$ rpki-client -vvf rpki-rsync.idnic.net/repo/af5cfba3-e017-4e8a-9ac5-f2d304317365/0/3130332e3131322e3138392e302f32342d3234203d3e20313337333332.roa File: 3130332e3131322e3138392e302f32342d3234203d3e20313337333332.roa (raw, json) Hash identifier: L92at1VBLISZXeLgKyaGu6oCdPY8yBu9x3vzonWkuxM= Subject key identifier: AC:1A:87:44:08:14:3B:A0:1F:51:0D:ED:45:2F:B8:35:43:C9:3A:A0 Certificate issuer: /CN=477D71607466F25C429BF0826B9301DA69A81C15 Certificate serial: 7F39A7B0E348A0CC3D1E359FD48CA432E907A625 Authority key identifier: 47:7D:71:60:74:66:F2:5C:42:9B:F0:82:6B:93:01:DA:69:A8:1C:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/477D71607466F25C429BF0826B9301DA69A81C15.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/af5cfba3-e017-4e8a-9ac5-f2d304317365/0/3130332e3131322e3138392e302f32342d3234203d3e20313337333332.roa Signing time: Sun 03 May 2026 02:59:45 +0000 ROA not before: Sun 03 May 2026 02:54:45 +0000 ROA not after: Sun 02 May 2027 02:59:45 +0000 asID: 137332 IP address blocks: 103.112.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/af5cfba3-e017-4e8a-9ac5-f2d304317365/0/477D71607466F25C429BF0826B9301DA69A81C15.crl rsync://rpki-rsync.idnic.net/repo/af5cfba3-e017-4e8a-9ac5-f2d304317365/0/477D71607466F25C429BF0826B9301DA69A81C15.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/477D71607466F25C429BF0826B9301DA69A81C15.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:39:a7:b0:e3:48:a0:cc:3d:1e:35:9f:d4:8c:a4:32:e9:07:a6:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=477D71607466F25C429BF0826B9301DA69A81C15 Validity Not Before: May 3 02:54:45 2026 GMT Not After : May 2 02:59:45 2027 GMT Subject: CN=AC1A874408143BA01F510DED452FB83543C93AA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:fb:a8:22:86:3a:00:1b:27:ca:6d:fe:6e:16: 57:d4:71:ea:e7:8b:c3:11:4e:ba:1b:cd:9d:ac:c2: 7a:18:04:3e:d5:99:41:0b:23:e7:ab:91:71:76:fa: 2b:54:99:4d:ae:c0:c7:67:9e:5a:e4:d2:65:1a:a5: c0:73:98:56:ee:6c:78:a3:12:b7:3f:30:af:1c:0a: c8:f0:4e:e9:9d:9b:74:63:c7:7f:c0:40:ae:49:46: 21:a8:1b:ed:dc:56:2a:7d:fe:b5:52:38:f7:67:1f: 50:a2:ac:f1:98:08:64:64:ce:c8:ce:42:49:19:2f: bd:ef:d5:97:4b:46:41:d2:24:27:85:a5:f1:c2:a3: c0:45:df:ad:2e:68:f3:b0:97:b9:88:d4:76:3a:94: c9:1f:23:c4:cd:c5:73:08:74:b8:31:34:9c:99:95: 4b:47:67:ec:9d:80:82:e4:86:c8:b0:c3:2c:73:6d: a6:8c:e4:f6:7f:7a:88:75:bb:2b:a9:5d:ad:1e:46: e8:87:a8:2d:20:40:4e:6a:9d:8c:f3:d0:a6:5b:69: 73:ad:38:f1:88:25:1f:f9:c2:b2:15:cc:f9:b7:64: eb:d5:85:fb:52:27:7d:ad:ac:36:cc:a6:f5:67:37: a1:b8:cd:d3:dc:77:e1:76:fe:b7:53:d9:01:1c:f9: 83:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1A:87:44:08:14:3B:A0:1F:51:0D:ED:45:2F:B8:35:43:C9:3A:A0 X509v3 Authority Key Identifier: keyid:47:7D:71:60:74:66:F2:5C:42:9B:F0:82:6B:93:01:DA:69:A8:1C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/af5cfba3-e017-4e8a-9ac5-f2d304317365/0/477D71607466F25C429BF0826B9301DA69A81C15.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/477D71607466F25C429BF0826B9301DA69A81C15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/af5cfba3-e017-4e8a-9ac5-f2d304317365/0/3130332e3131322e3138392e302f32342d3234203d3e20313337333332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.189.0/24 Signature Algorithm: sha256WithRSAEncryption b0:c5:65:1f:0a:e8:b2:b8:cd:33:74:1e:c3:c2:ba:d2:66:c5: 54:cc:bd:88:bd:70:dc:e0:15:a5:30:3c:65:af:f2:6a:de:8d: 23:8e:70:6d:b8:7e:de:9a:36:ab:a0:b2:b3:06:d9:bf:ff:a9: 54:d1:a5:23:04:2f:b0:02:d9:5d:04:fa:64:51:04:be:2d:a9: 41:a8:43:6d:6b:46:69:f1:21:cc:4a:ba:a7:34:60:e0:13:ce: 53:a0:c0:0e:d2:4a:b2:08:8d:c7:46:af:bf:d4:48:73:4f:72: 01:32:d3:1f:67:d0:e7:5c:23:5e:90:00:1a:22:a8:c5:0c:a6: 57:1b:51:a1:c9:d3:6e:5b:36:e9:f6:5b:41:e9:77:f3:bd:e8: 46:75:8b:dd:d5:ca:40:b0:cb:dd:8b:af:88:cd:d2:3a:31:c6: 4f:8e:cd:3c:c2:19:c3:a0:ba:ac:4c:c7:a7:b4:37:5b:7a:53: bb:de:7a:f3:c3:cb:af:1f:25:9c:96:14:82:3b:22:58:4c:db: 06:13:30:e7:a4:ce:37:4d:5e:b5:d3:f0:fb:03:c7:65:35:9b: d3:87:95:c7:0f:d9:9b:cf:72:fc:dd:6f:40:ee:01:78:42:f1: 6f:8c:eb:34:57:33:22:7d:f2:fa:10:71:93:0a:20:e0:f4:aa: 2d:b8:11:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfzmnsONIoMw9HjWf1IykMukHpiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc3RDcxNjA3NDY2RjI1QzQyOUJGMDgyNkI5MzAxREE2 OUE4MUMxNTAeFw0yNjA1MDMwMjU0NDVaFw0yNzA1MDIwMjU5NDVaMDMxMTAvBgNV BAMTKEFDMUE4NzQ0MDgxNDNCQTAxRjUxMERFRDQ1MkZCODM1NDNDOTNBQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6+6gihjoAGyfKbf5uFlfUcern i8MRTrobzZ2swnoYBD7VmUELI+erkXF2+itUmU2uwMdnnlrk0mUapcBzmFbubHij Erc/MK8cCsjwTumdm3Rjx3/AQK5JRiGoG+3cVip9/rVSOPdnH1CirPGYCGRkzsjO QkkZL73v1ZdLRkHSJCeFpfHCo8BF360uaPOwl7mI1HY6lMkfI8TNxXMIdLgxNJyZ lUtHZ+ydgILkhsiwwyxzbaaM5PZ/eoh1uyupXa0eRuiHqC0gQE5qnYzz0KZbaXOt OPGIJR/5wrIVzPm3ZOvVhftSJ32trDbMpvVnN6G4zdPcd+F2/rdT2QEc+YNpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrBqHRAgUO6AfUQ3tRS+4NUPJOqAwHwYDVR0j BBgwFoAUR31xYHRm8lxCm/CCa5MB2mmoHBUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWY1Y2ZiYTMtZTAxNy00ZThhLTlhYzUtZjJkMzA0MzE3MzY1LzAvNDc3RDcxNjA3 NDY2RjI1QzQyOUJGMDgyNkI5MzAxREE2OUE4MUMxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80NzdENzE2MDc0NjZGMjVDNDI5QkYwODI2QjkzMDFEQTY5QTgx QzE1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FmNWNmYmEzLWUwMTctNGU4YS05 YWM1LWYyZDMwNDMxNzM2NS8wLzMxMzAzMzJlMzEzMTMyMmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncL0wDQYJ KoZIhvcNAQELBQADggEBALDFZR8K6LK4zTN0HsPCutJmxVTMvYi9cNzgFaUwPGWv 8mrejSOOcG24ft6aNqugsrMG2b//qVTRpSMEL7AC2V0E+mRRBL4tqUGoQ21rRmnx IcxKuqc0YOATzlOgwA7SSrIIjcdGr7/USHNPcgEy0x9n0OdcI16QABoiqMUMplcb UaHJ025bNun2W0Hpd/O96EZ1i93VykCwy92Lr4jN0joxxk+OzTzCGcOguqxMx6e0 N1t6U7veevPDy68fJZyWFII7IlhM2wYTMOekzjdNXrXT8PsDx2U1m9OHlccP2ZvP cvzdb0DuAXhC8W+M6zRXMyJ98voQcZMKIOD0qi24Eag= -----END CERTIFICATE-----Generated at Wed May 13 05:43:31 2026 by rpki-client