$ rpki-client -vvf rpki-rsync.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa File: 3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa (raw, json) Hash identifier: 10SNmFgccvYgJ2UV57b04CHFVLMxOGS2khiF98evAls= Subject key identifier: D2:04:38:0A:FF:7F:F6:54:27:40:FF:33:7C:18:FF:A3:30:D1:EE:A8 Certificate issuer: /CN=3AF015F925061D7540F9BBFA45C6C7A944312663 Certificate serial: 73036741880C23E799EC9E3616A35E2254560367 Authority key identifier: 3A:F0:15:F9:25:06:1D:75:40:F9:BB:FA:45:C6:C7:A9:44:31:26:63 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3AF015F925061D7540F9BBFA45C6C7A944312663.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa Signing time: Sun 03 May 2026 02:46:35 +0000 ROA not before: Sun 03 May 2026 02:41:35 +0000 ROA not after: Sun 02 May 2027 02:46:35 +0000 asID: 131728 IP address blocks: 103.12.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3AF015F925061D7540F9BBFA45C6C7A944312663.crl rsync://rpki-rsync.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3AF015F925061D7540F9BBFA45C6C7A944312663.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3AF015F925061D7540F9BBFA45C6C7A944312663.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:03:67:41:88:0c:23:e7:99:ec:9e:36:16:a3:5e:22:54:56:03:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3AF015F925061D7540F9BBFA45C6C7A944312663 Validity Not Before: May 3 02:41:35 2026 GMT Not After : May 2 02:46:35 2027 GMT Subject: CN=D204380AFF7FF6542740FF337C18FFA330D1EEA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:38:c9:91:b5:3f:33:8d:93:9d:87:95:07:1d: bf:e1:5e:7e:30:1a:00:0c:70:e4:2c:92:1e:fd:0b: 01:00:c1:b6:1f:c8:b4:d2:97:ec:77:79:88:52:8f: dc:f7:ee:26:9c:32:4d:5d:32:1a:8d:de:3a:90:d1: 8f:f4:27:7c:87:92:94:19:01:e6:ff:7f:a3:72:8a: 23:26:38:3f:21:5a:d6:c3:5f:6d:a8:d0:00:24:fd: c4:77:7f:fc:2c:7e:64:76:e7:fe:3a:86:59:ed:eb: 6b:a0:fe:e3:ba:84:4b:22:75:bb:49:84:8d:54:0f: 97:8a:c1:32:db:cc:77:3e:6d:7a:c5:c4:6d:b3:53: be:ac:65:5d:96:fb:c9:d4:fa:3f:1a:58:3f:ff:70: a2:a3:e3:30:c5:b5:61:52:30:ec:51:4c:3b:a7:97: 05:61:a4:a7:ea:1c:fd:ab:ba:33:02:c2:97:a0:0f: 95:83:b1:68:52:19:56:08:e7:9d:e3:ca:a8:48:00: 3f:4f:41:e1:a1:25:24:5f:7f:45:5e:61:f2:77:e7: 30:ce:c1:e0:ec:61:22:fe:79:68:95:67:fd:ff:1f: e4:10:cb:cb:82:3e:7f:96:f5:75:ef:0e:ee:c9:15: 00:7d:01:c1:0b:da:c0:7a:17:4f:56:9a:b0:7e:c9: dc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:04:38:0A:FF:7F:F6:54:27:40:FF:33:7C:18:FF:A3:30:D1:EE:A8 X509v3 Authority Key Identifier: keyid:3A:F0:15:F9:25:06:1D:75:40:F9:BB:FA:45:C6:C7:A9:44:31:26:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3AF015F925061D7540F9BBFA45C6C7A944312663.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3AF015F925061D7540F9BBFA45C6C7A944312663.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.12.112.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:da:d7:28:4a:af:81:5d:50:2f:8a:cf:7c:3f:32:08:7c:aa: 6e:cd:8d:f6:74:a0:b5:ae:3a:21:32:4e:9a:23:54:d5:78:cc: f1:f5:97:ed:12:c4:44:fe:8e:c3:0b:d7:1e:dd:da:4c:74:13: 12:c4:65:21:b6:a5:7a:a0:3a:33:1d:54:6a:1a:dc:3b:6a:0a: 2f:68:39:76:74:b7:3e:0c:a0:b8:3d:56:65:f2:45:aa:c1:57: 0c:72:38:09:2b:43:10:90:32:ff:a7:80:df:6f:44:5a:0f:c5: e8:21:17:d4:bf:71:aa:ae:51:32:d6:48:cc:9a:c8:a7:8d:1e: 98:d2:de:cb:78:67:e8:35:ec:e7:81:7a:da:7f:23:5c:0c:46: 77:d9:27:65:8c:fc:33:da:24:88:a0:e4:3c:38:ab:dc:0b:db: 1d:c2:2a:9f:9e:95:07:27:31:f2:35:f5:47:96:95:76:14:25: 3a:89:30:58:be:86:d2:be:35:b8:18:ed:8b:9e:1a:0c:4d:e9: 9e:01:d2:de:67:a8:f6:d3:1f:46:2d:63:48:14:e2:62:a2:a8: eb:35:90:9e:b9:ac:8d:4c:b7:94:98:4e:b8:32:7e:2f:c5:3b: 00:43:f8:ba:49:a1:74:e9:de:04:8e:77:5b:c1:2e:c2:8f:c3: b2:59:62:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcwNnQYgMI+eZ7J42FqNeIlRWA2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0FGMDE1RjkyNTA2MUQ3NTQwRjlCQkZBNDVDNkM3QTk0 NDMxMjY2MzAeFw0yNjA1MDMwMjQxMzVaFw0yNzA1MDIwMjQ2MzVaMDMxMTAvBgNV BAMTKEQyMDQzODBBRkY3RkY2NTQyNzQwRkYzMzdDMThGRkEzMzBEMUVFQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsOMmRtT8zjZOdh5UHHb/hXn4w GgAMcOQskh79CwEAwbYfyLTSl+x3eYhSj9z37iacMk1dMhqN3jqQ0Y/0J3yHkpQZ Aeb/f6NyiiMmOD8hWtbDX22o0AAk/cR3f/wsfmR25/46hlnt62ug/uO6hEsidbtJ hI1UD5eKwTLbzHc+bXrFxG2zU76sZV2W+8nU+j8aWD//cKKj4zDFtWFSMOxRTDun lwVhpKfqHP2rujMCwpegD5WDsWhSGVYI553jyqhIAD9PQeGhJSRff0VeYfJ35zDO weDsYSL+eWiVZ/3/H+QQy8uCPn+W9XXvDu7JFQB9AcEL2sB6F09WmrB+ydw5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0gQ4Cv9/9lQnQP8zfBj/ozDR7qgwHwYDVR0j BBgwFoAUOvAV+SUGHXVA+bv6RcbHqUQxJmMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODAxNWE4NTUtYjI5Yy00NTAyLWFmODEtY2JiOGI0ZjdmMGY3LzAvM0FGMDE1Rjky NTA2MUQ3NTQwRjlCQkZBNDVDNkM3QTk0NDMxMjY2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQUYwMTVGOTI1MDYxRDc1NDBGOUJCRkE0NUM2QzdBOTQ0MzEy NjYzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgwMTVhODU1LWIyOWMtNDUwMi1h ZjgxLWNiYjhiNGY3ZjBmNy8wLzMxMzAzMzJlMzEzMjJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZwxwMA0GCSqG SIb3DQEBCwUAA4IBAQCd2tcoSq+BXVAvis98PzIIfKpuzY32dKC1rjohMk6aI1TV eMzx9ZftEsRE/o7DC9ce3dpMdBMSxGUhtqV6oDozHVRqGtw7agovaDl2dLc+DKC4 PVZl8kWqwVcMcjgJK0MQkDL/p4Dfb0RaD8XoIRfUv3GqrlEy1kjMmsinjR6Y0t7L eGfoNezngXrafyNcDEZ32SdljPwz2iSIoOQ8OKvcC9sdwiqfnpUHJzHyNfVHlpV2 FCU6iTBYvobSvjW4GO2LnhoMTemeAdLeZ6j20x9GLWNIFOJioqjrNZCeuayNTLeU mE64Mn4vxTsAQ/i6SaF06d4EjndbwS7Cj8OyWWJU -----END CERTIFICATE-----Generated at Wed May 13 06:19:33 2026 by rpki-client