$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: E+N1immRENPXVU/7bbv3smD3y2taIwXbBggOaxh1iyw= Subject key identifier: 23:DC:11:BB:C5:11:40:B2:6C:C9:58:07:60:F5:67:42:21:3D:77:25 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 12995FF316BCFF7B2215A2FC84F7F20996461DE9 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:47 +0000 ROA not before: Sun 03 May 2026 02:17:47 +0000 ROA not after: Sun 02 May 2027 02:22:47 +0000 asID: 58487 IP address blocks: 103.253.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:99:5f:f3:16:bc:ff:7b:22:15:a2:fc:84:f7:f2:09:96:46:1d:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:47 2026 GMT Not After : May 2 02:22:47 2027 GMT Subject: CN=23DC11BBC51140B26CC9580760F56742213D7725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:97:66:b9:cd:99:c3:b4:02:1d:f4:53:5e:b6: 60:76:ec:00:29:f1:c0:c7:ba:b6:e1:5c:d2:d9:b9: ff:7f:b8:34:41:72:1f:f2:1c:41:00:59:22:39:ce: 5d:8b:a5:f5:a3:3a:36:99:3c:39:10:ba:03:fd:5d: c5:85:4c:28:c4:66:2b:38:e1:b0:74:d6:10:96:89: 6e:53:8b:bf:80:e7:69:be:e3:63:ab:7f:59:50:f1: d9:b5:bf:32:20:b3:50:57:cc:64:3a:55:76:c9:59: 6b:74:90:0f:b6:da:93:12:b8:80:51:8c:32:60:9d: cd:2f:50:eb:f5:9d:8b:0a:e7:77:4b:71:c4:a2:df: 9a:2a:d4:4b:1a:08:58:b5:62:f1:fb:ad:53:e5:5a: 62:e4:24:ff:88:97:8c:b2:49:24:42:96:a0:8f:b3: 01:da:66:a7:30:3c:9f:0d:77:66:0a:ff:1b:2c:ac: 56:09:26:28:cd:13:41:26:c3:b3:00:44:14:33:1c: 29:14:ae:53:de:d5:95:34:c3:43:9f:2a:9e:47:57: 08:60:45:66:05:72:18:4b:6b:f7:71:b6:0a:4f:07: 36:7b:3f:e5:10:bc:bb:cb:1d:00:e9:58:32:f0:d2: c7:ee:8e:d5:33:4b:68:2c:e8:56:ae:ac:31:00:4b: 78:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DC:11:BB:C5:11:40:B2:6C:C9:58:07:60:F5:67:42:21:3D:77:25 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.213.0/24 Signature Algorithm: sha256WithRSAEncryption 11:a2:91:24:cd:1f:37:fd:83:8a:92:89:ec:5c:c3:cf:0a:a4: e5:0f:46:3c:a5:65:76:27:87:88:ff:6e:b3:26:cf:d8:91:8e: 4c:ef:fa:ce:7c:cb:b1:2d:90:2b:8e:6b:bc:9f:97:94:74:20: 8d:03:80:7b:f2:10:23:b6:36:93:49:35:67:c9:78:67:7e:17: b8:aa:ee:bc:ae:e6:5b:f6:c0:48:cc:7b:7f:be:98:13:e6:36: b5:65:ed:1a:7f:fd:2d:bb:bb:f8:d6:16:70:99:bf:6b:fe:69: af:6f:8a:20:06:25:fa:de:58:7d:3e:b5:87:05:72:2b:f5:c6: a9:26:36:2d:91:1e:6b:46:72:31:aa:fa:7b:51:08:da:64:d3: 54:9e:24:58:a6:38:72:f9:48:50:ff:fe:af:c3:61:55:cd:50: 7d:2c:50:6e:6f:c4:f5:cd:d0:ce:3d:52:c2:10:63:6c:6c:0a: 03:c0:61:98:c8:40:63:b8:f3:53:1a:79:c6:f5:22:c1:43:64: d1:04:6d:3b:bd:e6:67:e9:49:f3:d6:49:e3:10:27:bf:8b:64: 67:ab:0b:b5:5c:5a:d0:b7:99:65:a5:df:4c:43:8a:9e:ef:db: 63:a9:b3:1d:9a:f0:4a:09:03:12:e2:ce:61:07:ec:e2:ae:d5: bf:33:c9:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEplf8xa8/3siFaL8hPfyCZZGHekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NDdaFw0yNzA1MDIwMjIyNDdaMDMxMTAvBgNV BAMTKDIzREMxMUJCQzUxMTQwQjI2Q0M5NTgwNzYwRjU2NzQyMjEzRDc3MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSl2a5zZnDtAId9FNetmB27AAp 8cDHurbhXNLZuf9/uDRBch/yHEEAWSI5zl2LpfWjOjaZPDkQugP9XcWFTCjEZis4 4bB01hCWiW5Ti7+A52m+42Orf1lQ8dm1vzIgs1BXzGQ6VXbJWWt0kA+22pMSuIBR jDJgnc0vUOv1nYsK53dLccSi35oq1EsaCFi1YvH7rVPlWmLkJP+Il4yySSRClqCP swHaZqcwPJ8Nd2YK/xssrFYJJijNE0Emw7MARBQzHCkUrlPe1ZU0w0OfKp5HVwhg RWYFchhLa/dxtgpPBzZ7P+UQvLvLHQDpWDLw0sfujtUzS2gs6FaurDEAS3g/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI9wRu8URQLJsyVgHYPVnQiE9dyUwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3VMA0GCSqG SIb3DQEBCwUAA4IBAQARopEkzR83/YOKkonsXMPPCqTlD0Y8pWV2J4eI/26zJs/Y kY5M7/rOfMuxLZArjmu8n5eUdCCNA4B78hAjtjaTSTVnyXhnfhe4qu68ruZb9sBI zHt/vpgT5ja1Ze0af/0tu7v41hZwmb9r/mmvb4ogBiX63lh9PrWHBXIr9capJjYt kR5rRnIxqvp7UQjaZNNUniRYpjhy+UhQ//6vw2FVzVB9LFBub8T1zdDOPVLCEGNs bAoDwGGYyEBjuPNTGnnG9SLBQ2TRBG07veZn6Unz1knjECe/i2Rnqwu1XFrQt5ll pd9MQ4qe79tjqbMdmvBKCQMS4s5hB+zirtW/M8mT -----END CERTIFICATE-----Generated at Wed May 13 00:34:23 2026 by rpki-client