$ rpki-client -vvf rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa File: 3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa (raw, json) Hash identifier: pbFqtdrF857Bo284a6tYg8zQs+U7i5koym7amsZuX/8= Subject key identifier: 35:47:BF:85:2A:17:11:20:53:70:5A:CB:FA:12:98:5B:AB:38:06:ED Certificate issuer: /CN=CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034 Certificate serial: 47436DB0958743D8C181F82AC3440423F6238201 Authority key identifier: CB:A7:7B:5D:F0:01:B3:9B:2B:A0:DE:CA:DD:B7:D3:ED:86:2C:10:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa Signing time: Sun 03 May 2026 02:48:14 +0000 ROA not before: Sun 03 May 2026 02:43:14 +0000 ROA not after: Sun 02 May 2027 02:48:14 +0000 asID: 150503 IP address blocks: 103.126.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.crl rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:43:6d:b0:95:87:43:d8:c1:81:f8:2a:c3:44:04:23:f6:23:82:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034 Validity Not Before: May 3 02:43:14 2026 GMT Not After : May 2 02:48:14 2027 GMT Subject: CN=3547BF852A17112053705ACBFA12985BAB3806ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:5f:0c:58:65:ff:e2:4f:39:f4:fc:f3:d2: 07:bc:05:57:75:e1:40:74:41:9f:ec:b5:28:c6:13: c3:e1:4b:26:a7:b0:0e:8a:13:a9:45:86:bf:ac:89: 95:14:14:36:cc:18:6a:1c:47:d6:af:35:1a:6f:32: db:8c:ca:f2:56:2a:4f:68:2a:71:09:f2:a0:92:8b: b3:f3:70:18:ee:09:7d:dd:65:d9:99:7b:7b:6a:7c: 7a:d7:a1:fd:e9:27:d6:dc:33:24:fa:f9:ab:1f:4a: 77:a8:a4:1b:62:5e:4b:ed:cd:fa:52:00:e7:30:c5: 76:1c:99:45:cc:c7:31:c7:11:a8:46:cf:43:32:45: 61:67:43:b9:74:d3:17:f1:35:60:90:11:56:27:9a: c5:ca:e7:c7:e0:4e:11:d6:5f:2f:be:af:72:db:22: 26:3c:ed:a1:09:1b:0f:64:f7:cd:8d:69:e3:0e:37: 1e:99:1f:d3:b4:1e:58:a9:9c:37:80:32:b2:d6:bc: 06:6e:0f:b3:57:74:e7:6d:17:55:81:3c:a2:ab:48: c0:f5:d9:73:85:85:42:51:8c:2c:e0:e6:4a:5e:a5: e9:30:84:13:28:f1:a5:ff:d1:c6:11:89:46:be:12: 6b:6d:99:5f:d9:4a:48:70:63:84:a4:d6:45:78:2b: 03:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:47:BF:85:2A:17:11:20:53:70:5A:CB:FA:12:98:5B:AB:38:06:ED X509v3 Authority Key Identifier: keyid:CB:A7:7B:5D:F0:01:B3:9B:2B:A0:DE:CA:DD:B7:D3:ED:86:2C:10:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.238.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:9f:c8:ab:fc:e2:6f:86:e1:ad:9d:4e:ec:f0:4f:2a:3e:43: 2b:ff:0f:a2:e7:c6:6b:29:fb:4f:b6:97:22:40:82:0c:5c:92: ea:39:78:a5:8d:18:a3:bb:f0:e3:c8:c9:5b:3a:a7:da:eb:43: bd:10:46:71:f7:b0:60:e2:f4:4a:71:09:f2:89:be:f8:f7:9b: 78:89:9a:de:df:a2:16:26:b4:ac:d1:c0:06:12:9b:35:74:a8: cb:21:66:9b:b1:8a:2b:1e:76:c9:4a:10:88:85:22:03:eb:68: 3c:85:df:5f:e4:97:ec:65:47:34:89:8b:34:91:ec:f3:6c:5d: e9:03:9a:02:99:f9:cd:fb:44:f4:46:be:7a:70:df:70:cd:ba: 71:a5:8a:42:a9:d3:1d:91:12:5e:6c:1d:3b:f4:69:98:56:e0: 54:b9:bd:df:e6:af:61:08:bf:6b:a8:21:50:3e:24:44:d5:11: 77:b6:d1:00:e2:fb:88:0b:0d:31:dd:70:ff:20:56:cd:87:85: 52:b5:cf:87:61:d0:a5:3d:48:ca:d2:fd:d3:da:ac:07:c4:67: e6:0b:94:39:36:4e:36:7a:fd:cb:d2:50:d0:7a:d1:ab:1d:9e: b5:be:09:6d:5f:b3:21:4d:57:93:cf:a5:f0:e6:6a:a9:8c:7f: 90:41:03:00 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR0NtsJWHQ9jBgfgqw0QEI/YjggEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0JBNzdCNURGMDAxQjM5QjJCQTBERUNBRERCN0QzRUQ4 NjJDMTAzNDAeFw0yNjA1MDMwMjQzMTRaFw0yNzA1MDIwMjQ4MTRaMDMxMTAvBgNV BAMTKDM1NDdCRjg1MkExNzExMjA1MzcwNUFDQkZBMTI5ODVCQUIzODA2RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ZF8MWGX/4k859Pzz0ge8BVd1 4UB0QZ/stSjGE8PhSyansA6KE6lFhr+siZUUFDbMGGocR9avNRpvMtuMyvJWKk9o KnEJ8qCSi7PzcBjuCX3dZdmZe3tqfHrXof3pJ9bcMyT6+asfSneopBtiXkvtzfpS AOcwxXYcmUXMxzHHEahGz0MyRWFnQ7l00xfxNWCQEVYnmsXK58fgThHWXy++r3Lb IiY87aEJGw9k982NaeMONx6ZH9O0HlipnDeAMrLWvAZuD7NXdOdtF1WBPKKrSMD1 2XOFhUJRjCzg5kpepekwhBMo8aX/0cYRiUa+EmttmV/ZSkhwY4Sk1kV4KwMZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNUe/hSoXESBTcFrL+hKYW6s4Bu0wHwYDVR0j BBgwFoAUy6d7XfABs5sroN7K3bfT7YYsEDQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODYyZDRkNzQtNjI5NS00NDk2LTgyM2EtMWU4YTNkNWJiYjZjLzAvQ0JBNzdCNURG MDAxQjM5QjJCQTBERUNBRERCN0QzRUQ4NjJDMTAzNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQkE3N0I1REYwMDFCMzlCMkJBMERFQ0FEREI3RDNFRDg2MkMx MDM0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2MmQ0ZDc0LTYyOTUtNDQ5Ni04 MjNhLTFlOGEzZDViYmI2Yy8wLzMxMzAzMzJlMzEzMjM2MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfu4wDQYJ KoZIhvcNAQELBQADggEBAB2fyKv84m+G4a2dTuzwTyo+Qyv/D6Lnxmsp+0+2lyJA ggxckuo5eKWNGKO78OPIyVs6p9rrQ70QRnH3sGDi9EpxCfKJvvj3m3iJmt7fohYm tKzRwAYSmzV0qMshZpuxiisedslKEIiFIgPraDyF31/kl+xlRzSJizSR7PNsXekD mgKZ+c37RPRGvnpw33DNunGlikKp0x2REl5sHTv0aZhW4FS5vd/mr2EIv2uoIVA+ JETVEXe20QDi+4gLDTHdcP8gVs2HhVK1z4dh0KU9SMrS/dParAfEZ+YLlDk2TjZ6 /cvSUNB60asdnrW+CW1fsyFNV5PPpfDmaqmMf5BBAwA= -----END CERTIFICATE-----Generated at Wed May 13 02:51:21 2026 by rpki-client