:27: d2:1c:bd:d8:c5:4f:4a:22:06:48:e6:0a:e3:41:9e:e1:ac:8f: f7:b6:16:f8:84:8d:3d:fe:ee:6d:aa:a9:21:af:31:23:4b:d3: 49:d1:cd:f2 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgITUdYOLer+r352bSt1FHxSebQRbjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygzODdEQTk1RkY5OUQzRkNCMkJCQkQyRjNCMjI5RDlGMzM3 MkREM0I4MB4XDTI2MDUwMzAyMTcxNFoXDTI3MDUwMjAyMjIxNFowMzExMC8GA1UE AxMoODlBNEJDOEZBQjJCRDhEQTEwQkU1MzBGQ0UxQUEzNDIwQjI4NDU4MTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALLMtQHun6z9ZiJ8JZ6kKvBWwC/R 81NaXRT6LBOhWZu2vY/SXbd+34ZLcc4iAJfai6AOHMwUNC9wC1aQw6CU//FH2YvR 3E/yN0tUTiAu0lwUQK/pXBRcIfnllCTWhgsOV9ggvVYILlwoeVrzZLkB+uN0pvus zI5qQZQI4iGgBbUBGu32f2NtKuSVweY2y1kpuZtBb75szzcsT0FtSVjQSpQ+/D8a 1QP5jzo6cnIVM6TVJ8U4tWyb85v/cKMwQOY4POYYLQEAnosW29my3QswctvvyGQE yc7HKNwQCyrdjLFU4eL6oe9YuNNzwaxQCOhXDyKnGgOa06HAQ3rt3hgHan0CAwEA AaOCAjQwggIwMB0GA1UdDgQWBBSJpLyPqyvY2hC+Uw/OGqNCCyhFgTAfBgNVHSME GDAWgBQ4falf+Z0/yyu70vOyKdnzNy3TuDAOBgNVHQ8BAf8EBAMCB4AwgYYGA1Ud HwR/MH0we6B5oHeGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC8zODdEQTk1RkY5 OUQzRkNCMkJCQkQyRjNCMjI5RDlGMzM3MkREM0I4LmNybDByBggrBgEFBQcBAQRm MGQwYgYIKwYBBQUHMAKGVnJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVw by9JRE5JQy8xLzM4N0RBOTVGRjk5RDNGQ0IyQkJCRDJGM0IyMjlEOUYzMzcyREQz QjguY2VyMIGlBggrBgEFBQcBCwSBmDCBlTCBkgYIKwYBBQUHMAuGgYVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmMyODBhZjMtYWExZC00MjcxLThj MDYtYTNmYTI4ODk4NDI2LzAvMzEzMDMzMmUzOTM5MmUzMTMzMzYyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnY4gwDQYJKoZI hvcNAQELBQADggEBAID5VRqMPlpJHVvfbZikccUbeUalJbWMHUrA2ZMmDgXuA6qx PdHZV7xFGtkPi7A00XjLTD7oWY8ruhOaIV7U1vbCWWSVHupjPdnL0AQPh7eP/65U eut3wGNmjNJttiiniBFWSa+ZF9kZUAqGVN/SdH2EMSS331+4TZMMFQubCHv/TS59 ay6zaPY8lE1yfvJBm9bXvhXxsVFdVRNYlYF9JQsyAtjo6AAcRuHWaKLBiO9lN58Y ZUktwVF+Zb2SBWGdXqxws+26v02h21cTCW4SVUVhABIJGcv/J9IcvdjFT0oiBkjm CuNBnuGsj/e2FviEjT3+7m2qqSGvMSNL00nRzfI= -----END CERTIFICATE-----Generated at Wed May 13 06:15:27 2026 by rpki-client