$ rpki-client -vvf rpki-rsync.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa File: 3130332e3134332e32352e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: aWOLzIn2x5kpaR5z9FtYwftOiGecceuudPRE6v0eVaA= Subject key identifier: 6E:0A:77:8B:E7:20:4B:CF:8E:BE:F9:34:AC:B1:CE:68:2B:DD:8B:17 Certificate issuer: /CN=636964CD271D2009F5B6D34255EB744F3791245D Certificate serial: 6DDC6BE29E29B147190C33284E6972872AFDAE46 Authority key identifier: 63:69:64:CD:27:1D:20:09:F5:B6:D3:42:55:EB:74:4F:37:91:24:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/636964CD271D2009F5B6D34255EB744F3791245D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa Signing time: Sun 03 May 2026 02:39:40 +0000 ROA not before: Sun 03 May 2026 02:34:40 +0000 ROA not after: Sun 02 May 2027 02:39:40 +0000 asID: 56242 IP address blocks: 103.143.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/636964CD271D2009F5B6D34255EB744F3791245D.crl rsync://rpki-rsync.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/636964CD271D2009F5B6D34255EB744F3791245D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/636964CD271D2009F5B6D34255EB744F3791245D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:dc:6b:e2:9e:29:b1:47:19:0c:33:28:4e:69:72:87:2a:fd:ae:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=636964CD271D2009F5B6D34255EB744F3791245D Validity Not Before: May 3 02:34:40 2026 GMT Not After : May 2 02:39:40 2027 GMT Subject: CN=6E0A778BE7204BCF8EBEF934ACB1CE682BDD8B17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:13:8c:04:93:d4:24:ec:57:38:ec:eb:1a:2b: 71:8d:dc:51:f4:3e:35:a5:5a:3e:25:c0:52:a1:6d: 0f:3f:77:19:63:db:18:41:91:7d:a4:5d:4f:9e:53: 67:bd:08:1c:0a:7d:cc:7d:21:c9:ae:ac:f7:d4:bc: 12:5d:1e:12:b8:24:27:b1:c7:c8:79:58:6d:8a:b3: e5:22:13:b8:f2:0e:58:fd:ca:8a:1e:5f:f9:f9:02: 81:3a:1d:12:0f:c2:e9:03:76:dd:1b:3a:be:f0:2f: 6b:05:f3:0a:bb:b2:5b:83:ad:8f:ab:26:89:16:cf: fd:af:56:06:6c:7f:5d:12:94:7d:44:86:2b:ec:61: 75:80:0b:96:4a:a8:6f:f9:99:74:e2:33:31:b3:cd: d9:89:37:22:d3:4e:84:ed:f4:0b:b8:8e:50:85:94: 2b:bf:02:07:8d:4b:12:16:3d:62:05:bb:20:ed:47: 9f:d8:95:92:7d:ad:db:bc:cb:26:f3:74:3b:d3:92: e2:1f:64:68:9c:b0:3a:96:c9:e2:24:31:11:51:f8: 27:d7:14:a6:c8:e1:83:a7:d4:55:fe:3c:29:2c:ba: 2f:69:f2:6d:d3:d0:ba:23:46:55:13:83:03:10:2a: cf:26:1d:04:18:98:16:43:af:6f:1f:ef:72:ca:04: 5f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0A:77:8B:E7:20:4B:CF:8E:BE:F9:34:AC:B1:CE:68:2B:DD:8B:17 X509v3 Authority Key Identifier: keyid:63:69:64:CD:27:1D:20:09:F5:B6:D3:42:55:EB:74:4F:37:91:24:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/636964CD271D2009F5B6D34255EB744F3791245D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/636964CD271D2009F5B6D34255EB744F3791245D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.25.0/24 Signature Algorithm: sha256WithRSAEncryption 50:3b:38:52:49:62:7e:53:a7:07:b5:24:48:67:93:b2:6a:48: 63:a4:4d:31:a3:4a:76:71:aa:27:87:7b:76:16:ff:8f:18:87: da:1d:b2:54:1c:c6:55:3e:64:f4:be:09:2d:2e:88:67:33:89: dc:aa:43:3e:f9:7f:d6:a1:9a:37:ac:a0:be:52:37:81:ff:e5: 0e:8a:24:0f:ca:16:9b:58:68:4b:f7:66:a7:d8:42:3b:94:e9: 43:f8:3b:21:2a:0b:a1:fa:7e:fe:ac:5f:2e:6c:72:31:3a:d4: 2d:77:69:0c:ad:6e:df:ee:c9:14:72:15:c7:ad:05:1a:ae:32: 6e:53:8c:94:09:a2:f4:d2:83:63:28:b6:4f:b6:de:48:c2:01: e3:bf:83:80:84:db:3e:99:13:aa:57:d2:01:cf:22:29:8f:2e: ef:31:bd:28:73:7d:b0:e0:d7:56:e5:db:32:3f:f0:21:11:78: ab:f7:a6:82:94:24:57:d0:07:c7:f7:48:46:92:34:a1:dd:c0: 7d:54:f9:3b:97:bd:88:07:33:d5:73:a6:ca:f1:ef:01:51:ea: dc:cd:6f:09:a7:26:40:c3:13:ac:e8:06:36:e6:fd:34:15:d0: d1:0e:f1:2b:6e:de:12:a2:a7:4a:d7:75:d8:5b:48:68:5e:5a: b6:63:d4:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbdxr4p4psUcZDDMoTmlyhyr9rkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM2OTY0Q0QyNzFEMjAwOUY1QjZEMzQyNTVFQjc0NEYz NzkxMjQ1RDAeFw0yNjA1MDMwMjM0NDBaFw0yNzA1MDIwMjM5NDBaMDMxMTAvBgNV BAMTKDZFMEE3NzhCRTcyMDRCQ0Y4RUJFRjkzNEFDQjFDRTY4MkJERDhCMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnE4wEk9Qk7Fc47OsaK3GN3FH0 PjWlWj4lwFKhbQ8/dxlj2xhBkX2kXU+eU2e9CBwKfcx9IcmurPfUvBJdHhK4JCex x8h5WG2Ks+UiE7jyDlj9yooeX/n5AoE6HRIPwukDdt0bOr7wL2sF8wq7sluDrY+r JokWz/2vVgZsf10SlH1EhivsYXWAC5ZKqG/5mXTiMzGzzdmJNyLTToTt9Au4jlCF lCu/AgeNSxIWPWIFuyDtR5/YlZJ9rdu8yybzdDvTkuIfZGicsDqWyeIkMRFR+CfX FKbI4YOn1FX+PCksui9p8m3T0LojRlUTgwMQKs8mHQQYmBZDr28f73LKBF8BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbgp3i+cgS8+Ovvk0rLHOaCvdixcwHwYDVR0j BBgwFoAUY2lkzScdIAn1ttNCVet0TzeRJF0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjVjNDAwZDEtOWJiZC00ZTJiLThkNTgtNmY3NDlkYmMzOTJkLzAvNjM2OTY0Q0Qy NzFEMjAwOUY1QjZEMzQyNTVFQjc0NEYzNzkxMjQ1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MzY5NjRDRDI3MUQyMDA5RjVCNkQzNDI1NUVCNzQ0RjM3OTEy NDVELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY1YzQwMGQxLTliYmQtNGUyYi04 ZDU4LTZmNzQ5ZGJjMzkyZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePGTANBgkqhkiG 9w0BAQsFAAOCAQEAUDs4UkliflOnB7UkSGeTsmpIY6RNMaNKdnGqJ4d7dhb/jxiH 2h2yVBzGVT5k9L4JLS6IZzOJ3KpDPvl/1qGaN6ygvlI3gf/lDookD8oWm1hoS/dm p9hCO5TpQ/g7ISoLofp+/qxfLmxyMTrULXdpDK1u3+7JFHIVx60FGq4yblOMlAmi 9NKDYyi2T7beSMIB47+DgITbPpkTqlfSAc8iKY8u7zG9KHN9sODXVuXbMj/wIRF4 q/emgpQkV9AHx/dIRpI0od3AfVT5O5e9iAcz1XOmyvHvAVHq3M1vCacmQMMTrOgG Nub9NBXQ0Q7xK27eEqKnStd12FtIaF5atmPUCA== -----END CERTIFICATE-----Generated at Wed May 13 00:13:39 2026 by rpki-client