$ rpki-client -vvf rpki-rsync.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa File: 3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa (raw, json) Hash identifier: DPbwWaqhZhIf++Ujgi9BYNcGolMoqcI02wvNDZg4xw8= Subject key identifier: EC:C4:8B:7C:91:6D:18:AD:B0:BC:AE:B1:FC:38:10:F3:99:CE:7A:EB Certificate issuer: /CN=04802014594DAC827C3F8FBF392DF25D2C1943C5 Certificate serial: 4B0BF80566C1998D9859B8820AF1577719E8630D Authority key identifier: 04:80:20:14:59:4D:AC:82:7C:3F:8F:BF:39:2D:F2:5D:2C:19:43:C5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04802014594DAC827C3F8FBF392DF25D2C1943C5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa Signing time: Sun 03 May 2026 02:23:14 +0000 ROA not before: Sun 03 May 2026 02:18:14 +0000 ROA not after: Sun 02 May 2027 02:23:14 +0000 asID: 138058 IP address blocks: 103.129.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/04802014594DAC827C3F8FBF392DF25D2C1943C5.crl rsync://rpki-rsync.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/04802014594DAC827C3F8FBF392DF25D2C1943C5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04802014594DAC827C3F8FBF392DF25D2C1943C5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:0b:f8:05:66:c1:99:8d:98:59:b8:82:0a:f1:57:77:19:e8:63:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04802014594DAC827C3F8FBF392DF25D2C1943C5 Validity Not Before: May 3 02:18:14 2026 GMT Not After : May 2 02:23:14 2027 GMT Subject: CN=ECC48B7C916D18ADB0BCAEB1FC3810F399CE7AEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:db:d7:f2:63:f3:90:5f:2a:44:15:53:a0:e2: 9f:ff:0b:2b:fd:3e:68:c7:57:e2:7c:87:36:47:e0: a3:43:d9:28:7a:79:cb:22:91:5d:60:f9:eb:a4:06: eb:d7:34:e5:3d:81:c9:e2:11:3c:81:f9:a0:b9:f1: de:9e:d0:a6:05:f7:3e:3d:a1:e8:93:f2:7f:23:53: 76:ad:59:d7:df:50:b1:8b:39:2f:6c:d4:1a:03:c1: 57:dd:fd:6f:28:b5:e8:43:c2:7f:bd:67:dd:b9:77: 70:2c:4b:23:26:6a:38:90:41:62:d4:95:dc:c4:f1: b1:19:ee:e3:67:b3:85:18:22:61:0a:e3:0c:21:c0: 9d:ea:99:e4:ee:30:6e:3c:9e:a0:b0:ca:41:33:9a: 9c:fe:f4:b8:9e:a8:fc:9f:f7:47:86:bf:7e:83:1d: 09:7b:2c:48:95:0d:f5:38:50:47:ec:26:76:06:69: ff:cd:d2:e5:be:13:b4:e0:05:4b:00:44:1c:67:39: 31:03:9f:b5:67:c4:79:a9:4b:f6:45:da:40:4d:b4: 49:dc:a1:2e:ad:3d:6e:bb:90:49:fb:b6:b4:84:4e: 0e:82:b5:f4:28:36:55:db:73:3f:9b:1b:76:53:47: 00:17:d5:3b:96:07:d3:b6:60:17:5d:19:50:21:2c: 3f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C4:8B:7C:91:6D:18:AD:B0:BC:AE:B1:FC:38:10:F3:99:CE:7A:EB X509v3 Authority Key Identifier: keyid:04:80:20:14:59:4D:AC:82:7C:3F:8F:BF:39:2D:F2:5D:2C:19:43:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/04802014594DAC827C3F8FBF392DF25D2C1943C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04802014594DAC827C3F8FBF392DF25D2C1943C5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.60.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:31:a4:de:a0:aa:e8:87:c5:f7:08:d8:2b:8a:8a:e8:f4:5c: cb:f2:be:dd:5a:b4:af:81:8d:c5:38:1f:95:f3:e4:45:8a:bd: 9a:47:ee:fa:7f:a3:9b:1d:20:ae:e9:f1:84:5c:e1:b8:b4:e0: f1:3f:95:24:b7:e1:b5:6e:df:a7:73:32:8a:7c:0b:bb:20:d9: 89:6c:29:90:b5:c8:9a:96:df:27:69:e1:00:c6:c3:92:aa:87: 17:03:ba:bb:00:95:84:44:65:ea:0c:33:79:7c:52:73:46:3f: 0f:e1:06:cd:68:69:cf:ab:3d:57:fb:e3:62:84:6f:e9:48:7c: 36:61:ff:5c:5b:11:85:34:69:17:1a:0e:06:ba:a8:95:62:97: 4d:12:ee:1d:c5:89:2e:54:10:81:13:07:39:82:93:03:8f:03: f0:6b:45:c0:78:40:d2:83:14:c7:63:33:af:a7:98:8f:4a:ba: 1f:1b:57:08:e0:7e:5e:70:9a:75:c5:af:89:c2:b3:af:0d:dc: d1:89:65:d4:23:ac:53:ff:c2:c8:81:1b:09:a7:92:74:82:a4: dc:34:62:a6:66:33:6f:90:da:12:f5:7f:6e:e1:dc:6a:dc:35: 1a:a3:0d:38:9e:61:1b:5a:c0:1d:ac:88:29:42:34:0d:44:74: 23:5d:92:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSwv4BWbBmY2YWbiCCvFXdxnoYw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ4MDIwMTQ1OTREQUM4MjdDM0Y4RkJGMzkyREYyNUQy QzE5NDNDNTAeFw0yNjA1MDMwMjE4MTRaFw0yNzA1MDIwMjIzMTRaMDMxMTAvBgNV BAMTKEVDQzQ4QjdDOTE2RDE4QURCMEJDQUVCMUZDMzgxMEYzOTlDRTdBRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp29fyY/OQXypEFVOg4p//Cyv9 PmjHV+J8hzZH4KND2Sh6ecsikV1g+eukBuvXNOU9gcniETyB+aC58d6e0KYF9z49 oeiT8n8jU3atWdffULGLOS9s1BoDwVfd/W8otehDwn+9Z925d3AsSyMmajiQQWLU ldzE8bEZ7uNns4UYImEK4wwhwJ3qmeTuMG48nqCwykEzmpz+9LieqPyf90eGv36D HQl7LEiVDfU4UEfsJnYGaf/N0uW+E7TgBUsARBxnOTEDn7VnxHmpS/ZF2kBNtEnc oS6tPW67kEn7trSETg6CtfQoNlXbcz+bG3ZTRwAX1TuWB9O2YBddGVAhLD/LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7MSLfJFtGK2wvK6x/DgQ85nOeuswHwYDVR0j BBgwFoAUBIAgFFlNrIJ8P4+/OS3yXSwZQ8UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmU2YmJlNGQtM2EyYi00ZTFiLWExYWEtNTkzNjEwYjNkZWM5LzAvMDQ4MDIwMTQ1 OTREQUM4MjdDM0Y4RkJGMzkyREYyNUQyQzE5NDNDNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNDgwMjAxNDU5NERBQzgyN0MzRjhGQkYzOTJERjI1RDJDMTk0 M0M1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJlNmJiZTRkLTNhMmItNGUxYi1h MWFhLTU5MzYxMGIzZGVjOS8wLzMxMzAzMzJlMzEzMjM5MmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4E8MA0GCSqG SIb3DQEBCwUAA4IBAQANMaTeoKroh8X3CNgrioro9FzL8r7dWrSvgY3FOB+V8+RF ir2aR+76f6ObHSCu6fGEXOG4tODxP5Ukt+G1bt+nczKKfAu7INmJbCmQtcialt8n aeEAxsOSqocXA7q7AJWERGXqDDN5fFJzRj8P4QbNaGnPqz1X++NihG/pSHw2Yf9c WxGFNGkXGg4GuqiVYpdNEu4dxYkuVBCBEwc5gpMDjwPwa0XAeEDSgxTHYzOvp5iP SrofG1cI4H5ecJp1xa+JwrOvDdzRiWXUI6xT/8LIgRsJp5J0gqTcNGKmZjNvkNoS 9X9u4dxq3DUaow04nmEbWsAdrIgpQjQNRHQjXZJB -----END CERTIFICATE-----Generated at Wed May 13 00:21:38 2026 by rpki-client