$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa File: 3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa (raw, json) Hash identifier: /B7YofX/HHM+G+hIOgqx/c64KwEJiJwq2rpXtyQZ30I= Subject key identifier: 4C:B0:4D:EE:7C:FE:4E:7C:02:28:77:88:6D:F4:8B:19:89:4B:92:47 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 185A83DE81A78ECBBE463F0EF84437146AC974EC Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:07 +0000 ROA not before: Sun 03 May 2026 02:38:07 +0000 ROA not after: Sun 02 May 2027 02:43:07 +0000 asID: 136088 IP address blocks: 103.87.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5a:83:de:81:a7:8e:cb:be:46:3f:0e:f8:44:37:14:6a:c9:74:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:07 2026 GMT Not After : May 2 02:43:07 2027 GMT Subject: CN=4CB04DEE7CFE4E7C022877886DF48B19894B9247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:b2:24:e4:5f:bd:40:84:26:37:e3:10:7e: 72:21:ca:1d:e2:8e:a4:6c:4f:89:e3:4d:a8:86:54: f3:7b:b6:32:21:ea:66:e0:03:3e:53:d7:27:93:fb: 22:6a:64:47:8c:c2:b4:01:84:33:5e:35:74:f5:5c: 74:d5:0d:bb:2d:47:49:1c:a8:21:00:c5:82:32:a4: ae:e3:34:d8:80:fc:39:fe:a2:4a:b8:f1:ff:a9:c2: 1d:62:ee:d4:36:5a:c9:d7:4f:52:56:e8:e1:48:ae: 2a:3a:24:f2:fb:35:ad:e2:19:98:a1:75:85:9b:97: ce:2c:e8:8a:63:59:d1:0e:93:08:ac:41:d3:59:4e: 2a:b2:32:37:ba:c8:b3:95:35:0c:8a:9f:62:f6:4d: 81:b1:f0:9e:c7:ab:4e:5f:68:5a:6a:95:a7:0f:8c: e7:c1:a6:f0:6d:88:01:50:5c:7f:35:7d:90:98:06: 56:c0:07:25:9c:9e:49:a9:3c:36:6a:54:5a:d2:cb: e1:38:8e:3d:0a:dd:54:3b:37:d6:a6:20:7c:e2:91: b2:11:8e:8b:24:98:75:fc:ba:e4:1f:3f:a5:1e:04: 02:e8:ef:ea:75:37:84:05:ac:5a:65:94:e0:d9:a1: c7:63:14:2e:59:d7:94:5c:c1:26:9d:ce:a3:79:0e: 06:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B0:4D:EE:7C:FE:4E:7C:02:28:77:88:6D:F4:8B:19:89:4B:92:47 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.229.0/24 Signature Algorithm: sha256WithRSAEncryption 43:d2:bb:1b:5f:2f:19:af:4d:be:7c:74:f5:d9:e7:0d:c6:64: 45:45:52:22:5f:b4:bd:05:77:43:21:de:76:2b:fd:2c:bc:af: 0b:81:00:60:aa:50:e4:33:7a:48:dd:dd:5d:a1:e3:e4:6b:c6: 87:f9:cb:95:7e:90:f7:63:c0:78:3b:67:6e:43:7a:49:a6:09: 84:bd:5d:14:e2:41:92:88:cc:d1:7d:12:8a:f4:c2:91:f0:ca: 3a:96:52:44:0d:d2:96:a9:52:1f:0f:00:a4:be:f7:fd:51:46: 1d:9f:74:d3:3b:92:21:8b:bc:47:71:d4:0e:c8:d2:e6:99:4c: 43:fa:b4:65:9a:1d:03:33:13:5d:c1:95:0f:cc:c4:17:09:a9: 4f:08:29:29:cf:40:0e:ec:96:52:a1:75:76:48:35:b6:0a:d2: 9e:3a:86:38:73:b7:c7:b2:d3:ef:6c:4d:42:0c:bc:fb:1d:44: 1a:0a:86:6e:2a:dc:c1:45:11:5e:02:6e:a1:98:1d:7f:d2:6e: ee:e0:b9:27:2f:50:6f:a8:4d:55:08:4a:6a:fc:f9:e9:43:17: 83:a1:b3:c1:12:88:88:90:4d:38:d4:ce:a4:76:58:1a:c2:ec: 1d:f6:b3:fd:36:da:80:5b:14:78:6e:bb:76:94:f7:26:da:bb: 8e:b0:d1:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGFqD3oGnjsu+Rj8O+EQ3FGrJdOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDdaFw0yNzA1MDIwMjQzMDdaMDMxMTAvBgNV BAMTKDRDQjA0REVFN0NGRTRFN0MwMjI4Nzc4ODZERjQ4QjE5ODk0QjkyNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAmbIk5F+9QIQmN+MQfnIhyh3i jqRsT4njTaiGVPN7tjIh6mbgAz5T1yeT+yJqZEeMwrQBhDNeNXT1XHTVDbstR0kc qCEAxYIypK7jNNiA/Dn+okq48f+pwh1i7tQ2WsnXT1JW6OFIrio6JPL7Na3iGZih dYWbl84s6IpjWdEOkwisQdNZTiqyMje6yLOVNQyKn2L2TYGx8J7Hq05faFpqlacP jOfBpvBtiAFQXH81fZCYBlbAByWcnkmpPDZqVFrSy+E4jj0K3VQ7N9amIHzikbIR joskmHX8uuQfP6UeBALo7+p1N4QFrFpllODZocdjFC5Z15RcwSadzqN5Dga/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTLBN7nz+TnwCKHeIbfSLGYlLkkcwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMxMzAzMzJlMzgzNzJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1flMA0GCSqG SIb3DQEBCwUAA4IBAQBD0rsbXy8Zr02+fHT12ecNxmRFRVIiX7S9BXdDId52K/0s vK8LgQBgqlDkM3pI3d1doePka8aH+cuVfpD3Y8B4O2duQ3pJpgmEvV0U4kGSiMzR fRKK9MKR8Mo6llJEDdKWqVIfDwCkvvf9UUYdn3TTO5Ihi7xHcdQOyNLmmUxD+rRl mh0DMxNdwZUPzMQXCalPCCkpz0AO7JZSoXV2SDW2CtKeOoY4c7fHstPvbE1CDLz7 HUQaCoZuKtzBRRFeAm6hmB1/0m7u4LknL1BvqE1VCEpq/PnpQxeDobPBEoiIkE04 1M6kdlgawuwd9rP9NtqAWxR4brt2lPcm2ruOsNEu -----END CERTIFICATE-----Generated at Wed May 13 04:03:13 2026 by rpki-client