$ rpki-client -vvf rpki-rsync.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa File: 3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa (raw, json) Hash identifier: xR2Y5HZPSCwBzoLVtmjeFWlOGn7Q6tcdXN9P57xpYxw= Subject key identifier: E9:65:51:66:5E:83:CD:B7:8B:CA:75:81:1F:EA:D7:95:8E:ED:1B:2D Certificate issuer: /CN=33280920734014336A0249C909A38E7BC1B49F29 Certificate serial: 3917A4F6559006B44DF552070C75973B7BF239A6 Authority key identifier: 33:28:09:20:73:40:14:33:6A:02:49:C9:09:A3:8E:7B:C1:B4:9F:29 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33280920734014336A0249C909A38E7BC1B49F29.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa Signing time: Sun 03 May 2026 02:43:14 +0000 ROA not before: Sun 03 May 2026 02:38:14 +0000 ROA not after: Sun 02 May 2027 02:43:14 +0000 asID: 138878 IP address blocks: 103.139.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/33280920734014336A0249C909A38E7BC1B49F29.crl rsync://rpki-rsync.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/33280920734014336A0249C909A38E7BC1B49F29.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33280920734014336A0249C909A38E7BC1B49F29.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:17:a4:f6:55:90:06:b4:4d:f5:52:07:0c:75:97:3b:7b:f2:39:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33280920734014336A0249C909A38E7BC1B49F29 Validity Not Before: May 3 02:38:14 2026 GMT Not After : May 2 02:43:14 2027 GMT Subject: CN=E96551665E83CDB78BCA75811FEAD7958EED1B2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:f5:09:3f:7a:ae:19:87:6e:72:19:6b:3a:89: b9:26:c1:2b:4d:9f:6e:b8:99:af:8b:95:a7:d4:5c: 52:fc:4e:35:f3:92:9d:ed:d8:fc:af:a0:ab:2f:f4: b3:5b:44:1f:dd:6d:04:c1:f3:be:5c:c2:64:1f:a8: d0:25:ac:7a:0f:33:d7:d0:20:63:f5:d9:e9:ed:36: fd:87:fe:3d:38:e7:1c:cc:33:d2:ba:86:ca:c5:f6: 6e:6a:28:d4:9b:d6:b1:dc:0c:ce:5e:3d:45:1a:36: 75:3f:05:df:2a:df:f0:36:c7:d9:7b:d7:d1:3a:f4: 3a:db:ed:45:62:7c:9e:4f:cc:34:78:a2:45:8e:af: 64:6f:3f:6b:4c:59:b5:77:02:af:33:50:e0:b4:18: fe:14:03:60:d5:68:78:4b:6b:71:3c:1b:ca:35:33: 9e:f8:c9:4e:60:00:0f:99:fb:a8:56:3e:ef:a3:e1: 36:59:51:1e:e0:13:55:08:3d:19:9a:f0:e0:70:71: a9:e5:c0:35:19:b9:43:1a:66:6f:25:85:ad:ea:d7: 7c:16:c8:cf:ef:3f:ff:6c:11:2d:82:d0:b7:54:37: 6b:4d:54:00:f0:79:a1:86:88:0e:f9:34:b5:11:ee: 81:68:f7:25:41:c3:29:d9:4b:5a:ca:af:8a:d4:9d: 5b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:65:51:66:5E:83:CD:B7:8B:CA:75:81:1F:EA:D7:95:8E:ED:1B:2D X509v3 Authority Key Identifier: keyid:33:28:09:20:73:40:14:33:6A:02:49:C9:09:A3:8E:7B:C1:B4:9F:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/33280920734014336A0249C909A38E7BC1B49F29.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33280920734014336A0249C909A38E7BC1B49F29.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.25.0/24 Signature Algorithm: sha256WithRSAEncryption bf:0d:5b:fb:ab:6e:77:fa:8a:74:1c:53:b5:53:7b:ac:09:6b: e2:c7:8b:79:6a:4e:e0:22:55:60:38:8e:b2:3e:75:a2:c9:7f: bb:e0:24:ed:1b:13:1b:64:58:74:64:2d:d7:fe:0a:45:a9:2a: 1f:d7:2e:e4:fe:ba:76:cc:db:d0:13:e8:9e:43:f5:d5:87:75: 1e:f6:bd:08:94:eb:ae:10:bb:a9:4b:f5:76:16:72:8d:f8:3e: d1:5d:bb:8c:a5:d2:cb:24:15:55:8c:c6:34:44:fc:7e:42:3d: 61:e8:76:1b:68:5d:70:63:cf:98:2f:17:66:4e:be:b1:62:2a: 8d:c5:d0:fd:4a:e5:15:6e:a5:58:e1:f0:cc:fc:5b:ca:02:0b: fa:c9:64:b0:83:44:a1:4e:23:6f:a4:64:bd:44:0f:16:b2:ef: 55:9b:59:8d:1d:ad:46:16:08:b6:e0:1d:fa:c6:f7:51:a5:c5: ff:22:b6:bd:b1:75:f0:d6:99:d3:3e:3b:b2:84:d4:59:a4:b8: a8:8d:c1:cf:86:26:0e:64:2f:a5:b4:db:d6:f4:ce:e2:4d:81: 3e:bc:47:0c:f9:e2:29:90:61:f0:b5:bc:41:c5:ba:85:d3:09: 54:78:28:cb:63:a2:a0:c9:c3:52:8c:1a:f9:8a:e8:e3:fb:2c: 18:18:84:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUORek9lWQBrRN9VIHDHWXO3vyOaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMyODA5MjA3MzQwMTQzMzZBMDI0OUM5MDlBMzhFN0JD MUI0OUYyOTAeFw0yNjA1MDMwMjM4MTRaFw0yNzA1MDIwMjQzMTRaMDMxMTAvBgNV BAMTKEU5NjU1MTY2NUU4M0NEQjc4QkNBNzU4MTFGRUFENzk1OEVFRDFCMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCG9Qk/eq4Zh25yGWs6ibkmwStN n264ma+LlafUXFL8TjXzkp3t2PyvoKsv9LNbRB/dbQTB875cwmQfqNAlrHoPM9fQ IGP12entNv2H/j045xzMM9K6hsrF9m5qKNSb1rHcDM5ePUUaNnU/Bd8q3/A2x9l7 19E69Drb7UVifJ5PzDR4okWOr2RvP2tMWbV3Aq8zUOC0GP4UA2DVaHhLa3E8G8o1 M574yU5gAA+Z+6hWPu+j4TZZUR7gE1UIPRma8OBwcanlwDUZuUMaZm8lha3q13wW yM/vP/9sES2C0LdUN2tNVADweaGGiA75NLUR7oFo9yVBwynZS1rKr4rUnVv/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6WVRZl6DzbeLynWBH+rXlY7tGy0wHwYDVR0j BBgwFoAUMygJIHNAFDNqAknJCaOOe8G0nykwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmZTQyNTUtMWQ5MS00ZmNjLWJjZTQtOGE0MmFkZmUzYzI5LzAvMzMyODA5MjA3 MzQwMTQzMzZBMDI0OUM5MDlBMzhFN0JDMUI0OUYyOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMzI4MDkyMDczNDAxNDMzNkEwMjQ5QzkwOUEzOEU3QkMxQjQ5 RjI5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZmU0MjU1LTFkOTEtNGZjYy1i Y2U0LThhNDJhZGZlM2MyOS8wLzMxMzAzMzJlMzEzMzM5MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4sZMA0GCSqG SIb3DQEBCwUAA4IBAQC/DVv7q253+op0HFO1U3usCWvix4t5ak7gIlVgOI6yPnWi yX+74CTtGxMbZFh0ZC3X/gpFqSof1y7k/rp2zNvQE+ieQ/XVh3Ue9r0IlOuuELup S/V2FnKN+D7RXbuMpdLLJBVVjMY0RPx+Qj1h6HYbaF1wY8+YLxdmTr6xYiqNxdD9 SuUVbqVY4fDM/FvKAgv6yWSwg0ShTiNvpGS9RA8Wsu9Vm1mNHa1GFgi24B36xvdR pcX/Ira9sXXw1pnTPjuyhNRZpLiojcHPhiYOZC+ltNvW9M7iTYE+vEcM+eIpkGHw tbxBxbqF0wlUeCjLY6KgycNSjBr5iujj+ywYGIR9 -----END CERTIFICATE-----Generated at Wed May 13 04:20:13 2026 by rpki-client