$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e362e302f32342d3234203d3e203338373533.roa File: 3130332e32392e362e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: B9Lq0FKw6JB0oaVN4KMWdTKg9HTIN6KM/W4hJySHpXw= Subject key identifier: CA:38:81:3C:97:26:88:69:44:E3:90:82:E8:96:AC:09:29:D1:8D:93 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 4713DFE8A54471523AF88D400ACEC3CEFC6DC484 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e362e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:19 +0000 ROA not before: Sun 03 May 2026 02:50:19 +0000 ROA not after: Sun 02 May 2027 02:55:19 +0000 asID: 38753 IP address blocks: 103.29.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:13:df:e8:a5:44:71:52:3a:f8:8d:40:0a:ce:c3:ce:fc:6d:c4:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:19 2026 GMT Not After : May 2 02:55:19 2027 GMT Subject: CN=CA38813C9726886944E39082E896AC0929D18D93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:fc:39:7d:66:bf:01:b8:68:00:72:2b:68: db:b0:0d:60:9d:3e:8b:74:e6:7c:b0:8f:db:b3:64: b5:7b:10:4f:01:a1:22:00:b8:cf:97:1e:1f:4d:29: ba:19:c6:66:dd:e4:c9:d0:52:ab:62:fb:e0:81:8f: a4:51:c7:54:68:0a:be:6e:aa:4c:6e:c7:e5:e0:b7: 1c:b5:b7:b5:17:ec:65:c6:57:67:68:06:e8:e9:89: 21:7d:53:f5:43:c7:5f:de:91:40:b4:cd:a7:63:f2: fe:68:6e:ec:cf:52:f6:f9:06:4f:c6:af:e5:46:3d: 41:96:ef:32:bf:59:a5:e2:c7:3a:8e:69:48:b1:3e: a2:1a:ba:67:9b:17:85:b3:16:17:ed:09:c1:ce:a0: 1b:78:1c:30:31:f9:fb:63:de:b2:44:a0:3d:69:60: 0a:65:6c:b0:e7:b7:ec:9a:b8:f9:3e:53:bc:07:9f: ad:ae:f7:ea:7f:94:2b:47:57:ce:98:bf:ab:45:40: de:dd:d5:31:3d:28:34:97:b6:b5:0e:da:94:d4:4e: 32:1a:2e:2a:ef:01:63:7e:b0:08:f0:0d:a2:71:6c: 17:0a:d0:ea:a2:86:6f:8f:40:6a:ed:92:68:9f:3b: 4b:83:87:68:de:55:d5:ad:09:27:51:0c:5d:4d:a5: f0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:38:81:3C:97:26:88:69:44:E3:90:82:E8:96:AC:09:29:D1:8D:93 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e362e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.6.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:e7:2f:6c:f7:71:55:8c:fa:ce:49:84:44:5f:15:ec:bb:88: 09:4a:77:93:2d:f8:dc:dd:58:3d:e9:13:89:a2:e7:23:40:e4: 36:ec:26:35:d0:ec:96:06:52:f2:9b:05:10:05:a5:75:22:32: 4f:8e:0b:b5:8c:ec:db:3e:f7:42:d4:be:fa:ee:32:42:fb:a7: 0e:8b:10:c1:54:fc:56:cd:b9:73:97:94:4d:29:02:16:ec:9f: db:f5:9d:be:e6:3d:79:53:fa:fb:d8:fb:fc:05:ec:c6:76:e2: cb:12:9d:a7:f2:e0:02:29:7e:5a:1f:92:e0:d5:d3:c8:cf:83: c4:13:d3:14:2f:17:4b:f1:b3:1b:84:9f:a0:74:29:85:8e:39: c8:24:a3:04:8b:87:36:e0:9b:a3:e3:f0:45:08:3c:ed:e6:66: af:86:3b:b5:1c:b0:56:a4:81:09:93:66:27:d1:cf:7c:0a:92: e8:a3:d4:08:d1:8e:b9:2c:3c:49:b9:2c:fc:fa:a0:ad:32:d1: d1:6d:b8:b0:43:1a:00:0e:f3:67:43:2b:69:9f:49:71:3f:00: de:26:78:18:7c:13:08:91:e5:38:15:1d:86:f9:31:cf:bc:76: 96:9a:29:08:d1:f4:9a:5c:7e:21:a0:c6:ef:a2:e7:f3:cc:25: 74:62:c4:c5 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIURxPf6KVEcVI6+I1ACs7DzvxtxIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMTlaFw0yNzA1MDIwMjU1MTlaMDMxMTAvBgNV BAMTKENBMzg4MTNDOTcyNjg4Njk0NEUzOTA4MkU4OTZBQzA5MjlEMThEOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCya/w5fWa/AbhoAHIraNuwDWCd Pot05nywj9uzZLV7EE8BoSIAuM+XHh9NKboZxmbd5MnQUqti++CBj6RRx1RoCr5u qkxux+Xgtxy1t7UX7GXGV2doBujpiSF9U/VDx1/ekUC0zadj8v5obuzPUvb5Bk/G r+VGPUGW7zK/WaXixzqOaUixPqIaumebF4WzFhftCcHOoBt4HDAx+ftj3rJEoD1p YAplbLDnt+yauPk+U7wHn62u9+p/lCtHV86Yv6tFQN7d1TE9KDSXtrUO2pTUTjIa LirvAWN+sAjwDaJxbBcK0Oqihm+PQGrtkmifO0uDh2jeVdWtCSdRDF1NpfBnAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUyjiBPJcmiGlE45CC6JasCSnRjZMwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzEzMDMzMmUzMjM5MmUzNjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHQYwDQYJKoZIhvcNAQEL BQADggEBAH3nL2z3cVWM+s5JhERfFey7iAlKd5Mt+NzdWD3pE4mi5yNA5DbsJjXQ 7JYGUvKbBRAFpXUiMk+OC7WM7Ns+90LUvvruMkL7pw6LEMFU/FbNuXOXlE0pAhbs n9v1nb7mPXlT+vvY+/wF7MZ24ssSnafy4AIpflofkuDV08jPg8QT0xQvF0vxsxuE n6B0KYWOOcgkowSLhzbgm6Pj8EUIPO3mZq+GO7UcsFakgQmTZifRz3wKkuij1AjR jrksPEm5LPz6oK0y0dFtuLBDGgAO82dDK2mfSXE/AN4meBh8EwiR5TgVHYb5Mc+8 dpaaKQjR9JpcfiGgxu+i5/PMJXRixMU= -----END CERTIFICATE-----Generated at Wed May 13 03:55:29 2026 by rpki-client