$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa File: 3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa (raw, json) Hash identifier: oE4Q0cuL75fyXaIHf3JDUpfM+2/K4+wsnH/TeLPodS0= Subject key identifier: 4C:89:5A:D4:28:31:0B:F7:16:34:08:A3:04:61:5E:E3:4B:4F:EA:61 Certificate issuer: /CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Certificate serial: 5A7EE7C0080ED79E40A9BA4EB236500635102EDA Authority key identifier: AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa Signing time: Sun 03 May 2026 02:35:30 +0000 ROA not before: Sun 03 May 2026 02:30:30 +0000 ROA not after: Sun 02 May 2027 02:35:30 +0000 asID: 133827 IP address blocks: 103.220.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:7e:e7:c0:08:0e:d7:9e:40:a9:ba:4e:b2:36:50:06:35:10:2e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Validity Not Before: May 3 02:30:30 2026 GMT Not After : May 2 02:35:30 2027 GMT Subject: CN=4C895AD428310BF7163408A304615EE34B4FEA61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:46:58:a3:2e:e2:f5:77:c8:06:bb:c1:04: 0f:e7:cf:64:65:df:b8:5e:3d:f7:a0:6e:fc:a5:36: 99:1b:15:f5:06:9c:c6:35:bc:de:48:f5:27:ea:0e: f5:8b:3f:c0:e3:96:96:f5:60:88:f8:d7:6e:ce:b9: 59:45:95:70:e1:2d:b7:61:c6:86:5a:ae:93:63:41: cb:b9:3d:13:83:fd:cd:a1:20:75:f9:cc:3e:19:b4: a8:79:4a:5a:82:08:38:09:7d:4e:c7:18:00:c2:76: 1f:82:a0:25:ca:0e:65:79:9f:66:07:65:98:b3:b6: ae:90:95:f0:2c:db:f2:ce:29:7e:c3:10:f8:30:21: 35:aa:80:80:ab:28:aa:ff:1c:95:da:c4:bb:12:11: e0:98:5d:4b:b1:fd:0a:49:0d:46:08:6c:25:6c:0d: 0a:9a:52:ed:0a:46:12:f4:7f:66:d8:14:e9:bf:e4: 03:fe:f3:cd:d9:ac:f1:2a:ea:08:cd:32:df:5c:e4: 22:56:6c:48:0c:67:c4:14:ac:e2:fe:48:c1:73:78: 82:b4:4d:d8:33:39:5e:61:b6:81:34:ba:f4:53:d0: 46:e0:18:26:3c:36:52:3c:05:f4:61:a3:5e:e7:b7: 93:a4:dd:45:40:08:39:76:9b:45:c8:64:d3:7c:14: c5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:89:5A:D4:28:31:0B:F7:16:34:08:A3:04:61:5E:E3:4B:4F:EA:61 X509v3 Authority Key Identifier: keyid:AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.113.0/24 Signature Algorithm: sha256WithRSAEncryption 20:2d:86:32:54:44:7e:2a:f3:4c:e1:7b:c4:3a:a1:4b:98:ea: 8d:a8:e0:f0:52:5f:54:2f:b7:e6:77:de:39:f4:1d:1e:a9:40: aa:e0:fd:83:35:3b:dc:b1:90:73:57:65:da:fd:b4:d5:93:15: 67:10:0b:47:b7:5c:cc:60:9f:af:bc:04:38:07:36:67:47:1f: ea:0e:de:0e:4b:29:fc:f6:5e:4c:be:11:49:82:b7:f9:9f:47: a5:33:e3:b8:ce:4e:d2:59:fc:d2:94:b8:03:3f:ca:62:c4:51: 1e:6e:82:da:b9:8a:23:63:74:fa:49:06:9b:a5:a7:7e:1d:d9: 55:33:67:9b:fb:3a:cc:98:13:18:b6:5f:8c:6e:93:f2:76:18: 7c:f1:88:21:0e:b6:c7:84:b0:89:f7:3d:ab:c6:3a:d6:cc:68: f8:e2:78:52:d3:e7:a8:c5:85:41:2b:7e:ca:bc:62:1e:88:6d: fe:0f:f1:3c:8c:15:e9:fe:05:95:d5:46:42:5b:c3:e0:ea:3f: f3:fc:7f:3a:24:1a:97:9c:13:44:e6:98:88:05:38:0a:64:23: b9:d0:c3:d0:cb:c0:0c:1a:ab:d4:19:cb:13:df:38:5e:15:51: 28:13:34:d5:6d:4f:5c:aa:ea:dd:1a:97:24:3d:90:f5:ca:4b: 3d:ae:04:18 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWn7nwAgO155AqbpOsjZQBjUQLtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2QjdCQ0RBQ0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJB QjQ4OTQxODAeFw0yNjA1MDMwMjMwMzBaFw0yNzA1MDIwMjM1MzBaMDMxMTAvBgNV BAMTKDRDODk1QUQ0MjgzMTBCRjcxNjM0MDhBMzA0NjE1RUUzNEI0RkVBNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBTUZYoy7i9XfIBrvBBA/nz2Rl 37hePfegbvylNpkbFfUGnMY1vN5I9SfqDvWLP8Djlpb1YIj4127OuVlFlXDhLbdh xoZarpNjQcu5PROD/c2hIHX5zD4ZtKh5SlqCCDgJfU7HGADCdh+CoCXKDmV5n2YH ZZiztq6QlfAs2/LOKX7DEPgwITWqgICrKKr/HJXaxLsSEeCYXUux/QpJDUYIbCVs DQqaUu0KRhL0f2bYFOm/5AP+883ZrPEq6gjNMt9c5CJWbEgMZ8QUrOL+SMFzeIK0 TdgzOV5htoE0uvRT0EbgGCY8NlI8BfRho17nt5Ok3UVACDl2m0XIZNN8FMU5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTIla1CgxC/cWNAijBGFe40tP6mEwHwYDVR0j BBgwFoAUr2t7zaz5C6gyBeopgyc3m6tIlBgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE5OTAxMjUtNjA5YS00OGM4LWFjODYtMWMzYmMzMTViYWQ2LzAvQUY2QjdCQ0RB Q0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJBQjQ4OTQxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjZCN0JDREFDRjkwQkE4MzIwNUVBMjk4MzI3Mzc5QkFCNDg5 NDE4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMxMzAzMzJlMzIzMjMwMmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn3HEwDQYJ KoZIhvcNAQELBQADggEBACAthjJURH4q80zhe8Q6oUuY6o2o4PBSX1Qvt+Z33jn0 HR6pQKrg/YM1O9yxkHNXZdr9tNWTFWcQC0e3XMxgn6+8BDgHNmdHH+oO3g5LKfz2 Xky+EUmCt/mfR6Uz47jOTtJZ/NKUuAM/ymLEUR5ugtq5iiNjdPpJBpulp34d2VUz Z5v7OsyYExi2X4xuk/J2GHzxiCEOtseEsIn3PavGOtbMaPjieFLT56jFhUErfsq8 Yh6Ibf4P8TyMFen+BZXVRkJbw+DqP/P8fzokGpecE0TmmIgFOApkI7nQw9DLwAwa q9QZyxPfOF4VUSgTNNVtT1yq6t0alyQ9kPXKSz2uBBg= -----END CERTIFICATE-----Generated at Wed May 13 10:03:52 2026 by rpki-client