$ rpki-client -vvf rpki-rsync.idnic.net/repo/a5deca82-89ab-4582-8e82-8ec8a51fec42/0/3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa File: 3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa (raw, json) Hash identifier: 9YwGnAS4Ytmen5f7Im+DSh9RfLLeSLFnhc1Jg9+yNBw= Subject key identifier: 7A:ED:E7:1D:06:62:4D:08:46:9B:F3:B8:B6:54:94:07:C7:FB:DB:B9 Certificate issuer: /CN=FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8 Certificate serial: 407234836F857C85ABB2D4C4513B47A152B806D7 Authority key identifier: FC:04:C1:BC:CF:AA:0B:B2:1D:67:E6:CC:B1:CC:81:84:EF:56:E2:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a5deca82-89ab-4582-8e82-8ec8a51fec42/0/3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa Signing time: Sun 03 May 2026 02:56:47 +0000 ROA not before: Sun 03 May 2026 02:51:47 +0000 ROA not after: Sun 02 May 2027 02:56:47 +0000 asID: 141128 IP address blocks: 103.158.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a5deca82-89ab-4582-8e82-8ec8a51fec42/0/FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8.crl rsync://rpki-rsync.idnic.net/repo/a5deca82-89ab-4582-8e82-8ec8a51fec42/0/FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:72:34:83:6f:85:7c:85:ab:b2:d4:c4:51:3b:47:a1:52:b8:06:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8 Validity Not Before: May 3 02:51:47 2026 GMT Not After : May 2 02:56:47 2027 GMT Subject: CN=7AEDE71D06624D08469BF3B8B6549407C7FBDBB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ce:dc:63:40:60:b3:7a:e5:d5:25:e4:0e:0a: c1:b0:f7:c7:d6:c9:8d:bb:68:a7:f7:89:99:c4:27: 94:0f:30:f6:cf:1b:a4:cb:91:ef:11:a0:b8:c8:8d: 11:48:20:14:fa:f0:1a:22:6d:4a:e2:77:5a:8b:02: 39:e7:56:9e:bb:e7:42:32:a8:70:a2:ae:dd:b8:44: cb:32:f4:36:81:dc:2d:4b:70:75:d5:aa:a7:75:ee: 33:08:9d:73:50:16:b9:2f:41:d3:cd:62:5e:2a:2f: 33:06:a8:09:41:10:f3:30:b6:ab:56:e1:37:ca:b4: 07:d2:90:fa:dd:d7:05:1d:9f:9c:d1:e9:31:76:b7: 43:62:08:f2:bd:81:16:8b:a5:b4:69:3b:0c:e6:9e: ea:4f:d7:9e:19:37:2b:98:dd:24:10:99:17:e4:65: 84:42:bc:b4:82:02:bb:5f:8b:e8:40:e0:92:7d:78: 72:4c:19:48:4a:d1:2e:76:c0:96:df:bb:05:1e:fa: d2:8f:e0:70:fd:53:82:60:d6:46:ec:e9:f5:ed:af: fe:e5:0d:e2:00:cc:a4:f8:63:ce:ae:41:5f:5d:ab: 8a:f9:ea:1c:54:6f:78:fb:5f:80:3c:ba:2b:0e:78: 59:d3:5f:10:86:92:9e:bb:f5:95:26:4b:c4:9b:58: 58:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:ED:E7:1D:06:62:4D:08:46:9B:F3:B8:B6:54:94:07:C7:FB:DB:B9 X509v3 Authority Key Identifier: keyid:FC:04:C1:BC:CF:AA:0B:B2:1D:67:E6:CC:B1:CC:81:84:EF:56:E2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a5deca82-89ab-4582-8e82-8ec8a51fec42/0/FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FC04C1BCCFAA0BB21D67E6CCB1CC8184EF56E2F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a5deca82-89ab-4582-8e82-8ec8a51fec42/0/3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.130.0/24 Signature Algorithm: sha256WithRSAEncryption 54:e8:3d:c1:6d:9b:f8:48:11:c0:d2:c7:32:7c:9b:e3:1b:d4: 16:29:06:8c:0c:85:4f:e1:b7:ba:af:56:5d:1a:a7:05:91:e5: 8b:35:77:0f:3c:16:f4:8b:8c:f2:7a:33:e4:0a:02:ed:50:4c: 8a:20:20:b1:48:a4:a4:10:73:e2:4d:84:64:48:4b:32:5d:1e: 7e:09:8f:3c:e9:c7:05:db:7a:dd:54:44:2a:54:8a:b5:d2:eb: 19:44:b4:07:21:32:ea:b2:e5:93:94:8c:d2:1d:fa:62:70:67: 26:29:8c:03:aa:d6:d2:71:03:59:c0:50:57:b5:38:cb:6a:ef: 10:2b:a8:0e:1a:28:c3:3e:1a:9c:e9:7f:5e:a2:6e:88:e7:8c: 08:9a:1d:5b:3f:54:77:32:3f:c1:48:ee:07:17:2e:fd:82:a7: 20:f2:28:25:c3:2a:1e:a9:ce:f0:8c:16:9a:6a:f3:39:dd:c5: f5:97:e2:42:af:4a:75:45:4b:8e:53:a3:a9:34:ad:8d:63:4c: b7:83:f5:70:ab:71:68:14:11:a1:e9:75:f6:ba:57:60:71:ba: 17:28:3b:81:e1:cd:af:c4:1e:92:52:47:a2:74:92:9e:85:77: 36:2d:4d:29:54:e4:af:bb:e9:0a:bf:1c:61:f8:d3:2b:eb:fb: 54:0a:86:2b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQHI0g2+FfIWrstTEUTtHoVK4BtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkMwNEMxQkNDRkFBMEJCMjFENjdFNkNDQjFDQzgxODRF RjU2RTJGODAeFw0yNjA1MDMwMjUxNDdaFw0yNzA1MDIwMjU2NDdaMDMxMTAvBgNV BAMTKDdBRURFNzFEMDY2MjREMDg0NjlCRjNCOEI2NTQ5NDA3QzdGQkRCQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbztxjQGCzeuXVJeQOCsGw98fW yY27aKf3iZnEJ5QPMPbPG6TLke8RoLjIjRFIIBT68BoibUrid1qLAjnnVp6750Iy qHCirt24RMsy9DaB3C1LcHXVqqd17jMInXNQFrkvQdPNYl4qLzMGqAlBEPMwtqtW 4TfKtAfSkPrd1wUdn5zR6TF2t0NiCPK9gRaLpbRpOwzmnupP154ZNyuY3SQQmRfk ZYRCvLSCArtfi+hA4JJ9eHJMGUhK0S52wJbfuwUe+tKP4HD9U4Jg1kbs6fXtr/7l DeIAzKT4Y86uQV9dq4r56hxUb3j7X4A8uisOeFnTXxCGkp679ZUmS8SbWFitAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUeu3nHQZiTQhGm/O4tlSUB8f727kwHwYDVR0j BBgwFoAU/ATBvM+qC7IdZ+bMscyBhO9W4vgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTVkZWNhODItODlhYi00NTgyLThlODItOGVjOGE1MWZlYzQyLzAvRkMwNEMxQkND RkFBMEJCMjFENjdFNkNDQjFDQzgxODRFRjU2RTJGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQzA0QzFCQ0NGQUEwQkIyMUQ2N0U2Q0NCMUNDODE4NEVGNTZF MkY4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E1ZGVjYTgyLTg5YWItNDU4Mi04 ZTgyLThlYzhhNTFmZWM0Mi8wLzMxMzAzMzJlMzEzNTM4MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnoIwDQYJ KoZIhvcNAQELBQADggEBAFToPcFtm/hIEcDSxzJ8m+Mb1BYpBowMhU/ht7qvVl0a pwWR5Ys1dw88FvSLjPJ6M+QKAu1QTIogILFIpKQQc+JNhGRISzJdHn4JjzzpxwXb et1URCpUirXS6xlEtAchMuqy5ZOUjNId+mJwZyYpjAOq1tJxA1nAUFe1OMtq7xAr qA4aKMM+Gpzpf16ibojnjAiaHVs/VHcyP8FI7gcXLv2CpyDyKCXDKh6pzvCMFppq 8zndxfWX4kKvSnVFS45To6k0rY1jTLeD9XCrcWgUEaHpdfa6V2BxuhcoO4Hhza/E HpJSR6J0kp6FdzYtTSlU5K+76Qq/HGH40yvr+1QKhis= -----END CERTIFICATE-----Generated at Wed May 13 06:55:49 2026 by rpki-client