$ rpki-client -vvf rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31392e302f32342d3234203d3e20313338303839.roa File: 3130332e3133312e31392e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: X+ZlO7h/pL9t4N4Gq7NgEd0rssKL3EkGKfZrYxmlYG4= Subject key identifier: 3A:33:EF:57:15:27:D7:F5:0E:F7:AB:56:ED:D4:07:38:28:96:0C:BF Certificate issuer: /CN=3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2 Certificate serial: 1E9E12FD9E5A6C298460E6002A109FAE3D566DA8 Authority key identifier: 38:99:C9:2D:D0:D4:2F:93:D7:DA:85:40:34:FD:88:BA:B4:A5:AF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31392e302f32342d3234203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:53:42 +0000 ROA not before: Sun 03 May 2026 02:48:42 +0000 ROA not after: Sun 02 May 2027 02:53:42 +0000 asID: 138089 IP address blocks: 103.131.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.crl rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:9e:12:fd:9e:5a:6c:29:84:60:e6:00:2a:10:9f:ae:3d:56:6d:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2 Validity Not Before: May 3 02:48:42 2026 GMT Not After : May 2 02:53:42 2027 GMT Subject: CN=3A33EF571527D7F50EF7AB56EDD4073828960CBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:48:39:67:ee:a7:01:55:31:30:71:46:ba:a5: d5:c7:4b:12:94:b0:b4:fc:d9:23:27:ff:7c:02:ae: 30:a1:dd:55:0e:c6:84:f1:4f:f4:63:ea:91:24:84: c1:80:d8:bb:99:06:6c:61:64:23:1b:df:85:4e:16: 45:c5:81:ee:75:82:81:1e:3e:ec:a1:85:cb:f8:d6: 7c:10:a4:cf:3c:b4:28:5e:8d:86:6b:af:36:64:01: bb:e0:b8:71:6f:2d:f8:57:9d:ae:d7:ab:88:bb:a4: 8f:c0:09:89:18:47:5c:f2:c8:09:be:ff:4f:46:89: ed:7a:82:95:d4:af:65:7f:3f:73:24:93:c2:d0:c3: 3d:15:3b:5f:a5:f8:9b:d3:25:32:eb:a5:6a:ca:14: f3:47:fd:ef:c7:97:ba:71:06:04:88:dd:62:1c:02: f9:b7:f5:52:b7:c6:27:b9:35:c3:cc:94:48:ff:cc: 9f:ba:0b:a2:c4:31:97:6e:15:43:7c:f1:29:4f:67: fe:7a:2a:0c:7b:73:84:7f:b2:57:26:45:33:5f:36: 6d:0b:41:e7:70:b2:0a:62:f2:26:5a:38:18:2b:07: 54:77:dd:19:3a:60:d1:cc:57:7e:4b:6f:54:06:21: 0f:bc:6f:71:2d:22:7b:13:b7:ca:74:43:9e:6b:ff: eb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:33:EF:57:15:27:D7:F5:0E:F7:AB:56:ED:D4:07:38:28:96:0C:BF X509v3 Authority Key Identifier: keyid:38:99:C9:2D:D0:D4:2F:93:D7:DA:85:40:34:FD:88:BA:B4:A5:AF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31392e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.19.0/24 Signature Algorithm: sha256WithRSAEncryption 55:38:42:40:4a:de:1f:d7:b6:c7:ff:eb:69:40:32:eb:b9:1d: 44:b2:27:f6:71:2c:33:63:5e:23:68:65:b5:fd:4e:d7:79:a7: 57:b4:8c:a4:8e:1a:9d:12:f1:29:e0:d9:a6:b9:c1:1a:84:a6: 70:7c:11:27:4d:db:e0:8e:2e:50:7b:98:7c:28:c1:93:f9:15: 35:d2:ed:8c:8e:7a:66:d8:6e:26:0f:df:7c:52:b7:77:69:74: c7:40:1d:eb:8b:5e:a8:85:aa:38:2a:80:63:58:fe:d3:ec:8a: 09:18:d7:6e:6c:fa:8a:c9:3d:9b:ba:4b:9a:22:0d:0d:48:48: e9:0d:75:7a:71:16:f8:44:a0:47:0e:a6:22:0f:95:b9:f0:77: d6:2c:98:d3:c1:82:6b:fe:1e:f4:77:c8:84:49:db:0a:db:62: 61:40:c2:8a:c1:ca:3e:9d:b8:06:cb:34:43:a7:85:0e:ea:46: e7:15:f4:a7:0d:ed:6d:db:3b:d5:a5:44:ae:1d:da:99:d7:87: fe:12:d0:50:35:e4:a1:dc:d1:c2:b0:ed:54:2a:97:1c:f0:53: a1:88:7c:b4:0d:d4:d7:a8:80:73:2e:4c:67:d4:3d:4d:8c:73: d3:78:b7:61:bf:5b:e8:ef:5b:8c:93:a8:79:1c:12:66:69:46: 9e:d5:b0:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHp4S/Z5abCmEYOYAKhCfrj1WbagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5OUM5MkREMEQ0MkY5M0Q3REE4NTQwMzRGRDg4QkFC NEE1QUZEMjAeFw0yNjA1MDMwMjQ4NDJaFw0yNzA1MDIwMjUzNDJaMDMxMTAvBgNV BAMTKDNBMzNFRjU3MTUyN0Q3RjUwRUY3QUI1NkVERDQwNzM4Mjg5NjBDQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeSDln7qcBVTEwcUa6pdXHSxKU sLT82SMn/3wCrjCh3VUOxoTxT/Rj6pEkhMGA2LuZBmxhZCMb34VOFkXFge51goEe Puyhhcv41nwQpM88tChejYZrrzZkAbvguHFvLfhXna7Xq4i7pI/ACYkYR1zyyAm+ /09Gie16gpXUr2V/P3Mkk8LQwz0VO1+l+JvTJTLrpWrKFPNH/e/Hl7pxBgSI3WIc Avm39VK3xie5NcPMlEj/zJ+6C6LEMZduFUN88SlPZ/56Kgx7c4R/slcmRTNfNm0L Qedwsgpi8iZaOBgrB1R33Rk6YNHMV35Lb1QGIQ+8b3EtInsTt8p0Q55r/+v1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOjPvVxUn1/UO96tW7dQHOCiWDL8wHwYDVR0j BBgwFoAUOJnJLdDUL5PX2oVANP2IurSlr9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTkwNGY2NzAtN2RhYy00Y2Y0LTk5MWQtNTA1MzllM2QzZjVlLzAvMzg5OUM5MkRE MEQ0MkY5M0Q3REE4NTQwMzRGRDg4QkFCNEE1QUZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zODk5QzkyREQwRDQyRjkzRDdEQTg1NDAzNEZEODhCQUI0QTVB RkQyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5MDRmNjcwLTdkYWMtNGNmNC05 OTFkLTUwNTM5ZTNkM2Y1ZS8wLzMxMzAzMzJlMzEzMzMxMmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4MTMA0GCSqG SIb3DQEBCwUAA4IBAQBVOEJASt4f17bH/+tpQDLruR1Esif2cSwzY14jaGW1/U7X eadXtIykjhqdEvEp4NmmucEahKZwfBEnTdvgji5Qe5h8KMGT+RU10u2Mjnpm2G4m D998Urd3aXTHQB3ri16ohao4KoBjWP7T7IoJGNdubPqKyT2bukuaIg0NSEjpDXV6 cRb4RKBHDqYiD5W58HfWLJjTwYJr/h70d8iESdsK22JhQMKKwco+nbgGyzRDp4UO 6kbnFfSnDe1t2zvVpUSuHdqZ14f+EtBQNeSh3NHCsO1UKpcc8FOhiHy0DdTXqIBz Lkxn1D1NjHPTeLdhv1vo71uMk6h5HBJmaUae1bAP -----END CERTIFICATE-----Generated at Wed May 13 10:40:16 2026 by rpki-client