$ rpki-client -vvf rpki-rsync.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: RLk4XFf8H33QbTfk0Gqq1DhqepI+8UwhHo0o2myf+uY= Subject key identifier: B8:3C:AE:37:45:94:FB:AD:BD:D4:3B:45:70:41:00:30:4F:34:63:76 Certificate issuer: /CN=079553C97D2389A3877E74AD1819142D97B1FB15 Certificate serial: 7D99C101841CD0CEEDAFF4FB1DBC14BE6C4A6293 Authority key identifier: 07:95:53:C9:7D:23:89:A3:87:7E:74:AD:18:19:14:2D:97:B1:FB:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/079553C97D2389A3877E74AD1819142D97B1FB15.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa Signing time: Sun 03 May 2026 02:26:09 +0000 ROA not before: Sun 03 May 2026 02:21:09 +0000 ROA not after: Sun 02 May 2027 02:26:09 +0000 asID: 17769 IP address blocks: 103.147.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/079553C97D2389A3877E74AD1819142D97B1FB15.crl rsync://rpki-rsync.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/079553C97D2389A3877E74AD1819142D97B1FB15.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/079553C97D2389A3877E74AD1819142D97B1FB15.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:99:c1:01:84:1c:d0:ce:ed:af:f4:fb:1d:bc:14:be:6c:4a:62:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=079553C97D2389A3877E74AD1819142D97B1FB15 Validity Not Before: May 3 02:21:09 2026 GMT Not After : May 2 02:26:09 2027 GMT Subject: CN=B83CAE374594FBADBDD43B45704100304F346376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6c:30:ca:13:61:13:56:2e:aa:da:44:df:07: ae:5d:d4:68:b8:ac:49:44:28:e8:e8:16:47:9e:39: 02:40:87:0b:3f:3f:2d:a7:ea:4f:1c:a5:bc:de:97: b6:b0:c4:00:76:17:8b:0f:47:44:95:a2:81:03:4e: ee:10:06:0a:dc:70:9d:40:8d:20:96:52:ac:33:d6: 94:e1:1b:ca:23:92:c6:a5:ce:eb:97:73:d7:83:d3: c4:75:33:c4:76:76:0b:cb:3e:ab:5a:0b:5d:69:52: fe:27:c3:38:07:53:da:fe:bf:87:69:40:fa:4e:3c: ac:22:69:07:63:74:f9:f3:5e:d4:be:c3:9f:6b:91: 72:19:d9:53:e7:1e:91:b6:47:c8:8c:4c:94:ee:b6: ee:07:e4:45:c4:e8:27:0e:50:f6:56:69:5e:c9:75: f4:a6:c4:cf:3c:83:39:d0:f2:e0:5f:cf:d9:d9:dd: a7:47:64:fa:76:24:c8:15:14:bf:84:96:b5:fd:ec: 86:a6:23:68:1d:83:f5:99:61:5c:ee:d9:39:3d:0b: b6:5c:48:34:44:7b:07:7e:91:2e:49:1e:a2:58:58: a7:e0:b0:30:32:52:6a:aa:2a:8e:05:f7:c8:75:da: 55:aa:f6:3f:1e:cd:eb:e8:91:f2:b1:21:e0:08:76: c0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:3C:AE:37:45:94:FB:AD:BD:D4:3B:45:70:41:00:30:4F:34:63:76 X509v3 Authority Key Identifier: keyid:07:95:53:C9:7D:23:89:A3:87:7E:74:AD:18:19:14:2D:97:B1:FB:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/079553C97D2389A3877E74AD1819142D97B1FB15.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/079553C97D2389A3877E74AD1819142D97B1FB15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.148.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:52:af:71:f8:01:78:45:4f:54:db:07:2e:28:ad:39:97:e3: 5c:5f:ff:7b:c8:a1:4f:a5:98:56:87:79:f2:14:b2:0f:fb:47: d5:30:d2:43:fc:d1:fa:e1:9d:55:18:2a:b8:10:59:8f:2d:d9: 87:07:78:f7:e9:e1:45:ba:9c:9a:78:fa:5e:66:1b:02:08:74: 02:1c:51:7b:9b:36:bb:16:74:c1:94:09:cd:cb:da:7a:c7:09: 2f:31:9a:b9:9b:1f:10:51:a8:a4:90:da:96:fe:a0:8f:f2:dc: dd:fa:1e:a7:09:aa:27:9b:4b:bb:86:52:8a:e9:28:06:62:4d: e4:12:ad:cf:35:8f:d4:64:6b:a6:08:0c:c8:7e:8c:fe:5b:d6: f3:d7:c2:31:fc:8a:51:eb:ce:4d:b2:6c:f3:e6:05:d6:b0:ae: 87:bb:a8:6a:eb:d5:7f:f1:fe:47:20:cc:bf:eb:67:00:8a:be: 65:a8:80:1f:b0:f9:05:53:4e:ea:5c:f9:b9:71:1e:c4:77:cc: a8:4b:da:27:60:b5:60:a5:2a:6e:e2:72:7f:8d:45:c3:3f:2c: 43:5e:06:10:a5:41:f2:4e:ad:b3:0e:43:1e:62:01:7e:7b:52: bf:15:cb:fd:6b:c0:90:2d:1a:92:59:a8:49:6b:9d:2b:cd:e5: ef:bb:20:03 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfZnBAYQc0M7tr/T7HbwUvmxKYpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDc5NTUzQzk3RDIzODlBMzg3N0U3NEFEMTgxOTE0MkQ5 N0IxRkIxNTAeFw0yNjA1MDMwMjIxMDlaFw0yNzA1MDIwMjI2MDlaMDMxMTAvBgNV BAMTKEI4M0NBRTM3NDU5NEZCQURCREQ0M0I0NTcwNDEwMDMwNEYzNDYzNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCybDDKE2ETVi6q2kTfB65d1Gi4 rElEKOjoFkeeOQJAhws/Py2n6k8cpbzel7awxAB2F4sPR0SVooEDTu4QBgrccJ1A jSCWUqwz1pThG8ojksalzuuXc9eD08R1M8R2dgvLPqtaC11pUv4nwzgHU9r+v4dp QPpOPKwiaQdjdPnzXtS+w59rkXIZ2VPnHpG2R8iMTJTutu4H5EXE6CcOUPZWaV7J dfSmxM88gznQ8uBfz9nZ3adHZPp2JMgVFL+ElrX97IamI2gdg/WZYVzu2Tk9C7Zc SDREewd+kS5JHqJYWKfgsDAyUmqqKo4F98h12lWq9j8ezevokfKxIeAIdsAFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuDyuN0WU+6291DtFcEEAME80Y3YwHwYDVR0j BBgwFoAUB5VTyX0jiaOHfnStGBkULZex+xUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzkzMWZhZTktNjI3YS00YTA4LWJlNWMtNDRhMGMxNTcxNDg3LzAvMDc5NTUzQzk3 RDIzODlBMzg3N0U3NEFEMTgxOTE0MkQ5N0IxRkIxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNzk1NTNDOTdEMjM4OUEzODc3RTc0QUQxODE5MTQyRDk3QjFG QjE1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM5MzFmYWU5LTYyN2EtNGEwOC1i ZTVjLTQ0YTBjMTU3MTQ4Ny8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OUMA0GCSqG SIb3DQEBCwUAA4IBAQA+Uq9x+AF4RU9U2wcuKK05l+NcX/97yKFPpZhWh3nyFLIP +0fVMNJD/NH64Z1VGCq4EFmPLdmHB3j36eFFupyaePpeZhsCCHQCHFF7mza7FnTB lAnNy9p6xwkvMZq5mx8QUaikkNqW/qCP8tzd+h6nCaonm0u7hlKK6SgGYk3kEq3P NY/UZGumCAzIfoz+W9bz18Ix/IpR685Nsmzz5gXWsK6Hu6hq69V/8f5HIMy/62cA ir5lqIAfsPkFU07qXPm5cR7Ed8yoS9onYLVgpSpu4nJ/jUXDPyxDXgYQpUHyTq2z DkMeYgF+e1K/Fcv9a8CQLRqSWahJa50rzeXvuyAD -----END CERTIFICATE-----Generated at Wed May 13 11:50:02 2026 by rpki-client