$ rpki-client -vvf rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa File: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (raw, json) Hash identifier: 9IfkkC/i5Kuy1L3bffZaVJ8s7U1zqTIr/KouC9nKsl0= Subject key identifier: BF:1A:3A:40:D3:62:EC:17:1E:37:77:78:81:50:0A:06:04:4C:DF:E0 Certificate issuer: /CN=29F8953D3BD13D74F60BACA61E02811B4D6A6AD4 Certificate serial: 48008548D8B2EED69A2735ED084EC7DE0A6CED5C Authority key identifier: 29:F8:95:3D:3B:D1:3D:74:F6:0B:AC:A6:1E:02:81:1B:4D:6A:6A:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa Signing time: Sun 03 May 2026 02:29:37 +0000 ROA not before: Sun 03 May 2026 02:24:37 +0000 ROA not after: Sun 02 May 2027 02:29:37 +0000 asID: 38496 IP address blocks: 103.91.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.crl rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:00:85:48:d8:b2:ee:d6:9a:27:35:ed:08:4e:c7:de:0a:6c:ed:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29F8953D3BD13D74F60BACA61E02811B4D6A6AD4 Validity Not Before: May 3 02:24:37 2026 GMT Not After : May 2 02:29:37 2027 GMT Subject: CN=BF1A3A40D362EC171E37777881500A06044CDFE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b6:1d:2a:40:be:16:11:75:05:2f:f9:b8:a7: 45:cc:d4:fb:f4:3a:4b:ed:d2:6e:97:49:0d:50:6c: ae:6a:43:5c:59:62:1a:37:d3:85:bb:8a:a5:f5:03: 08:4b:30:cd:7e:f1:fd:28:d5:f1:34:7e:df:c9:eb: 56:27:d1:0d:74:87:f6:90:c7:d4:f4:29:06:d4:bf: ee:ba:f2:0c:42:f2:2a:1a:9b:e2:ef:a8:4d:fe:73: 05:94:f7:2e:79:48:7b:c9:58:40:9d:cf:51:fe:15: 72:8b:d4:b2:0a:2c:3e:ee:ea:f0:0e:0a:91:7f:b7: 91:0a:c1:97:a2:6f:c7:7b:97:9a:e8:9e:38:5c:0c: 40:29:34:be:09:30:be:fd:e2:d2:da:f3:1d:9d:fa: 76:3a:bf:ed:b7:2e:6e:b5:55:52:c5:56:d9:b3:22: 1e:18:d3:68:db:1c:b2:e6:4e:9c:7d:65:15:b3:73: 28:12:89:86:cd:9a:5b:33:97:bf:e7:a5:3b:47:cf: e4:f4:86:5a:79:88:db:08:ad:c0:e8:ed:bf:65:7d: 39:10:c0:9d:3a:41:1c:2b:dd:4c:35:2a:f9:d4:4a: f8:6a:10:e8:17:06:20:57:c4:75:1c:16:e9:90:98: 24:83:34:ee:c2:12:74:fc:a6:5d:de:2b:77:58:3f: d5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1A:3A:40:D3:62:EC:17:1E:37:77:78:81:50:0A:06:04:4C:DF:E0 X509v3 Authority Key Identifier: keyid:29:F8:95:3D:3B:D1:3D:74:F6:0B:AC:A6:1E:02:81:1B:4D:6A:6A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.28.0/22 Signature Algorithm: sha256WithRSAEncryption 01:67:e3:eb:d1:3b:e9:96:2b:4e:ea:e8:2b:42:ed:9d:19:20: 67:b5:41:1d:9f:4f:d6:65:c1:a8:9c:80:b6:a9:b4:b1:a8:0d: 50:d8:5c:2b:57:fb:74:17:71:7c:06:66:e4:5d:1e:61:40:13: df:aa:27:e7:35:15:3a:33:79:9b:0e:a9:cc:d4:c7:12:57:d0: 6d:d5:bf:71:a7:df:92:6d:a9:4a:8f:05:77:e2:9c:43:e5:c4: 8b:62:a4:7d:27:fa:41:de:3d:4d:c4:55:c2:16:80:6a:d7:bf: 07:6b:12:dd:ac:ac:51:2d:8b:40:08:40:65:84:01:27:6b:ee: 71:1d:f5:d9:dc:c0:f0:ee:5b:f7:82:3f:3e:28:10:f0:65:e6: 2c:09:f0:f7:7a:5e:bd:94:60:97:ab:79:11:10:f6:dc:80:bf: 4a:66:1f:d4:cc:04:05:b4:63:7e:8d:1d:96:63:b7:09:c0:60: 5b:7c:18:98:3b:a2:29:08:d2:be:8e:6b:5c:e4:23:f7:2a:68: b7:24:9d:ef:30:25:f9:17:78:0d:52:f4:64:d3:0b:2d:4c:c4: b9:f0:07:ce:e4:ca:a2:44:3a:90:c2:58:c9:31:5b:82:e7:96: 5d:56:ac:25:3f:a9:97:3b:b3:4d:a6:f9:17:f3:fb:88:86:4e: 4a:76:8f:eb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSACFSNiy7taaJzXtCE7H3gps7VwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlGODk1M0QzQkQxM0Q3NEY2MEJBQ0E2MUUwMjgxMUI0 RDZBNkFENDAeFw0yNjA1MDMwMjI0MzdaFw0yNzA1MDIwMjI5MzdaMDMxMTAvBgNV BAMTKEJGMUEzQTQwRDM2MkVDMTcxRTM3Nzc3ODgxNTAwQTA2MDQ0Q0RGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTth0qQL4WEXUFL/m4p0XM1Pv0 Okvt0m6XSQ1QbK5qQ1xZYho304W7iqX1AwhLMM1+8f0o1fE0ft/J61Yn0Q10h/aQ x9T0KQbUv+668gxC8ioam+LvqE3+cwWU9y55SHvJWECdz1H+FXKL1LIKLD7u6vAO CpF/t5EKwZeib8d7l5ronjhcDEApNL4JML794tLa8x2d+nY6v+23Lm61VVLFVtmz Ih4Y02jbHLLmTpx9ZRWzcygSiYbNmlszl7/npTtHz+T0hlp5iNsIrcDo7b9lfTkQ wJ06QRwr3Uw1KvnUSvhqEOgXBiBXxHUcFumQmCSDNO7CEnT8pl3eK3dYP9XdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvxo6QNNi7BceN3d4gVAKBgRM3+AwHwYDVR0j BBgwFoAUKfiVPTvRPXT2C6ymHgKBG01qatQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQyMTk4NWItYTBlNi00ZTA1LWJlZjYtZmU2ZjVhNmUyZjQzLzAvMjlGODk1M0Qz QkQxM0Q3NEY2MEJBQ0E2MUUwMjgxMUI0RDZBNkFENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOUY4OTUzRDNCRDEzRDc0RjYwQkFDQTYxRTAyODExQjRENkE2 QUQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMxMzAzMzJlMzkzMTJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzNDM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnWxwwDQYJKoZIhvcN AQELBQADggEBAAFn4+vRO+mWK07q6CtC7Z0ZIGe1QR2fT9ZlwaicgLaptLGoDVDY XCtX+3QXcXwGZuRdHmFAE9+qJ+c1FTozeZsOqczUxxJX0G3Vv3Gn35JtqUqPBXfi nEPlxItipH0n+kHePU3EVcIWgGrXvwdrEt2srFEti0AIQGWEASdr7nEd9dncwPDu W/eCPz4oEPBl5iwJ8Pd6Xr2UYJereREQ9tyAv0pmH9TMBAW0Y36NHZZjtwnAYFt8 GJg7oikI0r6Oa1zkI/cqaLckne8wJfkXeA1S9GTTCy1MxLnwB87kyqJEOpDCWMkx W4Lnll1WrCU/qZc7s02m+Rfz+4iGTkp2j+s= -----END CERTIFICATE-----Generated at Tue May 12 22:33:04 2026 by rpki-client