$ rpki-client -vvf rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa File: 3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa (raw, json) Hash identifier: fSBmaNekEw3OBHkti8Tium+Nxe4NKA+v+f93I6eiImM= Subject key identifier: 2B:E4:08:69:64:65:FE:11:ED:6E:40:04:E5:5E:E5:5E:CE:AB:4F:3E Certificate issuer: /CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Certificate serial: 3DCBAF9C5F61CF04BA49DA2F9952F9938403C8A9 Authority key identifier: AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa Signing time: Sun 03 May 2026 02:28:56 +0000 ROA not before: Sun 03 May 2026 02:23:56 +0000 ROA not after: Sun 02 May 2027 02:28:56 +0000 asID: 140384 IP address blocks: 103.149.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:cb:af:9c:5f:61:cf:04:ba:49:da:2f:99:52:f9:93:84:03:c8:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Validity Not Before: May 3 02:23:56 2026 GMT Not After : May 2 02:28:56 2027 GMT Subject: CN=2BE408696465FE11ED6E4004E55EE55ECEAB4F3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:f8:0c:bf:e2:e7:b3:ee:58:57:1b:ad:38:99: dd:39:0e:c0:bd:a9:5f:72:cd:96:e4:5b:83:da:63: 1f:17:a0:97:e2:01:72:8f:d6:05:b6:fc:56:46:37: fb:ca:ac:36:ca:43:c2:66:0e:d3:af:7f:57:b1:05: 1e:d5:90:0c:ae:5f:ed:d3:b1:43:05:d4:a6:fd:75: 67:09:04:48:db:16:db:16:67:0c:85:d6:d0:6f:54: 00:1d:d2:1b:e3:06:86:b9:18:98:08:a5:32:e0:ac: a1:06:80:5b:55:28:60:b5:4f:38:9c:1e:31:1c:dd: 90:a7:81:05:6a:2c:d6:fc:c6:07:d8:e4:15:2e:d4: 32:f8:05:fa:87:65:51:d1:68:72:6f:e8:93:2e:e3: 54:af:e3:6d:a9:ce:95:94:98:0a:e7:4d:d4:19:f6: 83:a7:ea:18:c6:1e:f2:26:7b:da:24:1a:2f:9e:9a: 79:da:4e:9d:db:d4:93:3f:c4:c6:eb:8b:70:f9:01: 25:80:6b:8c:4b:11:38:e6:02:19:f1:e3:77:83:a0: b4:71:bb:37:1d:6a:e9:f0:4c:c8:05:6f:d8:92:8c: be:de:1f:d3:3e:4d:86:2f:7b:29:91:f2:0b:6f:95: 6b:dd:61:14:13:33:a6:6a:4e:52:34:29:08:2f:f4: e3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E4:08:69:64:65:FE:11:ED:6E:40:04:E5:5E:E5:5E:CE:AB:4F:3E X509v3 Authority Key Identifier: keyid:AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.239.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:76:23:59:a6:83:7a:8c:66:a0:61:30:fd:0e:d3:ab:01:1b: e0:4e:1a:02:3d:b9:5d:15:24:b8:d2:11:19:09:4d:b5:69:dc: 7d:e6:a6:d9:e4:4d:fe:cf:11:ff:63:65:9b:78:1e:50:ae:c9: e1:7e:e2:58:32:bd:59:1d:c3:d6:d9:01:4a:f1:2d:75:fd:85: 3c:cf:7b:d7:34:c3:b8:39:51:27:9d:05:e1:4a:d7:21:57:ba: a8:0c:f7:42:ee:20:b8:0d:e5:66:8b:c5:89:83:f0:cc:55:53: 1a:66:66:03:e4:35:3f:89:86:a7:32:83:4e:85:a5:cf:7f:22: fe:d0:d7:c6:c0:69:3b:26:4f:d7:f8:4e:12:68:fa:f2:63:ad: 5e:c2:cb:13:24:bc:68:4f:dd:2a:6c:32:40:b4:b7:cc:61:4b: b4:fd:32:f5:8e:e5:d3:91:b9:51:33:00:03:87:f0:fd:9e:ae: ce:01:eb:8b:31:af:dc:6d:78:ab:ac:0e:49:8c:bb:e1:78:d5: 47:3f:6d:7c:f5:69:67:06:ba:05:86:f1:6f:3a:ce:9b:30:f3: 57:88:0b:32:a0:e6:47:f4:d9:ad:6f:e2:25:c6:06:7b:f5:25: ae:19:f4:3c:90:b5:0a:40:2a:47:3a:e1:03:0a:84:a0:f1:9e: 4f:cd:b1:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPcuvnF9hzwS6SdovmVL5k4QDyKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEREMxRDNBMEIyMzZBNDIyOEI4RERGNDgwRDdEQjYw NjE2MDZEMzAeFw0yNjA1MDMwMjIzNTZaFw0yNzA1MDIwMjI4NTZaMDMxMTAvBgNV BAMTKDJCRTQwODY5NjQ2NUZFMTFFRDZFNDAwNEU1NUVFNTVFQ0VBQjRGM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9+Ay/4uez7lhXG604md05DsC9 qV9yzZbkW4PaYx8XoJfiAXKP1gW2/FZGN/vKrDbKQ8JmDtOvf1exBR7VkAyuX+3T sUMF1Kb9dWcJBEjbFtsWZwyF1tBvVAAd0hvjBoa5GJgIpTLgrKEGgFtVKGC1Tzic HjEc3ZCngQVqLNb8xgfY5BUu1DL4BfqHZVHRaHJv6JMu41Sv422pzpWUmArnTdQZ 9oOn6hjGHvIme9okGi+emnnaTp3b1JM/xMbri3D5ASWAa4xLETjmAhnx43eDoLRx uzcdaunwTMgFb9iSjL7eH9M+TYYveymR8gtvlWvdYRQTM6ZqTlI0KQgv9OMrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUK+QIaWRl/hHtbkAE5V7lXs6rTz4wHwYDVR0j BBgwFoAUrt3B06CyNqQii43fSA19tgYWBtMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDBkMzRlNzctNmNmNi00MTg3LTkwODMtMWM3YTg4MTllOTY1LzAvQUVEREMxRDNB MEIyMzZBNDIyOEI4RERGNDgwRDdEQjYwNjE2MDZEMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRUREQzFEM0EwQjIzNkE0MjI4QjhEREY0ODBEN0RCNjA2MTYw NkQzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQwZDM0ZTc3LTZjZjYtNDE4Ny05 MDgzLTFjN2E4ODE5ZTk2NS8wLzMxMzAzMzJlMzEzNDM5MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnle8wDQYJ KoZIhvcNAQELBQADggEBAHt2I1mmg3qMZqBhMP0O06sBG+BOGgI9uV0VJLjSERkJ TbVp3H3mptnkTf7PEf9jZZt4HlCuyeF+4lgyvVkdw9bZAUrxLXX9hTzPe9c0w7g5 USedBeFK1yFXuqgM90LuILgN5WaLxYmD8MxVUxpmZgPkNT+Jhqcyg06Fpc9/Iv7Q 18bAaTsmT9f4ThJo+vJjrV7CyxMkvGhP3SpsMkC0t8xhS7T9MvWO5dORuVEzAAOH 8P2ers4B64sxr9xteKusDkmMu+F41Uc/bXz1aWcGugWG8W86zpsw81eICzKg5kf0 2a1v4iXGBnv1Ja4Z9DyQtQpAKkc64QMKhKDxnk/NsYU= -----END CERTIFICATE-----Generated at Wed May 13 10:07:13 2026 by rpki-client