$ rpki-client -vvf rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139362e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139362e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: fgQOQ1ZPs6+mRIJ9mhffQJjtFV+ZjnGnsOoWLbAN6Mo= Subject key identifier: FC:2F:46:ED:05:69:88:EA:A6:2C:6D:9F:B6:9C:18:38:F9:5A:F2:80 Certificate issuer: /CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Certificate serial: 19618785E9ABC0D0CCD26BF90F4366D906B05C4F Authority key identifier: 85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139362e302f32342d3234203d3e20313338303936.roa Signing time: Sun 03 May 2026 02:30:05 +0000 ROA not before: Sun 03 May 2026 02:25:05 +0000 ROA not after: Sun 02 May 2027 02:30:05 +0000 asID: 138096 IP address blocks: 103.124.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:61:87:85:e9:ab:c0:d0:cc:d2:6b:f9:0f:43:66:d9:06:b0:5c:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Validity Not Before: May 3 02:25:05 2026 GMT Not After : May 2 02:30:05 2027 GMT Subject: CN=FC2F46ED056988EAA62C6D9FB69C1838F95AF280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:0e:8d:ea:b1:b7:e9:a5:f0:31:f1:1f:11:e6: ed:50:a7:b5:b6:9b:5c:62:41:79:ff:93:c3:b4:a8: 3f:78:12:79:0b:8b:60:00:73:56:94:9d:9d:2f:1e: d2:a0:5d:f0:de:72:49:c4:8f:c6:e0:ec:2f:f1:85: f6:c8:dc:5f:73:a1:57:f4:26:7a:fd:e9:2b:89:fc: 49:14:ba:e6:eb:df:3a:11:07:91:47:48:80:7a:c1: a8:eb:67:b8:8f:a8:8e:88:3f:a1:8b:03:aa:3a:0b: 03:ad:f2:67:cc:f1:c1:62:41:5e:51:84:a7:33:83: 62:66:35:b8:10:57:85:4e:ba:eb:26:85:f0:14:3f: b6:13:22:03:6c:94:f4:2c:4c:04:9c:65:42:71:a3: 4f:0c:8a:7f:c3:85:74:b6:9d:c7:c5:48:58:29:09: e6:3f:d4:cc:cc:d7:79:7d:08:f8:e6:d4:42:f5:d0: 4f:e5:e4:22:39:2d:c7:f8:65:31:42:13:af:21:95: a4:1f:9d:08:40:bc:e5:4b:e7:df:50:42:3e:c9:62: ae:bd:61:e8:d0:18:c8:88:ff:ae:30:96:14:0e:dc: eb:86:1b:f3:f6:3c:77:3d:ff:1c:9b:32:10:3a:b6: b8:f2:ed:49:24:3c:19:82:2c:03:23:d3:64:2e:ca: 0c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2F:46:ED:05:69:88:EA:A6:2C:6D:9F:B6:9C:18:38:F9:5A:F2:80 X509v3 Authority Key Identifier: keyid:85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139362e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.196.0/24 Signature Algorithm: sha256WithRSAEncryption 70:54:c7:13:8a:a0:bb:59:fe:53:90:e8:fe:f3:48:dd:e8:ad: 70:c6:bd:22:74:48:ef:83:46:12:82:57:4f:7a:1c:10:04:9e: c6:e4:d8:12:07:b4:4c:2b:f3:05:f1:c0:00:17:60:13:e6:b6: 41:ac:dc:70:41:6c:96:07:7b:8d:d1:a2:56:74:9a:d1:d5:6a: 61:f9:18:5e:a4:96:78:0a:ba:ec:88:83:f5:84:82:88:70:05: e8:37:da:c9:1c:39:ad:32:4c:80:e7:52:5d:f2:05:79:02:59: 0a:1c:b6:8d:a1:ac:1d:7f:15:8c:8a:f5:71:d7:c6:7f:f8:ac: 44:2e:45:ff:13:f6:93:6f:b9:76:a5:f5:36:aa:ed:92:42:b7: bb:04:95:70:a9:a4:78:11:fa:f7:42:ab:97:50:da:33:fc:a5: b2:8e:3a:22:e3:14:18:f4:4d:21:82:21:90:36:ee:b7:40:8e: 9e:8c:aa:2e:77:a1:9d:a6:73:88:a2:6f:5f:46:aa:0b:46:f2: df:ee:f2:11:3c:13:a5:6c:18:a8:dc:8c:f9:10:e0:c5:9a:6a: 2c:04:8b:67:eb:63:ec:32:00:91:b8:f4:bf:80:93:3e:7f:7a: b0:ac:3b:b8:db:bc:36:69:87:af:2b:0f:17:89:a7:10:72:dd: af:7e:5e:c4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGWGHhemrwNDM0mv5D0Nm2QawXE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZGNkQy RDdDMDhCRTAeFw0yNjA1MDMwMjI1MDVaFw0yNzA1MDIwMjMwMDVaMDMxMTAvBgNV BAMTKEZDMkY0NkVEMDU2OTg4RUFBNjJDNkQ5RkI2OUMxODM4Rjk1QUYyODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQDo3qsbfppfAx8R8R5u1Qp7W2 m1xiQXn/k8O0qD94EnkLi2AAc1aUnZ0vHtKgXfDecknEj8bg7C/xhfbI3F9zoVf0 Jnr96SuJ/EkUuubr3zoRB5FHSIB6wajrZ7iPqI6IP6GLA6o6CwOt8mfM8cFiQV5R hKczg2JmNbgQV4VOuusmhfAUP7YTIgNslPQsTAScZUJxo08Min/DhXS2ncfFSFgp CeY/1MzM13l9CPjm1EL10E/l5CI5Lcf4ZTFCE68hlaQfnQhAvOVL599QQj7JYq69 YejQGMiI/64wlhQO3OuGG/P2PHc9/xybMhA6trjy7UkkPBmCLAMj02QuygyFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/C9G7QVpiOqmLG2ftpwYOPla8oAwHwYDVR0j BBgwFoAUhT7derPvmhOgd58mEnhvbS18CL4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDVkZmY5YjMtOTA0MS00ZGQ2LWI3YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FC M0VGOUExM0EwNzc5RjI2MTI3ODZGNkQyRDdDMDhCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTNFREQ3QUIzRUY5QTEzQTA3NzlGMjYxMjc4NkY2RDJEN0Mw OEJFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMQwDQYJ KoZIhvcNAQELBQADggEBAHBUxxOKoLtZ/lOQ6P7zSN3orXDGvSJ0SO+DRhKCV096 HBAEnsbk2BIHtEwr8wXxwAAXYBPmtkGs3HBBbJYHe43RolZ0mtHVamH5GF6klngK uuyIg/WEgohwBeg32skcOa0yTIDnUl3yBXkCWQocto2hrB1/FYyK9XHXxn/4rEQu Rf8T9pNvuXal9Taq7ZJCt7sElXCppHgR+vdCq5dQ2jP8pbKOOiLjFBj0TSGCIZA2 7rdAjp6Mqi53oZ2mc4iib19GqgtG8t/u8hE8E6VsGKjcjPkQ4MWaaiwEi2frY+wy AJG49L+Akz5/erCsO7jbvDZph68rDxeJpxBy3a9+XsQ= -----END CERTIFICATE-----Generated at Wed May 13 03:52:06 2026 by rpki-client