$ rpki-client -vvf rpki-rsync.idnic.net/repo/401b1c1b-656c-489d-9ed3-ccc77c83018d/0/3130332e3133362e31322e302f32342d3234203d3e20313338383231.roa File: 3130332e3133362e31322e302f32342d3234203d3e20313338383231.roa (raw, json) Hash identifier: O/24bYRJHwn8lGm4x/5IsjKHiRZPSA0Jbap1Vz4bsHo= Subject key identifier: 6B:70:11:51:46:B9:14:14:01:23:65:C6:63:A8:1B:F1:5A:34:93:FA Certificate issuer: /CN=E9ED07059EB01F61BF6A902EB0D95F92D005672C Certificate serial: 1448BB90F073339F525953BDE45EF4C01F21DCC5 Authority key identifier: E9:ED:07:05:9E:B0:1F:61:BF:6A:90:2E:B0:D9:5F:92:D0:05:67:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E9ED07059EB01F61BF6A902EB0D95F92D005672C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/401b1c1b-656c-489d-9ed3-ccc77c83018d/0/3130332e3133362e31322e302f32342d3234203d3e20313338383231.roa Signing time: Sun 03 May 2026 02:28:48 +0000 ROA not before: Sun 03 May 2026 02:23:48 +0000 ROA not after: Sun 02 May 2027 02:28:48 +0000 asID: 138821 IP address blocks: 103.136.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/401b1c1b-656c-489d-9ed3-ccc77c83018d/0/E9ED07059EB01F61BF6A902EB0D95F92D005672C.crl rsync://rpki-rsync.idnic.net/repo/401b1c1b-656c-489d-9ed3-ccc77c83018d/0/E9ED07059EB01F61BF6A902EB0D95F92D005672C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E9ED07059EB01F61BF6A902EB0D95F92D005672C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:48:bb:90:f0:73:33:9f:52:59:53:bd:e4:5e:f4:c0:1f:21:dc:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9ED07059EB01F61BF6A902EB0D95F92D005672C Validity Not Before: May 3 02:23:48 2026 GMT Not After : May 2 02:28:48 2027 GMT Subject: CN=6B70115146B91414012365C663A81BF15A3493FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b4:87:ac:da:e5:21:eb:95:65:78:18:e4:fe: 45:96:83:69:3f:6e:55:d8:2e:c2:b1:cd:5a:2c:17: 03:23:bb:7b:98:f5:1d:0c:d7:bc:50:33:a0:b8:2a: 44:8d:e8:21:ef:7d:2e:49:14:0f:3b:dc:24:ae:d8: 07:52:66:f7:f4:c0:65:48:2d:b8:b6:e2:46:b4:32: 7f:dd:61:84:8b:38:72:4c:ca:47:3a:de:cd:a6:50: e3:70:62:bc:ed:fe:1e:14:73:d6:7f:4a:67:23:e6: dd:45:62:37:49:c3:04:0e:a8:63:c4:cb:e4:d9:e9: af:07:fa:0d:f4:a8:c9:88:86:90:6d:ef:aa:bb:a2: 03:37:aa:8a:a0:7f:98:03:59:5a:02:49:8d:84:7e: 2f:ce:82:fa:27:9e:6e:89:86:f0:52:1c:75:54:30: fa:d7:5c:b5:96:03:aa:79:fe:e9:ec:66:63:91:f9: 93:60:ee:be:6f:1e:62:50:36:b1:6c:d5:91:26:14: fc:fd:27:84:7f:ca:74:6b:02:8d:90:17:ed:c6:51: 07:22:32:46:11:7a:c9:20:01:be:19:19:00:9d:df: 2b:3c:97:03:19:8d:4c:c5:ed:84:e5:0c:00:19:9b: 76:0c:23:56:55:9d:53:43:94:8d:fe:1d:da:4c:88: 31:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:70:11:51:46:B9:14:14:01:23:65:C6:63:A8:1B:F1:5A:34:93:FA X509v3 Authority Key Identifier: keyid:E9:ED:07:05:9E:B0:1F:61:BF:6A:90:2E:B0:D9:5F:92:D0:05:67:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/401b1c1b-656c-489d-9ed3-ccc77c83018d/0/E9ED07059EB01F61BF6A902EB0D95F92D005672C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E9ED07059EB01F61BF6A902EB0D95F92D005672C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/401b1c1b-656c-489d-9ed3-ccc77c83018d/0/3130332e3133362e31322e302f32342d3234203d3e20313338383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.12.0/24 Signature Algorithm: sha256WithRSAEncryption 87:40:4f:5c:52:6f:48:5e:a1:9e:7f:19:18:cb:10:3e:53:3f: 5e:c6:08:b8:06:2f:6e:7a:63:49:b7:1a:fc:f3:7b:b3:91:03: 0c:26:d0:4b:42:02:9d:b5:a6:54:1c:3c:32:78:de:7f:84:c6: 33:62:78:04:6a:4f:8c:18:32:ca:f9:7a:ce:11:ea:68:bd:f9: 14:38:a6:11:f4:b7:70:02:1a:13:ea:4c:6b:65:7d:76:11:8c: 46:c6:96:70:be:0d:3d:34:a0:2d:f3:bf:9d:17:0c:e1:76:e6: 9a:4d:e7:56:4d:9b:d3:b8:a7:52:b3:36:ec:34:e3:72:b9:72: 93:45:dd:d2:ec:59:57:0f:2d:83:89:50:d2:1a:da:53:7f:99: b1:35:03:b6:35:d9:99:23:65:f6:cb:9a:3a:57:92:97:20:ca: 12:b9:04:6b:a3:d2:2a:43:a1:a4:33:e1:22:f3:a8:2d:7b:e7: 2b:c6:f4:e5:63:30:d2:2d:36:c3:bf:57:cb:64:2a:db:97:ea: 0f:35:65:4b:78:3a:66:7c:44:ec:31:70:d2:74:8d:8a:b7:f3: cc:08:3d:e9:ca:a8:f1:f3:5c:e8:68:8e:be:84:b3:d2:17:12: ab:97:c6:91:ba:7a:af:b4:bb:56:53:95:52:93:49:1c:2d:6e: 5e:69:61:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFEi7kPBzM59SWVO95F70wB8h3MUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlFRDA3MDU5RUIwMUY2MUJGNkE5MDJFQjBEOTVGOTJE MDA1NjcyQzAeFw0yNjA1MDMwMjIzNDhaFw0yNzA1MDIwMjI4NDhaMDMxMTAvBgNV BAMTKDZCNzAxMTUxNDZCOTE0MTQwMTIzNjVDNjYzQTgxQkYxNUEzNDkzRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCltIes2uUh65VleBjk/kWWg2k/ blXYLsKxzVosFwMju3uY9R0M17xQM6C4KkSN6CHvfS5JFA873CSu2AdSZvf0wGVI Lbi24ka0Mn/dYYSLOHJMykc63s2mUONwYrzt/h4Uc9Z/Smcj5t1FYjdJwwQOqGPE y+TZ6a8H+g30qMmIhpBt76q7ogM3qoqgf5gDWVoCSY2Efi/Ogvonnm6JhvBSHHVU MPrXXLWWA6p5/unsZmOR+ZNg7r5vHmJQNrFs1ZEmFPz9J4R/ynRrAo2QF+3GUQci MkYReskgAb4ZGQCd3ys8lwMZjUzF7YTlDAAZm3YMI1ZVnVNDlI3+HdpMiDHtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUa3ARUUa5FBQBI2XGY6gb8Vo0k/owHwYDVR0j BBgwFoAU6e0HBZ6wH2G/apAusNlfktAFZywwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDAxYjFjMWItNjU2Yy00ODlkLTllZDMtY2NjNzdjODMwMThkLzAvRTlFRDA3MDU5 RUIwMUY2MUJGNkE5MDJFQjBEOTVGOTJEMDA1NjcyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FOUVEMDcwNTlFQjAxRjYxQkY2QTkwMkVCMEQ5NUY5MkQwMDU2 NzJDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQwMWIxYzFiLTY1NmMtNDg5ZC05 ZWQzLWNjYzc3YzgzMDE4ZC8wLzMxMzAzMzJlMzEzMzM2MmUzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4gMMA0GCSqG SIb3DQEBCwUAA4IBAQCHQE9cUm9IXqGefxkYyxA+Uz9exgi4Bi9uemNJtxr883uz kQMMJtBLQgKdtaZUHDwyeN5/hMYzYngEak+MGDLK+XrOEepovfkUOKYR9LdwAhoT 6kxrZX12EYxGxpZwvg09NKAt87+dFwzhduaaTedWTZvTuKdSszbsNONyuXKTRd3S 7FlXDy2DiVDSGtpTf5mxNQO2NdmZI2X2y5o6V5KXIMoSuQRro9IqQ6GkM+Ei86gt e+crxvTlYzDSLTbDv1fLZCrbl+oPNWVLeDpmfETsMXDSdI2Kt/PMCD3pyqjx81zo aI6+hLPSFxKrl8aRunqvtLtWU5VSk0kcLW5eaWEw -----END CERTIFICATE-----Generated at Wed May 13 03:55:44 2026 by rpki-client