$ rpki-client -vvf rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa File: 3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa (raw, json) Hash identifier: IhEwcpICZNPed1st7QD2ul0Xv1zBvNohPSdVYQvZPpI= Subject key identifier: E4:C7:60:44:2A:BF:3E:6C:4D:A9:24:F4:41:10:72:8E:FF:1F:FC:E0 Certificate issuer: /CN=B25AA89991DF81963DB95ACB8023EAC3D55C3D7A Certificate serial: 1A98B613D4BA93792245AD23C8C5867D61138480 Authority key identifier: B2:5A:A8:99:91:DF:81:96:3D:B9:5A:CB:80:23:EA:C3:D5:5C:3D:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa Signing time: Sun 03 May 2026 03:01:06 +0000 ROA not before: Sun 03 May 2026 02:56:06 +0000 ROA not after: Sun 02 May 2027 03:01:06 +0000 asID: 45701 IP address blocks: 103.156.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.crl rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:98:b6:13:d4:ba:93:79:22:45:ad:23:c8:c5:86:7d:61:13:84:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B25AA89991DF81963DB95ACB8023EAC3D55C3D7A Validity Not Before: May 3 02:56:06 2026 GMT Not After : May 2 03:01:06 2027 GMT Subject: CN=E4C760442ABF3E6C4DA924F44110728EFF1FFCE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0e:86:df:80:da:9c:6b:de:69:aa:4e:39:9f: 21:33:1c:2c:86:f4:b2:42:32:ec:65:0c:49:76:d5: a6:95:39:66:40:f6:e1:87:74:00:91:0e:8a:92:2d: c7:fc:c6:6e:eb:6b:58:24:41:a9:65:8f:26:8c:4d: 3d:2a:34:c4:20:e8:59:68:44:f4:2d:40:fa:67:4c: 8c:96:60:b8:a9:51:3a:02:e6:2c:70:38:28:8e:c2: 76:d8:5f:42:52:3b:a4:7b:af:1e:7b:45:68:c4:e0: 37:63:b1:fe:a9:20:11:3b:db:66:16:58:84:e3:58: 30:ff:24:09:0a:1d:49:45:01:c3:f8:de:99:f5:02: f9:88:fc:f9:d8:3c:8e:3b:26:86:ce:6d:fa:6f:9d: c4:50:c6:6e:ad:30:82:02:bc:dd:8a:23:5c:fe:c3: 23:6b:9e:d8:e7:a2:c5:46:2a:5b:5d:04:a3:eb:68: 60:38:1b:61:4b:b1:e5:3f:b3:72:11:7b:d3:7d:c9: 35:0f:d3:ab:e1:39:6d:19:f7:5d:89:c3:05:50:3f: 39:80:75:64:7f:9c:80:d2:cd:45:5a:28:aa:18:10: 0a:8a:a0:87:b0:db:97:1b:ed:6f:b5:74:e3:f0:96: dc:19:70:80:2c:c9:99:1c:f7:ac:fa:fa:f0:0c:07: d6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C7:60:44:2A:BF:3E:6C:4D:A9:24:F4:41:10:72:8E:FF:1F:FC:E0 X509v3 Authority Key Identifier: keyid:B2:5A:A8:99:91:DF:81:96:3D:B9:5A:CB:80:23:EA:C3:D5:5C:3D:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.227.0/24 Signature Algorithm: sha256WithRSAEncryption 81:e1:89:83:a8:14:6b:41:0a:85:7c:70:fd:3e:74:f2:49:9a: 2d:f9:ae:2e:50:f1:1d:ec:b1:b8:a2:fd:42:a2:e0:6e:32:9a: 87:6a:f3:55:7b:e3:65:b6:23:4d:10:42:6b:87:40:37:41:d2: c4:b7:d9:a0:ba:48:e4:99:1e:b2:dc:b4:47:b4:e8:1a:35:67: 90:d2:a5:aa:e7:b2:56:4e:58:a7:d6:8a:ff:c2:b9:3a:c1:24: a0:13:38:1b:70:68:3d:d4:8a:aa:23:ef:da:c1:41:d4:28:8b: 3d:6a:ae:7a:71:a2:c3:02:ed:b1:f0:34:f5:19:48:54:7f:30: 1b:8f:d9:c6:ed:69:2a:4b:d3:56:af:50:38:4e:ff:15:35:08: 12:bb:c3:03:b1:78:de:df:48:84:07:1e:f6:aa:3d:a1:95:4a: 61:5c:56:42:39:0d:dc:ef:7b:9b:1a:6e:8b:7e:d4:fa:ed:71: 5a:a1:fc:7e:c2:34:9f:52:7b:78:bb:d2:9a:11:93:07:5f:94: ec:6d:7d:6d:2c:1d:3f:c6:d4:a4:52:80:be:aa:3d:1c:40:c4: 06:b5:6d:3e:95:cf:f0:ae:86:87:6e:59:f8:d1:4e:14:cf:3a: 80:e3:c8:68:a7:ff:8c:f7:89:04:26:88:64:7c:1b:8e:b8:d3: 74:9a:97:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGpi2E9S6k3kiRa0jyMWGfWEThIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI1QUE4OTk5MURGODE5NjNEQjk1QUNCODAyM0VBQzNE NTVDM0Q3QTAeFw0yNjA1MDMwMjU2MDZaFw0yNzA1MDIwMzAxMDZaMDMxMTAvBgNV BAMTKEU0Qzc2MDQ0MkFCRjNFNkM0REE5MjRGNDQxMTA3MjhFRkYxRkZDRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeDobfgNqca95pqk45nyEzHCyG 9LJCMuxlDEl21aaVOWZA9uGHdACRDoqSLcf8xm7ra1gkQalljyaMTT0qNMQg6Flo RPQtQPpnTIyWYLipUToC5ixwOCiOwnbYX0JSO6R7rx57RWjE4Ddjsf6pIBE722YW WITjWDD/JAkKHUlFAcP43pn1AvmI/PnYPI47JobObfpvncRQxm6tMIICvN2KI1z+ wyNrntjnosVGKltdBKPraGA4G2FLseU/s3IRe9N9yTUP06vhOW0Z912JwwVQPzmA dWR/nIDSzUVaKKoYEAqKoIew25cb7W+1dOPwltwZcIAsyZkc96z6+vAMB9YFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5MdgRCq/PmxNqST0QRByjv8f/OAwHwYDVR0j BBgwFoAUslqomZHfgZY9uVrLgCPqw9VcPXowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjUzNTVjNWEtZWZjOC00OGY3LTkwMmYtNmUzMWZjNDI5OTVhLzAvQjI1QUE4OTk5 MURGODE5NjNEQjk1QUNCODAyM0VBQzNENTVDM0Q3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMjVBQTg5OTkxREY4MTk2M0RCOTVBQ0I4MDIzRUFDM0Q1NUMz RDdBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I1MzU1YzVhLWVmYzgtNDhmNy05 MDJmLTZlMzFmYzQyOTk1YS8wLzMxMzAzMzJlMzEzNTM2MmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5zjMA0GCSqG SIb3DQEBCwUAA4IBAQCB4YmDqBRrQQqFfHD9PnTySZot+a4uUPEd7LG4ov1CouBu MpqHavNVe+NltiNNEEJrh0A3QdLEt9mgukjkmR6y3LRHtOgaNWeQ0qWq57JWTlin 1or/wrk6wSSgEzgbcGg91IqqI+/awUHUKIs9aq56caLDAu2x8DT1GUhUfzAbj9nG 7WkqS9NWr1A4Tv8VNQgSu8MDsXje30iEBx72qj2hlUphXFZCOQ3c73ubGm6LftT6 7XFaofx+wjSfUnt4u9KaEZMHX5TsbX1tLB0/xtSkUoC+qj0cQMQGtW0+lc/wroaH bln40U4UzzqA48hop/+M94kEJohkfBuOuNN0mpfZ -----END CERTIFICATE-----Generated at Wed May 13 07:59:30 2026 by rpki-client