$ rpki-client -vvf rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa File: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (raw, json) Hash identifier: GGZKA5imIJIaP+Schkic8gBw6IQQgIqOJecWWJTB5T4= Subject key identifier: CC:28:D2:2F:EB:72:87:BE:6A:1A:3D:5A:6D:5F:90:38:64:8D:1C:B0 Certificate issuer: /CN=25F44906F292384CC9F1BE632798B911BD52EB7E Certificate serial: 36336FB47608267081BE0E570EB2E2EAC05C939E Authority key identifier: 25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa Signing time: Sun 03 May 2026 02:40:49 +0000 ROA not before: Sun 03 May 2026 02:35:49 +0000 ROA not after: Sun 02 May 2027 02:40:49 +0000 asID: 132639 IP address blocks: 103.129.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:33:6f:b4:76:08:26:70:81:be:0e:57:0e:b2:e2:ea:c0:5c:93:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F44906F292384CC9F1BE632798B911BD52EB7E Validity Not Before: May 3 02:35:49 2026 GMT Not After : May 2 02:40:49 2027 GMT Subject: CN=CC28D22FEB7287BE6A1A3D5A6D5F9038648D1CB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d1:ea:82:fe:f6:6d:b6:dc:bf:0a:08:17:3c: 52:9f:ff:41:99:41:d7:1f:df:7e:6d:98:42:57:79: e9:43:4e:78:1d:72:46:26:3e:8c:53:cd:42:12:91: 61:6e:79:21:e4:3d:41:69:10:96:6d:d0:4d:a4:db: e4:5a:6e:6b:df:1a:ef:4c:aa:cb:7c:11:cd:26:0c: 53:6a:ef:e2:24:1e:04:6c:e3:7d:be:bb:1e:23:38: cc:2a:87:d5:cf:3c:7b:92:54:27:e6:cc:e5:f3:f1: 4d:91:44:ac:58:e1:6b:18:5a:de:11:50:06:ad:3e: f3:e4:11:df:ab:9c:2b:fc:a5:56:8b:bd:54:98:aa: 8a:b6:c6:18:80:4b:12:46:95:ea:5d:01:90:72:1c: e9:01:c5:00:4b:14:4e:fc:1b:67:d4:8d:1f:94:ee: 0f:52:a8:d2:22:ee:14:72:e7:25:e1:79:62:47:d6: 6b:f2:40:07:c0:e1:23:42:f2:82:9c:7d:6a:66:c5: e8:8a:75:d7:c1:9f:6d:ed:15:37:7d:f6:d0:ea:26: 53:9a:04:f1:88:68:d0:aa:5a:a8:b3:73:20:06:48: 94:ac:5e:a1:d4:47:b6:92:c3:7c:b9:c6:ef:ec:95: ae:73:a7:b2:68:1f:18:5a:de:3a:70:0f:46:58:8e: 45:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:28:D2:2F:EB:72:87:BE:6A:1A:3D:5A:6D:5F:90:38:64:8D:1C:B0 X509v3 Authority Key Identifier: keyid:25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.231.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:71:ff:39:39:2a:b5:41:bb:24:01:86:96:64:c6:d1:05:a9: 93:32:3e:51:b4:99:db:33:2e:ad:6b:fc:ca:7e:3f:ff:8d:f9: 44:84:76:a8:e5:10:67:c1:2d:2a:cd:d8:64:bc:3d:2c:61:27: b5:36:18:d5:b0:a3:94:ff:d3:ab:3b:16:78:33:4c:1b:77:44: 37:79:45:1d:4f:d3:aa:5d:d7:86:74:af:62:00:42:44:41:48: 15:93:49:e2:25:8e:d5:2b:ec:6d:00:96:df:c4:7e:f6:85:4f: d6:3a:94:35:2b:40:73:66:ba:cd:a5:30:66:79:4c:ef:f3:3c: 8c:bc:6a:45:af:db:e4:3c:06:71:3d:78:8a:70:4f:66:c6:3c: f6:1c:c2:e7:ce:4d:6b:64:cb:98:21:bc:94:84:63:48:54:b3: 17:53:b6:47:10:2b:9f:72:ca:ab:e9:6a:63:93:a0:f6:6b:06: 59:af:be:e3:31:fb:27:78:fa:3e:51:ca:3e:03:fa:72:bf:05: 32:51:ba:c3:cc:f4:1e:3b:10:87:aa:cc:fd:d7:d5:54:6a:cf: 1e:bc:17:37:e0:33:9a:68:5d:6b:30:fa:3e:42:6d:54:00:d4: 9e:ab:01:0e:55:c6:63:bd:01:7f:e0:bf:2a:4f:4f:8e:16:5b: 95:81:00:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNjNvtHYIJnCBvg5XDrLi6sBck54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDQ5MDZGMjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFC RDUyRUI3RTAeFw0yNjA1MDMwMjM1NDlaFw0yNzA1MDIwMjQwNDlaMDMxMTAvBgNV BAMTKENDMjhEMjJGRUI3Mjg3QkU2QTFBM0Q1QTZENUY5MDM4NjQ4RDFDQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx0eqC/vZttty/CggXPFKf/0GZ Qdcf335tmEJXeelDTngdckYmPoxTzUISkWFueSHkPUFpEJZt0E2k2+RabmvfGu9M qst8Ec0mDFNq7+IkHgRs432+ux4jOMwqh9XPPHuSVCfmzOXz8U2RRKxY4WsYWt4R UAatPvPkEd+rnCv8pVaLvVSYqoq2xhiASxJGlepdAZByHOkBxQBLFE78G2fUjR+U 7g9SqNIi7hRy5yXheWJH1mvyQAfA4SNC8oKcfWpmxeiKddfBn23tFTd99tDqJlOa BPGIaNCqWqizcyAGSJSsXqHUR7aSw3y5xu/sla5zp7JoHxha3jpwD0ZYjkULAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzCjSL+tyh75qGj1abV+QOGSNHLAwHwYDVR0j BBgwFoAUJfRJBvKSOEzJ8b5jJ5i5Eb1S634wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmFhNDI3NDItODlkMi00OWJiLThhM2UtMjk0YzM2ODk3MWY1LzAvMjVGNDQ5MDZG MjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFCRDUyRUI3RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNUY0NDkwNkYyOTIzODRDQzlGMUJFNjMyNzk4QjkxMUJENTJF QjdFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZhYTQyNzQyLTg5ZDItNDliYi04 YTNlLTI5NGMzNjg5NzFmNS8wLzMxMzAzMzJlMzEzMjM5MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngecwDQYJ KoZIhvcNAQELBQADggEBACpx/zk5KrVBuyQBhpZkxtEFqZMyPlG0mdszLq1r/Mp+ P/+N+USEdqjlEGfBLSrN2GS8PSxhJ7U2GNWwo5T/06s7FngzTBt3RDd5RR1P06pd 14Z0r2IAQkRBSBWTSeIljtUr7G0Alt/EfvaFT9Y6lDUrQHNmus2lMGZ5TO/zPIy8 akWv2+Q8BnE9eIpwT2bGPPYcwufOTWtky5ghvJSEY0hUsxdTtkcQK59yyqvpamOT oPZrBlmvvuMx+yd4+j5Ryj4D+nK/BTJRusPM9B47EIeqzP3X1VRqzx68FzfgM5po XWsw+j5CbVQA1J6rAQ5VxmO9AX/gvypPT44WW5WBAHE= -----END CERTIFICATE-----Generated at Wed May 13 04:02:34 2026 by rpki-client