$ rpki-client -vvf rpki-rsync.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa File: 3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: eR7s3iDJUbgwn7vG0iEll3YQrHiAYjHNsvD28zhjxXY= Subject key identifier: B0:10:A9:3C:D9:EA:D9:87:C2:6B:65:63:41:76:42:AF:66:AF:5F:38 Certificate issuer: /CN=14649B106FA0C411D7FCD73A4B0147226E8A8454 Certificate serial: 2A0BDD0E4AED75A48968D99E219DA5ED943FF020 Authority key identifier: 14:64:9B:10:6F:A0:C4:11:D7:FC:D7:3A:4B:01:47:22:6E:8A:84:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/14649B106FA0C411D7FCD73A4B0147226E8A8454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa Signing time: Sun 03 May 2026 02:31:58 +0000 ROA not before: Sun 03 May 2026 02:26:58 +0000 ROA not after: Sun 02 May 2027 02:31:58 +0000 asID: 133800 IP address blocks: 103.89.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/14649B106FA0C411D7FCD73A4B0147226E8A8454.crl rsync://rpki-rsync.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/14649B106FA0C411D7FCD73A4B0147226E8A8454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/14649B106FA0C411D7FCD73A4B0147226E8A8454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:0b:dd:0e:4a:ed:75:a4:89:68:d9:9e:21:9d:a5:ed:94:3f:f0:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14649B106FA0C411D7FCD73A4B0147226E8A8454 Validity Not Before: May 3 02:26:58 2026 GMT Not After : May 2 02:31:58 2027 GMT Subject: CN=B010A93CD9EAD987C26B6563417642AF66AF5F38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:aa:34:23:87:9b:17:a1:70:a5:c2:ec:e9:90: 14:44:dd:02:2c:f3:a3:ca:0a:33:1a:40:59:3e:7f: 30:c6:4d:08:22:9d:a2:32:52:b3:c5:c1:95:9d:6c: 0a:23:a6:d6:6b:7a:f9:f3:75:2b:0f:dc:4d:13:7d: 76:e2:e9:da:be:71:e0:35:29:9b:d5:c0:a6:df:92: a8:b5:9c:56:30:ce:6e:38:1c:19:3f:ce:0b:77:d8: 71:cc:05:a0:62:2a:01:26:cd:be:b7:d0:31:64:60: ad:27:02:0e:ec:52:92:c8:94:90:20:a0:56:e4:37: d9:c5:4b:90:06:7e:26:fa:a5:07:93:34:91:ec:fc: d1:40:c5:c7:cb:04:63:e3:08:88:79:3a:82:4c:02: 7b:1c:d0:13:a6:d8:32:f6:dd:56:77:dd:63:00:e1: 73:70:6e:cb:9a:b1:db:c7:b0:e3:0c:5e:1e:7c:42: 3b:5a:29:57:3e:eb:36:f8:fb:52:8a:75:64:29:cd: 51:da:1f:d5:80:39:c6:c9:75:d1:7e:16:45:7f:d8: 47:cd:cb:86:18:b2:a2:1d:3b:db:b3:0c:e3:ae:ee: f7:e1:20:c6:34:7b:6f:60:48:7b:bc:93:fc:06:6f: b7:6b:d0:91:55:80:6d:f9:c7:41:21:01:25:f2:35: 22:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:10:A9:3C:D9:EA:D9:87:C2:6B:65:63:41:76:42:AF:66:AF:5F:38 X509v3 Authority Key Identifier: keyid:14:64:9B:10:6F:A0:C4:11:D7:FC:D7:3A:4B:01:47:22:6E:8A:84:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/14649B106FA0C411D7FCD73A4B0147226E8A8454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/14649B106FA0C411D7FCD73A4B0147226E8A8454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.164.0/24 Signature Algorithm: sha256WithRSAEncryption 25:a4:7e:02:41:4e:58:9d:28:75:4a:89:43:df:61:9d:a1:ed: 4f:49:bd:22:de:2f:52:16:15:6e:3a:63:27:0b:7c:7a:ee:dc: 8d:b6:d8:2d:4a:5a:a7:5a:90:3f:7f:57:9e:59:ff:06:ce:1f: 93:57:ca:19:f0:a3:6e:29:fd:03:a7:03:9b:37:5f:4a:f7:31: af:83:32:7e:2c:b7:00:92:72:16:c5:51:09:bc:89:88:a2:d1: c0:84:7f:49:1d:60:89:c3:b3:3b:97:dd:14:e8:16:23:51:f0: ef:5d:2b:b4:30:16:e7:f2:8b:75:98:08:57:61:94:8a:5d:e7: 13:5e:cb:05:25:eb:50:0e:a1:b8:67:1a:bc:15:1c:4c:e0:bb: d3:71:ff:5e:ce:0e:e4:9a:8d:56:6b:f3:50:15:9a:7f:84:21: 61:d5:78:37:d6:3a:8d:e6:da:5e:e6:7c:b9:c3:a4:a7:ac:50: ea:14:1a:59:05:22:99:80:2f:36:c3:ce:16:67:d3:c2:a5:62: 81:4d:ae:b6:23:19:48:d4:5b:f1:fb:c1:f3:c7:8a:39:2c:95: c1:82:a0:d5:c4:c5:e8:f6:ac:d8:e8:69:57:21:93:a4:79:32: 69:2b:d6:1c:d5:d3:5f:63:f9:29:41:e3:20:51:fe:00:32:ea: 0a:90:8b:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKgvdDkrtdaSJaNmeIZ2l7ZQ/8CAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ2NDlCMTA2RkEwQzQxMUQ3RkNENzNBNEIwMTQ3MjI2 RThBODQ1NDAeFw0yNjA1MDMwMjI2NThaFw0yNzA1MDIwMjMxNThaMDMxMTAvBgNV BAMTKEIwMTBBOTNDRDlFQUQ5ODdDMjZCNjU2MzQxNzY0MkFGNjZBRjVGMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtqjQjh5sXoXClwuzpkBRE3QIs 86PKCjMaQFk+fzDGTQginaIyUrPFwZWdbAojptZrevnzdSsP3E0TfXbi6dq+ceA1 KZvVwKbfkqi1nFYwzm44HBk/zgt32HHMBaBiKgEmzb630DFkYK0nAg7sUpLIlJAg oFbkN9nFS5AGfib6pQeTNJHs/NFAxcfLBGPjCIh5OoJMAnsc0BOm2DL23VZ33WMA 4XNwbsuasdvHsOMMXh58QjtaKVc+6zb4+1KKdWQpzVHaH9WAOcbJddF+FkV/2EfN y4YYsqIdO9uzDOOu7vfhIMY0e29gSHu8k/wGb7dr0JFVgG35x0EhASXyNSJdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsBCpPNnq2YfCa2VjQXZCr2avXzgwHwYDVR0j BBgwFoAUFGSbEG+gxBHX/Nc6SwFHIm6KhFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGQxNzZkZGQtYTk4MC00M2Q2LTk0YTctOTVlZWRhNTM5NjY1LzAvMTQ2NDlCMTA2 RkEwQzQxMUQ3RkNENzNBNEIwMTQ3MjI2RThBODQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNDY0OUIxMDZGQTBDNDExRDdGQ0Q3M0E0QjAxNDcyMjZFOEE4 NDU0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzgzOTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1mkMA0GCSqG SIb3DQEBCwUAA4IBAQAlpH4CQU5YnSh1SolD32Gdoe1PSb0i3i9SFhVuOmMnC3x6 7tyNttgtSlqnWpA/f1eeWf8Gzh+TV8oZ8KNuKf0DpwObN19K9zGvgzJ+LLcAknIW xVEJvImIotHAhH9JHWCJw7M7l90U6BYjUfDvXSu0MBbn8ot1mAhXYZSKXecTXssF JetQDqG4Zxq8FRxM4LvTcf9ezg7kmo1Wa/NQFZp/hCFh1Xg31jqN5tpe5ny5w6Sn rFDqFBpZBSKZgC82w84WZ9PCpWKBTa62IxlI1Fvx+8Hzx4o5LJXBgqDVxMXo9qzY 6GlXIZOkeTJpK9Yc1dNfY/kpQeMgUf4AMuoKkIuj -----END CERTIFICATE-----Generated at Wed May 13 11:46:22 2026 by rpki-client