$ rpki-client -vvf rpki-rsync.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3232203d3e20313335343838.roa File: 3130332e39352e382e302f32322d3232203d3e20313335343838.roa (raw, json) Hash identifier: Z1qBcC8HhREP/iS2ZW6nzTxnpSKKD3Oek2Lz09Kit8U= Subject key identifier: E6:C5:49:FE:B8:2D:05:68:C3:F8:D8:C8:BA:9F:76:87:6B:7D:CC:6B Certificate issuer: /CN=EF4CD1AC581004419A7468D03FF81EAA25D9E33F Certificate serial: 3127F397C07302B3E6CFFEC676F0518BD6AF04A4 Authority key identifier: EF:4C:D1:AC:58:10:04:41:9A:74:68:D0:3F:F8:1E:AA:25:D9:E3:3F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF4CD1AC581004419A7468D03FF81EAA25D9E33F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3232203d3e20313335343838.roa Signing time: Sun 03 May 2026 02:56:12 +0000 ROA not before: Sun 03 May 2026 02:51:12 +0000 ROA not after: Sun 02 May 2027 02:56:12 +0000 asID: 135488 IP address blocks: 103.95.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/EF4CD1AC581004419A7468D03FF81EAA25D9E33F.crl rsync://rpki-rsync.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/EF4CD1AC581004419A7468D03FF81EAA25D9E33F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF4CD1AC581004419A7468D03FF81EAA25D9E33F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:27:f3:97:c0:73:02:b3:e6:cf:fe:c6:76:f0:51:8b:d6:af:04:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EF4CD1AC581004419A7468D03FF81EAA25D9E33F Validity Not Before: May 3 02:51:12 2026 GMT Not After : May 2 02:56:12 2027 GMT Subject: CN=E6C549FEB82D0568C3F8D8C8BA9F76876B7DCC6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fa:85:1b:c4:cd:c4:a1:3b:c0:4c:6f:77:78: 97:5c:b4:d7:19:84:ed:1d:d9:c7:3b:34:70:7d:b9: 1c:da:58:f7:d6:b0:20:b2:0a:17:cf:bd:f4:bd:55: 79:05:a4:b8:2f:e7:7b:5a:47:8b:12:e4:b4:6f:d2: 73:f1:8a:66:94:3c:fe:86:15:be:e3:00:db:2f:2b: 8d:a9:6e:9e:5b:51:44:ea:2d:11:bd:93:de:82:01: d5:7c:d1:05:f8:48:13:93:37:02:de:b6:f1:7f:e6: 7c:04:38:2e:bc:f4:86:d2:5e:e6:9d:1f:ed:49:c1: 27:6f:1a:8a:a5:cb:ab:42:3f:e0:df:c7:80:83:aa: af:2b:10:b6:78:13:6f:58:8d:a6:e1:7c:af:62:a7: ed:64:cb:03:61:3e:66:d8:e2:f7:b3:49:86:0c:c0: bd:29:6c:c2:0c:ea:4b:92:fc:8c:8d:5a:19:d8:26: a1:87:f3:11:1f:bb:79:00:ea:cf:0d:16:60:44:b3: a9:8a:94:41:2a:b2:0b:15:b0:a5:38:5c:b2:fb:c0: 35:77:bc:86:95:70:0d:fb:84:5c:8b:a9:41:40:b6: 6e:fc:42:43:24:20:2d:5d:89:52:0a:ba:72:f6:15: 4b:6c:ed:bf:57:31:28:1e:a9:2e:a1:04:97:c9:56: e1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C5:49:FE:B8:2D:05:68:C3:F8:D8:C8:BA:9F:76:87:6B:7D:CC:6B X509v3 Authority Key Identifier: keyid:EF:4C:D1:AC:58:10:04:41:9A:74:68:D0:3F:F8:1E:AA:25:D9:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/EF4CD1AC581004419A7468D03FF81EAA25D9E33F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF4CD1AC581004419A7468D03FF81EAA25D9E33F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3232203d3e20313335343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.8.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:1f:f9:a6:b9:9a:7a:ce:95:d0:d8:df:51:7c:61:07:85:ef: 0f:95:50:06:7e:95:86:e1:26:ed:74:09:07:2b:30:c3:bd:51: 7b:87:ed:5b:55:0d:c9:1f:f6:54:49:7f:55:4c:11:d6:96:0d: 5d:c4:6c:dd:6c:33:32:0e:f0:4d:cf:c2:46:9c:8d:f0:b4:03: 99:0b:00:06:ce:32:af:1c:f7:9f:43:b7:92:e1:9a:9c:1e:11: 68:15:d0:84:61:d7:08:ec:b7:8c:05:46:fb:3e:94:00:c5:f7: 9f:4e:6d:c7:03:d2:b1:31:21:b0:cc:6a:c5:13:35:b8:40:04: d5:56:e4:64:62:52:87:b9:69:ec:36:72:d0:f1:d0:1e:84:c2: b4:f9:3f:fd:c3:90:8e:71:73:2d:4b:99:77:93:40:4d:de:39: f1:8f:ed:b9:4a:48:fb:a5:ad:ac:cd:32:07:1a:f0:75:82:ca: c0:bd:d5:5c:59:b7:c2:a1:05:4f:f8:1b:d8:60:c2:b7:cd:9b: 89:f8:fe:b3:2a:ea:e5:34:ef:13:e9:11:e1:19:85:66:7f:ca: c6:47:a2:c9:b8:84:d8:dc:0a:c7:f4:cd:d1:fc:24:20:b2:32: 79:5e:e3:02:1f:bd:59:d8:ca:3e:66:6e:41:53:48:f3:5e:67: ce:80:1f:d2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMSfzl8BzArPmz/7GdvBRi9avBKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUY0Q0QxQUM1ODEwMDQ0MTlBNzQ2OEQwM0ZGODFFQUEy NUQ5RTMzRjAeFw0yNjA1MDMwMjUxMTJaFw0yNzA1MDIwMjU2MTJaMDMxMTAvBgNV BAMTKEU2QzU0OUZFQjgyRDA1NjhDM0Y4RDhDOEJBOUY3Njg3NkI3RENDNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM+oUbxM3EoTvATG93eJdctNcZ hO0d2cc7NHB9uRzaWPfWsCCyChfPvfS9VXkFpLgv53taR4sS5LRv0nPximaUPP6G Fb7jANsvK42pbp5bUUTqLRG9k96CAdV80QX4SBOTNwLetvF/5nwEOC689IbSXuad H+1JwSdvGoqly6tCP+Dfx4CDqq8rELZ4E29YjabhfK9ip+1kywNhPmbY4vezSYYM wL0pbMIM6kuS/IyNWhnYJqGH8xEfu3kA6s8NFmBEs6mKlEEqsgsVsKU4XLL7wDV3 vIaVcA37hFyLqUFAtm78QkMkIC1diVIKunL2FUts7b9XMSgeqS6hBJfJVuGjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5sVJ/rgtBWjD+NjIup92h2t9zGswHwYDVR0j BBgwFoAU70zRrFgQBEGadGjQP/geqiXZ4z8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTM2NDY1ZWMtOTE2MC00NTliLThkMTEtOTQ4ZmMyNmRhMWMwLzAvRUY0Q0QxQUM1 ODEwMDQ0MTlBNzQ2OEQwM0ZGODFFQUEyNUQ5RTMzRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRjRDRDFBQzU4MTAwNDQxOUE3NDY4RDAzRkY4MUVBQTI1RDlF MzNGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVjLTkxNjAtNDU5Yi04 ZDExLTk0OGZjMjZkYTFjMC8wLzMxMzAzMzJlMzkzNTJlMzgyZTMwMmYzMjMyMmQz MjMyMjAzZDNlMjAzMTMzMzUzNDM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnXwgwDQYJKoZIhvcN AQELBQADggEBAIof+aa5mnrOldDY31F8YQeF7w+VUAZ+lYbhJu10CQcrMMO9UXuH 7VtVDckf9lRJf1VMEdaWDV3EbN1sMzIO8E3PwkacjfC0A5kLAAbOMq8c959Dt5Lh mpweEWgV0IRh1wjst4wFRvs+lADF959ObccD0rExIbDMasUTNbhABNVW5GRiUoe5 aew2ctDx0B6EwrT5P/3DkI5xcy1LmXeTQE3eOfGP7blKSPulrazNMgca8HWCysC9 1VxZt8KhBU/4G9hgwrfNm4n4/rMq6uU07xPpEeEZhWZ/ysZHosm4hNjcCsf0zdH8 JCCyMnle4wIfvVnYyj5mbkFTSPNeZ86AH9I= -----END CERTIFICATE-----Generated at Wed May 13 04:09:30 2026 by rpki-client