$ rpki-client -vvf rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: 38Xm9PyU4xIsiex90hJwlQrnnXy77AnXzl8H3OHJdtc= Subject key identifier: BA:4E:87:D1:FE:D9:5F:1B:1A:50:F3:21:FD:DE:8E:36:1C:7C:34:54 Certificate issuer: /CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Certificate serial: 5F1F55ECBDD579DB6F284D4D34C3580030100AB5 Authority key identifier: 9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa Signing time: Sun 03 May 2026 02:42:41 +0000 ROA not before: Sun 03 May 2026 02:37:41 +0000 ROA not after: Sun 02 May 2027 02:42:41 +0000 asID: 140407 IP address blocks: 103.122.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1f:55:ec:bd:d5:79:db:6f:28:4d:4d:34:c3:58:00:30:10:0a:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Validity Not Before: May 3 02:37:41 2026 GMT Not After : May 2 02:42:41 2027 GMT Subject: CN=BA4E87D1FED95F1B1A50F321FDDE8E361C7C3454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:71:12:24:51:3a:90:d1:e1:ba:f3:ec:3f:03: 56:0d:1e:0b:49:5f:49:0b:67:ca:ac:7a:16:71:1d: 62:80:17:2f:0a:58:b5:0a:ac:50:3b:0e:9a:f2:3f: 84:78:7b:d7:e5:26:c1:95:8d:ed:ac:37:16:d9:9b: 26:02:4a:2b:f7:44:f4:6a:4a:aa:26:b6:7c:ad:c4: e0:50:34:a3:08:e4:7d:2e:80:59:98:53:a4:b3:3d: c3:60:da:4a:b5:b7:80:ec:51:c9:06:fa:e1:93:09: 6b:b2:d7:1f:61:0f:9e:c9:ba:9c:df:f6:9c:7c:b7: 52:71:3d:99:8b:74:b7:8f:f1:88:94:b9:fd:22:c8: c3:88:17:68:a9:98:20:8c:fa:95:57:b4:32:98:14: ac:c0:53:6f:62:ca:38:fb:3b:cf:43:cc:68:e9:ee: a1:49:bd:16:c2:72:f3:ca:6e:79:90:50:3b:06:0c: b0:d1:6a:f0:8b:86:99:b1:fd:31:b1:a5:85:71:30: 2c:bd:1e:e1:d4:ce:28:da:f9:a9:df:9d:b0:ad:6d: 58:e6:70:b4:6c:fa:d0:c0:be:8f:ed:2c:e9:3e:bd: 91:c6:fe:14:aa:aa:f1:1f:c2:ed:98:4b:7b:b3:60: a6:31:9a:b4:0f:bd:19:49:54:8d:46:ff:73:31:f8: 4a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4E:87:D1:FE:D9:5F:1B:1A:50:F3:21:FD:DE:8E:36:1C:7C:34:54 X509v3 Authority Key Identifier: keyid:9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.154.0/24 Signature Algorithm: sha256WithRSAEncryption 95:4d:19:68:bb:8d:34:be:b0:e8:56:84:f0:9d:9d:1a:d6:d5: a4:3b:72:5f:87:06:8e:f1:1d:1e:df:44:b4:dc:d5:22:d0:41: a0:f7:ad:42:7b:c3:49:39:e3:a8:8a:7f:07:49:d0:d0:8b:06: 43:01:b3:7e:da:83:ed:22:db:ec:92:1c:ed:a1:e1:2e:80:80: 01:70:09:ea:6b:dc:1f:8b:8a:b9:46:bd:24:a1:97:c4:be:11: 95:5c:20:29:b4:4b:9b:bf:f1:fa:89:45:3d:39:93:a5:08:28: 92:2b:f6:bd:bb:48:8a:58:16:88:9e:ef:32:f6:ec:ea:57:c6: 13:b6:d9:20:64:00:b6:26:dd:63:59:af:16:9b:a1:36:45:d0: de:11:3f:86:dc:8d:08:f2:bb:a1:c6:55:b7:41:8f:2f:59:43: 9d:4f:28:21:d3:b3:e8:94:20:16:21:78:5b:2d:e5:00:68:57: db:fe:62:b0:ed:c6:81:33:74:f3:fe:07:3c:96:92:e8:67:1d: eb:a7:c8:20:66:14:b4:f8:23:b6:f8:e8:db:6d:2e:d9:5e:92: 16:a1:30:11:97:56:0b:60:24:d3:38:0b:c2:c9:55:ba:ca:d1: c2:45:86:bf:0c:43:c6:4e:27:bd:e9:11:75:00:93:1d:49:a6: 19:cd:4f:48 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXx9V7L3VedtvKE1NNMNYADAQCrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYyRDQ3QzI3QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5 RjJCMUZCRDAeFw0yNjA1MDMwMjM3NDFaFw0yNzA1MDIwMjQyNDFaMDMxMTAvBgNV BAMTKEJBNEU4N0QxRkVEOTVGMUIxQTUwRjMyMUZEREU4RTM2MUM3QzM0NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqcRIkUTqQ0eG68+w/A1YNHgtJ X0kLZ8qsehZxHWKAFy8KWLUKrFA7DpryP4R4e9flJsGVje2sNxbZmyYCSiv3RPRq SqomtnytxOBQNKMI5H0ugFmYU6SzPcNg2kq1t4DsUckG+uGTCWuy1x9hD57Jupzf 9px8t1JxPZmLdLeP8YiUuf0iyMOIF2ipmCCM+pVXtDKYFKzAU29iyjj7O89DzGjp 7qFJvRbCcvPKbnmQUDsGDLDRavCLhpmx/TGxpYVxMCy9HuHUzija+anfnbCtbVjm cLRs+tDAvo/tLOk+vZHG/hSqqvEfwu2YS3uzYKYxmrQPvRlJVI1G/3Mx+EpLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuk6H0f7ZXxsaUPMh/d6ONhx8NFQwHwYDVR0j BBgwFoAUny1HwnoEZmR8mo+vJGrIWp8rH70wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzIyOTc4MWEtOGFjOS00NDUyLWIyNWYtNTRlN2VkZjdkNGE0LzAvOUYyRDQ3QzI3 QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5RjJCMUZCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RjJENDdDMjdBMDQ2NjY0N0M5QThGQUYyNDZBQzg1QTlGMkIx RkJELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepowDQYJ KoZIhvcNAQELBQADggEBAJVNGWi7jTS+sOhWhPCdnRrW1aQ7cl+HBo7xHR7fRLTc 1SLQQaD3rUJ7w0k546iKfwdJ0NCLBkMBs37ag+0i2+ySHO2h4S6AgAFwCepr3B+L irlGvSShl8S+EZVcICm0S5u/8fqJRT05k6UIKJIr9r27SIpYFoie7zL27OpXxhO2 2SBkALYm3WNZrxaboTZF0N4RP4bcjQjyu6HGVbdBjy9ZQ51PKCHTs+iUIBYheFst 5QBoV9v+YrDtxoEzdPP+BzyWkuhnHeunyCBmFLT4I7b46NttLtlekhahMBGXVgtg JNM4C8LJVbrK0cJFhr8MQ8ZOJ73pEXUAkx1JphnNT0g= -----END CERTIFICATE-----Generated at Wed May 13 12:39:11 2026 by rpki-client