$ rpki-client -vvf rpki-rsync.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: 5L5io7waITJzSQf8m8FETlwgIknoTsA9vUH70jmgDog= Subject key identifier: 74:5E:53:93:AE:D4:3D:F9:3F:CE:7D:B5:27:E8:8C:F8:E8:42:97:45 Certificate issuer: /CN=DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B Certificate serial: 1B12508E14B20028163616B22E4B25C0EA9260DB Authority key identifier: DD:7F:02:C2:99:05:58:E5:14:DC:3B:1B:7A:7E:2B:AE:03:1A:3F:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 02:54:18 +0000 ROA not before: Sun 03 May 2026 02:49:18 +0000 ROA not after: Sun 02 May 2027 02:54:18 +0000 asID: 135478 IP address blocks: 103.121.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B.crl rsync://rpki-rsync.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:12:50:8e:14:b2:00:28:16:36:16:b2:2e:4b:25:c0:ea:92:60:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B Validity Not Before: May 3 02:49:18 2026 GMT Not After : May 2 02:54:18 2027 GMT Subject: CN=745E5393AED43DF93FCE7DB527E88CF8E8429745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ee:7c:ed:e1:b4:46:ed:60:9e:e7:46:0e:0d: 59:f0:dc:0f:14:ae:3e:0b:8a:fd:7c:77:e6:9c:bb: c5:0d:95:a1:4c:40:87:18:9c:20:6c:a6:18:71:dc: 9a:27:9f:4d:4e:b4:2a:12:6b:eb:4a:11:41:04:45: 82:b5:e2:3a:01:44:84:48:e7:ed:15:46:d5:25:3d: 19:26:ab:64:f5:10:95:0b:b1:e9:b9:13:4c:97:5d: de:09:05:69:5a:00:45:5f:14:ba:52:f6:fb:17:7c: d8:fd:3f:a2:0e:5e:db:d2:a1:82:fa:f9:10:bc:e2: 90:1b:bd:75:95:e6:ea:ea:e0:50:ab:31:fd:43:e3: de:0d:cb:d6:4f:ec:bf:f5:a3:30:df:60:4f:e6:b3: 82:ed:22:ae:90:d5:a3:05:8b:44:f2:b7:06:4b:7a: 52:f7:93:ef:b3:95:64:05:61:3d:c1:b1:cd:5c:27: 84:3a:fb:22:fc:62:8f:40:b8:a6:e3:f0:8a:c9:c8: 9c:a2:b6:87:1d:cf:81:46:2a:e0:d4:14:aa:5b:e7: 7f:95:f2:81:53:ce:fa:60:18:2c:17:67:ab:8e:82: 50:fb:fd:b8:c4:cd:3e:49:48:33:d1:85:1b:d6:5b: ab:19:fb:09:94:30:12:d0:de:98:ad:61:db:69:8f: 8b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:5E:53:93:AE:D4:3D:F9:3F:CE:7D:B5:27:E8:8C:F8:E8:42:97:45 X509v3 Authority Key Identifier: keyid:DD:7F:02:C2:99:05:58:E5:14:DC:3B:1B:7A:7E:2B:AE:03:1A:3F:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD7F02C2990558E514DC3B1B7A7E2BAE031A3F5B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.132.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:1f:3f:9a:b2:7d:d0:02:9b:b9:5f:8c:d0:84:30:47:0a:5d: 16:f4:60:fe:15:01:69:48:cf:fc:e4:93:f9:51:81:a5:9a:47: 04:4f:e2:c1:4f:8e:bf:98:20:1e:d5:73:4d:f6:71:b3:02:7e: e9:67:3a:25:98:de:10:ce:92:52:b7:cd:8b:e8:9c:4e:cf:3c: 49:1b:96:fb:71:40:0e:be:e0:c9:ee:e7:fc:84:ae:b5:f0:f4: c7:d6:d5:3b:47:96:7e:b2:23:ad:75:50:d0:c6:e3:43:51:17: 9f:62:38:8e:a2:8a:90:a9:98:c2:b3:df:a5:6a:99:8e:03:52: 07:7f:a8:d0:ad:33:59:70:a7:c2:8b:6f:e7:43:28:d3:00:89: 9d:43:02:3e:ee:8d:57:12:d8:52:4f:06:0b:ec:74:ff:ca:2d: ea:4d:d7:79:73:1f:66:da:09:ac:8f:8c:e0:de:00:6d:5b:d2: b7:bd:f0:49:4b:77:e5:62:65:15:21:6b:5f:fd:34:7b:4e:69: 23:49:e2:b6:69:4d:f8:13:c2:0e:6b:6c:4a:ef:f4:21:f7:6c: 37:69:f1:69:09:ad:13:c2:4c:5f:54:03:b0:8b:f5:83:95:e9: 48:0a:2e:1b:05:65:91:7c:71:bf:84:bb:aa:97:32:d6:18:1e: a2:ae:22:0f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGxJQjhSyACgWNhayLkslwOqSYNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ3RjAyQzI5OTA1NThFNTE0REMzQjFCN0E3RTJCQUUw MzFBM0Y1QjAeFw0yNjA1MDMwMjQ5MThaFw0yNzA1MDIwMjU0MThaMDMxMTAvBgNV BAMTKDc0NUU1MzkzQUVENDNERjkzRkNFN0RCNTI3RTg4Q0Y4RTg0Mjk3NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC27nzt4bRG7WCe50YODVnw3A8U rj4Liv18d+acu8UNlaFMQIcYnCBsphhx3Jonn01OtCoSa+tKEUEERYK14joBRIRI 5+0VRtUlPRkmq2T1EJULsem5E0yXXd4JBWlaAEVfFLpS9vsXfNj9P6IOXtvSoYL6 +RC84pAbvXWV5urq4FCrMf1D494Ny9ZP7L/1ozDfYE/ms4LtIq6Q1aMFi0TytwZL elL3k++zlWQFYT3Bsc1cJ4Q6+yL8Yo9AuKbj8IrJyJyitocdz4FGKuDUFKpb53+V 8oFTzvpgGCwXZ6uOglD7/bjEzT5JSDPRhRvWW6sZ+wmUMBLQ3pitYdtpj4v5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdF5Tk67UPfk/zn21J+iM+OhCl0UwHwYDVR0j BBgwFoAU3X8CwpkFWOUU3Dsben4rrgMaP1swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWIzNzg0ZmUtZjlmZS00Y2JlLTg3NjgtMjYzYTc2OTg2YTNhLzAvREQ3RjAyQzI5 OTA1NThFNTE0REMzQjFCN0E3RTJCQUUwMzFBM0Y1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERDdGMDJDMjk5MDU1OEU1MTREQzNCMUI3QTdFMkJBRTAzMUEz RjVCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzliMzc4NGZlLWY5ZmUtNGNiZS04 NzY4LTI2M2E3Njk4NmEzYS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYQwDQYJ KoZIhvcNAQELBQADggEBAI0fP5qyfdACm7lfjNCEMEcKXRb0YP4VAWlIz/zkk/lR gaWaRwRP4sFPjr+YIB7Vc032cbMCfulnOiWY3hDOklK3zYvonE7PPEkblvtxQA6+ 4Mnu5/yErrXw9MfW1TtHln6yI611UNDG40NRF59iOI6iipCpmMKz36VqmY4DUgd/ qNCtM1lwp8KLb+dDKNMAiZ1DAj7ujVcS2FJPBgvsdP/KLepN13lzH2baCayPjODe AG1b0re98ElLd+ViZRUha1/9NHtOaSNJ4rZpTfgTwg5rbErv9CH3bDdp8WkJrRPC TF9UA7CL9YOV6UgKLhsFZZF8cb+Eu6qXMtYYHqKuIg8= -----END CERTIFICATE-----Generated at Wed May 13 11:55:20 2026 by rpki-client