$ rpki-client -vvf rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: 7UHUG49KeSvdqIfX5Q2/sjN4aSqQC/7iFrJSNv+5Ax4= Subject key identifier: 47:E2:46:1D:8B:35:F8:1E:C2:54:B2:31:67:41:5C:AD:1B:1A:10:DD Certificate issuer: /CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Certificate serial: 0F42D57528895D1F44A1568282352389FD1FD175 Authority key identifier: 9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa Signing time: Sun 03 May 2026 02:42:38 +0000 ROA not before: Sun 03 May 2026 02:37:38 +0000 ROA not after: Sun 02 May 2027 02:42:38 +0000 asID: 140407 IP address blocks: 103.122.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:42:d5:75:28:89:5d:1f:44:a1:56:82:82:35:23:89:fd:1f:d1:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Validity Not Before: May 3 02:37:38 2026 GMT Not After : May 2 02:42:38 2027 GMT Subject: CN=47E2461D8B35F81EC254B23167415CAD1B1A10DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4d:9e:b7:c9:68:f8:86:15:00:ea:a9:d6:33: 0e:35:8a:05:02:87:01:a5:86:0e:36:fb:b1:eb:99: 24:9a:e1:95:2f:a4:f6:c5:7b:89:a0:d9:f0:7a:83: e0:bf:70:51:ce:39:a1:04:13:5a:16:b0:3b:77:8e: 6c:b3:32:9b:dc:ad:09:cb:fc:ea:83:7a:e3:68:c5: 53:66:5b:e6:f3:54:16:a1:cb:ad:54:e6:73:32:3a: da:de:bf:cb:43:d8:c1:98:57:e5:01:ad:8f:01:29: 5e:d5:9c:bd:49:ce:7c:6e:b3:f4:63:4a:2f:5b:4e: df:b1:74:5e:9f:13:86:a6:ad:d0:24:51:f8:e6:ad: c2:c8:5b:49:92:b7:eb:c0:82:ae:51:31:c6:a0:c2: 9c:0f:ff:ed:ff:f1:fa:cc:25:bc:6f:b1:52:65:ab: db:b4:d9:9c:f9:1e:3e:fd:01:22:71:7d:1f:01:fc: 95:60:1f:84:f4:2c:3c:43:72:b2:3e:c0:67:95:20: 3e:cf:99:c6:59:07:09:ae:cf:ca:1a:74:a7:77:52: 31:71:0a:18:fe:33:d1:cd:7c:74:e3:8b:77:da:e0: e3:a0:99:5b:36:14:cf:5f:a6:3e:da:23:24:0c:b1: c5:e4:9c:f9:b7:ad:7b:6e:35:88:e5:af:af:dc:52: a3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E2:46:1D:8B:35:F8:1E:C2:54:B2:31:67:41:5C:AD:1B:1A:10:DD X509v3 Authority Key Identifier: keyid:9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/24 Signature Algorithm: sha256WithRSAEncryption 75:1c:15:cb:fa:5d:a3:81:18:e7:23:7c:da:03:12:8a:5c:1f: f3:56:24:e1:90:92:b8:b7:5a:ea:e4:45:68:12:c0:c5:21:ba: 75:64:a0:90:14:c6:46:6e:7a:42:52:29:a8:51:9e:f2:77:dd: 79:0f:9a:40:49:00:ca:ef:0d:a0:74:4a:88:2f:35:67:a0:67: 1b:49:51:4c:96:a8:34:af:85:62:6b:5f:69:a6:cb:07:cd:8d: 90:b7:36:39:35:b6:08:9a:d7:8c:9b:9f:7f:22:c7:27:dd:ba: 7f:73:ce:4b:7a:81:c8:92:65:5f:0c:60:22:20:96:20:22:9e: 30:b5:46:74:f2:5a:54:c4:56:4d:9a:6d:15:df:a2:84:f3:6c: 5c:85:73:5a:5c:6e:2a:c0:04:6e:65:43:46:5b:34:2f:8d:cf: 1d:36:b1:18:55:86:05:63:fd:4f:dc:9d:96:e6:b6:d5:93:f8: e4:24:77:0c:29:af:2f:d5:aa:e4:74:39:bb:4c:60:30:ac:8d: ba:43:06:da:38:9e:f8:37:c0:5d:47:f3:93:ab:0e:32:58:22: de:65:39:e7:da:a8:84:7d:94:b0:92:a7:c6:35:87:f5:d4:3e: ed:fe:29:9e:11:f9:81:cd:d2:37:9c:97:f4:43:57:e3:8b:69: 65:5a:47:34 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD0LVdSiJXR9EoVaCgjUjif0f0XUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYyRDQ3QzI3QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5 RjJCMUZCRDAeFw0yNjA1MDMwMjM3MzhaFw0yNzA1MDIwMjQyMzhaMDMxMTAvBgNV BAMTKDQ3RTI0NjFEOEIzNUY4MUVDMjU0QjIzMTY3NDE1Q0FEMUIxQTEwREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiTZ63yWj4hhUA6qnWMw41igUC hwGlhg42+7HrmSSa4ZUvpPbFe4mg2fB6g+C/cFHOOaEEE1oWsDt3jmyzMpvcrQnL /OqDeuNoxVNmW+bzVBahy61U5nMyOtrev8tD2MGYV+UBrY8BKV7VnL1Jznxus/Rj Si9bTt+xdF6fE4amrdAkUfjmrcLIW0mSt+vAgq5RMcagwpwP/+3/8frMJbxvsVJl q9u02Zz5Hj79ASJxfR8B/JVgH4T0LDxDcrI+wGeVID7PmcZZBwmuz8oadKd3UjFx Chj+M9HNfHTji3fa4OOgmVs2FM9fpj7aIyQMscXknPm3rXtuNYjlr6/cUqPdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUR+JGHYs1+B7CVLIxZ0FcrRsaEN0wHwYDVR0j BBgwFoAUny1HwnoEZmR8mo+vJGrIWp8rH70wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzIyOTc4MWEtOGFjOS00NDUyLWIyNWYtNTRlN2VkZjdkNGE0LzAvOUYyRDQ3QzI3 QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5RjJCMUZCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RjJENDdDMjdBMDQ2NjY0N0M5QThGQUYyNDZBQzg1QTlGMkIx RkJELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepgwDQYJ KoZIhvcNAQELBQADggEBAHUcFcv6XaOBGOcjfNoDEopcH/NWJOGQkri3WurkRWgS wMUhunVkoJAUxkZuekJSKahRnvJ33XkPmkBJAMrvDaB0SogvNWegZxtJUUyWqDSv hWJrX2mmywfNjZC3Njk1tgia14ybn38ixyfdun9zzkt6gciSZV8MYCIgliAinjC1 RnTyWlTEVk2abRXfooTzbFyFc1pcbirABG5lQ0ZbNC+Nzx02sRhVhgVj/U/cnZbm ttWT+OQkdwwpry/VquR0ObtMYDCsjbpDBto4nvg3wF1H85OrDjJYIt5lOefaqIR9 lLCSp8Y1h/XUPu3+KZ4R+YHN0jecl/RDV+OLaWVaRzQ= -----END CERTIFICATE-----Generated at Wed May 13 10:23:31 2026 by rpki-client