$ rpki-client -vvf rpki-rsync.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa File: 3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa (raw, json) Hash identifier: fEQ2RGA7SMjU1u5ivR067WU+IPRjxPNEFjBrW6SRr/A= Subject key identifier: FA:2D:D2:0B:82:69:31:FD:D8:91:0A:9C:0E:A4:DC:98:31:F3:1C:1D Certificate issuer: /CN=E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A Certificate serial: 42886876624D236D32CD2D2E426AF11FE2070C43 Authority key identifier: E6:EF:A0:C9:87:EB:7B:DE:DC:D6:52:0F:CF:EA:A6:C6:F7:BF:D4:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa Signing time: Sun 03 May 2026 02:33:49 +0000 ROA not before: Sun 03 May 2026 02:28:49 +0000 ROA not after: Sun 02 May 2027 02:33:49 +0000 asID: 150266 IP address blocks: 103.91.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A.crl rsync://rpki-rsync.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:88:68:76:62:4d:23:6d:32:cd:2d:2e:42:6a:f1:1f:e2:07:0c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A Validity Not Before: May 3 02:28:49 2026 GMT Not After : May 2 02:33:49 2027 GMT Subject: CN=FA2DD20B826931FDD8910A9C0EA4DC9831F31C1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d4:de:f9:80:c1:43:b6:09:9c:da:a4:d8:29: b4:3e:0f:05:5c:ca:c0:05:68:41:d5:0a:bd:09:c5: b9:63:4b:de:16:3f:48:c1:e8:59:38:39:d2:ce:fb: 1b:3d:e5:6a:f2:ae:ae:c4:11:f2:54:d4:09:80:bd: 0a:da:d4:09:71:51:c2:41:57:41:50:1f:ba:45:d9: 7d:91:eb:47:03:10:68:49:42:a2:68:c6:4b:3b:33: 03:57:c4:e8:f5:ca:92:72:79:e4:44:95:2e:ce:47: d2:35:01:64:39:ae:05:71:c7:1d:51:69:61:0c:c1: 29:52:e6:b5:98:f0:49:c4:06:40:45:0c:ff:51:92: 3d:86:fe:ef:aa:f5:36:c6:87:4c:12:b9:94:ce:c3: bc:8e:9a:90:c3:58:19:81:cd:66:63:b8:51:8d:52: 2a:6f:ae:d0:88:55:56:1b:16:5c:1e:b3:ac:75:3e: d6:2e:f6:79:bd:e2:11:a6:67:e2:05:64:7b:80:6f: ba:7c:98:e6:70:90:d7:af:35:67:fc:f6:31:74:12: 7a:c7:ee:d0:1b:21:90:90:1e:f2:9b:b2:d2:09:8c: 2f:fa:a4:29:66:1f:71:84:36:68:d7:6b:8d:f2:8a: 45:c7:97:0f:ed:66:c4:e6:00:22:8c:48:22:01:79: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2D:D2:0B:82:69:31:FD:D8:91:0A:9C:0E:A4:DC:98:31:F3:1C:1D X509v3 Authority Key Identifier: keyid:E6:EF:A0:C9:87:EB:7B:DE:DC:D6:52:0F:CF:EA:A6:C6:F7:BF:D4:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EFA0C987EB7BDEDCD6520FCFEAA6C6F7BFD47A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.137.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:d0:7d:e9:2c:0f:57:b2:45:d4:ec:63:1f:e5:6d:e5:67:a7: 74:e2:60:7b:76:b6:f5:6b:ad:f6:ee:a0:91:ab:16:0e:d6:73: 13:15:c6:e9:73:f8:5b:4e:a4:5e:36:e2:2c:bb:f3:e0:ac:28: 10:69:e3:c4:8e:2f:8e:08:dd:17:1d:97:38:a4:ef:fb:4c:55: 84:77:1a:a3:48:fa:da:bd:4e:2d:cc:d2:b2:ea:ed:a4:a8:bb: 05:3b:93:46:b3:01:99:8a:9d:db:b1:75:69:bb:23:d4:63:0f: a3:4f:51:a9:80:03:ac:0d:81:8b:b3:61:2c:15:04:bb:84:08: 2f:81:c3:78:a3:34:16:88:dc:08:81:5d:cc:a9:3b:61:a6:1e: eb:fc:c7:67:a3:01:b6:1e:17:96:8b:e6:3b:ce:72:8b:2b:60: 19:45:65:43:07:cd:bd:75:e9:01:44:a7:d2:0f:90:e7:91:41: f0:c0:47:c2:1c:f4:3a:6f:a3:3b:92:40:da:cb:ef:6c:91:55: 52:bb:f9:31:9f:a1:a8:72:9a:eb:18:93:ba:5e:b2:f5:bf:91: 48:9b:ab:70:54:4c:0d:43:53:0b:a2:cc:cc:ed:c7:d1:ba:9e: 15:d7:42:0a:da:b2:e1:22:5e:8a:68:00:1c:51:bc:92:9c:af: 32:99:d6:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQohodmJNI20yzS0uQmrxH+IHDEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZFRkEwQzk4N0VCN0JERURDRDY1MjBGQ0ZFQUE2QzZG N0JGRDQ3QTAeFw0yNjA1MDMwMjI4NDlaFw0yNzA1MDIwMjMzNDlaMDMxMTAvBgNV BAMTKEZBMkREMjBCODI2OTMxRkREODkxMEE5QzBFQTREQzk4MzFGMzFDMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ1N75gMFDtgmc2qTYKbQ+DwVc ysAFaEHVCr0JxbljS94WP0jB6Fk4OdLO+xs95Wryrq7EEfJU1AmAvQra1AlxUcJB V0FQH7pF2X2R60cDEGhJQqJoxks7MwNXxOj1ypJyeeRElS7OR9I1AWQ5rgVxxx1R aWEMwSlS5rWY8EnEBkBFDP9Rkj2G/u+q9TbGh0wSuZTOw7yOmpDDWBmBzWZjuFGN UipvrtCIVVYbFlwes6x1PtYu9nm94hGmZ+IFZHuAb7p8mOZwkNevNWf89jF0EnrH 7tAbIZCQHvKbstIJjC/6pClmH3GENmjXa43yikXHlw/tZsTmACKMSCIBeXvVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+i3SC4JpMf3YkQqcDqTcmDHzHB0wHwYDVR0j BBgwFoAU5u+gyYfre97c1lIPz+qmxve/1HowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTUyYmVhZTEtMzQ4MC00ZTkyLWEzYTktNWE1NGZiYmFjZDJkLzAvRTZFRkEwQzk4 N0VCN0JERURDRDY1MjBGQ0ZFQUE2QzZGN0JGRDQ3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkVGQTBDOTg3RUI3QkRFRENENjUyMEZDRkVBQTZDNkY3QkZE NDdBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1MmJlYWUxLTM0ODAtNGU5Mi1h M2E5LTVhNTRmYmJhY2QyZC8wLzMxMzAzMzJlMzkzMTJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1uJMA0GCSqG SIb3DQEBCwUAA4IBAQB90H3pLA9XskXU7GMf5W3lZ6d04mB7drb1a6327qCRqxYO 1nMTFcbpc/hbTqReNuIsu/PgrCgQaePEji+OCN0XHZc4pO/7TFWEdxqjSPravU4t zNKy6u2kqLsFO5NGswGZip3bsXVpuyPUYw+jT1GpgAOsDYGLs2EsFQS7hAgvgcN4 ozQWiNwIgV3MqTthph7r/MdnowG2HheWi+Y7znKLK2AZRWVDB829dekBRKfSD5Dn kUHwwEfCHPQ6b6M7kkDay+9skVVSu/kxn6GocprrGJO6XrL1v5FIm6twVEwNQ1ML oszM7cfRup4V10IK2rLhIl6KaAAcUbySnK8ymda2 -----END CERTIFICATE-----Generated at Wed May 13 02:41:13 2026 by rpki-client