$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: 6aYUJ+FNHyAIseZkPJnJdcJkRNhk0jl4taXFBkoPhy4= Subject key identifier: 7D:E2:09:5F:0F:2E:2E:DA:B2:E3:2F:AD:92:F4:14:A6:F0:59:5C:4C Certificate issuer: /CN=297248FCECD7534E50147B8F048420E637A10C3B Certificate serial: 4358E5D9C3E9BE81C02349D1E9F599F7C79A6BC7 Authority key identifier: 29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa Signing time: Sun 03 May 2026 02:22:40 +0000 ROA not before: Sun 03 May 2026 02:17:40 +0000 ROA not after: Sun 02 May 2027 02:22:40 +0000 asID: 134658 IP address blocks: 103.210.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:58:e5:d9:c3:e9:be:81:c0:23:49:d1:e9:f5:99:f7:c7:9a:6b:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297248FCECD7534E50147B8F048420E637A10C3B Validity Not Before: May 3 02:17:40 2026 GMT Not After : May 2 02:22:40 2027 GMT Subject: CN=7DE2095F0F2E2EDAB2E32FAD92F414A6F0595C4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3a:c7:00:ac:b2:2e:58:82:bb:6f:4a:1a:3d: a4:92:36:89:19:41:c3:6b:c5:c8:52:4a:df:a8:78: 37:97:a3:52:68:07:82:08:5d:c6:20:3c:f6:12:12: d2:c5:4c:7c:f0:3e:ca:44:f9:9a:8a:6c:79:ca:f4: 7f:55:e0:15:13:df:13:31:3d:07:ff:22:53:2f:9b: 4b:64:94:22:b4:9d:6d:2c:56:79:64:98:54:c2:3b: be:40:a4:62:2c:67:69:9a:3c:2a:9f:93:f1:73:77: 2c:fa:60:16:92:c3:22:13:37:9f:2e:e7:d9:e6:a8: a5:d9:7d:d9:96:ad:98:03:a7:e7:cc:da:33:b9:c2: 3d:f6:e2:b6:a7:32:17:0f:af:c9:fa:c9:bf:44:6a: 16:24:fb:48:f1:1c:aa:57:cc:9c:00:7d:f3:ca:91: 4e:b7:e8:90:21:d0:a9:d2:1e:b5:63:10:49:3f:d3: 50:57:58:db:d5:0b:aa:22:de:c9:1b:94:2f:76:80: 6d:ee:ee:bd:ab:1d:37:82:ef:6b:bd:0f:fd:91:d3: e5:3e:e3:27:8e:be:ae:1e:b5:56:11:41:ae:a2:e0: ec:3a:4d:af:6e:d2:2c:6c:fe:91:b3:36:dc:10:f4: d0:a7:ce:5a:95:43:5c:b7:dd:f7:84:4e:09:b3:78: 44:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E2:09:5F:0F:2E:2E:DA:B2:E3:2F:AD:92:F4:14:A6:F0:59:5C:4C X509v3 Authority Key Identifier: keyid:29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.120.0/24 Signature Algorithm: sha256WithRSAEncryption 37:99:a2:da:36:a5:85:9c:e3:c6:4f:85:9f:72:ac:74:f3:7a: b9:00:47:39:70:29:93:10:18:ae:88:83:25:48:d1:5a:fe:48: da:48:4b:7c:b0:f2:75:28:54:d5:da:2f:e7:51:ae:bf:7e:1f: 8d:3c:4b:8e:88:0e:ce:51:2f:0a:4b:c1:64:38:ea:30:b4:d3: b0:1f:ab:4e:85:2f:9a:b9:08:c5:f9:be:5d:c9:a0:50:ca:6b: e6:e3:31:b9:46:d2:25:b9:17:0e:9a:02:b0:0c:f2:45:78:d0: 69:85:48:0a:04:92:1c:64:54:1e:8e:d8:38:22:7f:d7:e7:63: d7:f2:53:a3:03:e6:26:ce:67:8f:47:4d:39:c0:5e:ff:14:b2: 41:f0:f6:cf:49:d4:7c:73:47:db:43:1e:d8:9f:7f:5c:6d:2a: d0:a4:c9:51:3f:9b:58:06:64:ab:9d:60:f5:46:8c:70:46:72: 40:68:16:80:35:aa:58:ef:c9:d0:80:7c:b1:1c:dd:98:6b:8c: cd:db:25:59:99:55:1a:73:01:e1:cb:dc:0f:5b:e7:a1:70:8c: ec:5c:d4:9e:94:44:ba:e5:e7:79:38:cf:8a:4e:24:04:93:3b: 69:26:1e:25:43:c0:c8:d6:16:df:09:25:c0:60:dc:f8:2e:4a: d1:d4:ee:e6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ1jl2cPpvoHAI0nR6fWZ98eaa8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3MjQ4RkNFQ0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYz N0ExMEMzQjAeFw0yNjA1MDMwMjE3NDBaFw0yNzA1MDIwMjIyNDBaMDMxMTAvBgNV BAMTKDdERTIwOTVGMEYyRTJFREFCMkUzMkZBRDkyRjQxNEE2RjA1OTVDNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2OscArLIuWIK7b0oaPaSSNokZ QcNrxchSSt+oeDeXo1JoB4IIXcYgPPYSEtLFTHzwPspE+ZqKbHnK9H9V4BUT3xMx PQf/IlMvm0tklCK0nW0sVnlkmFTCO75ApGIsZ2maPCqfk/Fzdyz6YBaSwyITN58u 59nmqKXZfdmWrZgDp+fM2jO5wj324ranMhcPr8n6yb9EahYk+0jxHKpXzJwAffPK kU636JAh0KnSHrVjEEk/01BXWNvVC6oi3skblC92gG3u7r2rHTeC72u9D/2R0+U+ 4yeOvq4etVYRQa6i4Ow6Ta9u0ixs/pGzNtwQ9NCnzlqVQ1y33feETgmzeEQzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfeIJXw8uLtqy4y+tkvQUpvBZXEwwHwYDVR0j BBgwFoAUKXJI/OzXU05QFHuPBIQg5jehDDswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ0ODczNjAtODczNS00MWQ3LTk3YTgtZGJiMzRkNzllZmY0LzAvMjk3MjQ4RkNF Q0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYzN0ExMEMzQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOTcyNDhGQ0VDRDc1MzRFNTAxNDdCOEYwNDg0MjBFNjM3QTEw QzNCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0ngwDQYJ KoZIhvcNAQELBQADggEBADeZoto2pYWc48ZPhZ9yrHTzerkARzlwKZMQGK6IgyVI 0Vr+SNpIS3yw8nUoVNXaL+dRrr9+H408S46IDs5RLwpLwWQ46jC007Afq06FL5q5 CMX5vl3JoFDKa+bjMblG0iW5Fw6aArAM8kV40GmFSAoEkhxkVB6O2Dgif9fnY9fy U6MD5ibOZ49HTTnAXv8UskHw9s9J1HxzR9tDHtiff1xtKtCkyVE/m1gGZKudYPVG jHBGckBoFoA1qljvydCAfLEc3ZhrjM3bJVmZVRpzAeHL3A9b56FwjOxc1J6URLrl 53k4z4pOJASTO2kmHiVDwMjWFt8JJcBg3PguStHU7uY= -----END CERTIFICATE-----Generated at Wed May 13 03:52:08 2026 by rpki-client