$ rpki-client -vvf rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa File: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (raw, json) Hash identifier: rJYDDAtDFH2sxeGVm+q7lH6NoJu3MNVWQxNtL3BpElI= Subject key identifier: 06:85:8F:91:87:07:93:48:2D:7F:13:DD:7E:85:08:E0:7F:95:0F:21 Certificate issuer: /CN=25F44906F292384CC9F1BE632798B911BD52EB7E Certificate serial: 04DD3F3451C51E3D0D49095876B27BA7ABE23650 Authority key identifier: 25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa Signing time: Sun 03 May 2026 02:40:50 +0000 ROA not before: Sun 03 May 2026 02:35:50 +0000 ROA not after: Sun 02 May 2027 02:40:50 +0000 asID: 132639 IP address blocks: 103.129.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:dd:3f:34:51:c5:1e:3d:0d:49:09:58:76:b2:7b:a7:ab:e2:36:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F44906F292384CC9F1BE632798B911BD52EB7E Validity Not Before: May 3 02:35:50 2026 GMT Not After : May 2 02:40:50 2027 GMT Subject: CN=06858F91870793482D7F13DD7E8508E07F950F21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a3:7f:1c:90:99:3f:9c:61:af:46:51:9a:08: d1:09:4f:3b:d6:b2:17:55:df:b4:f3:d6:76:c8:5d: 0c:dd:be:1b:f7:f7:64:c6:6b:b4:ae:48:bb:80:5c: 0f:ab:e7:dc:0a:79:aa:c2:0e:e7:ae:f4:6b:4d:df: 12:73:b6:46:3b:41:21:4f:f7:55:d4:45:1d:e7:64: af:e8:15:23:59:fa:1b:ad:24:d4:ae:ca:82:3f:0e: 9e:fc:7f:1d:f7:46:f5:8d:dc:a9:84:54:e3:e7:c9: 15:ce:0b:37:c3:8d:2f:59:a0:d7:ca:c4:bc:73:f5: eb:3a:40:17:ca:b1:13:29:c7:a6:0f:31:5d:11:ff: 18:0f:4e:5d:e2:60:ab:7e:72:31:da:8c:7f:36:a1: 70:03:d5:b1:d3:a0:53:63:2f:a7:8b:82:f5:1b:61: ec:bc:3b:fd:0a:d1:2b:a3:31:36:d9:2e:cf:cf:4e: 88:1a:9c:0b:35:f2:3b:26:86:5e:af:7f:72:aa:63: 2e:be:f0:95:24:0a:b5:75:23:06:60:27:45:09:5c: d5:00:e3:f2:88:66:13:fd:76:dd:0b:b3:70:76:a2: f3:d1:2a:4b:2f:dd:b1:6f:2b:6e:cf:af:98:4e:a1: 9f:43:bf:43:a2:a0:1f:7c:29:88:f0:4a:3d:6d:00: 59:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:85:8F:91:87:07:93:48:2D:7F:13:DD:7E:85:08:E0:7F:95:0F:21 X509v3 Authority Key Identifier: keyid:25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.230.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:b0:77:b7:c0:75:a7:3c:48:79:dc:e4:c6:55:42:b4:f6:a9: 90:a0:6b:a0:d1:ea:57:6e:76:f9:cd:c2:e4:58:72:91:bf:9b: 6f:32:cb:43:a0:88:83:7c:bd:8a:fd:b2:15:0f:3d:0d:e1:79: c5:7a:d5:3f:92:43:96:4e:ca:f9:32:0b:34:8d:ec:d9:f7:e3: 43:75:41:0f:1a:b2:28:57:67:65:c5:fb:db:40:b5:a8:d8:58: 37:09:1e:b2:d4:9a:ac:7c:9a:4a:a5:46:58:5b:ab:2c:89:68: 70:91:d3:97:1f:35:36:d4:a3:76:a2:2b:dc:f6:88:78:7e:07: 2a:e6:d4:d0:88:b8:58:d1:d5:ed:15:bd:34:77:89:ce:e7:d5: 2f:9d:83:ca:68:c6:e7:a3:3a:79:c7:f3:9f:c0:02:df:4d:88: a6:45:a3:10:cf:31:77:5b:20:7c:c7:5c:d3:7e:0c:de:cb:a2: 76:48:ac:ed:8b:02:59:6f:ee:8f:02:7e:62:d5:95:14:87:33: 0e:3e:ca:b0:fc:bb:76:c1:97:b2:76:f3:36:4e:1e:f8:8e:03: f7:40:f1:f0:d7:76:ac:35:38:90:0c:90:80:83:a4:cc:34:8f: 17:6d:e5:84:04:02:9e:16:58:45:52:1a:8b:a1:e3:51:55:d8: 80:1e:a1:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBN0/NFHFHj0NSQlYdrJ7p6viNlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDQ5MDZGMjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFC RDUyRUI3RTAeFw0yNjA1MDMwMjM1NTBaFw0yNzA1MDIwMjQwNTBaMDMxMTAvBgNV BAMTKDA2ODU4RjkxODcwNzkzNDgyRDdGMTNERDdFODUwOEUwN0Y5NTBGMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzo38ckJk/nGGvRlGaCNEJTzvW shdV37Tz1nbIXQzdvhv392TGa7SuSLuAXA+r59wKearCDueu9GtN3xJztkY7QSFP 91XURR3nZK/oFSNZ+hutJNSuyoI/Dp78fx33RvWN3KmEVOPnyRXOCzfDjS9ZoNfK xLxz9es6QBfKsRMpx6YPMV0R/xgPTl3iYKt+cjHajH82oXAD1bHToFNjL6eLgvUb Yey8O/0K0SujMTbZLs/PToganAs18jsmhl6vf3KqYy6+8JUkCrV1IwZgJ0UJXNUA 4/KIZhP9dt0Ls3B2ovPRKksv3bFvK27Pr5hOoZ9Dv0OioB98KYjwSj1tAFkvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBoWPkYcHk0gtfxPdfoUI4H+VDyEwHwYDVR0j BBgwFoAUJfRJBvKSOEzJ8b5jJ5i5Eb1S634wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmFhNDI3NDItODlkMi00OWJiLThhM2UtMjk0YzM2ODk3MWY1LzAvMjVGNDQ5MDZG MjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFCRDUyRUI3RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNUY0NDkwNkYyOTIzODRDQzlGMUJFNjMyNzk4QjkxMUJENTJF QjdFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZhYTQyNzQyLTg5ZDItNDliYi04 YTNlLTI5NGMzNjg5NzFmNS8wLzMxMzAzMzJlMzEzMjM5MmUzMjMzMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFngeYwDQYJ KoZIhvcNAQELBQADggEBAF+wd7fAdac8SHnc5MZVQrT2qZCga6DR6ldudvnNwuRY cpG/m28yy0OgiIN8vYr9shUPPQ3hecV61T+SQ5ZOyvkyCzSN7Nn340N1QQ8asihX Z2XF+9tAtajYWDcJHrLUmqx8mkqlRlhbqyyJaHCR05cfNTbUo3aiK9z2iHh+Byrm 1NCIuFjR1e0VvTR3ic7n1S+dg8poxuejOnnH85/AAt9NiKZFoxDPMXdbIHzHXNN+ DN7LonZIrO2LAllv7o8CfmLVlRSHMw4+yrD8u3bBl7J28zZOHviOA/dA8fDXdqw1 OJAMkICDpMw0jxdt5YQEAp4WWEVSGouh41FV2IAeoQ0= -----END CERTIFICATE-----Generated at Wed May 13 04:03:03 2026 by rpki-client