$ rpki-client -vvf rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134312e302f32342d3234203d3e20313439383833.roa File: 3130332e3135362e3134312e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: SZMiP70bobuD5/c0OLg4Km31ztDYKaW8prAjAv3Nm8M= Subject key identifier: 70:D5:22:34:04:8A:7D:E3:E6:82:CD:DA:BC:42:DD:7F:D0:8F:11:9D Certificate issuer: /CN=3B905656ECAB5F25C747565B1F6158A544607342 Certificate serial: 0732F3E5CBABA3849252F832E9CA5C04A3041D1D Authority key identifier: 3B:90:56:56:EC:AB:5F:25:C7:47:56:5B:1F:61:58:A5:44:60:73:42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B905656ECAB5F25C747565B1F6158A544607342.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134312e302f32342d3234203d3e20313439383833.roa Signing time: Sun 03 May 2026 02:55:34 +0000 ROA not before: Sun 03 May 2026 02:50:34 +0000 ROA not after: Sun 02 May 2027 02:55:34 +0000 asID: 149883 IP address blocks: 103.156.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3B905656ECAB5F25C747565B1F6158A544607342.crl rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3B905656ECAB5F25C747565B1F6158A544607342.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B905656ECAB5F25C747565B1F6158A544607342.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:32:f3:e5:cb:ab:a3:84:92:52:f8:32:e9:ca:5c:04:a3:04:1d:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B905656ECAB5F25C747565B1F6158A544607342 Validity Not Before: May 3 02:50:34 2026 GMT Not After : May 2 02:55:34 2027 GMT Subject: CN=70D52234048A7DE3E682CDDABC42DD7FD08F119D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:62:8c:01:38:c6:6a:5f:a5:09:2a:4f:35:1f: c5:a9:8f:9b:8c:5e:62:e8:31:98:e8:8c:0c:37:be: 21:fb:0d:02:7e:80:d8:5c:84:b5:46:48:ec:d6:e0: c7:16:f0:57:da:5f:4f:79:13:d5:0f:2c:17:9c:24: 35:bc:54:cd:6b:7c:05:a1:57:4a:7a:61:aa:5f:8c: d3:90:c2:e9:e1:7d:af:a1:92:f0:e3:67:5e:11:69: 02:1e:3f:49:10:a8:88:4e:72:e7:24:5e:c8:3c:59: 45:fc:49:44:d6:23:f2:7b:c7:8b:7e:24:99:11:55: 4f:0f:d5:01:2d:8d:74:fe:ae:a7:58:9c:96:0f:8f: a3:cd:22:c4:6c:fe:0d:24:46:47:72:50:1e:01:63: 57:5d:72:ba:8b:20:e6:dd:8d:d9:df:f1:b0:06:de: da:e5:d9:60:2e:1f:b8:78:64:36:4a:fb:9a:ac:3b: 27:ff:7d:87:69:d8:6d:c1:ab:21:5d:e5:0b:3a:93: 76:fd:b7:2d:dd:00:55:ec:e7:db:b2:ba:87:21:58: 44:8f:0f:98:2d:64:b8:86:6c:33:37:a2:0c:82:20: d5:84:57:05:04:07:87:02:27:c8:21:cb:b0:6e:a0: eb:cc:e1:0e:12:05:4a:f6:01:30:e9:ac:76:7c:82: 64:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D5:22:34:04:8A:7D:E3:E6:82:CD:DA:BC:42:DD:7F:D0:8F:11:9D X509v3 Authority Key Identifier: keyid:3B:90:56:56:EC:AB:5F:25:C7:47:56:5B:1F:61:58:A5:44:60:73:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3B905656ECAB5F25C747565B1F6158A544607342.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B905656ECAB5F25C747565B1F6158A544607342.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134312e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.141.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:fc:fa:20:85:d4:cb:4f:db:e6:95:e0:b7:f5:28:ad:51:de: 98:40:50:f5:1f:ff:bb:a0:00:03:e4:12:4d:b5:0e:7e:50:b9: b5:9a:d1:c3:70:13:42:c5:ea:92:9a:0f:d0:70:9a:4d:40:8c: d9:e5:27:b5:87:f8:ba:36:81:d3:2d:e4:e7:bb:86:6c:55:88: cd:a2:05:c1:27:32:af:da:9a:ad:b8:ef:64:ad:fb:78:b6:3e: 94:0f:21:8c:ed:8d:8d:ce:bf:11:a6:fd:20:77:54:41:89:be: 55:33:77:3d:6d:66:6a:69:f8:26:37:2e:d5:00:e3:e6:80:36: 0b:a8:2a:fa:d3:fb:5f:8c:f5:2d:86:50:71:07:c8:f1:f1:e2: f1:b3:e9:21:56:55:18:b5:1e:87:52:c1:40:a1:e6:d1:c6:a1: 12:41:72:a2:40:e5:27:e2:68:37:26:c7:9d:96:48:6b:ae:b8: cf:7b:7d:03:31:13:0f:d1:0f:74:ea:25:0a:1a:f9:2a:a1:01: b1:27:b6:ff:8a:c6:db:40:ca:4f:fa:1c:71:35:28:99:e4:17: e3:3b:4f:0e:51:0b:c7:ac:1f:be:f9:c5:41:9f:db:a6:2f:96: b2:f4:e3:95:b5:3b:e2:70:7f:7d:36:c4:a2:ff:cd:84:25:3d: a8:5a:a9:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBzLz5curo4SSUvgy6cpcBKMEHR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I5MDU2NTZFQ0FCNUYyNUM3NDc1NjVCMUY2MTU4QTU0 NDYwNzM0MjAeFw0yNjA1MDMwMjUwMzRaFw0yNzA1MDIwMjU1MzRaMDMxMTAvBgNV BAMTKDcwRDUyMjM0MDQ4QTdERTNFNjgyQ0REQUJDNDJERDdGRDA4RjExOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZYowBOMZqX6UJKk81H8Wpj5uM XmLoMZjojAw3viH7DQJ+gNhchLVGSOzW4McW8FfaX095E9UPLBecJDW8VM1rfAWh V0p6YapfjNOQwunhfa+hkvDjZ14RaQIeP0kQqIhOcuckXsg8WUX8SUTWI/J7x4t+ JJkRVU8P1QEtjXT+rqdYnJYPj6PNIsRs/g0kRkdyUB4BY1ddcrqLIObdjdnf8bAG 3trl2WAuH7h4ZDZK+5qsOyf/fYdp2G3BqyFd5Qs6k3b9ty3dAFXs59uyuochWESP D5gtZLiGbDM3ogyCINWEVwUEB4cCJ8ghy7BuoOvM4Q4SBUr2ATDprHZ8gmSHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcNUiNASKfePmgs3avELdf9CPEZ0wHwYDVR0j BBgwFoAUO5BWVuyrXyXHR1ZbH2FYpURgc0IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA5MTc5M2UtYmQ2OS00NWE0LTk3YTgtYzY4YWEzZGQ0N2EzLzAvM0I5MDU2NTZF Q0FCNUYyNUM3NDc1NjVCMUY2MTU4QTU0NDYwNzM0Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjkwNTY1NkVDQUI1RjI1Qzc0NzU2NUIxRjYxNThBNTQ0NjA3 MzQyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwOTE3OTNlLWJkNjktNDVhNC05 N2E4LWM2OGFhM2RkNDdhMy8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnI0wDQYJ KoZIhvcNAQELBQADggEBAC38+iCF1MtP2+aV4Lf1KK1R3phAUPUf/7ugAAPkEk21 Dn5QubWa0cNwE0LF6pKaD9Bwmk1AjNnlJ7WH+Lo2gdMt5Oe7hmxViM2iBcEnMq/a mq2472St+3i2PpQPIYztjY3OvxGm/SB3VEGJvlUzdz1tZmpp+CY3LtUA4+aANguo KvrT+1+M9S2GUHEHyPHx4vGz6SFWVRi1HodSwUCh5tHGoRJBcqJA5SfiaDcmx52W SGuuuM97fQMxEw/RD3TqJQoa+SqhAbEntv+KxttAyk/6HHE1KJnkF+M7Tw5RC8es H775xUGf26YvlrL045W1O+Jwf302xKL/zYQlPahaqZ0= -----END CERTIFICATE-----Generated at Wed May 13 06:19:26 2026 by rpki-client