$ rpki-client -vvf rpki-rsync.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: JWRAbVAjtrWhFFtCysEBNwNfbA2iEIXgMLaHDiFbSiE= Subject key identifier: 85:2E:AE:1E:C1:19:38:30:60:CF:D3:83:43:6B:09:49:CC:FC:D3:10 Certificate issuer: /CN=CFAB76BA352A38D20728AC2158C798F4B46EB514 Certificate serial: 66B517C53D33E983CA40C7E439BA5D5325AD62E8 Authority key identifier: CF:AB:76:BA:35:2A:38:D2:07:28:AC:21:58:C7:98:F4:B4:6E:B5:14 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFAB76BA352A38D20728AC2158C798F4B46EB514.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 02:43:41 +0000 ROA not before: Sun 03 May 2026 02:38:41 +0000 ROA not after: Sun 02 May 2027 02:43:41 +0000 asID: 135478 IP address blocks: 103.129.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/CFAB76BA352A38D20728AC2158C798F4B46EB514.crl rsync://rpki-rsync.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/CFAB76BA352A38D20728AC2158C798F4B46EB514.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFAB76BA352A38D20728AC2158C798F4B46EB514.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b5:17:c5:3d:33:e9:83:ca:40:c7:e4:39:ba:5d:53:25:ad:62:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFAB76BA352A38D20728AC2158C798F4B46EB514 Validity Not Before: May 3 02:38:41 2026 GMT Not After : May 2 02:43:41 2027 GMT Subject: CN=852EAE1EC119383060CFD383436B0949CCFCD310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4e:81:56:27:31:02:37:9b:46:67:e3:06:10: c1:f6:cb:de:f8:ae:39:41:69:88:b8:94:41:7c:97: 8f:af:90:aa:82:27:61:1b:e0:9b:50:6f:b1:5f:e6: f6:32:27:0f:03:7a:52:6c:ef:b7:5e:58:89:16:c4: f5:e1:20:90:00:76:df:f9:c9:99:8f:d1:63:80:58: 23:ae:44:07:3a:2c:39:30:0a:14:b4:83:54:49:a8: 5c:69:3c:4d:33:54:a8:6c:f1:ed:58:e0:c2:c5:c4: e3:9a:0d:76:53:64:64:b1:1a:5e:2c:d6:75:97:9b: 87:13:0f:a8:12:95:6a:83:10:9e:29:e6:58:36:3a: 58:c0:1c:72:5e:59:53:b0:fc:d0:f1:af:cc:e9:59: 5c:7c:f5:63:3a:bf:59:6f:35:bb:b0:57:2d:de:22: 8b:5f:26:3b:6f:6d:1c:95:66:60:45:d7:26:5c:d1: 6e:2e:59:cb:3e:cd:40:2b:9a:77:ee:b2:83:a5:bc: bc:46:41:ee:54:3c:09:ea:8b:fb:cc:77:15:dc:5a: e0:e5:b7:a8:45:1f:62:e7:d4:f8:d0:06:b2:ca:97: 6e:76:17:90:7b:d5:55:d8:62:9b:7f:8e:9e:e7:25: 3c:bd:26:4f:b2:1c:d2:d6:ed:57:48:f1:b9:b7:05: 90:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:2E:AE:1E:C1:19:38:30:60:CF:D3:83:43:6B:09:49:CC:FC:D3:10 X509v3 Authority Key Identifier: keyid:CF:AB:76:BA:35:2A:38:D2:07:28:AC:21:58:C7:98:F4:B4:6E:B5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/CFAB76BA352A38D20728AC2158C798F4B46EB514.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFAB76BA352A38D20728AC2158C798F4B46EB514.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.22.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:99:7e:9f:7a:fe:0b:88:1e:07:cf:64:92:63:71:a6:ef:f9: cf:16:8c:0a:10:b2:d2:59:ef:8c:78:6b:04:17:e8:0a:d1:3d: c6:11:52:f1:d1:5f:30:e4:d1:b7:fb:f4:e1:83:2e:80:5c:09: 48:16:02:80:d9:c7:b7:73:35:26:9d:ae:db:65:74:69:1f:9a: 7c:42:4f:7c:0a:46:99:98:8f:7c:24:f5:62:65:28:cc:91:14: 99:5f:a7:7a:dc:93:06:45:fb:92:71:8a:74:87:b7:e5:22:d3: 08:e4:15:e7:a9:16:c9:df:78:92:ec:8b:f6:47:55:e4:7e:b9: b4:47:f9:9c:5b:1e:90:2c:53:ba:c0:5d:77:71:96:bf:5a:68: 07:b2:db:1e:79:86:05:69:1a:d5:20:7f:20:6f:e8:ae:de:56: ae:05:98:7b:b8:e2:0b:b5:41:f7:24:2c:98:f3:c4:aa:70:52: 02:79:e1:bc:24:12:35:7a:81:e7:79:92:c2:0a:aa:1e:3c:f6: cd:c0:1d:88:9a:88:61:e2:7e:7f:05:98:06:52:a1:ac:40:b7: 93:c4:1f:65:41:45:8e:bd:3b:39:1b:16:27:1a:c2:6d:7a:22: b5:04:40:b3:17:a0:76:34:0d:3b:d5:f8:19:87:d5:6b:64:4d: a5:6b:d7:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZrUXxT0z6YPKQMfkObpdUyWtYugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZBQjc2QkEzNTJBMzhEMjA3MjhBQzIxNThDNzk4RjRC NDZFQjUxNDAeFw0yNjA1MDMwMjM4NDFaFw0yNzA1MDIwMjQzNDFaMDMxMTAvBgNV BAMTKDg1MkVBRTFFQzExOTM4MzA2MENGRDM4MzQzNkIwOTQ5Q0NGQ0QzMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdToFWJzECN5tGZ+MGEMH2y974 rjlBaYi4lEF8l4+vkKqCJ2Eb4JtQb7Ff5vYyJw8DelJs77deWIkWxPXhIJAAdt/5 yZmP0WOAWCOuRAc6LDkwChS0g1RJqFxpPE0zVKhs8e1Y4MLFxOOaDXZTZGSxGl4s 1nWXm4cTD6gSlWqDEJ4p5lg2OljAHHJeWVOw/NDxr8zpWVx89WM6v1lvNbuwVy3e IotfJjtvbRyVZmBF1yZc0W4uWcs+zUArmnfusoOlvLxGQe5UPAnqi/vMdxXcWuDl t6hFH2Ln1PjQBrLKl252F5B71VXYYpt/jp7nJTy9Jk+yHNLW7VdI8bm3BZADAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhS6uHsEZODBgz9ODQ2sJScz80xAwHwYDVR0j BBgwFoAUz6t2ujUqONIHKKwhWMeY9LRutRQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzY1NDI4MzktMjg1OC00OWYwLWFjZGYtZmE3ZDNhYjljNTU4LzAvQ0ZBQjc2QkEz NTJBMzhEMjA3MjhBQzIxNThDNzk4RjRCNDZFQjUxNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRkFCNzZCQTM1MkEzOEQyMDcyOEFDMjE1OEM3OThGNEI0NkVC NTE0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc2NTQyODM5LTI4NTgtNDlmMC1h Y2RmLWZhN2QzYWI5YzU1OC8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EWMA0GCSqG SIb3DQEBCwUAA4IBAQCbmX6fev4LiB4Hz2SSY3Gm7/nPFowKELLSWe+MeGsEF+gK 0T3GEVLx0V8w5NG3+/Thgy6AXAlIFgKA2ce3czUmna7bZXRpH5p8Qk98CkaZmI98 JPViZSjMkRSZX6d63JMGRfuScYp0h7flItMI5BXnqRbJ33iS7Iv2R1Xkfrm0R/mc Wx6QLFO6wF13cZa/WmgHstseeYYFaRrVIH8gb+iu3lauBZh7uOILtUH3JCyY88Sq cFICeeG8JBI1eoHneZLCCqoePPbNwB2Imohh4n5/BZgGUqGsQLeTxB9lQUWOvTs5 GxYnGsJteiK1BECzF6B2NA071fgZh9VrZE2la9fa -----END CERTIFICATE-----Generated at Wed May 13 09:08:50 2026 by rpki-client