$ rpki-client -vvf rpki-rsync.idnic.net/repo/5da14e3a-5be0-46d1-903c-059b0b688821/0/3130332e38392e3132342e302f32322d3234203d3e20313336303934.roa File: 3130332e38392e3132342e302f32322d3234203d3e20313336303934.roa (raw, json) Hash identifier: f9D+tmlskJQe+GGM2u5fqymt4sZqzjW31b307vrzFZA= Subject key identifier: A4:40:D7:3A:8C:A7:EF:E1:7B:A4:A0:26:4D:84:9D:E7:2B:24:0D:56 Certificate issuer: /CN=7FCE3E28E299EC0717F578A231ABB65F9B3E2F20 Certificate serial: 3EA433AC4AE85D9C74F756A0F0051B55D3594DFA Authority key identifier: 7F:CE:3E:28:E2:99:EC:07:17:F5:78:A2:31:AB:B6:5F:9B:3E:2F:20 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7FCE3E28E299EC0717F578A231ABB65F9B3E2F20.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5da14e3a-5be0-46d1-903c-059b0b688821/0/3130332e38392e3132342e302f32322d3234203d3e20313336303934.roa Signing time: Sun 03 May 2026 02:36:53 +0000 ROA not before: Sun 03 May 2026 02:31:53 +0000 ROA not after: Sun 02 May 2027 02:36:53 +0000 asID: 136094 IP address blocks: 103.89.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5da14e3a-5be0-46d1-903c-059b0b688821/0/7FCE3E28E299EC0717F578A231ABB65F9B3E2F20.crl rsync://rpki-rsync.idnic.net/repo/5da14e3a-5be0-46d1-903c-059b0b688821/0/7FCE3E28E299EC0717F578A231ABB65F9B3E2F20.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7FCE3E28E299EC0717F578A231ABB65F9B3E2F20.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a4:33:ac:4a:e8:5d:9c:74:f7:56:a0:f0:05:1b:55:d3:59:4d:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FCE3E28E299EC0717F578A231ABB65F9B3E2F20 Validity Not Before: May 3 02:31:53 2026 GMT Not After : May 2 02:36:53 2027 GMT Subject: CN=A440D73A8CA7EFE17BA4A0264D849DE72B240D56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e6:5b:72:36:87:5f:58:3b:5b:bf:c1:8f:9b: 78:eb:45:0c:c9:60:84:a7:08:77:99:85:1c:c9:d0: 8a:ad:15:98:a9:34:75:26:5e:cf:b4:6c:66:13:31: 66:37:ba:26:65:0e:42:6b:d8:29:c5:36:28:5f:22: 8f:92:46:14:f0:ce:05:e8:f4:c1:01:f4:a0:54:42: 97:78:36:b1:c8:65:d3:f8:62:ef:4c:12:d7:40:1a: af:ad:b2:c4:3a:d7:e5:e8:9f:65:b4:a8:6c:41:e1: 3a:b5:56:3f:e4:20:a8:61:30:59:ab:07:d8:49:a0: 79:03:85:27:97:3c:2f:84:09:07:ec:d8:b9:0b:9c: 91:f1:5e:b2:7e:a6:1b:6d:ff:f9:b0:21:dd:0a:e4: 7a:eb:96:f2:97:14:1c:5d:ec:bc:0e:c8:2c:dd:d6: 5b:26:8a:29:63:85:3b:50:20:23:0d:76:98:bf:85: 79:f2:73:62:22:16:df:ec:4e:d1:b8:42:2b:fd:8c: 59:17:a9:f1:ce:ac:ca:00:a8:21:4e:9c:35:a4:12: ff:8d:a7:45:3a:85:de:78:06:5c:74:65:2b:9c:2d: cd:b3:88:2f:7a:6a:ee:85:8d:1d:a8:44:44:49:28: bc:55:c0:1f:0b:d2:80:2b:d1:cb:aa:77:f7:c2:c0: f7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:40:D7:3A:8C:A7:EF:E1:7B:A4:A0:26:4D:84:9D:E7:2B:24:0D:56 X509v3 Authority Key Identifier: keyid:7F:CE:3E:28:E2:99:EC:07:17:F5:78:A2:31:AB:B6:5F:9B:3E:2F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5da14e3a-5be0-46d1-903c-059b0b688821/0/7FCE3E28E299EC0717F578A231ABB65F9B3E2F20.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7FCE3E28E299EC0717F578A231ABB65F9B3E2F20.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5da14e3a-5be0-46d1-903c-059b0b688821/0/3130332e38392e3132342e302f32322d3234203d3e20313336303934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.124.0/22 Signature Algorithm: sha256WithRSAEncryption 72:c2:e4:30:be:6b:bf:9d:17:33:31:d5:78:e6:78:bc:72:4b: 8a:9b:cc:d5:dd:fc:ba:00:f5:66:79:77:6f:f4:31:b2:5b:14: dc:c3:ae:d2:17:5c:0a:96:cc:45:4d:b4:86:d8:26:01:09:16: a2:c6:b8:73:ef:1f:2e:e8:73:27:d5:3a:4f:1f:9e:09:e7:43: 3e:14:4d:7c:87:aa:75:13:6c:39:08:1d:ee:f7:3e:56:c1:46: 29:92:c7:c6:94:92:c3:44:4d:c0:f0:c5:0a:b1:de:c0:c6:09: d5:eb:fd:25:cc:57:54:af:2f:b3:43:32:26:b8:c9:66:10:db: 4e:3e:2e:86:c2:af:94:57:6d:ce:fe:d1:ef:96:18:f7:9a:46: c7:54:db:08:9b:54:8b:05:58:1a:3f:8d:d0:29:0a:d4:96:61: 4d:ad:2e:4e:27:a3:e1:c1:bc:83:d2:c4:f0:c4:79:48:6b:69: ff:d9:d4:70:84:9a:22:22:2b:ea:86:37:08:e0:50:d8:89:37: 1c:68:a1:dd:0f:5a:4e:1e:e3:1f:dc:39:d5:a5:cb:98:08:d6: f5:4c:69:93:4f:79:d9:28:75:43:f6:a4:84:27:7f:f6:b9:fd: 62:93:0a:20:c0:6e:50:17:94:0c:c5:aa:32:14:eb:53:4c:13: 16:02:0f:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPqQzrEroXZx091ag8AUbVdNZTfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZDRTNFMjhFMjk5RUMwNzE3RjU3OEEyMzFBQkI2NUY5 QjNFMkYyMDAeFw0yNjA1MDMwMjMxNTNaFw0yNzA1MDIwMjM2NTNaMDMxMTAvBgNV BAMTKEE0NDBENzNBOENBN0VGRTE3QkE0QTAyNjREODQ5REU3MkIyNDBENTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd5ltyNodfWDtbv8GPm3jrRQzJ YISnCHeZhRzJ0IqtFZipNHUmXs+0bGYTMWY3uiZlDkJr2CnFNihfIo+SRhTwzgXo 9MEB9KBUQpd4NrHIZdP4Yu9MEtdAGq+tssQ61+Xon2W0qGxB4Tq1Vj/kIKhhMFmr B9hJoHkDhSeXPC+ECQfs2LkLnJHxXrJ+phtt//mwId0K5HrrlvKXFBxd7LwOyCzd 1lsmiiljhTtQICMNdpi/hXnyc2IiFt/sTtG4Qiv9jFkXqfHOrMoAqCFOnDWkEv+N p0U6hd54Blx0ZSucLc2ziC96au6FjR2oRERJKLxVwB8L0oAr0cuqd/fCwPcbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpEDXOoyn7+F7pKAmTYSd5yskDVYwHwYDVR0j BBgwFoAUf84+KOKZ7AcX9XiiMau2X5s+LyAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWRhMTRlM2EtNWJlMC00NmQxLTkwM2MtMDU5YjBiNjg4ODIxLzAvN0ZDRTNFMjhF Mjk5RUMwNzE3RjU3OEEyMzFBQkI2NUY5QjNFMkYyMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RkNFM0UyOEUyOTlFQzA3MTdGNTc4QTIzMUFCQjY1RjlCM0Uy RjIwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkYTE0ZTNhLTViZTAtNDZkMS05 MDNjLTA1OWIwYjY4ODgyMS8wLzMxMzAzMzJlMzgzOTJlMzEzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ1l8MA0GCSqG SIb3DQEBCwUAA4IBAQBywuQwvmu/nRczMdV45ni8ckuKm8zV3fy6APVmeXdv9DGy WxTcw67SF1wKlsxFTbSG2CYBCRaixrhz7x8u6HMn1TpPH54J50M+FE18h6p1E2w5 CB3u9z5WwUYpksfGlJLDRE3A8MUKsd7AxgnV6/0lzFdUry+zQzImuMlmENtOPi6G wq+UV23O/tHvlhj3mkbHVNsIm1SLBVgaP43QKQrUlmFNrS5OJ6PhwbyD0sTwxHlI a2n/2dRwhJoiIivqhjcI4FDYiTccaKHdD1pOHuMf3DnVpcuYCNb1TGmTT3nZKHVD 9qSEJ3/2uf1ikwogwG5QF5QMxaoyFOtTTBMWAg9K -----END CERTIFICATE-----Generated at Wed May 13 02:35:07 2026 by rpki-client