$ rpki-client -vvf rpki-rsync.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa File: 3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa (raw, json) Hash identifier: on3Z5+oGLgDPw5+hDaeYnOMdZt9Rn04eceq9zR1eBlQ= Subject key identifier: 55:78:AE:04:26:87:B3:0E:45:79:E4:3E:7C:7A:CD:B0:D5:9E:8C:88 Certificate issuer: /CN=1367EFA8AE36CCF2B126747358BA15C62F3C39C4 Certificate serial: 09AC484D982585C638CFB4C7976848BA5A960941 Authority key identifier: 13:67:EF:A8:AE:36:CC:F2:B1:26:74:73:58:BA:15:C6:2F:3C:39:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1367EFA8AE36CCF2B126747358BA15C62F3C39C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa Signing time: Sun 03 May 2026 02:45:43 +0000 ROA not before: Sun 03 May 2026 02:40:43 +0000 ROA not after: Sun 02 May 2027 02:45:43 +0000 asID: 141125 IP address blocks: 103.158.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/1367EFA8AE36CCF2B126747358BA15C62F3C39C4.crl rsync://rpki-rsync.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/1367EFA8AE36CCF2B126747358BA15C62F3C39C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1367EFA8AE36CCF2B126747358BA15C62F3C39C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ac:48:4d:98:25:85:c6:38:cf:b4:c7:97:68:48:ba:5a:96:09:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1367EFA8AE36CCF2B126747358BA15C62F3C39C4 Validity Not Before: May 3 02:40:43 2026 GMT Not After : May 2 02:45:43 2027 GMT Subject: CN=5578AE042687B30E4579E43E7C7ACDB0D59E8C88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:fa:d4:66:83:42:c4:8a:15:8a:d2:5d:11: e0:0b:e7:02:94:4f:ca:20:45:7a:ee:ae:fd:18:ee: 64:f1:32:29:86:d4:e7:52:ea:b7:58:9c:de:0f:13: 67:67:cc:90:c5:31:66:fb:99:c1:34:66:00:a9:56: 68:9b:56:8f:69:51:1d:3b:cc:0a:eb:82:89:5a:9b: ca:cf:21:27:ed:80:65:8e:d5:14:b9:ef:22:65:96: 35:3d:f1:2c:89:fb:24:5e:30:64:5a:fa:e8:f2:21: 54:eb:f2:7e:2c:93:84:e2:16:63:83:1d:1e:c7:20: 8a:a3:4c:cb:d6:70:23:19:7b:85:e4:af:6a:df:28: 4f:f5:45:c2:52:5f:36:07:d2:ed:db:0a:9d:d7:29: 62:b1:2b:ec:6b:d4:d8:17:42:ad:a0:f2:0d:59:19: ed:1f:58:5e:b0:dc:44:af:7e:5d:69:ef:cd:51:58: 1b:d4:2a:35:20:60:cd:0f:fa:c0:01:99:3e:30:55: 0c:56:1b:b0:1c:4d:f8:39:9e:a5:46:48:94:3f:ba: 8c:f9:ac:8f:1e:37:36:ef:83:1a:96:c2:54:4b:51: f8:e9:c9:97:05:f0:d4:a0:71:dd:dd:91:b3:2b:9c: 50:de:f2:cb:56:a6:c8:af:7a:64:27:59:20:4d:92: 30:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:78:AE:04:26:87:B3:0E:45:79:E4:3E:7C:7A:CD:B0:D5:9E:8C:88 X509v3 Authority Key Identifier: keyid:13:67:EF:A8:AE:36:CC:F2:B1:26:74:73:58:BA:15:C6:2F:3C:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/1367EFA8AE36CCF2B126747358BA15C62F3C39C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1367EFA8AE36CCF2B126747358BA15C62F3C39C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.98.0/23 Signature Algorithm: sha256WithRSAEncryption ca:ff:63:08:63:57:b1:19:0d:1b:97:bd:e6:c5:94:81:a2:a4: 2d:c6:f1:44:74:ff:41:48:a5:47:be:bc:e7:7a:03:09:b3:cd: 73:9d:da:96:c8:c0:26:5b:01:c7:ae:2d:72:03:45:03:33:6b: 29:0b:7f:67:b6:5b:9d:ce:6d:85:c6:9f:c2:fb:30:23:5e:f3: 70:6f:ef:be:b8:ba:3c:97:66:ec:06:11:f9:3b:5f:79:69:a7: 7d:c3:e6:fa:62:b2:10:b8:4a:9c:81:2f:40:c8:59:dc:1b:bf: 57:4b:aa:4b:4b:22:f5:93:25:bf:d9:4a:e3:e6:7e:04:b6:c6: 58:f7:94:64:cc:dc:b1:46:9c:45:f6:b8:54:5f:47:09:29:80: 04:4f:d6:a3:de:21:cc:d1:04:79:c8:7a:44:d0:6c:68:cb:60: 29:e7:0c:ea:01:f3:8b:9c:72:77:e0:6c:79:34:3d:8c:57:ad: b1:ba:3c:df:0d:97:a2:db:c9:e1:a4:98:e7:76:7b:57:12:9c: c2:5a:2a:7d:11:bd:76:0a:ff:a0:fe:35:3b:83:0e:14:b7:18: 66:9e:e1:34:a4:4b:40:c0:e0:90:9f:0b:98:e0:6d:58:06:2e: 73:36:bd:1c:c1:77:92:6a:b1:f3:15:8f:c8:b7:cd:54:2d:4e: 3a:12:4b:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCaxITZglhcY4z7THl2hIulqWCUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM2N0VGQThBRTM2Q0NGMkIxMjY3NDczNThCQTE1QzYy RjNDMzlDNDAeFw0yNjA1MDMwMjQwNDNaFw0yNzA1MDIwMjQ1NDNaMDMxMTAvBgNV BAMTKDU1NzhBRTA0MjY4N0IzMEU0NTc5RTQzRTdDN0FDREIwRDU5RThDODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClq/rUZoNCxIoVitJdEeAL5wKU T8ogRXrurv0Y7mTxMimG1OdS6rdYnN4PE2dnzJDFMWb7mcE0ZgCpVmibVo9pUR07 zArrgolam8rPISftgGWO1RS57yJlljU98SyJ+yReMGRa+ujyIVTr8n4sk4TiFmOD HR7HIIqjTMvWcCMZe4Xkr2rfKE/1RcJSXzYH0u3bCp3XKWKxK+xr1NgXQq2g8g1Z Ge0fWF6w3ESvfl1p781RWBvUKjUgYM0P+sABmT4wVQxWG7AcTfg5nqVGSJQ/uoz5 rI8eNzbvgxqWwlRLUfjpyZcF8NSgcd3dkbMrnFDe8stWpsivemQnWSBNkjAJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVXiuBCaHsw5FeeQ+fHrNsNWejIgwHwYDVR0j BBgwFoAUE2fvqK42zPKxJnRzWLoVxi88OcQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2Q2ODUwMGMtNDlmOC00ZjAxLTg3NzQtZjdjMzE2NGEwYTU4LzAvMTM2N0VGQThB RTM2Q0NGMkIxMjY3NDczNThCQTE1QzYyRjNDMzlDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMzY3RUZBOEFFMzZDQ0YyQjEyNjc0NzM1OEJBMTVDNjJGM0Mz OUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdkNjg1MDBjLTQ5ZjgtNGYwMS04 Nzc0LWY3YzMxNjRhMGE1OC8wLzMxMzAzMzJlMzEzNTM4MmUzOTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ55iMA0GCSqG SIb3DQEBCwUAA4IBAQDK/2MIY1exGQ0bl73mxZSBoqQtxvFEdP9BSKVHvrznegMJ s81zndqWyMAmWwHHri1yA0UDM2spC39ntludzm2Fxp/C+zAjXvNwb+++uLo8l2bs BhH5O195aad9w+b6YrIQuEqcgS9AyFncG79XS6pLSyL1kyW/2Urj5n4EtsZY95Rk zNyxRpxF9rhUX0cJKYAET9aj3iHM0QR5yHpE0Gxoy2Ap5wzqAfOLnHJ34Gx5ND2M V62xujzfDZei28nhpJjndntXEpzCWip9Eb12Cv+g/jU7gw4UtxhmnuE0pEtAwOCQ nwuY4G1YBi5zNr0cwXeSarHzFY/It81ULU46EkvH -----END CERTIFICATE-----Generated at Wed May 13 15:39:28 2026 by rpki-client