$ rpki-client -vvf rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa (raw, json) Hash identifier: wjQlJjUfkbt1n7Rc6SHSm1K1dY+H6SCMIIZnXPYbFUQ= Subject key identifier: 09:5D:68:A4:70:C5:D9:4B:2A:7B:5D:5E:30:E1:5C:81:DE:5F:C8:61 Certificate issuer: /CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Certificate serial: 44DED11B68B013F62487277BD939FA07295BBC8D Authority key identifier: 9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa Signing time: Sun 03 May 2026 02:42:40 +0000 ROA not before: Sun 03 May 2026 02:37:40 +0000 ROA not after: Sun 02 May 2027 02:42:40 +0000 asID: 140407 IP address blocks: 103.122.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:de:d1:1b:68:b0:13:f6:24:87:27:7b:d9:39:fa:07:29:5b:bc:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Validity Not Before: May 3 02:37:40 2026 GMT Not After : May 2 02:42:40 2027 GMT Subject: CN=095D68A470C5D94B2A7B5D5E30E15C81DE5FC861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c0:af:24:30:76:bc:92:8e:f8:8a:41:90:9b: f0:49:9b:83:a1:06:04:70:97:f2:0f:5b:b7:84:f2: 08:e4:11:77:43:98:5f:88:ac:2c:00:02:10:0f:61: 4d:ff:27:70:d3:40:bc:ae:f6:46:64:56:cc:01:55: da:ec:d2:95:d9:2f:58:e1:82:db:f3:09:d2:13:47: f1:d6:52:fc:08:37:f0:3d:1e:68:66:07:75:1b:43: 10:23:4e:16:dd:cf:f8:52:c6:05:03:97:07:08:6e: 74:a0:14:54:e5:fb:29:6a:7f:08:30:5a:85:7d:fa: 06:e6:0a:fd:69:2f:44:df:ec:5b:e8:7c:4a:2d:2d: 2b:58:f5:10:2a:89:c3:9a:51:5c:ec:d0:8a:4e:53: 02:a8:1e:8c:c5:fd:4e:10:c8:95:50:e3:38:ff:c2: e9:5c:f4:c3:35:96:f2:53:6f:53:67:4a:92:ac:f3: 9c:78:16:80:19:97:cf:ac:77:36:78:d0:fa:84:70: 59:64:75:1c:fe:68:b4:91:90:4c:0f:a5:00:cd:1e: a1:78:00:7a:28:59:81:2b:c6:69:16:80:1d:68:cf: 9b:18:21:d4:33:d6:9b:9f:5c:70:44:83:b4:32:0f: be:cd:89:24:33:8c:5b:ed:78:1e:f9:26:f1:c2:ed: ff:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5D:68:A4:70:C5:D9:4B:2A:7B:5D:5E:30:E1:5C:81:DE:5F:C8:61 X509v3 Authority Key Identifier: keyid:9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:26:93:82:f3:ae:11:1f:f8:0f:b1:39:cd:ee:f0:ba:fc:52: cf:64:db:9a:d7:6d:1a:6b:e6:7f:f8:4e:6e:c7:19:dc:52:f9: 6a:93:1f:0c:fb:76:5d:eb:39:22:75:74:55:ed:b0:e8:bc:e3: 2e:69:bc:22:6a:12:64:a9:97:43:a0:29:38:42:2d:6b:f2:aa: 18:ae:2c:1f:11:da:5b:98:35:b8:af:60:0f:55:65:c5:95:76: c4:c5:8a:f0:1d:2e:f9:91:e8:39:a3:e3:ec:3c:79:58:2f:47: 2d:8e:c0:a9:7a:5a:42:28:3f:af:5f:27:bd:1e:07:7d:fa:a7: af:60:4b:37:81:ba:ff:03:de:d3:e1:7f:a9:3f:c7:aa:cc:58: d9:f0:28:71:f5:09:e6:72:7e:d6:8c:50:2e:9d:b9:28:85:39: b4:f9:23:56:a4:35:a4:b3:2a:f4:76:44:59:d2:64:f8:51:c7: d1:78:6e:46:6e:ff:27:e4:80:99:6a:f6:95:1e:ba:fd:c7:6e: 24:91:05:80:84:66:ad:27:2f:ea:87:67:3b:ff:05:67:00:e2: e8:ef:a2:2c:21:1a:ef:1b:e6:0e:c1:16:15:4d:69:22:0b:e6: 82:80:65:ec:3d:a6:b1:cc:a0:7a:8d:3a:fb:1f:f1:98:2e:22: 92:45:49:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURN7RG2iwE/Ykhyd72Tn6BylbvI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYyRDQ3QzI3QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5 RjJCMUZCRDAeFw0yNjA1MDMwMjM3NDBaFw0yNzA1MDIwMjQyNDBaMDMxMTAvBgNV BAMTKDA5NUQ2OEE0NzBDNUQ5NEIyQTdCNUQ1RTMwRTE1QzgxREU1RkM4NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0wK8kMHa8ko74ikGQm/BJm4Oh BgRwl/IPW7eE8gjkEXdDmF+IrCwAAhAPYU3/J3DTQLyu9kZkVswBVdrs0pXZL1jh gtvzCdITR/HWUvwIN/A9HmhmB3UbQxAjThbdz/hSxgUDlwcIbnSgFFTl+ylqfwgw WoV9+gbmCv1pL0Tf7FvofEotLStY9RAqicOaUVzs0IpOUwKoHozF/U4QyJVQ4zj/ wulc9MM1lvJTb1NnSpKs85x4FoAZl8+sdzZ40PqEcFlkdRz+aLSRkEwPpQDNHqF4 AHooWYErxmkWgB1oz5sYIdQz1pufXHBEg7QyD77NiSQzjFvteB75JvHC7f+DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCV1opHDF2Usqe11eMOFcgd5fyGEwHwYDVR0j BBgwFoAUny1HwnoEZmR8mo+vJGrIWp8rH70wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzIyOTc4MWEtOGFjOS00NDUyLWIyNWYtNTRlN2VkZjdkNGE0LzAvOUYyRDQ3QzI3 QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5RjJCMUZCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RjJENDdDMjdBMDQ2NjY0N0M5QThGQUYyNDZBQzg1QTlGMkIx RkJELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnepgwDQYJ KoZIhvcNAQELBQADggEBABomk4LzrhEf+A+xOc3u8Lr8Us9k25rXbRpr5n/4Tm7H GdxS+WqTHwz7dl3rOSJ1dFXtsOi84y5pvCJqEmSpl0OgKThCLWvyqhiuLB8R2luY NbivYA9VZcWVdsTFivAdLvmR6Dmj4+w8eVgvRy2OwKl6WkIoP69fJ70eB336p69g SzeBuv8D3tPhf6k/x6rMWNnwKHH1CeZyftaMUC6duSiFObT5I1akNaSzKvR2RFnS ZPhRx9F4bkZu/yfkgJlq9pUeuv3HbiSRBYCEZq0nL+qHZzv/BWcA4ujvoiwhGu8b 5g7BFhVNaSIL5oKAZew9prHMoHqNOvsf8ZguIpJFSRk= -----END CERTIFICATE-----Generated at Wed May 13 07:14:16 2026 by rpki-client