$ rpki-client -vvf rpki-rsync.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa File: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (raw, json) Hash identifier: gNsJ7E8Wxy2p/7sU5QpT/62BpjOz3T6D3tTX9O4/j10= Subject key identifier: BE:FD:A4:CF:5B:66:00:40:61:12:BD:77:72:16:D3:03:61:B0:2C:E9 Certificate issuer: /CN=4885E75D6B0A938F5FEE35FABA26DEA08AF687D3 Certificate serial: 113CBA6FCEA96EB537AD82A0C4F3B043EDA5C855 Authority key identifier: 48:85:E7:5D:6B:0A:93:8F:5F:EE:35:FA:BA:26:DE:A0:8A:F6:87:D3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4885E75D6B0A938F5FEE35FABA26DEA08AF687D3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa Signing time: Sun 03 May 2026 02:40:11 +0000 ROA not before: Sun 03 May 2026 02:35:11 +0000 ROA not after: Sun 02 May 2027 02:40:11 +0000 asID: 133817 IP address blocks: 103.53.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/4885E75D6B0A938F5FEE35FABA26DEA08AF687D3.crl rsync://rpki-rsync.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/4885E75D6B0A938F5FEE35FABA26DEA08AF687D3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4885E75D6B0A938F5FEE35FABA26DEA08AF687D3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3c:ba:6f:ce:a9:6e:b5:37:ad:82:a0:c4:f3:b0:43:ed:a5:c8:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4885E75D6B0A938F5FEE35FABA26DEA08AF687D3 Validity Not Before: May 3 02:35:11 2026 GMT Not After : May 2 02:40:11 2027 GMT Subject: CN=BEFDA4CF5B6600406112BD777216D30361B02CE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b9:93:73:40:14:b9:67:58:41:bd:53:b2:b8: 80:30:80:2c:30:be:fd:24:1e:eb:4b:b4:20:8f:d4: ba:b9:07:f8:05:53:ef:18:b4:03:10:87:73:cc:f6: a9:ec:9d:1f:0e:00:21:e1:99:24:12:ef:cf:b9:b3: 53:b3:16:91:a3:ab:ab:36:d6:74:cc:b7:c8:20:31: 92:a3:ee:0b:a5:56:3c:c2:bb:4c:71:4c:28:d4:5d: ac:02:2e:71:40:31:a1:33:fb:44:43:73:63:d6:8b: 68:9f:8e:4e:ca:a5:5c:35:6b:31:c2:93:f1:9f:43: e1:e4:0e:ab:af:b9:4b:77:30:bf:2b:a0:36:0a:0c: 33:7e:b0:aa:11:07:7a:0f:67:d3:fb:30:cf:12:29: 78:a2:17:ff:61:db:0b:25:28:bb:ef:30:d5:22:c3: 94:8f:64:d3:cc:e8:d1:a0:85:e6:e9:c4:99:57:f2: 6c:ff:33:6a:87:dc:4c:c0:4f:ae:34:e1:cb:65:82: 1c:04:7e:ca:44:3c:51:d0:f8:eb:71:27:ea:b4:d0: 7b:52:da:0d:4b:5d:a5:3d:fd:08:d3:1d:75:86:01: c0:9e:ea:da:5c:e5:50:1d:73:cb:a0:37:7d:20:c9: 0c:fb:c3:d4:c7:a4:0c:63:d7:b5:82:90:ba:49:35: 3b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FD:A4:CF:5B:66:00:40:61:12:BD:77:72:16:D3:03:61:B0:2C:E9 X509v3 Authority Key Identifier: keyid:48:85:E7:5D:6B:0A:93:8F:5F:EE:35:FA:BA:26:DE:A0:8A:F6:87:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/4885E75D6B0A938F5FEE35FABA26DEA08AF687D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4885E75D6B0A938F5FEE35FABA26DEA08AF687D3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.53.76.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:2a:5e:12:70:d2:dd:b3:3d:ec:7d:e5:b4:35:f1:ba:ad:40: 1e:f9:a4:83:05:5d:08:52:53:53:d0:24:41:72:34:89:09:d7: fb:91:0f:07:aa:b7:bf:64:34:05:dc:ec:62:d6:fa:bd:d6:67: 0a:87:9a:28:7c:2a:9a:de:b8:3a:35:72:65:37:44:62:a6:eb: 56:f7:31:b3:a1:dd:27:1a:d3:91:16:09:d3:ce:fb:ac:a4:a5: 06:d0:fe:61:ea:d6:c0:0f:64:ec:70:17:2a:88:e9:9a:a1:be: be:11:37:2f:98:ed:2a:d0:33:6b:12:2e:de:f4:04:1d:40:d2: ee:a4:f6:4b:37:51:25:bf:39:6b:7d:48:41:9f:61:1d:d8:76: ac:f8:69:13:f4:9e:e7:e9:97:8f:be:bf:f9:55:90:ac:0b:29: da:2c:60:aa:ee:41:40:90:47:78:0c:7c:2e:46:45:bc:19:a6: 45:fa:b1:76:24:bb:97:f6:b8:09:0b:71:09:0d:18:cf:3a:4b: de:49:88:22:f5:e2:e6:b4:aa:ca:88:73:50:c2:2b:ef:af:38: 72:02:fb:37:59:6e:d7:77:22:67:52:5b:1f:4c:b4:c8:01:3e: e2:93:33:94:a4:9c:bb:f0:23:89:29:68:0d:d5:f3:eb:46:07: c6:31:8f:0d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUETy6b86pbrU3rYKgxPOwQ+2lyFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4NUU3NUQ2QjBBOTM4RjVGRUUzNUZBQkEyNkRFQTA4 QUY2ODdEMzAeFw0yNjA1MDMwMjM1MTFaFw0yNzA1MDIwMjQwMTFaMDMxMTAvBgNV BAMTKEJFRkRBNENGNUI2NjAwNDA2MTEyQkQ3NzcyMTZEMzAzNjFCMDJDRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwuZNzQBS5Z1hBvVOyuIAwgCww vv0kHutLtCCP1Lq5B/gFU+8YtAMQh3PM9qnsnR8OACHhmSQS78+5s1OzFpGjq6s2 1nTMt8ggMZKj7gulVjzCu0xxTCjUXawCLnFAMaEz+0RDc2PWi2ifjk7KpVw1azHC k/GfQ+HkDquvuUt3ML8roDYKDDN+sKoRB3oPZ9P7MM8SKXiiF/9h2wslKLvvMNUi w5SPZNPM6NGghebpxJlX8mz/M2qH3EzAT6404ctlghwEfspEPFHQ+OtxJ+q00HtS 2g1LXaU9/QjTHXWGAcCe6tpc5VAdc8ugN30gyQz7w9THpAxj17WCkLpJNTsRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvv2kz1tmAEBhEr13chbTA2GwLOkwHwYDVR0j BBgwFoAUSIXnXWsKk49f7jX6uibeoIr2h9MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjZmN2VmMzQtNDk5MS00YmIxLTk2YjQtYmU0M2YxZWNhYmI0LzAvNDg4NUU3NUQ2 QjBBOTM4RjVGRUUzNUZBQkEyNkRFQTA4QUY2ODdEMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODg1RTc1RDZCMEE5MzhGNUZFRTM1RkFCQTI2REVBMDhBRjY4 N0QzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY2ZjdlZjM0LTQ5OTEtNGJiMS05 NmI0LWJlNDNmMWVjYWJiNC8wLzMxMzAzMzJlMzUzMzJlMzczNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc1TDANBgkqhkiG 9w0BAQsFAAOCAQEAWipeEnDS3bM97H3ltDXxuq1AHvmkgwVdCFJTU9AkQXI0iQnX +5EPB6q3v2Q0BdzsYtb6vdZnCoeaKHwqmt64OjVyZTdEYqbrVvcxs6HdJxrTkRYJ 0877rKSlBtD+YerWwA9k7HAXKojpmqG+vhE3L5jtKtAzaxIu3vQEHUDS7qT2SzdR Jb85a31IQZ9hHdh2rPhpE/Se5+mXj76/+VWQrAsp2ixgqu5BQJBHeAx8LkZFvBmm RfqxdiS7l/a4CQtxCQ0YzzpL3kmIIvXi5rSqyohzUMIr7684cgL7N1lu13ciZ1Jb H0y0yAE+4pMzlKScu/AjiSloDdXz60YHxjGPDQ== -----END CERTIFICATE-----Generated at Wed May 13 05:36:41 2026 by rpki-client