$ rpki-client -vvf rpki-rsync.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa File: 3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa (raw, json) Hash identifier: zyRn7jFyehFEgsKHr+RevPoVMdyoLH00YGiqg3O4fKo= Subject key identifier: 74:FF:4F:01:C4:44:99:C5:23:94:F6:71:CE:B2:11:88:5C:E2:5A:86 Certificate issuer: /CN=C352DFD797F0814103500130B1A6B6876355C3DF Certificate serial: 63A4645C58359D26BCF93127806EDF8EECF7C681 Authority key identifier: C3:52:DF:D7:97:F0:81:41:03:50:01:30:B1:A6:B6:87:63:55:C3:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C352DFD797F0814103500130B1A6B6876355C3DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa Signing time: Sun 03 May 2026 02:43:18 +0000 ROA not before: Sun 03 May 2026 02:38:18 +0000 ROA not after: Sun 02 May 2027 02:43:18 +0000 asID: 149908 IP address blocks: 103.188.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/C352DFD797F0814103500130B1A6B6876355C3DF.crl rsync://rpki-rsync.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/C352DFD797F0814103500130B1A6B6876355C3DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C352DFD797F0814103500130B1A6B6876355C3DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a4:64:5c:58:35:9d:26:bc:f9:31:27:80:6e:df:8e:ec:f7:c6:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C352DFD797F0814103500130B1A6B6876355C3DF Validity Not Before: May 3 02:38:18 2026 GMT Not After : May 2 02:43:18 2027 GMT Subject: CN=74FF4F01C44499C52394F671CEB211885CE25A86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:49:b0:99:96:47:a2:e0:ce:f1:0c:4e:fe:52: 18:48:3f:52:84:7f:c9:88:0f:aa:1c:3a:0f:e6:c3: a0:f0:18:94:8e:13:72:00:4c:d8:15:c7:15:3f:7e: df:ac:d9:0e:52:59:d7:5f:43:79:1c:e2:0d:19:7f: 63:a6:70:fa:ea:df:31:9f:57:2b:2b:ef:fb:da:7a: de:99:d0:17:5c:d4:b7:14:69:76:d4:a4:25:36:14: 8b:0b:4b:0f:6f:e2:0e:e9:61:70:9f:82:7c:b1:d3: a1:45:14:86:50:c2:e3:e8:2f:64:d6:37:d0:a1:7d: 3d:2a:06:af:2d:6a:07:4d:87:f5:ef:da:16:68:b9: 78:33:e6:1f:03:4c:47:ba:e6:92:78:e8:96:14:27: ea:08:94:55:bf:e7:32:c7:75:70:eb:68:50:26:53: 8e:40:9c:18:a8:a3:97:36:d9:05:93:7c:f4:2f:e7: 13:62:30:bf:49:5e:aa:d8:46:d5:20:e5:19:ef:d9: e1:14:90:c6:f8:65:16:25:2a:5e:5f:f8:a9:eb:fa: 14:3c:52:6c:0b:0b:93:ec:6e:36:2a:b8:7f:f2:11: 46:40:4e:67:4d:07:c5:7a:a6:a8:9c:0a:2c:1b:c0: d7:e1:d8:70:86:f7:bf:3f:19:06:88:3a:4f:1d:b7: b5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FF:4F:01:C4:44:99:C5:23:94:F6:71:CE:B2:11:88:5C:E2:5A:86 X509v3 Authority Key Identifier: keyid:C3:52:DF:D7:97:F0:81:41:03:50:01:30:B1:A6:B6:87:63:55:C3:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/C352DFD797F0814103500130B1A6B6876355C3DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C352DFD797F0814103500130B1A6B6876355C3DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.249.0/24 Signature Algorithm: sha256WithRSAEncryption 57:a4:c6:7b:f2:30:b5:d9:17:0d:70:1b:f7:07:e2:de:97:86: dc:6c:0b:dc:ad:5b:6f:a0:f7:3e:90:6a:ee:1c:69:75:57:37: 71:d2:6f:f3:ad:6c:07:23:32:d3:d6:4d:36:6f:e8:ff:1f:41: 7a:9c:81:b9:bf:74:77:b7:ac:49:47:e2:66:51:2a:eb:2e:dc: e4:06:a8:7d:46:8f:79:0c:d6:12:3e:85:f3:0a:6a:76:55:49: 5e:af:cb:62:06:0a:80:fa:b4:49:bf:1c:d2:8e:e8:8f:df:ca: f9:c7:46:61:f1:5b:7a:b7:3e:be:26:47:89:ab:40:c9:7f:aa: 0f:c1:ea:08:8f:7e:6c:1c:05:b6:22:c5:17:87:82:a5:1e:20: 63:ed:c3:79:f9:e6:a2:1c:d7:68:c7:b1:78:a1:67:ea:81:86: 10:d4:58:28:67:98:b2:c2:85:86:c3:72:79:4a:9f:2b:e3:75: be:fe:a7:dc:d3:b5:c2:38:ff:34:7c:fd:40:e4:1a:04:2c:45: 30:1b:67:2d:e0:6d:71:fd:93:87:4f:3e:a3:f7:2c:03:8c:fa: 31:35:ce:1b:8c:e6:0b:4b:a2:c4:95:f0:d6:a1:a2:d2:2c:2d: df:fe:a2:50:69:43:a0:65:83:83:b1:8f:cf:eb:57:ed:08:a0: 0f:b5:53:34 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY6RkXFg1nSa8+TEngG7fjuz3xoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM1MkRGRDc5N0YwODE0MTAzNTAwMTMwQjFBNkI2ODc2 MzU1QzNERjAeFw0yNjA1MDMwMjM4MThaFw0yNzA1MDIwMjQzMThaMDMxMTAvBgNV BAMTKDc0RkY0RjAxQzQ0NDk5QzUyMzk0RjY3MUNFQjIxMTg4NUNFMjVBODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmSbCZlkei4M7xDE7+UhhIP1KE f8mID6ocOg/mw6DwGJSOE3IATNgVxxU/ft+s2Q5SWddfQ3kc4g0Zf2OmcPrq3zGf Vysr7/vaet6Z0Bdc1LcUaXbUpCU2FIsLSw9v4g7pYXCfgnyx06FFFIZQwuPoL2TW N9ChfT0qBq8tagdNh/Xv2hZouXgz5h8DTEe65pJ46JYUJ+oIlFW/5zLHdXDraFAm U45AnBioo5c22QWTfPQv5xNiML9JXqrYRtUg5Rnv2eEUkMb4ZRYlKl5f+Knr+hQ8 UmwLC5PsbjYquH/yEUZATmdNB8V6pqicCiwbwNfh2HCG978/GQaIOk8dt7VJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdP9PAcREmcUjlPZxzrIRiFziWoYwHwYDVR0j BBgwFoAUw1Lf15fwgUEDUAEwsaa2h2NVw98wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzQ2N2VjMzMtNWE3Mi00YzY1LTlmZDMtNjZlZjg0NzkzOTRkLzAvQzM1MkRGRDc5 N0YwODE0MTAzNTAwMTMwQjFBNkI2ODc2MzU1QzNERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMzUyREZENzk3RjA4MTQxMDM1MDAxMzBCMUE2QjY4NzYzNTVD M0RGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc0NjdlYzMzLTVhNzItNGM2NS05 ZmQzLTY2ZWY4NDc5Mzk0ZC8wLzMxMzAzMzJlMzEzODM4MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvPkwDQYJ KoZIhvcNAQELBQADggEBAFekxnvyMLXZFw1wG/cH4t6XhtxsC9ytW2+g9z6Qau4c aXVXN3HSb/OtbAcjMtPWTTZv6P8fQXqcgbm/dHe3rElH4mZRKusu3OQGqH1Gj3kM 1hI+hfMKanZVSV6vy2IGCoD6tEm/HNKO6I/fyvnHRmHxW3q3Pr4mR4mrQMl/qg/B 6giPfmwcBbYixReHgqUeIGPtw3n55qIc12jHsXihZ+qBhhDUWChnmLLChYbDcnlK nyvjdb7+p9zTtcI4/zR8/UDkGgQsRTAbZy3gbXH9k4dPPqP3LAOM+jE1zhuM5gtL osSV8NahotIsLd/+olBpQ6Blg4Oxj8/rV+0IoA+1UzQ= -----END CERTIFICATE-----Generated at Wed May 13 13:20:41 2026 by rpki-client