$ rpki-client -vvf rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa File: 3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa (raw, json) Hash identifier: KAa2YP9GlXrFj15zwBpksmX3bAfUKyYMHaAYDuzpQWY= Subject key identifier: 2B:4D:83:8B:3B:1F:FA:13:B6:96:C9:F4:DC:DD:B5:C5:36:1A:35:17 Certificate issuer: /CN=3B49013F73B5A7AF137F414DE362E405F31D32DC Certificate serial: 3EC27775CC19765174549E91FE10F58681CC2462 Authority key identifier: 3B:49:01:3F:73:B5:A7:AF:13:7F:41:4D:E3:62:E4:05:F3:1D:32:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B49013F73B5A7AF137F414DE362E405F31D32DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa Signing time: Sun 03 May 2026 02:24:20 +0000 ROA not before: Sun 03 May 2026 02:19:20 +0000 ROA not after: Sun 02 May 2027 02:24:20 +0000 asID: 141920 IP address blocks: 103.165.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3B49013F73B5A7AF137F414DE362E405F31D32DC.crl rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3B49013F73B5A7AF137F414DE362E405F31D32DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B49013F73B5A7AF137F414DE362E405F31D32DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c2:77:75:cc:19:76:51:74:54:9e:91:fe:10:f5:86:81:cc:24:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B49013F73B5A7AF137F414DE362E405F31D32DC Validity Not Before: May 3 02:19:20 2026 GMT Not After : May 2 02:24:20 2027 GMT Subject: CN=2B4D838B3B1FFA13B696C9F4DCDDB5C5361A3517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8b:9c:e6:49:68:9d:20:ac:45:75:39:34:ee: 5f:60:0e:fb:f2:33:ee:22:77:c0:78:c9:81:bc:ed: 08:f1:f2:f4:9d:4c:f5:67:2f:ab:30:09:23:22:e3: 26:19:b5:6a:ae:08:47:e6:32:10:0a:c4:d0:6c:7f: b8:e7:a4:9b:dc:a0:95:a1:87:0a:7a:eb:c5:b4:f1: 6c:a7:44:29:9e:16:3d:3a:90:e4:03:67:94:6f:d5: 06:a9:c8:10:72:bb:64:5b:ba:26:b7:93:53:e0:71: c2:d0:1e:4e:15:d1:50:8d:43:47:fe:6d:24:3d:6b: e7:00:80:11:9f:b2:27:39:25:49:72:a5:2a:e9:00: 3a:9f:5d:a1:3a:c9:66:e0:68:d0:ec:d3:d2:14:f5: d4:cc:49:2e:0a:7f:51:cf:6b:57:2c:2f:31:9c:a9: 32:39:87:96:d3:8f:27:27:d3:b3:30:5e:89:20:7c: cb:da:f5:c0:21:b1:aa:38:49:00:8a:00:a5:c4:d8: 29:55:3c:97:6c:fb:4f:f9:ef:cf:7d:67:bf:e3:0f: 77:cf:d6:c5:4a:54:d7:6a:6d:49:41:ee:f1:92:4b: 56:8a:b6:c0:8b:b9:68:d4:9c:66:ec:ac:ed:4a:51: 98:ef:9c:40:ad:37:d2:74:1a:26:c9:f1:1f:5d:09: 49:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4D:83:8B:3B:1F:FA:13:B6:96:C9:F4:DC:DD:B5:C5:36:1A:35:17 X509v3 Authority Key Identifier: keyid:3B:49:01:3F:73:B5:A7:AF:13:7F:41:4D:E3:62:E4:05:F3:1D:32:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3B49013F73B5A7AF137F414DE362E405F31D32DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B49013F73B5A7AF137F414DE362E405F31D32DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.148.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:98:d2:7f:46:46:fd:35:77:60:92:21:34:5d:e7:b1:95:a8: 43:f8:5b:a8:2c:9e:14:25:08:5c:65:ba:7c:80:b2:05:a6:2e: ef:da:7d:01:e1:09:01:3f:4e:58:75:28:7e:b8:8e:3c:a6:14: 01:be:eb:04:f5:55:63:12:d6:0a:1b:a6:0d:e9:75:bb:3b:ed: 22:95:00:d6:93:89:ad:b6:ba:4a:46:1f:6f:8b:79:eb:b2:e7: 34:4c:dc:fe:56:65:da:2e:3a:e4:ad:db:68:fc:61:d3:c4:b7: fb:66:25:ea:29:03:51:70:b0:20:b2:6e:23:ee:6a:b5:79:b2: e6:2c:e3:9e:f9:2f:5b:f0:eb:8c:55:81:8c:ce:64:8a:ff:d9: 4f:ba:9e:a5:ea:40:6d:6c:9c:83:cf:03:e8:84:66:52:64:0c: 1d:2b:4c:a4:da:5c:8d:61:3f:a0:be:a8:70:eb:89:7b:b4:fc: a3:d1:8b:9b:1f:52:a3:87:cc:08:56:ba:84:67:a2:02:f9:c8: c8:40:23:75:51:62:5f:8c:1f:4d:69:1d:51:fc:60:aa:7e:2e: 8f:3c:30:8d:7e:c3:46:d8:fa:dc:d1:c2:11:d5:78:36:88:2c: c1:df:79:47:d5:72:03:52:2a:69:ef:26:41:65:38:e0:0b:b8: cc:76:f2:60 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPsJ3dcwZdlF0VJ6R/hD1hoHMJGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I0OTAxM0Y3M0I1QTdBRjEzN0Y0MTRERTM2MkU0MDVG MzFEMzJEQzAeFw0yNjA1MDMwMjE5MjBaFw0yNzA1MDIwMjI0MjBaMDMxMTAvBgNV BAMTKDJCNEQ4MzhCM0IxRkZBMTNCNjk2QzlGNERDRERCNUM1MzYxQTM1MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCi5zmSWidIKxFdTk07l9gDvvy M+4id8B4yYG87Qjx8vSdTPVnL6swCSMi4yYZtWquCEfmMhAKxNBsf7jnpJvcoJWh hwp668W08WynRCmeFj06kOQDZ5Rv1QapyBByu2Rbuia3k1PgccLQHk4V0VCNQ0f+ bSQ9a+cAgBGfsic5JUlypSrpADqfXaE6yWbgaNDs09IU9dTMSS4Kf1HPa1csLzGc qTI5h5bTjycn07MwXokgfMva9cAhsao4SQCKAKXE2ClVPJds+0/57899Z7/jD3fP 1sVKVNdqbUlB7vGSS1aKtsCLuWjUnGbsrO1KUZjvnECtN9J0GibJ8R9dCUlHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUK02Dizsf+hO2lsn03N21xTYaNRcwHwYDVR0j BBgwFoAUO0kBP3O1p68Tf0FN42LkBfMdMtwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzJmM2Y1ZDktY2ZiOC00MTIzLWEyYjEtYjBiNTI5OWY5YzZlLzAvM0I0OTAxM0Y3 M0I1QTdBRjEzN0Y0MTRERTM2MkU0MDVGMzFEMzJEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjQ5MDEzRjczQjVBN0FGMTM3RjQxNERFMzYyRTQwNUYzMUQz MkRDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMyZjNmNWQ5LWNmYjgtNDEyMy1h MmIxLWIwYjUyOTlmOWM2ZS8wLzMxMzAzMzJlMzEzNjM1MmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpZQwDQYJ KoZIhvcNAQELBQADggEBAI6Y0n9GRv01d2CSITRd57GVqEP4W6gsnhQlCFxlunyA sgWmLu/afQHhCQE/Tlh1KH64jjymFAG+6wT1VWMS1gobpg3pdbs77SKVANaTia22 ukpGH2+Leeuy5zRM3P5WZdouOuSt22j8YdPEt/tmJeopA1FwsCCybiPuarV5suYs 4575L1vw64xVgYzOZIr/2U+6nqXqQG1snIPPA+iEZlJkDB0rTKTaXI1hP6C+qHDr iXu0/KPRi5sfUqOHzAhWuoRnogL5yMhAI3VRYl+MH01pHVH8YKp+Lo88MI1+w0bY +tzRwhHVeDaILMHfeUfVcgNSKmnvJkFlOOALuMx28mA= -----END CERTIFICATE-----Generated at Wed May 13 06:48:30 2026 by rpki-client