$ rpki-client -vvf rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa File: 3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa (raw, json) Hash identifier: H7UZTOATPI1EY0s4RZx0dyJdXlMKNuBirKezh1tvoeM= Subject key identifier: 3A:F2:5E:63:4F:15:36:AB:45:70:07:CC:AD:E5:18:57:47:FA:A0:20 Certificate issuer: /CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Certificate serial: 40E13C44BD4658FC2BAC08C46F0AA23249747217 Authority key identifier: 0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa Signing time: Sun 03 May 2026 02:28:11 +0000 ROA not before: Sun 03 May 2026 02:23:11 +0000 ROA not after: Sun 02 May 2027 02:28:11 +0000 asID: 139970 IP address blocks: 103.147.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e1:3c:44:bd:46:58:fc:2b:ac:08:c4:6f:0a:a2:32:49:74:72:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Validity Not Before: May 3 02:23:11 2026 GMT Not After : May 2 02:28:11 2027 GMT Subject: CN=3AF25E634F1536AB457007CCADE5185747FAA020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7d:4c:18:69:1f:45:10:1d:0b:62:20:e0:50: e2:30:c0:c4:0d:c8:44:f0:30:65:0e:8f:7e:ed:f2: e0:e1:1f:0c:b0:e6:cf:95:fb:40:aa:5d:d6:d3:ec: 33:5d:76:05:01:5a:fc:37:e5:09:13:88:be:06:b6: b4:4a:f9:93:b0:e1:51:50:6c:4e:78:f8:a2:37:f1: 3f:ae:de:d8:f0:cf:ab:9d:a5:62:c5:6f:13:4a:11: 47:df:55:53:1f:5b:cd:b1:47:8f:9e:1a:61:05:6e: 10:0a:ed:79:29:dd:9a:09:05:57:36:93:b7:f2:bd: 19:42:78:11:16:21:00:ee:6c:c6:23:88:04:54:32: 37:fc:3d:e9:7e:27:ff:ec:5f:aa:fc:20:be:88:ce: f5:72:46:fa:d6:d5:a7:1c:59:98:3b:04:fc:e4:dd: 00:5a:4f:21:68:d4:bc:cf:9a:a8:76:97:33:08:10: 2f:f6:ab:e0:be:cd:ce:f1:f2:4f:36:98:c3:2d:1f: 46:dc:3e:09:36:78:cd:a2:21:7a:eb:cb:1a:35:c5: d2:ce:57:51:6c:75:54:58:91:62:fb:ce:5b:9f:92: 9f:d8:26:e4:46:17:22:33:ef:62:5b:45:98:70:fc: 48:dc:3f:fe:bf:31:c7:f5:32:3d:bb:ed:89:43:56: 98:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F2:5E:63:4F:15:36:AB:45:70:07:CC:AD:E5:18:57:47:FA:A0:20 X509v3 Authority Key Identifier: keyid:0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.53.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:28:a2:30:ac:32:52:1f:8f:22:5e:80:57:3f:5e:b3:35:35: ab:6a:5f:b1:02:d0:82:f2:82:f5:e3:11:c6:da:52:94:84:b0: 15:ac:b6:5c:ca:86:fd:10:b1:72:04:16:dd:0d:73:d4:82:8b: ee:1b:e3:7f:18:40:7a:d2:43:6c:0b:83:5d:2e:24:f4:21:7c: ff:78:95:eb:dc:70:68:ca:fa:07:36:f2:a3:27:94:b6:8f:32: d1:0c:e5:7d:7e:28:b2:cf:10:8d:3e:7f:f8:b0:92:f3:6e:2e: 92:2e:b4:c1:7a:ba:af:81:90:49:3a:a5:59:b9:0d:b8:23:ee: 5d:67:67:e5:9f:f2:e9:99:fe:d9:f4:3f:5b:3b:b6:31:13:97: 1a:9c:f5:c0:5f:2e:c9:d6:3e:91:be:ca:0b:de:18:0f:90:0c: 3a:a7:29:3e:0b:59:75:6d:e5:74:54:9f:9e:67:52:c6:ea:72: aa:b1:a2:97:85:0a:1d:5d:57:92:10:07:49:3e:f1:2a:e1:9f: d4:6f:bf:85:b1:ee:a5:77:ef:26:f9:c7:7e:99:c6:51:df:65: 68:d9:6f:65:87:0a:1e:27:00:f6:27:ed:81:b7:c3:fb:57:e0: 52:f2:9a:a1:16:45:74:89:92:0b:91:79:14:2c:8d:d2:1c:55: 50:ac:d1:5f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQOE8RL1GWPwrrAjEbwqiMkl0chcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEEwMjQ0NjJGRkRBN0UyNkU1RDM2NjYxQUFBREUyQzYw MUQwNjRGMDAeFw0yNjA1MDMwMjIzMTFaFw0yNzA1MDIwMjI4MTFaMDMxMTAvBgNV BAMTKDNBRjI1RTYzNEYxNTM2QUI0NTcwMDdDQ0FERTUxODU3NDdGQUEwMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDafUwYaR9FEB0LYiDgUOIwwMQN yETwMGUOj37t8uDhHwyw5s+V+0CqXdbT7DNddgUBWvw35QkTiL4GtrRK+ZOw4VFQ bE54+KI38T+u3tjwz6udpWLFbxNKEUffVVMfW82xR4+eGmEFbhAK7Xkp3ZoJBVc2 k7fyvRlCeBEWIQDubMYjiARUMjf8Pel+J//sX6r8IL6IzvVyRvrW1accWZg7BPzk 3QBaTyFo1LzPmqh2lzMIEC/2q+C+zc7x8k82mMMtH0bcPgk2eM2iIXrryxo1xdLO V1FsdVRYkWL7zlufkp/YJuRGFyIz72JbRZhw/EjcP/6/Mcf1Mj277YlDVpi1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOvJeY08VNqtFcAfMreUYV0f6oCAwHwYDVR0j BBgwFoAUCgJEYv/afibl02Zhqq3ixgHQZPAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2RlZGMwMzMtY2Q0ZC00NjIwLTkzNzItZTZlMDM5ZmMwNmI5LzAvMEEwMjQ0NjJG RkRBN0UyNkU1RDM2NjYxQUFBREUyQzYwMUQwNjRGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQTAyNDQ2MkZGREE3RTI2RTVEMzY2NjFBQUFERTJDNjAxRDA2 NEYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5M1MA0GCSqG SIb3DQEBCwUAA4IBAQBqKKIwrDJSH48iXoBXP16zNTWral+xAtCC8oL14xHG2lKU hLAVrLZcyob9ELFyBBbdDXPUgovuG+N/GEB60kNsC4NdLiT0IXz/eJXr3HBoyvoH NvKjJ5S2jzLRDOV9fiiyzxCNPn/4sJLzbi6SLrTBerqvgZBJOqVZuQ24I+5dZ2fl n/Lpmf7Z9D9bO7YxE5canPXAXy7J1j6RvsoL3hgPkAw6pyk+C1l1beV0VJ+eZ1LG 6nKqsaKXhQodXVeSEAdJPvEq4Z/Ub7+Fse6ld+8m+cd+mcZR32Vo2W9lhwoeJwD2 J+2Bt8P7V+BS8pqhFkV0iZILkXkULI3SHFVQrNFf -----END CERTIFICATE-----Generated at Wed May 13 03:59:05 2026 by rpki-client