$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: oo4ZcfhhW+jQdvMEKA+FggmiNv1c+DnGSDh7E0qxnXk= Subject key identifier: B8:DB:31:86:56:48:08:71:3C:27:3A:07:CD:5C:13:68:78:EB:20:47 Certificate issuer: /CN=297248FCECD7534E50147B8F048420E637A10C3B Certificate serial: 4C041E7599CF519E5F3A6F013135C502BB3A137D Authority key identifier: 29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa Signing time: Sun 03 May 2026 02:22:42 +0000 ROA not before: Sun 03 May 2026 02:17:42 +0000 ROA not after: Sun 02 May 2027 02:22:42 +0000 asID: 134658 IP address blocks: 103.210.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:04:1e:75:99:cf:51:9e:5f:3a:6f:01:31:35:c5:02:bb:3a:13:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297248FCECD7534E50147B8F048420E637A10C3B Validity Not Before: May 3 02:17:42 2026 GMT Not After : May 2 02:22:42 2027 GMT Subject: CN=B8DB3186564808713C273A07CD5C136878EB2047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:59:f9:29:17:c6:23:fc:83:0e:8b:70:ca:62: f0:56:8a:b6:8b:23:b1:c8:e2:2d:00:7e:af:ab:54: 4b:1f:f2:d8:9b:33:f4:d4:fb:f9:e5:a8:d4:84:f9: d0:0a:44:d7:3f:47:17:cb:8c:e0:48:ed:8d:6a:11: 79:13:7b:f6:0a:52:54:ca:b4:8d:fc:4c:b2:74:e9: 6e:b6:a2:07:24:42:b5:3c:59:2e:7c:2e:b4:2d:c2: 94:cd:67:90:b7:a9:fc:84:b5:e8:5a:2e:9b:30:30: 10:07:7b:d4:79:59:56:6b:86:e8:6b:f3:4d:23:e6: f3:9a:04:63:9e:ed:54:4d:44:a9:d9:8a:1d:7b:b5: bd:99:48:1b:40:cd:aa:4e:f8:3a:99:ea:07:b0:1e: 71:51:2a:d2:0f:52:45:4d:2e:39:fd:b1:31:22:ee: db:20:c8:2c:03:16:55:b8:96:d8:88:5d:2e:0c:45: af:f2:35:66:65:e8:45:4e:81:d3:8d:4c:b7:ff:c6: c3:ff:6c:e5:75:d4:e5:60:d1:58:fd:17:57:a5:48: 0c:3c:ad:68:e4:0d:06:8a:5f:46:58:aa:44:f1:47: 36:f1:ce:cd:3f:ff:db:ce:22:18:fc:39:54:34:0d: ec:a6:80:13:81:af:fc:93:36:20:f3:e8:c1:ba:37: aa:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DB:31:86:56:48:08:71:3C:27:3A:07:CD:5C:13:68:78:EB:20:47 X509v3 Authority Key Identifier: keyid:29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.123.0/24 Signature Algorithm: sha256WithRSAEncryption 73:4a:b2:0e:62:f0:7f:7f:94:8b:88:39:da:8c:65:41:0a:39: b5:69:c2:5d:95:05:4c:0d:52:5f:de:9e:2d:95:cc:2e:44:ad: b4:95:d3:f4:59:34:fa:ac:09:06:95:dc:be:da:cb:96:a2:9e: 53:a0:b7:97:f9:f9:e7:22:46:b4:17:13:17:c8:e4:e5:fc:bb: ae:b4:f1:6c:45:e2:a3:e8:09:9c:f6:15:17:6b:33:e0:f4:3e: cc:40:6f:48:b3:45:0a:61:65:ed:ee:a0:f5:25:96:b0:75:76: 2d:0c:0f:a0:0c:94:78:0a:96:dc:e2:da:fd:54:13:9a:25:f9: e5:16:21:c3:c1:e4:b6:5e:87:57:94:31:f8:61:47:00:88:20: 76:e4:a2:c5:1d:fa:0e:f1:c1:68:71:7d:0f:96:dd:bf:6d:3d: 21:7b:f7:d1:af:a5:20:4e:6d:c4:58:d2:9b:7b:2f:ae:09:97: 67:0e:5b:5f:bd:b0:96:71:6e:a4:30:f8:93:18:c0:fa:db:3d: c5:0a:b3:bd:de:df:e4:9a:d3:13:2e:30:b1:87:85:c4:49:46: 65:da:c6:a3:c7:bc:ee:92:8b:05:1f:d3:bf:f5:8b:e7:2f:41: 39:78:21:10:5d:97:22:b9:a6:9c:bd:7a:94:09:50:1c:81:37: 06:60:b8:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTAQedZnPUZ5fOm8BMTXFArs6E30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3MjQ4RkNFQ0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYz N0ExMEMzQjAeFw0yNjA1MDMwMjE3NDJaFw0yNzA1MDIwMjIyNDJaMDMxMTAvBgNV BAMTKEI4REIzMTg2NTY0ODA4NzEzQzI3M0EwN0NENUMxMzY4NzhFQjIwNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMWfkpF8Yj/IMOi3DKYvBWiraL I7HI4i0Afq+rVEsf8tibM/TU+/nlqNSE+dAKRNc/RxfLjOBI7Y1qEXkTe/YKUlTK tI38TLJ06W62ogckQrU8WS58LrQtwpTNZ5C3qfyEtehaLpswMBAHe9R5WVZrhuhr 800j5vOaBGOe7VRNRKnZih17tb2ZSBtAzapO+DqZ6gewHnFRKtIPUkVNLjn9sTEi 7tsgyCwDFlW4ltiIXS4MRa/yNWZl6EVOgdONTLf/xsP/bOV11OVg0Vj9F1elSAw8 rWjkDQaKX0ZYqkTxRzbxzs0//9vOIhj8OVQ0DeymgBOBr/yTNiDz6MG6N6rXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuNsxhlZICHE8JzoHzVwTaHjrIEcwHwYDVR0j BBgwFoAUKXJI/OzXU05QFHuPBIQg5jehDDswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ0ODczNjAtODczNS00MWQ3LTk3YTgtZGJiMzRkNzllZmY0LzAvMjk3MjQ4RkNF Q0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYzN0ExMEMzQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOTcyNDhGQ0VDRDc1MzRFNTAxNDdCOEYwNDg0MjBFNjM3QTEw QzNCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0nswDQYJ KoZIhvcNAQELBQADggEBAHNKsg5i8H9/lIuIOdqMZUEKObVpwl2VBUwNUl/eni2V zC5ErbSV0/RZNPqsCQaV3L7ay5ainlOgt5f5+eciRrQXExfI5OX8u6608WxF4qPo CZz2FRdrM+D0PsxAb0izRQphZe3uoPUllrB1di0MD6AMlHgKltzi2v1UE5ol+eUW IcPB5LZeh1eUMfhhRwCIIHbkosUd+g7xwWhxfQ+W3b9tPSF799GvpSBObcRY0pt7 L64Jl2cOW1+9sJZxbqQw+JMYwPrbPcUKs73e3+Sa0xMuMLGHhcRJRmXaxqPHvO6S iwUf07/1i+cvQTl4IRBdlyK5ppy9epQJUByBNwZguFg= -----END CERTIFICATE-----Generated at Wed May 13 04:10:10 2026 by rpki-client