$ rpki-client -vvf rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa File: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (raw, json) Hash identifier: Uh5y0YtfY7V2qTdTkRsIfNJf6g7Mb5/NMceYo7geuVc= Subject key identifier: 3A:2D:4E:D7:83:E2:B3:E5:B2:AC:16:94:5C:C5:D6:2E:17:CF:82:FB Certificate issuer: /CN=32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326 Certificate serial: 2AACF2403A2B264E2A037E2646EF5DC77285FEDE Authority key identifier: 32:BA:6A:EC:51:EA:21:4B:B4:B7:42:FA:E2:EC:3F:0C:4D:72:B3:26 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa Signing time: Sun 03 May 2026 02:46:54 +0000 ROA not before: Sun 03 May 2026 02:41:54 +0000 ROA not after: Sun 02 May 2027 02:46:54 +0000 asID: 151556 IP address blocks: 103.250.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.crl rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ac:f2:40:3a:2b:26:4e:2a:03:7e:26:46:ef:5d:c7:72:85:fe:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326 Validity Not Before: May 3 02:41:54 2026 GMT Not After : May 2 02:46:54 2027 GMT Subject: CN=3A2D4ED783E2B3E5B2AC16945CC5D62E17CF82FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e1:71:60:53:47:8c:33:21:2b:45:60:86:05: 65:b6:c5:7f:f3:2e:2b:45:c1:d0:bf:79:6f:64:2a: de:78:e8:9e:05:d5:bc:a0:10:64:ec:54:c0:d7:f7: a8:e4:d1:ca:f3:e5:b8:97:31:4d:f8:d2:10:1d:2f: 54:8e:ca:fb:fa:03:e1:60:08:97:f1:c3:3a:91:20: 44:3f:70:90:dc:4d:62:20:4b:71:af:5b:df:db:ea: 82:32:69:8c:07:f9:27:b3:83:51:ae:0c:b9:c1:e7: 3c:50:d3:cc:31:e5:ae:4e:70:8d:1e:5d:63:62:ff: 48:a7:35:25:a0:90:0d:78:a0:e8:b4:7c:84:fb:7e: 35:ed:fa:3b:23:1a:a9:f4:15:ae:e3:ef:9a:18:1c: 4a:9f:7d:63:c2:3f:7b:bf:13:05:5c:bc:3d:d1:af: 46:f0:b3:9c:7c:e4:55:da:6f:ed:69:2f:c8:a0:72: ff:a3:31:b5:ff:8a:c5:97:cd:f6:13:41:5f:8d:8a: 41:5f:8a:a5:c9:21:ff:03:f5:1c:d2:de:25:db:67: d3:ba:13:eb:9d:01:9e:7d:ba:aa:86:81:26:04:fe: 04:57:20:7e:12:18:d3:9b:a6:4e:e6:c7:92:a1:82: 24:7f:aa:65:ed:d4:ef:9c:31:10:a0:1d:09:fe:e6: 24:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:2D:4E:D7:83:E2:B3:E5:B2:AC:16:94:5C:C5:D6:2E:17:CF:82:FB X509v3 Authority Key Identifier: keyid:32:BA:6A:EC:51:EA:21:4B:B4:B7:42:FA:E2:EC:3F:0C:4D:72:B3:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 22:3f:7a:46:d4:5a:cb:a5:6c:b7:85:5c:df:f2:8f:d7:a6:63: 63:11:cf:a2:9d:ec:7d:95:20:ab:37:d4:2c:51:19:11:96:93: ee:60:e2:49:1c:58:46:6a:0d:1b:fa:70:c3:f4:d5:e4:94:c5: a7:61:24:ea:db:c5:be:84:c9:db:39:bd:25:36:89:a9:17:38: 9f:4b:f6:57:bd:1b:e7:41:de:d7:68:3d:3e:c8:c1:8b:e1:f0: c5:11:91:f2:f9:75:52:f1:b0:3c:d7:fa:9a:ca:99:4e:a2:6d: ca:b2:dd:46:03:7a:1e:86:45:11:8b:09:cc:4c:4b:b2:f4:b1: 39:36:73:db:77:db:70:d7:1c:0e:97:ab:32:ea:ad:9c:50:44: f3:13:33:a3:2b:40:00:52:47:ca:f9:24:60:5a:66:ab:a5:d5: b9:dd:b5:43:f4:6d:39:74:1b:23:a8:f1:0b:3e:14:ec:e0:06: 96:62:5b:81:d1:9d:31:f8:07:be:64:a4:88:b7:81:c9:86:17: 56:69:d3:54:e3:08:bb:14:f0:47:ae:8d:41:90:45:5a:16:a6: 79:c8:80:d2:55:72:d4:bb:6b:03:89:df:ae:04:39:1c:d7:d0: c2:26:2d:a1:8e:37:31:50:c0:5b:0f:9c:b0:4c:bb:ba:99:2d: 25:8c:89:3b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKqzyQDorJk4qA34mRu9dx3KF/t4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJCQTZBRUM1MUVBMjE0QkI0Qjc0MkZBRTJFQzNGMEM0 RDcyQjMyNjAeFw0yNjA1MDMwMjQxNTRaFw0yNzA1MDIwMjQ2NTRaMDMxMTAvBgNV BAMTKDNBMkQ0RUQ3ODNFMkIzRTVCMkFDMTY5NDVDQzVENjJFMTdDRjgyRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM4XFgU0eMMyErRWCGBWW2xX/z LitFwdC/eW9kKt546J4F1bygEGTsVMDX96jk0crz5biXMU340hAdL1SOyvv6A+Fg CJfxwzqRIEQ/cJDcTWIgS3GvW9/b6oIyaYwH+Sezg1GuDLnB5zxQ08wx5a5OcI0e XWNi/0inNSWgkA14oOi0fIT7fjXt+jsjGqn0Fa7j75oYHEqffWPCP3u/EwVcvD3R r0bws5x85FXab+1pL8igcv+jMbX/isWXzfYTQV+NikFfiqXJIf8D9RzS3iXbZ9O6 E+udAZ59uqqGgSYE/gRXIH4SGNObpk7mx5KhgiR/qmXt1O+cMRCgHQn+5iQ1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOi1O14Pis+WyrBaUXMXWLhfPgvswHwYDVR0j BBgwFoAUMrpq7FHqIUu0t0L64uw/DE1ysyYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODExZDlhYmMtNDk4Ny00ZGJjLTk3NmQtM2YzMmIyOTE3MTVkLzAvMzJCQTZBRUM1 MUVBMjE0QkI0Qjc0MkZBRTJFQzNGMEM0RDcyQjMyNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMkJBNkFFQzUxRUEyMTRCQjRCNzQyRkFFMkVDM0YwQzRENzJC MzI2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgxMWQ5YWJjLTQ5ODctNGRiYy05 NzZkLTNmMzJiMjkxNzE1ZC8wLzMxMzAzMzJlMzIzNTMwMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn+oEwDQYJ KoZIhvcNAQELBQADggEBACI/ekbUWsulbLeFXN/yj9emY2MRz6Kd7H2VIKs31CxR GRGWk+5g4kkcWEZqDRv6cMP01eSUxadhJOrbxb6Eyds5vSU2iakXOJ9L9le9G+dB 3tdoPT7IwYvh8MURkfL5dVLxsDzX+prKmU6ibcqy3UYDeh6GRRGLCcxMS7L0sTk2 c9t323DXHA6XqzLqrZxQRPMTM6MrQABSR8r5JGBaZqul1bndtUP0bTl0GyOo8Qs+ FOzgBpZiW4HRnTH4B75kpIi3gcmGF1Zp01TjCLsU8EeujUGQRVoWpnnIgNJVctS7 awOJ364EORzX0MImLaGONzFQwFsPnLBMu7qZLSWMiTs= -----END CERTIFICATE-----Generated at Wed May 13 07:35:46 2026 by rpki-client