$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa File: 3130332e32302e3138392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: u28Gp2P78Rkr5OmrjjB3RCUE9KIBOFm4VOHaugoOlnE= Subject key identifier: 6E:D7:2E:07:66:8E:8F:24:78:AB:38:28:2F:00:9C:8D:DC:12:DF:38 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 7DDF89D5172C610E46A871871A83A26EB7DE7493 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:59 +0000 ROA not before: Sun 03 May 2026 02:42:59 +0000 ROA not after: Sun 02 May 2027 02:47:59 +0000 asID: 55685 IP address blocks: 103.20.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:df:89:d5:17:2c:61:0e:46:a8:71:87:1a:83:a2:6e:b7:de:74:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:59 2026 GMT Not After : May 2 02:47:59 2027 GMT Subject: CN=6ED72E07668E8F2478AB38282F009C8DDC12DF38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:47:a7:eb:d3:45:03:36:9d:f8:d9:05:5e:25: 86:5b:bc:45:3a:9a:ab:ee:86:67:d6:ce:d2:23:d1: 36:3c:b6:24:5b:ac:92:db:53:4a:2e:0c:17:7e:21: db:8b:f0:91:7d:7f:c4:3a:99:31:4c:e0:ba:e9:2b: 81:03:94:5d:93:83:c8:a1:b5:1c:5e:17:f6:8d:43: 3d:c5:18:59:4e:ab:7b:0d:fe:17:f6:52:8b:26:33: 5e:56:d6:9e:fb:54:8c:f8:1c:4f:e8:7d:4b:99:29: 56:36:ad:41:1f:21:18:bc:41:0f:02:76:ce:cc:c8: b8:e5:1b:05:fc:1a:32:ef:36:d8:57:cc:0e:39:19: 23:b5:4d:08:2e:0b:30:e1:5e:c0:31:e5:f8:6a:d8: 74:3a:c2:15:7d:8b:6b:91:06:13:3e:04:b4:22:cc: 52:89:47:ba:7d:e7:4a:b2:a4:a6:74:1a:1d:6e:31: 6c:6d:24:80:95:68:18:fd:18:91:1a:bf:c3:90:fa: 22:e6:bb:98:87:08:04:d1:04:58:95:aa:60:7c:57: 0d:78:d5:7f:a4:ba:a7:4a:b1:c3:c4:95:40:99:c4: 8b:64:5e:b3:be:e3:ce:4d:25:2f:2b:21:b6:79:ee: 87:fe:f6:66:00:91:ea:e0:67:11:67:0a:7f:d2:90: a5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D7:2E:07:66:8E:8F:24:78:AB:38:28:2F:00:9C:8D:DC:12:DF:38 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.189.0/24 Signature Algorithm: sha256WithRSAEncryption 76:48:75:26:63:99:12:89:a5:09:a1:af:22:07:af:cd:c5:c1: e0:97:4f:22:80:01:cc:ff:df:85:7b:bd:0a:f5:06:80:d0:17: a0:8a:39:17:8d:a9:fa:d8:19:27:01:25:71:a2:e3:75:d0:4f: 88:0b:ed:25:45:57:5d:74:ab:e0:d4:18:d7:54:12:72:89:a1: 2c:b2:ed:7b:db:bd:9d:48:c9:54:13:ef:c8:c1:69:4e:c6:c8: af:b4:47:70:1d:5d:fb:6e:ef:be:1a:4b:d5:33:38:99:bb:97: be:95:ef:26:05:fd:6e:26:6e:2a:65:8a:a0:21:39:ec:1b:8a: a2:63:93:83:23:9a:7d:e7:cc:4d:8e:1c:48:17:22:3b:c1:e4: 1a:7e:6a:34:2d:6f:c6:c3:af:1e:6e:74:a5:0a:d5:1f:62:34: af:96:f8:c8:c6:ac:0e:74:89:75:f2:b0:35:b6:4d:cd:67:43: 56:9c:70:e6:2f:d1:0b:d1:1a:f7:e9:ca:6d:0a:29:09:ab:89: 6b:fe:7c:a5:d0:03:7d:66:d5:b4:8b:86:4b:31:90:2a:5b:c7: d9:f3:2c:30:cf:25:51:cc:df:65:27:5a:ea:04:92:18:fa:2a: 06:5f:ae:f1:09:79:5f:01:a6:87:36:b0:f4:e1:ec:98:c2:e6: b9:c7:18:15 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfd+J1RcsYQ5GqHGHGoOibrfedJMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTlaFw0yNzA1MDIwMjQ3NTlaMDMxMTAvBgNV BAMTKDZFRDcyRTA3NjY4RThGMjQ3OEFCMzgyODJGMDA5QzhEREMxMkRGMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtR6fr00UDNp342QVeJYZbvEU6 mqvuhmfWztIj0TY8tiRbrJLbU0ouDBd+IduL8JF9f8Q6mTFM4LrpK4EDlF2Tg8ih tRxeF/aNQz3FGFlOq3sN/hf2UosmM15W1p77VIz4HE/ofUuZKVY2rUEfIRi8QQ8C ds7MyLjlGwX8GjLvNthXzA45GSO1TQguCzDhXsAx5fhq2HQ6whV9i2uRBhM+BLQi zFKJR7p950qypKZ0Gh1uMWxtJICVaBj9GJEav8OQ+iLmu5iHCATRBFiVqmB8Vw14 1X+kuqdKscPElUCZxItkXrO+485NJS8rIbZ57of+9mYAkergZxFnCn/SkKVFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbtcuB2aOjyR4qzgoLwCcjdwS3zgwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzAzMzJlMzIzMDJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUvTANBgkqhkiG 9w0BAQsFAAOCAQEAdkh1JmOZEomlCaGvIgevzcXB4JdPIoABzP/fhXu9CvUGgNAX oIo5F42p+tgZJwElcaLjddBPiAvtJUVXXXSr4NQY11QScomhLLLte9u9nUjJVBPv yMFpTsbIr7RHcB1d+27vvhpL1TM4mbuXvpXvJgX9biZuKmWKoCE57BuKomOTgyOa fefMTY4cSBciO8HkGn5qNC1vxsOvHm50pQrVH2I0r5b4yMasDnSJdfKwNbZNzWdD Vpxw5i/RC9Ea9+nKbQopCauJa/58pdADfWbVtIuGSzGQKlvH2fMsMM8lUczfZSda 6gSSGPoqBl+u8Ql5XwGmhzaw9OHsmMLmuccYFQ== -----END CERTIFICATE-----Generated at Wed May 13 02:51:16 2026 by rpki-client