$ rpki-client -vvf rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: fxSYsouQPJ65g7CwW1EnalKBkWjJiK50KJBFUAXhZzA= Subject key identifier: 49:14:69:A8:E7:78:FA:0F:55:0D:7A:C8:EF:B8:88:7F:2A:04:E7:49 Certificate issuer: /CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Certificate serial: 3A2113FC29214A32045C6F7530726DF848ABA087 Authority key identifier: 85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa Signing time: Sun 03 May 2026 02:30:04 +0000 ROA not before: Sun 03 May 2026 02:25:04 +0000 ROA not after: Sun 02 May 2027 02:30:04 +0000 asID: 138096 IP address blocks: 103.124.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:21:13:fc:29:21:4a:32:04:5c:6f:75:30:72:6d:f8:48:ab:a0:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Validity Not Before: May 3 02:25:04 2026 GMT Not After : May 2 02:30:04 2027 GMT Subject: CN=491469A8E778FA0F550D7AC8EFB8887F2A04E749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e8:d9:32:6c:82:e5:89:48:89:fa:fb:41:45: 52:4e:35:38:be:c0:df:d0:96:23:c2:40:f0:b3:28: e2:93:72:f0:c4:f6:4d:ab:0e:58:8a:92:45:54:e0: c6:be:50:60:33:08:d2:73:e7:cb:fe:02:d9:84:44: 3e:e3:bb:f8:70:2b:d0:35:94:42:48:c0:c5:5d:58: 5c:f0:c7:43:79:b2:92:b5:23:51:85:40:56:a4:e3: cb:3c:4d:ea:d9:68:f6:94:1c:34:d4:c8:98:cb:7b: c8:fb:10:e4:b8:ac:4a:0a:f2:7f:6b:a8:ce:dd:84: 0a:fd:f3:81:d8:6d:9c:c7:84:ac:c4:21:51:2a:cf: 0a:bb:5d:1c:bf:a4:14:99:05:fd:ba:18:f4:01:f2: 47:96:76:5a:20:53:b3:db:63:1c:95:dd:d8:c5:07: 3c:e5:e4:84:70:56:d2:51:68:3e:d9:2d:27:13:bf: 2f:0f:18:65:b8:f6:b0:c3:d8:57:9b:4b:c2:98:f5: 70:bb:b1:2f:af:21:0f:ad:ec:3d:d5:dd:a0:eb:c7: 89:26:00:33:18:6a:4c:63:0d:2b:0f:c2:c3:27:ee: a7:f9:46:d1:69:d4:62:45:64:8f:b4:1f:a2:d7:88: 03:e8:d5:09:f6:00:32:ea:07:d6:9a:da:bc:af:92: a1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:14:69:A8:E7:78:FA:0F:55:0D:7A:C8:EF:B8:88:7F:2A:04:E7:49 X509v3 Authority Key Identifier: keyid:85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.199.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:d2:2b:09:b7:09:f8:43:21:c7:02:ed:66:93:8c:1e:26:54: 71:1e:b2:4a:cd:86:3c:18:22:d1:87:9d:50:f4:6f:d3:f3:1e: 8d:55:32:80:9a:5a:a9:5a:2a:2f:53:73:83:21:4d:d7:1e:d6: fe:52:1f:51:3d:d1:76:e5:03:4d:d4:75:1d:a8:11:dd:f4:81: d4:00:7f:71:f0:e5:cf:32:36:5c:c1:3a:ac:ab:2d:ca:af:b7: 42:5f:fe:0e:29:d9:3a:24:7d:87:86:c8:d4:a6:03:8c:e3:54: 81:b7:1c:cf:b9:80:76:d1:4e:ab:bd:46:9b:ec:38:0f:0c:f7: eb:f2:ce:e6:2c:e6:23:2a:cf:0b:f6:54:3d:3b:98:f3:8b:48: 58:05:c0:cd:d4:eb:30:2e:b2:e5:3e:63:0a:98:b2:29:40:8b: 86:5f:c9:a7:8f:2b:0e:f0:25:f4:4c:e4:ce:89:2b:b8:fd:b3: 9f:15:ca:38:07:16:45:38:1c:a2:61:c6:ff:83:72:9f:04:9b: d7:e0:09:34:98:62:30:fe:1b:73:86:67:e3:9e:58:b0:9f:26: fd:5d:03:70:5b:3d:9e:f7:4c:f2:33:fe:d5:04:64:45:99:ae: 2d:b2:9a:b1:0f:52:5d:2b:6b:3a:b5:57:e7:76:f0:ed:05:fe: 8e:b7:1e:46 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOiET/CkhSjIEXG91MHJt+EiroIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZGNkQy RDdDMDhCRTAeFw0yNjA1MDMwMjI1MDRaFw0yNzA1MDIwMjMwMDRaMDMxMTAvBgNV BAMTKDQ5MTQ2OUE4RTc3OEZBMEY1NTBEN0FDOEVGQjg4ODdGMkEwNEU3NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy6NkybILliUiJ+vtBRVJONTi+ wN/QliPCQPCzKOKTcvDE9k2rDliKkkVU4Ma+UGAzCNJz58v+AtmERD7ju/hwK9A1 lEJIwMVdWFzwx0N5spK1I1GFQFak48s8TerZaPaUHDTUyJjLe8j7EOS4rEoK8n9r qM7dhAr984HYbZzHhKzEIVEqzwq7XRy/pBSZBf26GPQB8keWdlogU7PbYxyV3djF Bzzl5IRwVtJRaD7ZLScTvy8PGGW49rDD2FebS8KY9XC7sS+vIQ+t7D3V3aDrx4km ADMYakxjDSsPwsMn7qf5RtFp1GJFZI+0H6LXiAPo1Qn2ADLqB9aa2ryvkqF/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSRRpqOd4+g9VDXrI77iIfyoE50kwHwYDVR0j BBgwFoAUhT7derPvmhOgd58mEnhvbS18CL4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDVkZmY5YjMtOTA0MS00ZGQ2LWI3YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FC M0VGOUExM0EwNzc5RjI2MTI3ODZGNkQyRDdDMDhCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTNFREQ3QUIzRUY5QTEzQTA3NzlGMjYxMjc4NkY2RDJEN0Mw OEJFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMcwDQYJ KoZIhvcNAQELBQADggEBAE7SKwm3CfhDIccC7WaTjB4mVHEeskrNhjwYItGHnVD0 b9PzHo1VMoCaWqlaKi9Tc4MhTdce1v5SH1E90XblA03UdR2oEd30gdQAf3Hw5c8y NlzBOqyrLcqvt0Jf/g4p2TokfYeGyNSmA4zjVIG3HM+5gHbRTqu9RpvsOA8M9+vy zuYs5iMqzwv2VD07mPOLSFgFwM3U6zAusuU+YwqYsilAi4ZfyaePKw7wJfRM5M6J K7j9s58VyjgHFkU4HKJhxv+Dcp8Em9fgCTSYYjD+G3OGZ+OeWLCfJv1dA3BbPZ73 TPIz/tUEZEWZri2ymrEPUl0razq1V+d28O0F/o63HkY= -----END CERTIFICATE-----Generated at Wed May 13 04:26:23 2026 by rpki-client