$ rpki-client -vvf rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130372e302f32342d3234203d3e203435333233.roa File: 3130332e3235332e3130372e302f32342d3234203d3e203435333233.roa (raw, json) Hash identifier: kw6C0shgcGyW5CfQtBNKYqy6llCxE09GRkdKfw2oDRM= Subject key identifier: D6:2C:FB:70:A3:BD:84:A5:5B:58:02:13:5A:DC:5D:D7:63:AA:D2:28 Certificate issuer: /CN=4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0 Certificate serial: 034788ADDEB6EA1A123E9FB2989ECC8980BA4A93 Authority key identifier: 4A:4E:AE:6D:F7:EB:F8:D5:B4:40:4D:BA:E4:87:48:CC:F2:70:F7:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130372e302f32342d3234203d3e203435333233.roa Signing time: Sun 03 May 2026 02:39:51 +0000 ROA not before: Sun 03 May 2026 02:34:51 +0000 ROA not after: Sun 02 May 2027 02:39:51 +0000 asID: 45323 IP address blocks: 103.253.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.crl rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:47:88:ad:de:b6:ea:1a:12:3e:9f:b2:98:9e:cc:89:80:ba:4a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0 Validity Not Before: May 3 02:34:51 2026 GMT Not After : May 2 02:39:51 2027 GMT Subject: CN=D62CFB70A3BD84A55B5802135ADC5DD763AAD228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0d:c7:ab:71:38:18:78:22:ca:34:b4:6d:11: 83:51:2a:a3:3b:47:7c:35:e6:16:07:03:3c:e7:d8: d1:07:a1:8d:26:6d:d9:bf:01:10:6c:18:9a:06:04: a1:28:19:11:4f:c5:59:01:99:69:b3:85:d7:d3:dc: 3a:3f:00:3f:b6:ed:fe:7a:06:b5:66:c1:40:e6:20: ce:0d:73:4c:7d:e7:1d:24:40:8e:07:03:fc:6c:3a: 9f:c3:9f:2a:14:d9:b6:88:28:62:54:dc:81:6f:59: 5c:06:04:cb:69:90:ab:36:79:27:07:00:53:95:76: 11:98:46:33:f5:09:e8:ca:99:e8:80:a5:9e:29:d4: b3:32:f6:c4:a6:c3:e9:7c:ed:97:ec:41:89:b8:b6: f4:f8:95:79:d5:bf:b8:86:6e:6f:dc:b9:35:94:07: 6e:8e:29:d3:14:bd:0f:3e:78:ca:e6:10:ec:be:56: b1:64:ca:cd:43:77:e2:c0:f6:a5:ce:01:62:65:7e: dd:bb:f4:5e:02:c8:63:8a:d2:ae:0b:53:c5:4a:f1: 72:f1:fc:70:b0:f6:a2:a6:02:13:83:0a:0d:fc:b3: 34:3b:19:b2:35:ee:97:83:ec:f0:b2:97:eb:c0:88: de:07:eb:63:22:c4:97:dd:b5:78:1e:36:18:84:2a: 3d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:2C:FB:70:A3:BD:84:A5:5B:58:02:13:5A:DC:5D:D7:63:AA:D2:28 X509v3 Authority Key Identifier: keyid:4A:4E:AE:6D:F7:EB:F8:D5:B4:40:4D:BA:E4:87:48:CC:F2:70:F7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130372e302f32342d3234203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.107.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:90:cf:b1:f9:6c:48:18:52:21:a6:ec:36:9a:92:0a:aa:6a: 86:9b:26:32:ce:1a:dc:81:90:07:5d:f7:47:f3:08:35:d0:fc: 9c:47:a9:3d:84:9e:bd:13:0c:c3:43:e5:c2:a8:54:82:69:ff: df:38:28:aa:fa:02:8d:8e:5a:e1:00:cf:c4:08:9b:5f:f8:ca: e5:4f:71:62:a0:68:d0:6e:f3:db:03:85:ad:f2:bf:97:73:ad: fc:59:a4:1d:d8:85:b9:b7:aa:77:32:69:10:98:2c:79:0b:0f: a6:0a:43:2c:9f:f0:1d:7b:7d:5f:cb:9a:b0:f3:b0:4e:14:22: 14:63:3e:49:07:b9:8e:21:ab:2f:23:4c:48:41:3d:bb:b0:3f: 31:fa:ed:24:e4:cc:36:c4:b3:e3:79:35:98:41:4a:19:e6:c2: dd:72:3d:d0:92:a9:84:96:04:6e:65:49:f8:ec:a9:0f:99:e3: 01:e2:df:76:19:cd:45:51:92:ee:ee:67:2b:15:2a:b1:09:62: 82:df:e5:18:af:f6:1e:f4:0f:d3:26:8f:07:ce:94:dc:34:d5: a5:5e:88:77:16:be:38:32:72:e8:0e:96:71:16:af:18:37:b3: 72:20:d5:4d:79:63:fd:88:3f:85:72:81:a9:93:24:dd:24:83: e4:42:65:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA0eIrd626hoSPp+ymJ7MiYC6SpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE0RUFFNkRGN0VCRjhENUI0NDA0REJBRTQ4NzQ4Q0NG MjcwRjdBMDAeFw0yNjA1MDMwMjM0NTFaFw0yNzA1MDIwMjM5NTFaMDMxMTAvBgNV BAMTKEQ2MkNGQjcwQTNCRDg0QTU1QjU4MDIxMzVBREM1REQ3NjNBQUQyMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGDcercTgYeCLKNLRtEYNRKqM7 R3w15hYHAzzn2NEHoY0mbdm/ARBsGJoGBKEoGRFPxVkBmWmzhdfT3Do/AD+27f56 BrVmwUDmIM4Nc0x95x0kQI4HA/xsOp/DnyoU2baIKGJU3IFvWVwGBMtpkKs2eScH AFOVdhGYRjP1CejKmeiApZ4p1LMy9sSmw+l87ZfsQYm4tvT4lXnVv7iGbm/cuTWU B26OKdMUvQ8+eMrmEOy+VrFkys1Dd+LA9qXOAWJlft279F4CyGOK0q4LU8VK8XLx /HCw9qKmAhODCg38szQ7GbI17peD7PCyl+vAiN4H62MixJfdtXgeNhiEKj1tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1iz7cKO9hKVbWAITWtxd12Oq0igwHwYDVR0j BBgwFoAUSk6ubffr+NW0QE265IdIzPJw96AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjVlYzI1ZTQtOWFhOC00YmVmLTkwOTctYzBiZWMwYjI2NmE3LzAvNEE0RUFFNkRG N0VCRjhENUI0NDA0REJBRTQ4NzQ4Q0NGMjcwRjdBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QTRFQUU2REY3RUJGOEQ1QjQ0MDREQkFFNDg3NDhDQ0YyNzBG N0EwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMxMzAzMzJlMzIzNTMzMmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/1rMA0GCSqG SIb3DQEBCwUAA4IBAQBfkM+x+WxIGFIhpuw2mpIKqmqGmyYyzhrcgZAHXfdH8wg1 0PycR6k9hJ69EwzDQ+XCqFSCaf/fOCiq+gKNjlrhAM/ECJtf+MrlT3FioGjQbvPb A4Wt8r+Xc638WaQd2IW5t6p3MmkQmCx5Cw+mCkMsn/Ade31fy5qw87BOFCIUYz5J B7mOIasvI0xIQT27sD8x+u0k5Mw2xLPjeTWYQUoZ5sLdcj3QkqmElgRuZUn47KkP meMB4t92Gc1FUZLu7mcrFSqxCWKC3+UYr/Ye9A/TJo8HzpTcNNWlXoh3Fr44MnLo DpZxFq8YN7NyINVNeWP9iD+FcoGpkyTdJIPkQmXD -----END CERTIFICATE-----Generated at Wed May 13 07:15:34 2026 by rpki-client