$ rpki-client -vvf rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39352e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: zJ5Jgen43BSfgth1+Wx2KQ4rMgZaYS8tSCDudAuawmM= Subject key identifier: E2:E8:8F:88:08:F6:2E:42:39:63:A0:B1:56:CC:D8:E3:40:11:6A:B1 Certificate issuer: /CN=43F896EEB70F2F97883FF459CAE3ACB43742B3BC Certificate serial: 279F7ED92167B3AC7CD5CBFE1798F9E17618A937 Authority key identifier: 43:F8:96:EE:B7:0F:2F:97:88:3F:F4:59:CA:E3:AC:B4:37:42:B3:BC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa Signing time: Sun 03 May 2026 02:58:14 +0000 ROA not before: Sun 03 May 2026 02:53:14 +0000 ROA not after: Sun 02 May 2027 02:58:14 +0000 asID: 17538 IP address blocks: 103.151.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:9f:7e:d9:21:67:b3:ac:7c:d5:cb:fe:17:98:f9:e1:76:18:a9:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43F896EEB70F2F97883FF459CAE3ACB43742B3BC Validity Not Before: May 3 02:53:14 2026 GMT Not After : May 2 02:58:14 2027 GMT Subject: CN=E2E88F8808F62E423963A0B156CCD8E340116AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:73:04:c1:16:cf:13:db:3a:7d:15:05:5a: 08:0d:58:96:7f:f1:98:07:2f:f9:b3:6f:f7:2e:c3: 6e:3e:0b:4c:30:4e:6c:08:55:c3:1b:73:ac:55:5a: 9b:d7:51:00:54:82:50:28:83:34:bc:95:5a:e6:a0: c8:67:76:49:86:ae:1e:74:c0:50:95:24:f1:8c:0a: e2:6f:28:b9:93:7e:e3:cd:80:13:78:2b:9a:e3:30: 36:7c:6f:43:b9:53:f3:15:78:6a:9f:b6:fe:7b:94: 13:b7:8d:cd:7d:35:8a:44:4b:67:6d:f0:ee:8b:6d: 34:8e:aa:88:b5:cb:41:47:28:55:d9:40:ca:79:3d: aa:40:e4:a1:c2:39:bf:07:ac:b1:37:15:99:82:57: 3e:d1:df:4a:8e:e5:8b:64:90:77:cf:11:15:1a:55: eb:83:03:c8:e6:35:4a:5c:ce:f6:bd:75:74:0b:d5: 87:33:92:7a:dc:41:9d:7d:be:b3:b8:dc:34:87:89: 6f:4d:a6:da:fc:04:ff:98:b7:d1:02:8c:b5:9c:f2: f7:44:72:b6:92:50:8e:d9:77:9d:c1:5b:48:57:5b: f4:77:e8:ac:c2:79:39:c7:8c:b1:11:56:3f:87:c3: aa:92:7e:b1:8e:0c:4c:71:26:4a:22:d9:07:7f:ab: f5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E8:8F:88:08:F6:2E:42:39:63:A0:B1:56:CC:D8:E3:40:11:6A:B1 X509v3 Authority Key Identifier: keyid:43:F8:96:EE:B7:0F:2F:97:88:3F:F4:59:CA:E3:AC:B4:37:42:B3:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.95.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:df:e4:d3:cc:c6:21:ad:cb:be:04:07:76:7e:ff:66:78:40: 9c:c8:8e:ad:ad:cf:9d:a8:ff:07:4a:6d:3c:60:16:33:e6:d0: 36:8a:cf:9b:3b:c6:26:62:df:ed:55:22:49:50:67:c0:b9:5d: 8c:76:e4:bc:da:b0:07:a5:4a:b2:85:90:62:07:de:21:07:05: 72:f1:59:3a:83:38:c1:81:fa:b2:9d:3f:7b:5f:3b:02:0c:35: 26:75:a7:6b:23:c8:78:b6:db:3e:dc:f7:15:b9:83:97:a9:27: 6e:2e:65:6e:fc:9c:94:4c:4f:4e:fa:cd:6b:d9:e2:79:92:d4: df:07:b8:50:88:9a:b5:a4:31:73:5f:8e:db:16:8b:18:15:4b: b5:27:cf:26:c5:e1:5c:ce:93:0b:33:8b:d5:d3:b7:77:b3:5f: a8:b1:da:c8:27:bf:f5:22:fc:3b:51:d9:22:1e:7d:a1:95:b5: cc:96:3a:47:c2:95:1e:f9:22:ff:a8:5f:4d:c5:33:53:ad:a0: eb:c6:6f:64:8e:82:52:40:fc:3e:69:b7:1a:17:a6:11:a2:59: cf:b9:0f:a7:95:d2:30:3a:d7:00:bb:fe:ea:6e:71:16:72:47: 36:17:5d:7a:5d:54:e9:b5:a4:3f:c9:b7:63:ba:0b:6a:f6:0e: 8a:c4:62:54 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ59+2SFns6x81cv+F5j54XYYqTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNGODk2RUVCNzBGMkY5Nzg4M0ZGNDU5Q0FFM0FDQjQz NzQyQjNCQzAeFw0yNjA1MDMwMjUzMTRaFw0yNzA1MDIwMjU4MTRaMDMxMTAvBgNV BAMTKEUyRTg4Rjg4MDhGNjJFNDIzOTYzQTBCMTU2Q0NEOEUzNDAxMTZBQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDENXMEwRbPE9s6fRUFWggNWJZ/ 8ZgHL/mzb/cuw24+C0wwTmwIVcMbc6xVWpvXUQBUglAogzS8lVrmoMhndkmGrh50 wFCVJPGMCuJvKLmTfuPNgBN4K5rjMDZ8b0O5U/MVeGqftv57lBO3jc19NYpES2dt 8O6LbTSOqoi1y0FHKFXZQMp5PapA5KHCOb8HrLE3FZmCVz7R30qO5YtkkHfPERUa VeuDA8jmNUpczva9dXQL1YczknrcQZ19vrO43DSHiW9Nptr8BP+Yt9ECjLWc8vdE craSUI7Zd53BW0hXW/R36KzCeTnHjLERVj+Hw6qSfrGODExxJkoi2Qd/q/WVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4uiPiAj2LkI5Y6CxVszY40ARarEwHwYDVR0j BBgwFoAUQ/iW7rcPL5eIP/RZyuOstDdCs7wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWE0MzM5MzQtMzg0NC00NjUzLThmYWMtMTg1OGIyODIzZDFjLzAvNDNGODk2RUVC NzBGMkY5Nzg4M0ZGNDU5Q0FFM0FDQjQzNzQyQjNCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0Y4OTZFRUI3MEYyRjk3ODgzRkY0NTlDQUUzQUNCNDM3NDJC M0JDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04 ZmFjLTE4NThiMjgyM2QxYy8wLzMxMzAzMzJlMzEzNTMxMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXXzANBgkqhkiG 9w0BAQsFAAOCAQEAj9/k08zGIa3LvgQHdn7/ZnhAnMiOra3Pnaj/B0ptPGAWM+bQ NorPmzvGJmLf7VUiSVBnwLldjHbkvNqwB6VKsoWQYgfeIQcFcvFZOoM4wYH6sp0/ e187Agw1JnWnayPIeLbbPtz3FbmDl6knbi5lbvyclExPTvrNa9nieZLU3we4UIia taQxc1+O2xaLGBVLtSfPJsXhXM6TCzOL1dO3d7NfqLHayCe/9SL8O1HZIh59oZW1 zJY6R8KVHvki/6hfTcUzU62g68ZvZI6CUkD8Pmm3GhemEaJZz7kPp5XSMDrXALv+ 6m5xFnJHNhddel1U6bWkP8m3Y7oLavYOisRiVA== -----END CERTIFICATE-----Generated at Wed May 13 11:59:12 2026 by rpki-client