$ rpki-client -vvf rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234352e302f32342d3234203d3e20313338303930.roa File: 3130332e3132342e3234352e302f32342d3234203d3e20313338303930.roa (raw, json) Hash identifier: 03GjbFQLnGl1ayimN4oj+A3/RatUprwYfoHZREcuOgQ= Subject key identifier: 0F:35:59:29:0C:20:43:A0:7E:4D:AE:3E:42:5D:51:F0:FB:35:B4:6F Certificate issuer: /CN=5D7BB6DBEA00E701779892AA686CCBF195A3D20D Certificate serial: 367BE7BB2B8693355DAF824C44588E9AA7C66CD5 Authority key identifier: 5D:7B:B6:DB:EA:00:E7:01:77:98:92:AA:68:6C:CB:F1:95:A3:D2:0D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234352e302f32342d3234203d3e20313338303930.roa Signing time: Sun 03 May 2026 02:41:40 +0000 ROA not before: Sun 03 May 2026 02:36:40 +0000 ROA not after: Sun 02 May 2027 02:41:40 +0000 asID: 138090 IP address blocks: 103.124.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.crl rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:7b:e7:bb:2b:86:93:35:5d:af:82:4c:44:58:8e:9a:a7:c6:6c:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D7BB6DBEA00E701779892AA686CCBF195A3D20D Validity Not Before: May 3 02:36:40 2026 GMT Not After : May 2 02:41:40 2027 GMT Subject: CN=0F3559290C2043A07E4DAE3E425D51F0FB35B46F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c6:49:c8:5a:34:fc:95:c5:6c:76:e4:29:cf: 62:1b:fe:a9:9a:da:03:94:7d:4e:fa:d1:d6:2e:cf: 9b:4f:18:2a:f8:39:d9:76:56:c0:dc:e2:f0:d1:97: c9:d8:9e:f4:78:cb:15:b4:c9:ef:75:7a:10:3b:fc: 5c:d0:48:9e:1e:17:f7:94:db:4f:71:37:fa:f6:78: e4:c6:dd:3d:4e:b9:7a:d4:cd:be:dd:6b:5c:21:eb: be:3b:ca:f7:a0:a4:bb:f1:58:f9:2a:9d:4f:7c:0b: 0e:b3:21:e4:06:9f:cf:31:aa:a0:29:af:f6:61:8f: e4:62:73:27:61:81:38:db:cf:64:99:41:0b:fc:c5: 66:8a:e2:0e:f1:2a:13:8f:0a:e2:28:b8:8b:06:fe: ac:dc:64:17:37:f0:5b:49:de:3d:52:53:70:97:96: 00:ae:84:e8:6c:7e:e9:aa:90:55:a6:e2:2e:43:cf: 75:d0:2b:ec:df:51:58:64:42:ef:80:9f:03:21:57: 5e:61:98:9e:5c:cd:73:bf:67:6b:2d:6e:b6:3d:01: b6:94:7d:25:52:93:e6:ec:fd:51:c8:a1:7c:79:3d: 61:21:2c:30:54:47:de:3a:f5:d7:b0:ec:09:f7:f1: 79:76:bf:65:b9:59:04:6e:4e:4d:4b:3d:bc:b7:e3: 16:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:35:59:29:0C:20:43:A0:7E:4D:AE:3E:42:5D:51:F0:FB:35:B4:6F X509v3 Authority Key Identifier: keyid:5D:7B:B6:DB:EA:00:E7:01:77:98:92:AA:68:6C:CB:F1:95:A3:D2:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234352e302f32342d3234203d3e20313338303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.245.0/24 Signature Algorithm: sha256WithRSAEncryption 27:a9:4b:1b:b2:8c:e6:a4:f2:05:4f:ec:70:f9:9b:71:4d:7c: 4c:b9:c0:f0:82:1e:a2:24:f8:c2:4b:ee:f2:46:9d:88:98:14: af:54:12:02:56:72:be:12:99:39:b7:f5:7f:17:f0:bb:e9:c5: 85:e7:66:38:61:07:63:8d:ab:ff:f2:15:a7:03:5e:10:37:f3: 94:45:cc:42:88:8c:30:a1:79:9b:3a:7f:b7:ed:bc:af:cf:a1: 3c:08:5e:42:b1:28:f5:72:e2:f8:80:f9:61:41:66:3d:e8:24: cd:14:0d:39:c3:6a:df:8a:16:31:a8:6b:81:48:6a:43:16:ff: ce:62:ea:9d:76:33:01:9e:b7:d4:90:80:ad:b5:32:06:f0:cf: ad:c8:08:97:c6:bb:2b:9c:00:3d:37:c4:37:de:8f:87:db:5d: e3:10:0a:c2:d7:09:74:e0:ff:be:47:03:71:56:c0:12:d0:7f: 72:7e:01:11:e0:71:38:ff:b2:a7:78:6e:8f:75:47:aa:6c:06: e9:95:58:3c:db:45:d7:bb:db:40:c3:df:f7:e3:6d:60:43:95: 5a:ab:62:2a:2b:89:1f:2b:0e:46:ce:40:6e:c2:de:5d:73:de: 74:13:f7:2f:0b:c9:07:60:f2:b2:25:46:fe:88:cd:08:3e:a2: 14:8e:05:9b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNnvnuyuGkzVdr4JMRFiOmqfGbNUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQ3QkI2REJFQTAwRTcwMTc3OTg5MkFBNjg2Q0NCRjE5 NUEzRDIwRDAeFw0yNjA1MDMwMjM2NDBaFw0yNzA1MDIwMjQxNDBaMDMxMTAvBgNV BAMTKDBGMzU1OTI5MEMyMDQzQTA3RTREQUUzRTQyNUQ1MUYwRkIzNUI0NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmxknIWjT8lcVsduQpz2Ib/qma 2gOUfU760dYuz5tPGCr4Odl2VsDc4vDRl8nYnvR4yxW0ye91ehA7/FzQSJ4eF/eU 209xN/r2eOTG3T1OuXrUzb7da1wh6747yvegpLvxWPkqnU98Cw6zIeQGn88xqqAp r/Zhj+RicydhgTjbz2SZQQv8xWaK4g7xKhOPCuIouIsG/qzcZBc38FtJ3j1SU3CX lgCuhOhsfumqkFWm4i5Dz3XQK+zfUVhkQu+AnwMhV15hmJ5czXO/Z2stbrY9AbaU fSVSk+bs/VHIoXx5PWEhLDBUR9469dew7An38Xl2v2W5WQRuTk1LPby34xYLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDzVZKQwgQ6B+Ta4+Ql1R8Ps1tG8wHwYDVR0j BBgwFoAUXXu22+oA5wF3mJKqaGzL8ZWj0g0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmUyYzkyODUtYzA5YS00NTA2LWEzMjAtZmRhMWEwN2ZkOWVjLzAvNUQ3QkI2REJF QTAwRTcwMTc3OTg5MkFBNjg2Q0NCRjE5NUEzRDIwRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDdCQjZEQkVBMDBFNzAxNzc5ODkyQUE2ODZDQ0JGMTk1QTNE MjBELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZlMmM5Mjg1LWMwOWEtNDUwNi1h MzIwLWZkYTFhMDdmZDllYy8wLzMxMzAzMzJlMzEzMjM0MmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfPUwDQYJ KoZIhvcNAQELBQADggEBACepSxuyjOak8gVP7HD5m3FNfEy5wPCCHqIk+MJL7vJG nYiYFK9UEgJWcr4SmTm39X8X8LvpxYXnZjhhB2ONq//yFacDXhA385RFzEKIjDCh eZs6f7ftvK/PoTwIXkKxKPVy4viA+WFBZj3oJM0UDTnDat+KFjGoa4FIakMW/85i 6p12MwGet9SQgK21Mgbwz63ICJfGuyucAD03xDfej4fbXeMQCsLXCXTg/75HA3FW wBLQf3J+ARHgcTj/sqd4bo91R6psBumVWDzbRde720DD3/fjbWBDlVqrYioriR8r DkbOQG7C3l1z3nQT9y8LyQdg8rIlRv6IzQg+ohSOBZs= -----END CERTIFICATE-----Generated at Wed May 13 12:40:06 2026 by rpki-client