$ rpki-client -vvf rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233382e302f32332d3233203d3e20313430333834.roa File: 3130332e3134392e3233382e302f32332d3233203d3e20313430333834.roa (raw, json) Hash identifier: AWpHjSJZSEnTAxNcOTOICGiGCdtga3pPphgmCcn8xjE= Subject key identifier: 8A:F8:33:C4:E0:D7:9E:9D:72:63:88:78:9C:28:0F:17:DC:F5:06:AB Certificate issuer: /CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Certificate serial: 51B763BAB5D71DC6D514EB0692CADCC0D2ECE05D Authority key identifier: AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233382e302f32332d3233203d3e20313430333834.roa Signing time: Sun 03 May 2026 02:28:55 +0000 ROA not before: Sun 03 May 2026 02:23:55 +0000 ROA not after: Sun 02 May 2027 02:28:55 +0000 asID: 140384 IP address blocks: 103.149.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:b7:63:ba:b5:d7:1d:c6:d5:14:eb:06:92:ca:dc:c0:d2:ec:e0:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Validity Not Before: May 3 02:23:55 2026 GMT Not After : May 2 02:28:55 2027 GMT Subject: CN=8AF833C4E0D79E9D726388789C280F17DCF506AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f9:10:6d:b3:1c:40:c3:20:94:ad:d0:0f:8d: ab:44:df:d7:63:eb:c9:ac:28:41:ea:10:ec:52:1d: 1d:a5:65:9e:ad:1b:9f:d9:82:01:e7:30:f4:8d:b3: 46:ce:93:20:2a:be:51:cf:42:fe:f8:34:3f:01:c9: 32:64:b2:8a:9c:51:f8:f9:03:78:b3:76:81:4d:ed: 58:b1:35:ca:0f:1c:9c:4e:30:de:f9:52:6f:ae:3a: af:3a:3d:d6:1e:63:2f:bf:16:db:33:06:cb:c5:19: ee:c0:53:1f:0b:85:88:68:e6:1c:ae:18:c9:e8:be: 47:28:d2:b1:8a:2b:ab:4c:2b:36:0f:cd:80:f9:04: 4f:35:02:16:35:63:96:00:e1:c6:f0:93:9d:b3:03: 4e:cf:e2:53:2a:42:61:38:49:24:fe:cb:e9:41:de: f7:77:c7:9f:66:e6:2d:92:7e:c3:42:ad:db:87:83: 8a:28:86:1a:6d:64:52:b2:f5:37:b7:d3:5c:f8:4b: aa:36:e1:20:b9:8d:16:c0:3a:63:a4:24:66:35:6b: c5:fc:37:13:c4:a9:51:84:01:9c:42:83:2b:d9:fa: 9d:83:c1:35:47:4f:b1:04:df:ba:18:01:61:d8:0e: 96:58:90:9c:04:0c:ff:49:b7:ad:b5:97:6e:6e:bd: ba:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F8:33:C4:E0:D7:9E:9D:72:63:88:78:9C:28:0F:17:DC:F5:06:AB X509v3 Authority Key Identifier: keyid:AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233382e302f32332d3233203d3e20313430333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.238.0/23 Signature Algorithm: sha256WithRSAEncryption 03:f6:8a:9a:f5:62:b5:08:7d:7e:ee:40:d8:2a:13:46:b8:3b: 28:28:65:c0:21:a4:b0:e3:77:7a:91:c6:9b:88:c6:af:12:8f: 84:36:7b:a0:ee:3a:2e:7f:f8:a3:d5:65:4c:b9:c6:db:aa:05: f2:f1:92:0a:00:7c:d9:b5:8c:03:bc:8c:50:59:87:f7:d9:6b: 62:3e:90:1b:19:de:7b:24:a0:1f:78:1c:ed:68:7e:fd:02:d8: 26:0a:07:6b:99:13:22:f1:c3:f2:45:03:92:34:8a:6a:6a:6f: c3:1c:83:e0:53:68:6e:d6:d1:cf:78:a9:af:99:58:6c:ba:ac: da:e3:4f:27:48:15:bc:bc:8d:48:1d:8b:28:71:59:99:f7:1a: 2b:e5:c6:64:83:fb:dd:29:30:09:30:e8:2f:e6:22:eb:e9:3d: 8c:1b:8a:64:b5:e4:8f:0e:b7:b3:5a:57:7c:d3:6b:aa:37:43: 31:19:0a:1e:40:12:4d:1a:48:a9:f0:3f:05:21:a3:c3:d9:14: 52:42:95:86:7c:0d:36:07:cb:36:ca:1e:f5:23:6e:4f:81:cc: 43:22:ec:a6:55:a7:ba:cb:7d:95:10:0c:dd:31:52:00:53:a2: a2:c8:fa:20:9c:7c:fa:a5:67:9d:19:e8:d8:4d:ae:0f:98:83: 68:9f:ce:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUbdjurXXHcbVFOsGksrcwNLs4F0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEREMxRDNBMEIyMzZBNDIyOEI4RERGNDgwRDdEQjYw NjE2MDZEMzAeFw0yNjA1MDMwMjIzNTVaFw0yNzA1MDIwMjI4NTVaMDMxMTAvBgNV BAMTKDhBRjgzM0M0RTBENzlFOUQ3MjYzODg3ODlDMjgwRjE3RENGNTA2QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW+RBtsxxAwyCUrdAPjatE39dj 68msKEHqEOxSHR2lZZ6tG5/ZggHnMPSNs0bOkyAqvlHPQv74ND8ByTJksoqcUfj5 A3izdoFN7VixNcoPHJxOMN75Um+uOq86PdYeYy+/FtszBsvFGe7AUx8LhYho5hyu GMnovkco0rGKK6tMKzYPzYD5BE81AhY1Y5YA4cbwk52zA07P4lMqQmE4SST+y+lB 3vd3x59m5i2SfsNCrduHg4oohhptZFKy9Te301z4S6o24SC5jRbAOmOkJGY1a8X8 NxPEqVGEAZxCgyvZ+p2DwTVHT7EE37oYAWHYDpZYkJwEDP9Jt621l25uvborAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUivgzxODXnp1yY4h4nCgPF9z1BqswHwYDVR0j BBgwFoAUrt3B06CyNqQii43fSA19tgYWBtMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDBkMzRlNzctNmNmNi00MTg3LTkwODMtMWM3YTg4MTllOTY1LzAvQUVEREMxRDNB MEIyMzZBNDIyOEI4RERGNDgwRDdEQjYwNjE2MDZEMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRUREQzFEM0EwQjIzNkE0MjI4QjhEREY0ODBEN0RCNjA2MTYw NkQzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQwZDM0ZTc3LTZjZjYtNDE4Ny05 MDgzLTFjN2E4ODE5ZTk2NS8wLzMxMzAzMzJlMzEzNDM5MmUzMjMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMzM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnle4wDQYJ KoZIhvcNAQELBQADggEBAAP2ipr1YrUIfX7uQNgqE0a4OygoZcAhpLDjd3qRxpuI xq8Sj4Q2e6DuOi5/+KPVZUy5xtuqBfLxkgoAfNm1jAO8jFBZh/fZa2I+kBsZ3nsk oB94HO1ofv0C2CYKB2uZEyLxw/JFA5I0impqb8Mcg+BTaG7W0c94qa+ZWGy6rNrj TydIFby8jUgdiyhxWZn3GivlxmSD+90pMAkw6C/mIuvpPYwbimS15I8Ot7NaV3zT a6o3QzEZCh5AEk0aSKnwPwUho8PZFFJClYZ8DTYHyzbKHvUjbk+BzEMi7KZVp7rL fZUQDN0xUgBToqLI+iCcfPqlZ50Z6NhNrg+Yg2ifzsk= -----END CERTIFICATE-----Generated at Wed May 13 07:15:28 2026 by rpki-client