$ rpki-client -vvf rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa File: 3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: MXQvxQuFfrOrlrDM0pu7aI1UUtAamLu0vBW+zEyQ+dQ= Subject key identifier: 0E:BB:84:0F:B3:77:A5:57:6A:A5:75:EE:29:B0:67:B9:CB:52:1F:D8 Certificate issuer: /CN=AC135A343D89C2715C1AA76F3314EDF91A5D7473 Certificate serial: 24AF7DAEA51CAA75B36FF68ADA35C75F415EF994 Authority key identifier: AC:13:5A:34:3D:89:C2:71:5C:1A:A7:6F:33:14:ED:F9:1A:5D:74:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC135A343D89C2715C1AA76F3314EDF91A5D7473.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa Signing time: Sun 03 May 2026 02:39:02 +0000 ROA not before: Sun 03 May 2026 02:34:02 +0000 ROA not after: Sun 02 May 2027 02:39:02 +0000 asID: 139952 IP address blocks: 103.31.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/AC135A343D89C2715C1AA76F3314EDF91A5D7473.crl rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/AC135A343D89C2715C1AA76F3314EDF91A5D7473.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC135A343D89C2715C1AA76F3314EDF91A5D7473.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:af:7d:ae:a5:1c:aa:75:b3:6f:f6:8a:da:35:c7:5f:41:5e:f9:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC135A343D89C2715C1AA76F3314EDF91A5D7473 Validity Not Before: May 3 02:34:02 2026 GMT Not After : May 2 02:39:02 2027 GMT Subject: CN=0EBB840FB377A5576AA575EE29B067B9CB521FD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b5:57:f1:62:a3:e5:f6:91:73:2b:b6:a3:b0: e8:48:1c:e3:d8:cc:dd:89:61:58:dd:5f:af:34:c9: d2:30:a8:78:ca:36:cd:36:d7:f4:65:85:02:39:bc: f3:84:4d:4c:2c:6a:9f:4d:44:65:04:8c:a7:f0:39: 26:81:7a:e2:ea:45:e8:3a:e0:c1:37:5b:a3:0e:62: b3:bb:92:8e:44:19:bc:92:0f:8e:98:fc:8d:cb:2a: ce:fe:54:38:ec:42:ed:f3:c2:ef:2a:38:b1:9d:51: 8e:3a:97:93:13:10:1a:8e:a0:f5:a2:5e:79:19:dd: b6:b8:33:4b:82:78:9e:d4:73:6d:51:90:76:90:e6: 85:3b:78:fd:13:fc:7a:a4:2c:85:ec:2d:b4:8e:57: 87:08:46:67:c4:7d:8d:94:24:80:5c:98:6e:7f:1d: 82:58:dd:69:b4:6f:fd:37:e1:d2:3f:07:7a:3e:70: ae:d6:42:cf:d4:71:f6:58:21:76:2f:7a:ce:c1:09: 7d:a7:2b:7e:f8:7a:58:47:b3:81:e9:ca:b9:8a:10: 00:ac:0a:f0:40:3a:35:11:7e:79:ab:c4:71:40:0f: 87:c1:46:35:3c:30:60:46:f3:01:2c:4f:d2:41:16: bc:4f:ac:14:4a:c4:89:06:11:09:8b:e4:e3:bd:55: cc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BB:84:0F:B3:77:A5:57:6A:A5:75:EE:29:B0:67:B9:CB:52:1F:D8 X509v3 Authority Key Identifier: keyid:AC:13:5A:34:3D:89:C2:71:5C:1A:A7:6F:33:14:ED:F9:1A:5D:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/AC135A343D89C2715C1AA76F3314EDF91A5D7473.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC135A343D89C2715C1AA76F3314EDF91A5D7473.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.240.0/24 Signature Algorithm: sha256WithRSAEncryption 95:ee:0c:88:90:95:70:d9:2e:e9:10:c1:ab:11:b2:10:29:6f: 14:b5:7c:79:b2:84:ca:3e:93:24:1f:e8:6b:4b:c3:3f:94:42: b4:68:cf:08:66:6c:b3:ac:47:88:c8:3b:d3:9f:3c:59:10:14: 10:79:50:85:17:13:03:c2:28:43:10:f1:41:64:c2:a2:0d:8e: e7:86:d0:b5:6f:5d:63:31:a5:c6:49:18:10:cc:7c:e0:c9:b2: 32:ca:18:d6:bb:df:52:cd:2c:06:04:1c:6a:4b:b2:9c:2c:fb: 17:37:f0:ec:61:64:32:55:75:fc:b2:6e:aa:3e:18:b8:79:f2: d5:40:fd:72:f9:39:f7:58:84:3b:b5:a8:cc:36:23:46:bf:55: 61:8d:b7:f1:3e:58:91:b9:d3:e2:f5:0c:17:f8:a5:11:aa:5f: 24:e4:a1:82:bc:62:97:37:4b:70:67:4c:71:b5:2b:01:bc:66: 43:ce:83:03:88:51:21:4a:7c:88:35:cf:9e:7d:5d:f3:18:07: 5a:d9:a8:5a:f8:5e:22:6a:ec:97:75:0a:ba:3d:61:bb:64:aa: 38:96:55:57:6a:b1:d6:92:a1:29:b3:7f:c7:56:e1:5a:a9:6b: a4:4e:10:87:a5:35:4a:32:de:90:a7:9a:b1:28:3c:24:1e:da: b7:81:ed:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJK99rqUcqnWzb/aK2jXHX0Fe+ZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMxMzVBMzQzRDg5QzI3MTVDMUFBNzZGMzMxNEVERjkx QTVENzQ3MzAeFw0yNjA1MDMwMjM0MDJaFw0yNzA1MDIwMjM5MDJaMDMxMTAvBgNV BAMTKDBFQkI4NDBGQjM3N0E1NTc2QUE1NzVFRTI5QjA2N0I5Q0I1MjFGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWtVfxYqPl9pFzK7ajsOhIHOPY zN2JYVjdX680ydIwqHjKNs021/RlhQI5vPOETUwsap9NRGUEjKfwOSaBeuLqReg6 4ME3W6MOYrO7ko5EGbySD46Y/I3LKs7+VDjsQu3zwu8qOLGdUY46l5MTEBqOoPWi XnkZ3ba4M0uCeJ7Uc21RkHaQ5oU7eP0T/HqkLIXsLbSOV4cIRmfEfY2UJIBcmG5/ HYJY3Wm0b/034dI/B3o+cK7WQs/UcfZYIXYves7BCX2nK374elhHs4HpyrmKEACs CvBAOjURfnmrxHFAD4fBRjU8MGBG8wEsT9JBFrxPrBRKxIkGEQmL5OO9VcwpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDruED7N3pVdqpXXuKbBnuctSH9gwHwYDVR0j BBgwFoAUrBNaND2JwnFcGqdvMxTt+RpddHMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjQzMDM0YWEtZjM5Yy00OGY1LTg1MmUtZDFiZDdmMTdhYTQyLzAvQUMxMzVBMzQz RDg5QzI3MTVDMUFBNzZGMzMxNEVERjkxQTVENzQ3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzEzNUEzNDNEODlDMjcxNUMxQUE3NkYzMzE0RURGOTFBNUQ3 NDczLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0MzAzNGFhLWYzOWMtNDhmNS04 NTJlLWQxYmQ3ZjE3YWE0Mi8wLzMxMzAzMzJlMzMzMTJlMzIzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/wMA0GCSqG SIb3DQEBCwUAA4IBAQCV7gyIkJVw2S7pEMGrEbIQKW8UtXx5soTKPpMkH+hrS8M/ lEK0aM8IZmyzrEeIyDvTnzxZEBQQeVCFFxMDwihDEPFBZMKiDY7nhtC1b11jMaXG SRgQzHzgybIyyhjWu99SzSwGBBxqS7KcLPsXN/DsYWQyVXX8sm6qPhi4efLVQP1y +Tn3WIQ7tajMNiNGv1VhjbfxPliRudPi9QwX+KURql8k5KGCvGKXN0twZ0xxtSsB vGZDzoMDiFEhSnyINc+efV3zGAda2aha+F4iauyXdQq6PWG7ZKo4llVXarHWkqEp s3/HVuFaqWukThCHpTVKMt6Qp5qxKDwkHtq3ge0R -----END CERTIFICATE-----Generated at Wed May 13 14:16:54 2026 by rpki-client