$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa File: 3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa (raw, json) Hash identifier: RH7qzceSrisGTT+gbHQrqNwFlHJNMn8OuKHPRRq6v88= Subject key identifier: AA:65:A9:68:DB:F5:4C:5D:06:FB:C0:29:20:86:8C:A7:24:73:F5:B1 Certificate issuer: /CN=34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A Certificate serial: 34A9AB9ECB93A749E8921D5E264C8BB6A6A388B2 Authority key identifier: 34:A9:B9:DC:AE:EB:6D:A7:BD:1F:79:96:CF:BA:EE:D1:E1:34:F4:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa Signing time: Sun 03 May 2026 02:36:13 +0000 ROA not before: Sun 03 May 2026 02:31:13 +0000 ROA not after: Sun 02 May 2027 02:36:13 +0000 asID: 133359 IP address blocks: 103.238.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A.crl rsync://rpki-rsync.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a9:ab:9e:cb:93:a7:49:e8:92:1d:5e:26:4c:8b:b6:a6:a3:88:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A Validity Not Before: May 3 02:31:13 2026 GMT Not After : May 2 02:36:13 2027 GMT Subject: CN=AA65A968DBF54C5D06FBC02920868CA72473F5B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9c:bd:4e:91:63:d0:48:f7:72:e9:da:0a:91: 30:c3:79:05:45:59:48:e0:d7:3a:67:b8:ab:5f:15: 45:75:85:7c:a9:a5:5d:f7:13:80:6a:bc:f0:f3:60: 07:52:d7:96:39:27:04:7c:42:a0:00:da:10:23:32: ee:e1:02:f6:3a:9c:89:d1:c9:e5:e1:df:81:ae:2a: 4b:48:9b:26:b7:c2:6b:1f:80:e9:50:57:dc:2e:a8: 5a:2c:f5:32:b7:9c:93:0e:5c:49:c0:75:68:e6:7a: 1a:8e:9b:b2:00:a1:93:e5:a2:68:84:f9:ff:12:3a: d4:db:21:34:34:d6:15:c1:04:32:ef:fd:cd:cd:61: 91:e0:6c:53:f3:ab:88:d3:88:a5:8d:a0:f8:e4:62: 90:cf:94:11:70:1e:68:0d:e1:1f:33:59:11:73:ac: d5:39:c0:47:bb:22:89:ab:4b:99:c3:a8:d1:ed:b7: 30:2d:4e:4d:58:bb:23:30:0e:89:84:23:57:86:af: 22:cf:7c:66:7e:d5:61:f4:9c:99:78:5f:83:40:40: 72:94:18:ae:f4:a4:d0:36:00:ac:b6:e1:8b:1a:9a: 8b:74:4c:72:11:44:57:c3:e5:76:44:16:5a:75:69: c5:6d:c7:5e:85:a5:91:88:da:89:6e:d7:6c:d3:f6: df:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:65:A9:68:DB:F5:4C:5D:06:FB:C0:29:20:86:8C:A7:24:73:F5:B1 X509v3 Authority Key Identifier: keyid:34:A9:B9:DC:AE:EB:6D:A7:BD:1F:79:96:CF:BA:EE:D1:E1:34:F4:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/34A9B9DCAEEB6DA7BD1F7996CFBAEED1E134F47A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.138.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:26:ad:1b:59:dc:56:b4:70:cd:96:99:51:e2:d8:2a:40:51: eb:d0:75:10:c6:73:a0:80:47:b3:b4:08:8c:6d:cd:83:43:79: bc:76:cd:0c:be:16:bf:2c:23:e2:65:7d:de:3a:29:df:cb:70: 97:c4:05:cb:81:70:28:f3:bb:9e:c1:8a:cd:43:2d:ce:9c:fa: de:0a:5c:2c:99:11:5c:ad:2c:02:6d:41:6f:a6:fa:7d:1d:02: d9:cf:d0:c7:8b:51:93:6b:f8:46:c0:fe:02:10:b3:fd:ce:08: 99:ad:8f:72:5b:ab:a4:02:c7:83:95:65:95:22:99:b2:6f:2e: b1:56:95:3d:86:33:d8:64:8f:a2:81:28:97:b2:14:5c:65:78: c9:b9:92:76:a5:79:6b:1c:20:1f:a7:03:0f:6d:80:c4:e6:4c: 62:c9:92:71:85:ef:aa:e8:b7:1a:15:d1:cd:6e:4b:82:e0:cd: 91:ec:2b:b8:74:15:46:69:4b:ff:dd:9c:a2:ba:00:25:44:44: b0:3d:ed:d4:c6:e6:30:19:2c:69:db:78:8c:f1:22:8d:32:7e: d7:db:52:76:3e:67:4d:7d:76:38:6f:27:33:57:2f:12:5b:a6: 22:40:cd:c1:42:b8:a7:55:87:04:fb:4c:53:5d:21:a6:99:74: 9f:4d:43:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNKmrnsuTp0nokh1eJkyLtqajiLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRBOUI5RENBRUVCNkRBN0JEMUY3OTk2Q0ZCQUVFRDFF MTM0RjQ3QTAeFw0yNjA1MDMwMjMxMTNaFw0yNzA1MDIwMjM2MTNaMDMxMTAvBgNV BAMTKEFBNjVBOTY4REJGNTRDNUQwNkZCQzAyOTIwODY4Q0E3MjQ3M0Y1QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5nL1OkWPQSPdy6doKkTDDeQVF WUjg1zpnuKtfFUV1hXyppV33E4BqvPDzYAdS15Y5JwR8QqAA2hAjMu7hAvY6nInR yeXh34GuKktImya3wmsfgOlQV9wuqFos9TK3nJMOXEnAdWjmehqOm7IAoZPlomiE +f8SOtTbITQ01hXBBDLv/c3NYZHgbFPzq4jTiKWNoPjkYpDPlBFwHmgN4R8zWRFz rNU5wEe7IomrS5nDqNHttzAtTk1YuyMwDomEI1eGryLPfGZ+1WH0nJl4X4NAQHKU GK70pNA2AKy24Ysamot0THIRRFfD5XZEFlp1acVtx16FpZGI2olu12zT9t8rAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqmWpaNv1TF0G+8ApIIaMpyRz9bEwHwYDVR0j BBgwFoAUNKm53K7rbae9H3mWz7ru0eE09HowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMyMTkyNTktZWQxYS00ZDE4LWJkOTItOTRiNjA2NzJlNmExLzAvMzRBOUI5RENB RUVCNkRBN0JEMUY3OTk2Q0ZCQUVFRDFFMTM0RjQ3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNEE5QjlEQ0FFRUI2REE3QkQxRjc5OTZDRkJBRUVEMUUxMzRG NDdBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMjE5MjU5LWVkMWEtNGQxOC1i ZDkyLTk0YjYwNjcyZTZhMS8wLzMxMzAzMzJlMzIzMzM4MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn7oowDQYJ KoZIhvcNAQELBQADggEBAH4mrRtZ3Fa0cM2WmVHi2CpAUevQdRDGc6CAR7O0CIxt zYNDebx2zQy+Fr8sI+Jlfd46Kd/LcJfEBcuBcCjzu57Bis1DLc6c+t4KXCyZEVyt LAJtQW+m+n0dAtnP0MeLUZNr+EbA/gIQs/3OCJmtj3Jbq6QCx4OVZZUimbJvLrFW lT2GM9hkj6KBKJeyFFxleMm5knaleWscIB+nAw9tgMTmTGLJknGF76rotxoV0c1u S4LgzZHsK7h0FUZpS//dnKK6ACVERLA97dTG5jAZLGnbeIzxIo0yftfbUnY+Z019 djhvJzNXLxJbpiJAzcFCuKdVhwT7TFNdIaaZdJ9NQ14= -----END CERTIFICATE-----Generated at Wed May 13 06:47:43 2026 by rpki-client