$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35362e302f32342d3234203d3e20313332363337.roa File: 3130332e31392e35362e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: Lvw5pO2bg6firYOVJrL24L/mVS2H6b/TJe2TV+FnMQs= Subject key identifier: 9C:B1:87:B8:50:B9:62:4E:88:5D:81:BD:2A:7F:89:E2:FC:21:77:AF Certificate issuer: /CN=2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835 Certificate serial: 0A39D5FA60EBACBD8B3E68E9C0A69D4829A0F686 Authority key identifier: 2D:4E:F7:6F:F5:F1:DE:08:B9:FB:7C:AE:D4:9A:F7:AD:4C:60:18:35 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35362e302f32342d3234203d3e20313332363337.roa Signing time: Sun 03 May 2026 02:22:35 +0000 ROA not before: Sun 03 May 2026 02:17:35 +0000 ROA not after: Sun 02 May 2027 02:22:35 +0000 asID: 132637 IP address blocks: 103.19.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.crl rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:39:d5:fa:60:eb:ac:bd:8b:3e:68:e9:c0:a6:9d:48:29:a0:f6:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835 Validity Not Before: May 3 02:17:35 2026 GMT Not After : May 2 02:22:35 2027 GMT Subject: CN=9CB187B850B9624E885D81BD2A7F89E2FC2177AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:03:86:3d:31:d2:b7:81:a0:0a:ae:0d:b5:fc: d4:b8:63:e7:06:0d:9d:0e:f7:56:21:09:95:fb:dd: 9c:a4:bc:4b:42:94:cf:f3:43:3e:3b:df:69:26:38: 07:42:a2:51:02:d0:2a:b3:8a:a6:cf:de:be:b9:21: ec:95:ce:4f:8e:cd:f0:72:e5:80:ff:df:16:b2:63: 7b:4d:12:47:15:d3:6d:2e:46:e1:d7:40:21:9a:8a: c0:5f:33:66:d1:9e:ed:6b:04:8b:b1:98:3b:99:b4: 7e:d7:54:d9:5b:2c:73:0b:a2:bf:db:f8:02:fa:65: 10:49:31:67:3b:f3:a6:56:20:55:49:11:25:f0:55: f2:05:db:e8:f0:ec:84:83:79:f8:4f:38:58:5c:40: 14:27:e8:cd:bb:fc:38:16:f4:9f:7f:95:38:d8:55: ec:32:69:75:92:0f:9a:21:34:3f:bc:53:44:10:69: 40:33:30:f3:07:77:da:69:ad:37:11:38:61:31:cf: f0:a4:cb:95:ff:61:6c:fe:b7:0f:c2:58:c9:44:7a: 45:9a:e5:6d:de:32:a8:ff:55:e9:ac:ad:0a:7c:86: 9e:68:69:38:66:49:43:b0:ef:71:7b:3c:10:c4:73: 64:6f:57:36:b6:3f:99:47:d5:18:c4:6f:11:be:51: 58:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B1:87:B8:50:B9:62:4E:88:5D:81:BD:2A:7F:89:E2:FC:21:77:AF X509v3 Authority Key Identifier: keyid:2D:4E:F7:6F:F5:F1:DE:08:B9:FB:7C:AE:D4:9A:F7:AD:4C:60:18:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35362e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.56.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:65:55:18:92:9d:3d:ca:2e:1c:70:5a:cf:f8:d1:6d:55:84: ad:64:80:85:33:ce:6e:7f:33:ac:44:1d:fb:54:e5:fa:48:27: fc:e2:a1:68:1c:9f:64:7a:76:81:4f:f7:2b:fd:93:2d:66:ec: 12:78:c9:47:e1:bf:0d:0a:9d:d1:17:1c:3e:a6:5e:4d:eb:7a: aa:05:6e:a8:a4:e2:cd:af:8c:44:ac:e4:ec:24:8a:45:2e:23: 63:dc:0b:27:25:f2:b1:b1:93:64:02:25:3b:4e:d0:3d:6c:a9: 9e:26:47:37:cd:2c:c5:99:cd:bd:25:f5:5b:62:7c:52:d3:6e: 5a:77:74:01:8e:d8:50:d5:75:61:55:b4:eb:a7:f7:3e:e4:a8: 0d:6c:b1:6a:cc:5d:2b:25:9c:d8:cd:35:30:60:9d:14:e7:5e: 1b:46:18:37:97:25:82:d4:b5:16:05:6d:08:cf:71:e5:48:a5: c5:19:29:a3:b4:c5:ab:d4:1a:6a:2c:27:e8:d8:f1:a3:da:c7: 62:94:35:6d:be:22:6d:c5:f6:ee:f4:10:52:2b:87:6b:cf:2c: 09:d8:d2:cd:9c:59:63:cc:77:37:74:bf:20:ee:a5:29:cf:57: 54:e3:66:0d:41:26:a2:98:34:7e:4f:ed:ba:57:e7:0e:bd:f1: 67:8b:2f:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCjnV+mDrrL2LPmjpwKadSCmg9oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ0RUY3NkZGNUYxREUwOEI5RkI3Q0FFRDQ5QUY3QUQ0 QzYwMTgzNTAeFw0yNjA1MDMwMjE3MzVaFw0yNzA1MDIwMjIyMzVaMDMxMTAvBgNV BAMTKDlDQjE4N0I4NTBCOTYyNEU4ODVEODFCRDJBN0Y4OUUyRkMyMTc3QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsA4Y9MdK3gaAKrg21/NS4Y+cG DZ0O91YhCZX73ZykvEtClM/zQz4732kmOAdColEC0CqziqbP3r65IeyVzk+OzfBy 5YD/3xayY3tNEkcV020uRuHXQCGaisBfM2bRnu1rBIuxmDuZtH7XVNlbLHMLor/b +AL6ZRBJMWc786ZWIFVJESXwVfIF2+jw7ISDefhPOFhcQBQn6M27/DgW9J9/lTjY VewyaXWSD5ohND+8U0QQaUAzMPMHd9pprTcROGExz/Cky5X/YWz+tw/CWMlEekWa 5W3eMqj/VemsrQp8hp5oaThmSUOw73F7PBDEc2RvVza2P5lH1RjEbxG+UVghAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnLGHuFC5Yk6IXYG9Kn+J4vwhd68wHwYDVR0j BBgwFoAULU73b/Xx3gi5+3yu1Jr3rUxgGDUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQwOTI3ZTYtOGEwYS00ZmE3LTg5NjktOWZiOWQ2OTQzOTdjLzAvMkQ0RUY3NkZG NUYxREUwOEI5RkI3Q0FFRDQ5QUY3QUQ0QzYwMTgzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRDRFRjc2RkY1RjFERTA4QjlGQjdDQUVENDlBRjdBRDRDNjAx ODM1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04 OTY5LTlmYjlkNjk0Mzk3Yy8wLzMxMzAzMzJlMzEzOTJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTODANBgkqhkiG 9w0BAQsFAAOCAQEAXmVVGJKdPcouHHBaz/jRbVWErWSAhTPObn8zrEQd+1Tl+kgn /OKhaByfZHp2gU/3K/2TLWbsEnjJR+G/DQqd0RccPqZeTet6qgVuqKTiza+MRKzk 7CSKRS4jY9wLJyXysbGTZAIlO07QPWypniZHN80sxZnNvSX1W2J8UtNuWnd0AY7Y UNV1YVW066f3PuSoDWyxasxdKyWc2M01MGCdFOdeG0YYN5clgtS1FgVtCM9x5Uil xRkpo7TFq9Qaaiwn6Njxo9rHYpQ1bb4ibcX27vQQUiuHa88sCdjSzZxZY8x3N3S/ IO6lKc9XVONmDUEmopg0fk/tulfnDr3xZ4svew== -----END CERTIFICATE-----Generated at Wed May 13 02:40:57 2026 by rpki-client