$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa File: 3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa (raw, json) Hash identifier: 0P5qBTgfllLlHCA3nz89Ltdzy1jcnaNNEY3SQXv/0II= Subject key identifier: FA:30:13:1E:9D:C7:BC:2C:B9:39:4E:E9:70:67:4C:43:9F:B9:BB:C6 Certificate issuer: /CN=25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B Certificate serial: 49C02C81D450E47B5A6CA10BCD56D377BA5CA9D8 Authority key identifier: 25:DF:CC:E8:53:93:67:30:6B:FE:98:EC:BC:25:4B:3C:D0:FF:3F:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa Signing time: Sun 03 May 2026 02:57:55 +0000 ROA not before: Sun 03 May 2026 02:52:55 +0000 ROA not after: Sun 02 May 2027 02:57:55 +0000 asID: 139446 IP address blocks: 103.145.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.crl rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:c0:2c:81:d4:50:e4:7b:5a:6c:a1:0b:cd:56:d3:77:ba:5c:a9:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B Validity Not Before: May 3 02:52:55 2026 GMT Not After : May 2 02:57:55 2027 GMT Subject: CN=FA30131E9DC7BC2CB9394EE970674C439FB9BBC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d2:53:77:a5:2b:78:35:74:8b:d3:cb:d2:af: b7:a6:41:20:92:8b:75:34:ab:9f:4e:b9:77:8a:d4: 24:cb:87:41:09:89:2e:5e:71:1e:63:03:de:83:44: 05:a9:85:3d:a4:69:ab:52:6d:2b:63:a5:e0:97:79: 63:f9:7c:c0:46:dd:42:86:9b:6f:dc:7e:24:05:d4: 88:36:7b:3b:a9:9b:6d:0c:e2:e1:85:dc:3b:a0:1f: a7:d9:be:7b:52:ef:c2:2e:97:df:6b:b3:0e:78:ff: a5:3d:1e:e8:59:99:35:02:05:08:ab:c4:6b:00:c3: 0d:bf:68:12:73:d1:08:70:1e:54:93:7c:dd:48:f9: b5:66:2d:cb:e6:60:97:67:e6:60:9a:cb:b0:23:49: bd:d7:95:96:ea:e6:1f:15:a3:86:47:76:e3:f6:41: 1b:c2:8c:36:24:26:62:aa:fa:b1:bc:50:40:74:c5: 2a:c9:35:d4:63:05:52:95:0e:94:26:38:7c:7c:cc: 44:de:59:4a:98:30:ee:97:e3:ac:27:73:88:03:55: f7:3c:98:c1:ab:c4:23:95:ec:26:7e:b0:1f:26:97: 83:7c:ef:61:38:cc:84:ad:ef:ee:62:99:99:5c:aa: e4:51:83:0f:29:71:93:bc:a4:c0:8f:46:2b:37:38: b6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:30:13:1E:9D:C7:BC:2C:B9:39:4E:E9:70:67:4C:43:9F:B9:BB:C6 X509v3 Authority Key Identifier: keyid:25:DF:CC:E8:53:93:67:30:6B:FE:98:EC:BC:25:4B:3C:D0:FF:3F:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.109.0/24 Signature Algorithm: sha256WithRSAEncryption 65:2c:aa:c0:6d:7e:d6:15:73:38:53:37:f0:20:4b:ca:ad:a7: 23:7c:c1:dd:7a:66:7c:a5:34:56:16:30:ca:33:06:37:0e:45: 61:c0:5e:f1:40:ea:9a:d9:86:37:87:46:7c:36:e7:85:a7:4c: 24:20:15:67:4a:b3:72:28:75:d3:dd:a7:38:8e:d2:e9:11:50: 57:84:c6:73:da:d1:e8:c2:c8:b2:d1:8d:e6:6b:54:b2:14:ea: a0:14:96:f6:19:20:d5:c5:3a:10:c5:75:7f:9c:47:9b:cf:9e: eb:9a:1b:fc:84:87:c8:6e:d8:2a:e3:6f:32:f4:c5:09:ac:5e: e9:6b:42:a6:92:19:89:1b:5d:b3:85:de:a7:a7:b6:c1:65:44: d5:78:b6:21:3d:e8:80:27:20:5e:5f:3b:57:d3:d3:ff:a9:01: b5:d9:5f:8c:53:80:d1:cd:51:25:a6:d1:72:74:97:23:bd:90: fa:c6:1f:d1:1b:75:dc:66:6d:ae:b8:17:27:c7:eb:6c:e9:47: f7:b9:6b:b6:9b:a5:4c:eb:19:12:5b:33:56:f9:80:dd:68:d3: 39:ab:f6:bc:71:4d:71:c9:9b:a8:97:6e:02:7d:6b:96:e1:50: 37:0c:37:cf:c5:e1:9b:5b:c4:b5:9e:e1:84:5b:0a:40:1a:4b: de:ce:82:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUScAsgdRQ5HtabKELzVbTd7pcqdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVERkNDRTg1MzkzNjczMDZCRkU5OEVDQkMyNTRCM0NE MEZGM0Y1QjAeFw0yNjA1MDMwMjUyNTVaFw0yNzA1MDIwMjU3NTVaMDMxMTAvBgNV BAMTKEZBMzAxMzFFOURDN0JDMkNCOTM5NEVFOTcwNjc0QzQzOUZCOUJCQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30lN3pSt4NXSL08vSr7emQSCS i3U0q59OuXeK1CTLh0EJiS5ecR5jA96DRAWphT2kaatSbStjpeCXeWP5fMBG3UKG m2/cfiQF1Ig2ezupm20M4uGF3DugH6fZvntS78Iul99rsw54/6U9HuhZmTUCBQir xGsAww2/aBJz0QhwHlSTfN1I+bVmLcvmYJdn5mCay7AjSb3XlZbq5h8Vo4ZHduP2 QRvCjDYkJmKq+rG8UEB0xSrJNdRjBVKVDpQmOHx8zETeWUqYMO6X46wnc4gDVfc8 mMGrxCOV7CZ+sB8ml4N872E4zISt7+5imZlcquRRgw8pcZO8pMCPRis3OLZTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+jATHp3HvCy5OU7pcGdMQ5+5u8YwHwYDVR0j BBgwFoAUJd/M6FOTZzBr/pjsvCVLPND/P1swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YThjMDY4ZGEtZjljNS00MDM2LTg1NGItOTIyY2FhOTNmMzI0LzAvMjVERkNDRTg1 MzkzNjczMDZCRkU5OEVDQkMyNTRCM0NEMEZGM0Y1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNURGQ0NFODUzOTM2NzMwNkJGRTk4RUNCQzI1NEIzQ0QwRkYz RjVCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4YzA2OGRhLWY5YzUtNDAzNi04 NTRiLTkyMmNhYTkzZjMyNC8wLzMxMzAzMzJlMzEzNDM1MmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkW0wDQYJ KoZIhvcNAQELBQADggEBAGUsqsBtftYVczhTN/AgS8qtpyN8wd16ZnylNFYWMMoz BjcORWHAXvFA6prZhjeHRnw254WnTCQgFWdKs3IoddPdpziO0ukRUFeExnPa0ejC yLLRjeZrVLIU6qAUlvYZINXFOhDFdX+cR5vPnuuaG/yEh8hu2CrjbzL0xQmsXulr QqaSGYkbXbOF3qentsFlRNV4tiE96IAnIF5fO1fT0/+pAbXZX4xTgNHNUSWm0XJ0 lyO9kPrGH9Ebddxmba64FyfH62zpR/e5a7abpUzrGRJbM1b5gN1o0zmr9rxxTXHJ m6iXbgJ9a5bhUDcMN8/F4ZtbxLWe4YRbCkAaS97OgoU= -----END CERTIFICATE-----Generated at Wed May 13 13:57:34 2026 by rpki-client