$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: rwg483/d/uW8MM/6Hs4Vo767LHO7cJke91zFFG533K4= Subject key identifier: F5:45:31:46:D1:EB:EA:99:7C:91:31:2E:F0:54:31:47:87:F2:E7:73 Certificate issuer: /CN=DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C Certificate serial: 2BEE0C1FB3902E6C1EB40004A468A9DE7F6ED44A Authority key identifier: DE:E1:9A:96:E6:FA:5B:36:0F:C8:BF:1C:E5:AC:9B:14:8D:0E:87:4C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 02:32:19 +0000 ROA not before: Sun 03 May 2026 02:27:19 +0000 ROA not after: Sun 02 May 2027 02:32:19 +0000 asID: 135478 IP address blocks: 103.121.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.crl rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ee:0c:1f:b3:90:2e:6c:1e:b4:00:04:a4:68:a9:de:7f:6e:d4:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C Validity Not Before: May 3 02:27:19 2026 GMT Not After : May 2 02:32:19 2027 GMT Subject: CN=F5453146D1EBEA997C91312EF054314787F2E773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f6:c4:9e:b4:a4:87:18:2a:4d:6e:b4:df:e3: c1:15:95:81:33:3a:08:bf:f1:dc:a6:93:1b:b5:cb: 48:24:ff:2c:07:68:cc:60:c5:de:53:b5:3f:2e:19: 94:b2:09:86:0d:9c:fc:08:2b:35:7c:5a:ef:cf:0b: fa:79:8c:d4:79:d1:eb:64:e7:ee:c7:55:2b:02:2b: 8c:6c:36:54:9b:c7:0d:70:12:15:f3:07:d5:e9:c5: bc:18:57:a5:d5:e5:87:bf:ed:75:82:09:26:63:d5: cc:55:da:92:97:01:22:be:17:19:06:72:e9:a7:ab: 1e:25:d2:10:04:09:90:82:fa:af:16:2f:c2:f5:88: e9:83:55:85:6f:5f:40:be:c0:14:bd:cd:fe:b9:04: 6e:e7:a4:76:9e:2c:2f:e0:f7:44:1a:18:13:91:96: 57:e2:09:a6:ea:c0:33:69:3c:fb:58:af:43:8b:f8: 9d:f9:85:48:f7:b9:52:ca:1a:1d:ca:85:9a:c2:e4: 1b:77:ca:3a:0c:77:a6:ba:09:97:bb:cb:b7:21:73: 64:4a:e8:4d:25:3a:53:00:a0:7f:a4:57:ef:93:42: 3f:cc:26:6b:58:d2:82:37:08:3f:f4:b0:a9:ff:5a: 1c:ea:44:22:98:5d:cc:14:aa:74:b7:b2:95:f9:2a: 55:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:45:31:46:D1:EB:EA:99:7C:91:31:2E:F0:54:31:47:87:F2:E7:73 X509v3 Authority Key Identifier: keyid:DE:E1:9A:96:E6:FA:5B:36:0F:C8:BF:1C:E5:AC:9B:14:8D:0E:87:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.138.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:20:72:f0:cf:c3:c7:8d:c2:24:b0:75:7c:09:a1:e3:95:dc: ed:fe:e2:1f:52:2d:93:ff:2b:eb:58:62:a5:d8:f0:97:6f:07: c9:97:6c:21:bb:75:bb:15:fa:94:4a:d2:a5:8f:ed:1d:d7:0a: 89:04:f8:45:99:1e:35:12:d9:5a:41:ab:7a:24:87:21:4e:bb: ed:01:1d:93:17:d3:8a:ee:19:92:a2:dd:ca:1b:b0:d0:a1:68: 1b:0d:76:e9:31:ac:8d:9e:dc:ee:e4:77:21:0e:45:64:c5:b1: d2:8c:b8:62:2f:75:fc:3c:de:40:ed:4d:1a:63:64:b2:a3:6d: 72:d7:81:72:2b:b7:3a:90:46:50:18:3d:ee:41:88:bb:4d:02: 1f:20:2b:29:92:9a:52:bb:56:ed:cd:99:8f:65:c3:8a:c1:2a: a1:f8:d0:d6:4d:b2:67:40:d2:18:0d:91:55:8d:45:a2:4b:d6: fc:78:b5:8d:03:d7:1a:66:04:c4:2f:6f:e4:31:88:09:cb:46: b6:3e:50:bd:5c:5b:e1:8b:44:be:ff:2a:41:e0:3a:3f:9f:61: 03:c1:27:5d:8f:95:59:58:73:88:98:bb:97:63:3f:6a:87:a6: dc:b4:6a:42:88:88:46:17:40:92:22:ec:08:13:30:1a:a5:88: fd:42:3a:23 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK+4MH7OQLmwetAAEpGip3n9u1EowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVFMTlBOTZFNkZBNUIzNjBGQzhCRjFDRTVBQzlCMTQ4 RDBFODc0QzAeFw0yNjA1MDMwMjI3MTlaFw0yNzA1MDIwMjMyMTlaMDMxMTAvBgNV BAMTKEY1NDUzMTQ2RDFFQkVBOTk3QzkxMzEyRUYwNTQzMTQ3ODdGMkU3NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH9sSetKSHGCpNbrTf48EVlYEz Ogi/8dymkxu1y0gk/ywHaMxgxd5TtT8uGZSyCYYNnPwIKzV8Wu/PC/p5jNR50etk 5+7HVSsCK4xsNlSbxw1wEhXzB9XpxbwYV6XV5Ye/7XWCCSZj1cxV2pKXASK+FxkG cumnqx4l0hAECZCC+q8WL8L1iOmDVYVvX0C+wBS9zf65BG7npHaeLC/g90QaGBOR llfiCabqwDNpPPtYr0OL+J35hUj3uVLKGh3KhZrC5Bt3yjoMd6a6CZe7y7chc2RK 6E0lOlMAoH+kV++TQj/MJmtY0oI3CD/0sKn/WhzqRCKYXcwUqnS3spX5KlUxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9UUxRtHr6pl8kTEu8FQxR4fy53MwHwYDVR0j BBgwFoAU3uGalub6WzYPyL8c5aybFI0Oh0wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY0ZmE3YjgtNTMwMi00OTBiLTkyZTQtMjdmMjhjNjY1NzVjLzAvREVFMTlBOTZF NkZBNUIzNjBGQzhCRjFDRTVBQzlCMTQ4RDBFODc0Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUUxOUE5NkU2RkE1QjM2MEZDOEJGMUNFNUFDOUIxNDhEMEU4 NzRDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmNGZhN2I4LTUzMDItNDkwYi05 MmU0LTI3ZjI4YzY2NTc1Yy8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYowDQYJ KoZIhvcNAQELBQADggEBAF4gcvDPw8eNwiSwdXwJoeOV3O3+4h9SLZP/K+tYYqXY 8JdvB8mXbCG7dbsV+pRK0qWP7R3XCokE+EWZHjUS2VpBq3okhyFOu+0BHZMX04ru GZKi3cobsNChaBsNdukxrI2e3O7kdyEORWTFsdKMuGIvdfw83kDtTRpjZLKjbXLX gXIrtzqQRlAYPe5BiLtNAh8gKymSmlK7Vu3NmY9lw4rBKqH40NZNsmdA0hgNkVWN RaJL1vx4tY0D1xpmBMQvb+QxiAnLRrY+UL1cW+GLRL7/KkHgOj+fYQPBJ12PlVlY c4iYu5djP2qHpty0akKIiEYXQJIi7AgTMBqliP1COiM= -----END CERTIFICATE-----Generated at Wed May 13 06:55:49 2026 by rpki-client