$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: WyHWzOQjnsC2hpvAqyEJHrmMYVhTQqPIZfmDPtTVAjE= Subject key identifier: 1E:5F:E8:31:6D:9F:9E:34:EA:E8:E0:B8:4A:16:D7:BE:6A:36:B1:5E Certificate issuer: /CN=297248FCECD7534E50147B8F048420E637A10C3B Certificate serial: 5CE87013B20F070583C9A28429381003B413B48C Authority key identifier: 29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa Signing time: Sun 03 May 2026 02:22:42 +0000 ROA not before: Sun 03 May 2026 02:17:42 +0000 ROA not after: Sun 02 May 2027 02:22:42 +0000 asID: 134658 IP address blocks: 103.210.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e8:70:13:b2:0f:07:05:83:c9:a2:84:29:38:10:03:b4:13:b4:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297248FCECD7534E50147B8F048420E637A10C3B Validity Not Before: May 3 02:17:42 2026 GMT Not After : May 2 02:22:42 2027 GMT Subject: CN=1E5FE8316D9F9E34EAE8E0B84A16D7BE6A36B15E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:27:49:df:41:55:7d:43:c7:67:76:96:ad:9e: 89:c9:2e:bf:aa:4c:da:34:48:a2:a2:e8:b0:13:33: ab:65:4c:0c:cc:a9:08:5e:01:c8:2a:2b:89:02:af: c2:97:74:1e:f4:4a:dc:3d:f2:8b:e6:c7:48:95:d1: d8:aa:5f:d8:b3:4f:4e:34:cb:bb:15:6b:93:f1:1e: 34:32:4c:3e:da:8c:c8:b4:05:8d:ce:ce:32:0c:2a: 75:0c:34:47:27:b6:8a:27:d1:ab:eb:21:f4:c2:90: cd:28:88:09:87:c7:9d:6b:5a:83:3d:9a:dc:64:c5: 9c:ff:3b:f3:f3:80:c2:8f:1f:cd:5b:ca:4b:0c:18: 9e:d0:10:f9:d2:2c:63:e7:bb:d3:5c:f6:f1:ce:4c: 02:34:97:0b:c6:31:a2:df:bd:f4:fc:4e:64:b6:92: e6:2d:93:11:fc:e0:90:33:71:54:e4:17:78:1b:22: aa:61:40:c7:5c:48:aa:b2:66:18:90:fc:62:15:13: 1e:76:a7:66:60:a9:05:32:5f:c0:23:8c:8c:6a:3d: 04:68:d4:0f:52:78:ec:ee:7a:64:ce:7d:ab:fc:30: 0f:83:1e:cd:35:d5:64:b3:ac:35:9f:c5:90:72:19: 0c:56:40:26:da:30:2d:12:14:3a:01:d5:5c:bf:c1: 6d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5F:E8:31:6D:9F:9E:34:EA:E8:E0:B8:4A:16:D7:BE:6A:36:B1:5E X509v3 Authority Key Identifier: keyid:29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.122.0/24 Signature Algorithm: sha256WithRSAEncryption 58:9a:aa:53:7c:e7:67:34:94:8e:08:04:ea:cd:db:cb:6c:7a: 1e:51:82:3b:98:2b:c5:27:3f:f7:49:a7:18:b2:c0:b0:e6:5d: 5e:2e:9b:52:ef:18:1f:1e:95:c5:84:c8:5f:30:79:bb:f4:4e: 7c:3f:b3:d8:27:b2:cb:89:f8:34:0b:fe:4c:3b:8e:76:e3:b3: e6:e0:c8:9f:98:be:62:bc:39:ad:79:9d:1e:e9:fa:98:30:a2: fe:41:3b:7f:f0:ad:2c:4d:43:84:5e:d8:60:b7:60:b9:a6:78: b4:03:c3:94:d5:a1:17:ce:25:9d:9e:e3:1e:a6:31:f9:a4:23: 2d:42:f6:6d:54:97:fe:10:d5:c5:a8:f1:bc:eb:ca:de:00:7a: d7:0c:80:e9:29:49:9c:dd:51:e7:ab:c9:7b:f9:ec:06:7e:23: bc:a1:2a:a2:9f:69:ef:b9:7b:aa:39:8d:70:82:e6:c5:b7:a5: e8:d9:23:e7:91:e7:69:3f:45:b5:6e:10:99:43:f3:34:8f:a5: a2:f1:9e:38:92:ac:68:f1:7f:0a:81:cc:59:54:c4:dc:00:03: 4b:09:1c:4a:80:5c:1a:5d:0b:ed:64:4e:61:75:2b:5c:26:2d: 8d:ff:f3:9c:b4:f8:cd:41:b7:2f:92:61:0f:e9:58:fa:0d:97: 50:51:80:01 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXOhwE7IPBwWDyaKEKTgQA7QTtIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3MjQ4RkNFQ0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYz N0ExMEMzQjAeFw0yNjA1MDMwMjE3NDJaFw0yNzA1MDIwMjIyNDJaMDMxMTAvBgNV BAMTKDFFNUZFODMxNkQ5RjlFMzRFQUU4RTBCODRBMTZEN0JFNkEzNkIxNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7J0nfQVV9Q8dndpatnonJLr+q TNo0SKKi6LATM6tlTAzMqQheAcgqK4kCr8KXdB70Stw98ovmx0iV0diqX9izT040 y7sVa5PxHjQyTD7ajMi0BY3OzjIMKnUMNEcntoon0avrIfTCkM0oiAmHx51rWoM9 mtxkxZz/O/PzgMKPH81byksMGJ7QEPnSLGPnu9Nc9vHOTAI0lwvGMaLfvfT8TmS2 kuYtkxH84JAzcVTkF3gbIqphQMdcSKqyZhiQ/GIVEx52p2ZgqQUyX8AjjIxqPQRo 1A9SeOzuemTOfav8MA+DHs011WSzrDWfxZByGQxWQCbaMC0SFDoB1Vy/wW0XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHl/oMW2fnjTq6OC4ShbXvmo2sV4wHwYDVR0j BBgwFoAUKXJI/OzXU05QFHuPBIQg5jehDDswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ0ODczNjAtODczNS00MWQ3LTk3YTgtZGJiMzRkNzllZmY0LzAvMjk3MjQ4RkNF Q0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYzN0ExMEMzQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOTcyNDhGQ0VDRDc1MzRFNTAxNDdCOEYwNDg0MjBFNjM3QTEw QzNCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0nowDQYJ KoZIhvcNAQELBQADggEBAFiaqlN852c0lI4IBOrN28tseh5RgjuYK8UnP/dJpxiy wLDmXV4um1LvGB8elcWEyF8webv0Tnw/s9gnssuJ+DQL/kw7jnbjs+bgyJ+YvmK8 Oa15nR7p+pgwov5BO3/wrSxNQ4Re2GC3YLmmeLQDw5TVoRfOJZ2e4x6mMfmkIy1C 9m1Ul/4Q1cWo8bzryt4AetcMgOkpSZzdUeeryXv57AZ+I7yhKqKfae+5e6o5jXCC 5sW3pejZI+eR52k/RbVuEJlD8zSPpaLxnjiSrGjxfwqBzFlUxNwAA0sJHEqAXBpd C+1kTmF1K1wmLY3/85y0+M1Bty+SYQ/pWPoNl1BRgAE= -----END CERTIFICATE-----Generated at Wed May 13 04:51:26 2026 by rpki-client