$ rpki-client -vvf rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa File: 3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: wmrO1sIlSaYPXG3uoDQ46bwtU1pWLEpz2UMTkfOKpVs= Subject key identifier: 1E:0D:C6:70:5B:AC:33:D0:39:53:BC:E7:A3:A9:0D:1C:3B:57:BB:C5 Certificate issuer: /CN=AC135A343D89C2715C1AA76F3314EDF91A5D7473 Certificate serial: 23E9CAEAB42F879808BB5DFAF6D6416EE6239060 Authority key identifier: AC:13:5A:34:3D:89:C2:71:5C:1A:A7:6F:33:14:ED:F9:1A:5D:74:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC135A343D89C2715C1AA76F3314EDF91A5D7473.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa Signing time: Sun 03 May 2026 02:39:02 +0000 ROA not before: Sun 03 May 2026 02:34:02 +0000 ROA not after: Sun 02 May 2027 02:39:02 +0000 asID: 139952 IP address blocks: 103.31.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/AC135A343D89C2715C1AA76F3314EDF91A5D7473.crl rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/AC135A343D89C2715C1AA76F3314EDF91A5D7473.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC135A343D89C2715C1AA76F3314EDF91A5D7473.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e9:ca:ea:b4:2f:87:98:08:bb:5d:fa:f6:d6:41:6e:e6:23:90:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC135A343D89C2715C1AA76F3314EDF91A5D7473 Validity Not Before: May 3 02:34:02 2026 GMT Not After : May 2 02:39:02 2027 GMT Subject: CN=1E0DC6705BAC33D03953BCE7A3A90D1C3B57BBC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:a2:b9:a3:ca:b8:72:14:7a:ae:f3:cb:80: de:5a:70:73:9d:8d:ec:c1:bc:f2:5e:99:01:ec:20: 9c:a0:f3:e0:d1:e9:db:43:a0:13:a6:cb:a0:dc:48: 8a:a6:85:a4:78:80:68:6e:e0:2d:9f:9a:dc:cc:df: 62:12:f8:67:71:c6:89:1c:96:9e:cf:9e:2c:33:01: 49:e5:d8:4a:23:ac:19:d4:4b:ca:08:d2:30:05:57: b3:dd:98:2b:87:b2:15:d0:3a:d2:20:8c:39:be:a4: 6a:98:e4:d3:4b:8c:eb:a2:3c:d9:55:dc:3b:59:3b: ba:b9:b2:8d:21:da:17:e0:33:bd:39:40:51:39:dc: 07:9b:0d:7e:af:6d:18:02:b3:84:04:95:2d:ae:68: f2:1a:80:a3:be:97:71:e2:81:f8:1c:dc:4f:bb:59: 0b:17:65:f4:a2:66:47:2c:05:43:21:28:5b:08:8f: 81:dc:fa:b5:bf:04:60:20:fc:b9:86:d7:27:17:74: ff:92:b6:20:da:ce:a7:67:48:d0:98:43:af:90:81: 44:66:1d:b2:b9:49:38:26:fa:af:cd:b9:42:71:68: cb:8a:3c:31:03:ea:bc:06:93:f6:62:fa:aa:88:b8: c7:1d:55:fe:af:de:d6:f1:41:ef:4e:e2:8a:50:aa: fc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0D:C6:70:5B:AC:33:D0:39:53:BC:E7:A3:A9:0D:1C:3B:57:BB:C5 X509v3 Authority Key Identifier: keyid:AC:13:5A:34:3D:89:C2:71:5C:1A:A7:6F:33:14:ED:F9:1A:5D:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/AC135A343D89C2715C1AA76F3314EDF91A5D7473.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC135A343D89C2715C1AA76F3314EDF91A5D7473.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.241.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:50:1d:36:1b:3b:e7:90:94:82:eb:1b:bb:cb:b2:a2:ec:6d: cd:11:73:d6:1a:91:89:13:d0:d4:57:61:a0:7e:31:d0:56:04: 04:56:85:d4:63:79:e7:68:a5:f0:43:fa:a7:69:a1:c4:a0:4d: 87:26:01:60:37:8b:a4:67:55:d6:9f:73:6f:a4:7c:76:9b:35: 6e:04:bb:f8:d7:95:d9:20:f8:57:b6:5f:ef:c8:63:e8:7b:21: 96:c9:ba:64:5b:e3:d2:c5:27:cb:9d:d4:6d:18:24:47:c7:da: 76:54:0c:38:ef:d3:9a:29:0d:81:de:91:33:f6:33:2b:1d:96: 87:54:34:6a:dd:71:ad:9f:00:c1:1e:3f:cd:b9:1b:66:33:e4: 42:e2:a3:a1:56:5b:a0:0e:c5:e3:31:41:ca:d6:3d:2e:5d:d1: 5c:c6:41:64:56:54:81:f8:84:62:c8:e7:09:4c:8b:a8:f3:76: 72:6f:3c:28:d3:9b:a2:5c:60:76:60:69:53:60:17:5c:68:15: da:5a:c6:df:10:54:39:fd:0d:12:ea:96:e2:de:7f:50:f5:a6: 94:25:60:42:60:30:22:65:71:cf:16:f9:97:a1:59:b5:1f:dd: b5:9f:c1:4b:bb:7a:99:8f:31:06:74:fb:98:3d:6f:7a:a7:55: 5b:5f:5f:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI+nK6rQvh5gIu1369tZBbuYjkGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMxMzVBMzQzRDg5QzI3MTVDMUFBNzZGMzMxNEVERjkx QTVENzQ3MzAeFw0yNjA1MDMwMjM0MDJaFw0yNzA1MDIwMjM5MDJaMDMxMTAvBgNV BAMTKDFFMERDNjcwNUJBQzMzRDAzOTUzQkNFN0EzQTkwRDFDM0I1N0JCQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXkKK5o8q4chR6rvPLgN5acHOd jezBvPJemQHsIJyg8+DR6dtDoBOmy6DcSIqmhaR4gGhu4C2fmtzM32IS+Gdxxokc lp7PniwzAUnl2EojrBnUS8oI0jAFV7PdmCuHshXQOtIgjDm+pGqY5NNLjOuiPNlV 3DtZO7q5so0h2hfgM705QFE53AebDX6vbRgCs4QElS2uaPIagKO+l3Higfgc3E+7 WQsXZfSiZkcsBUMhKFsIj4Hc+rW/BGAg/LmG1ycXdP+StiDazqdnSNCYQ6+QgURm HbK5STgm+q/NuUJxaMuKPDED6rwGk/Zi+qqIuMcdVf6v3tbxQe9O4opQqvy/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHg3GcFusM9A5U7zno6kNHDtXu8UwHwYDVR0j BBgwFoAUrBNaND2JwnFcGqdvMxTt+RpddHMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjQzMDM0YWEtZjM5Yy00OGY1LTg1MmUtZDFiZDdmMTdhYTQyLzAvQUMxMzVBMzQz RDg5QzI3MTVDMUFBNzZGMzMxNEVERjkxQTVENzQ3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzEzNUEzNDNEODlDMjcxNUMxQUE3NkYzMzE0RURGOTFBNUQ3 NDczLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0MzAzNGFhLWYzOWMtNDhmNS04 NTJlLWQxYmQ3ZjE3YWE0Mi8wLzMxMzAzMzJlMzMzMTJlMzIzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/xMA0GCSqG SIb3DQEBCwUAA4IBAQBKUB02GzvnkJSC6xu7y7Ki7G3NEXPWGpGJE9DUV2GgfjHQ VgQEVoXUY3nnaKXwQ/qnaaHEoE2HJgFgN4ukZ1XWn3NvpHx2mzVuBLv415XZIPhX tl/vyGPoeyGWybpkW+PSxSfLndRtGCRHx9p2VAw479OaKQ2B3pEz9jMrHZaHVDRq 3XGtnwDBHj/NuRtmM+RC4qOhVlugDsXjMUHK1j0uXdFcxkFkVlSB+IRiyOcJTIuo 83Zybzwo05uiXGB2YGlTYBdcaBXaWsbfEFQ5/Q0S6pbi3n9Q9aaUJWBCYDAiZXHP FvmXoVm1H921n8FLu3qZjzEGdPuYPW96p1VbX1+x -----END CERTIFICATE-----Generated at Wed May 13 12:43:55 2026 by rpki-client