$ rpki-client -vvf rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32332d3234203d3e20313333383233.roa File: 3130332e3130342e3133342e302f32332d3234203d3e20313333383233.roa (raw, json) Hash identifier: XiipUAxKhZpqExkZmaytbPwvFyOgqAUmnU1lD7TzPNc= Subject key identifier: 5E:99:7F:1E:1B:BE:5A:B8:4C:A6:6C:9B:F9:41:C8:6D:F2:77:AA:2D Certificate issuer: /CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Certificate serial: 31A90CF78B3774557F099F292EA702E65F5DB21A Authority key identifier: DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32332d3234203d3e20313333383233.roa Signing time: Sun 03 May 2026 02:29:48 +0000 ROA not before: Sun 03 May 2026 02:24:48 +0000 ROA not after: Sun 02 May 2027 02:29:48 +0000 asID: 133823 IP address blocks: 103.104.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 10:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a9:0c:f7:8b:37:74:55:7f:09:9f:29:2e:a7:02:e6:5f:5d:b2:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Validity Not Before: May 3 02:24:48 2026 GMT Not After : May 2 02:29:48 2027 GMT Subject: CN=5E997F1E1BBE5AB84CA66C9BF941C86DF277AA2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:ac:d7:04:18:fd:91:95:15:b2:7c:29:a5: 98:45:97:c2:76:fa:a4:1e:9d:66:e9:eb:e5:e4:2e: c6:4a:80:48:1e:a5:cc:1a:1a:43:88:8d:78:65:94: 05:ed:74:a4:b5:69:bb:1c:8b:6a:13:1e:58:b4:77: b3:a7:1e:77:23:9c:6c:79:9a:56:56:18:e1:d3:dd: 2c:05:5b:48:c6:9c:76:91:6b:84:a6:f4:ad:dc:3c: f4:df:1b:28:fd:db:cf:7d:22:14:ad:71:9e:a7:bc: f3:c1:f9:4c:44:50:dd:ef:07:87:0a:88:94:18:ab: a1:31:02:26:14:a9:d5:b4:1d:02:67:c5:8f:00:4e: 9b:b6:ee:43:e4:1b:6f:15:eb:de:f0:fe:5c:da:b2: 0c:07:c6:45:f6:88:e8:0a:de:57:82:a1:c9:8a:37: 93:4d:36:77:6a:e5:0c:b5:11:12:0d:f5:2b:c7:91: 39:62:0c:bb:aa:ce:c8:87:fe:b0:b6:13:76:cf:e1: bf:00:3d:05:28:94:31:a4:21:17:f5:4d:0f:8f:f5: d2:64:5f:95:89:14:36:38:8f:42:1d:15:27:b3:30: c3:ea:d2:36:ef:a3:6b:00:93:2a:94:a1:b9:68:aa: b1:dc:74:af:34:17:2f:78:53:14:95:74:3b:94:27: 68:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:99:7F:1E:1B:BE:5A:B8:4C:A6:6C:9B:F9:41:C8:6D:F2:77:AA:2D X509v3 Authority Key Identifier: keyid:DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32332d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.134.0/23 Signature Algorithm: sha256WithRSAEncryption 64:41:e1:76:9c:88:c4:5f:a5:6d:60:7d:11:90:b0:80:a0:a8: 81:29:36:20:5c:83:00:7f:52:d8:23:55:61:e9:4d:73:b8:69: 6b:db:25:78:3f:04:29:fd:2e:1a:4b:38:3a:e0:a8:51:1a:51: aa:12:04:e6:17:66:6a:30:2e:f8:95:82:4c:5f:98:44:68:0b: 59:fb:3d:17:95:df:e6:f5:05:14:a4:dc:15:71:42:f6:23:c7: ed:08:19:75:9c:ab:df:65:74:6d:5b:38:c9:94:2d:ee:f1:b0: 84:8d:31:1a:e1:72:d9:e8:dd:97:cd:66:c7:87:54:15:23:8f: 0f:15:58:e0:a5:fd:cb:05:2e:9c:07:c1:95:0d:89:7d:b9:c6: 06:99:a1:04:4c:e2:83:75:dc:54:8d:aa:83:cc:bb:7c:35:8c: 31:14:28:68:69:45:6a:69:cf:09:ab:ee:bf:1a:6b:ad:66:23: 7c:86:a9:ac:29:8c:86:38:62:3b:41:e7:81:26:fa:12:75:65: 14:43:67:51:89:a8:e6:ce:7d:32:89:95:05:b8:9c:b9:bc:01: a1:3d:22:88:71:5f:8b:92:94:86:79:a6:3e:2f:e5:91:d2:57: fc:ea:13:55:ae:0d:31:22:2f:ad:35:7c:d3:34:04:61:a3:82: 4a:ac:ad:47 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMakM94s3dFV/CZ8pLqcC5l9dshowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVDQTkzQzIxNzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZB NTlEMjQ1NDAeFw0yNjA1MDMwMjI0NDhaFw0yNzA1MDIwMjI5NDhaMDMxMTAvBgNV BAMTKDVFOTk3RjFFMUJCRTVBQjg0Q0E2NkM5QkY5NDFDODZERjI3N0FBMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1gKzXBBj9kZUVsnwppZhFl8J2 +qQenWbp6+XkLsZKgEgepcwaGkOIjXhllAXtdKS1absci2oTHli0d7OnHncjnGx5 mlZWGOHT3SwFW0jGnHaRa4Sm9K3cPPTfGyj92899IhStcZ6nvPPB+UxEUN3vB4cK iJQYq6ExAiYUqdW0HQJnxY8ATpu27kPkG28V697w/lzasgwHxkX2iOgK3leCocmK N5NNNndq5Qy1ERIN9SvHkTliDLuqzsiH/rC2E3bP4b8APQUolDGkIRf1TQ+P9dJk X5WJFDY4j0IdFSezMMPq0jbvo2sAkyqUobloqrHcdK80Fy94UxSVdDuUJ2jJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXpl/Hhu+WrhMpmyb+UHIbfJ3qi0wHwYDVR0j BBgwFoAU3sqTwhcuUDvFyqoZdEENP6WdJFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQ3OTFiMWYtNmRhOS00MDBkLThiMTQtOTkyYWFlNjM3NDZjLzAvREVDQTkzQzIx NzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZBNTlEMjQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUNBOTNDMjE3MkU1MDNCQzVDQUFBMTk3NDQxMEQzRkE1OUQy NDU0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnaIYwDQYJ KoZIhvcNAQELBQADggEBAGRB4XaciMRfpW1gfRGQsICgqIEpNiBcgwB/UtgjVWHp TXO4aWvbJXg/BCn9LhpLODrgqFEaUaoSBOYXZmowLviVgkxfmERoC1n7PReV3+b1 BRSk3BVxQvYjx+0IGXWcq99ldG1bOMmULe7xsISNMRrhctno3ZfNZseHVBUjjw8V WOCl/csFLpwHwZUNiX25xgaZoQRM4oN13FSNqoPMu3w1jDEUKGhpRWppzwmr7r8a a61mI3yGqawpjIY4YjtB54Em+hJ1ZRRDZ1GJqObOfTKJlQW4nLm8AaE9IohxX4uS lIZ5pj4v5ZHSV/zqE1WuDTEiL601fNM0BGGjgkqsrUc= -----END CERTIFICATE-----Generated at Wed May 13 04:19:43 2026 by rpki-client