$ rpki-client -vvf rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/3130332e3133332e36382e302f32322d3234203d3e203338333230.roa File: 3130332e3133332e36382e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: sGKE5Fi9WNAXy6MtGSBzO3fsWvU5EdeEKi1Fq0HGEPY= Subject key identifier: 3A:F7:52:5B:46:05:53:01:57:73:5D:B0:A7:BD:6A:F4:65:C3:05:4A Certificate issuer: /CN=53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1 Certificate serial: 3CA5FC61491221C21CD49DE8944D2A87E80147C9 Authority key identifier: 53:AB:7D:32:5B:35:CB:89:AC:FA:1B:63:C2:2B:EA:9E:19:33:5D:A1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/3130332e3133332e36382e302f32322d3234203d3e203338333230.roa Signing time: Sun 03 May 2026 03:01:34 +0000 ROA not before: Sun 03 May 2026 02:56:34 +0000 ROA not after: Sun 02 May 2027 03:01:34 +0000 asID: 38320 IP address blocks: 103.133.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.crl rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a5:fc:61:49:12:21:c2:1c:d4:9d:e8:94:4d:2a:87:e8:01:47:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1 Validity Not Before: May 3 02:56:34 2026 GMT Not After : May 2 03:01:34 2027 GMT Subject: CN=3AF7525B4605530157735DB0A7BD6AF465C3054A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:90:96:33:b8:c7:4c:99:63:a7:86:43:23:eb: 72:89:60:e1:ce:c3:1f:13:81:27:02:d4:a3:c5:6f: 52:fa:9e:4d:b9:6a:21:b1:d5:2f:d9:35:75:67:fa: e9:c4:03:34:39:02:b2:af:5b:56:69:60:f0:0f:5d: 17:8f:b2:15:57:f1:37:93:a9:95:0a:1c:9f:13:9e: d6:eb:25:44:bc:3e:c3:1f:31:fb:6c:e2:f6:5a:6f: f8:b6:fc:64:6e:85:6f:e6:b8:37:8c:09:33:a9:29: 28:af:94:85:c0:41:d3:3b:18:ef:8a:9a:36:a4:c1: 86:ef:dc:9e:af:cd:f6:bd:7a:dc:7a:4c:6e:81:7c: 94:ad:c9:65:3c:85:34:a4:7b:44:42:28:01:3b:14: 51:83:db:f8:80:0d:bc:93:b2:8d:3d:3b:0e:33:6f: 3d:50:ad:9b:30:f7:d2:51:11:11:dd:96:96:b2:8d: 4d:37:4d:f9:13:00:a1:db:d3:d1:98:2e:d8:05:6f: cf:30:ef:67:b2:94:6f:d4:8a:34:ad:9d:00:f4:47: c8:19:37:44:cc:e0:5f:e6:0c:5f:4c:36:0d:44:ea: 0a:90:f4:c9:df:66:c8:b6:0d:b4:ff:81:2a:24:c2: 7c:50:8a:03:a6:0e:b2:7d:0c:8c:f6:2c:d0:7c:3a: 98:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F7:52:5B:46:05:53:01:57:73:5D:B0:A7:BD:6A:F4:65:C3:05:4A X509v3 Authority Key Identifier: keyid:53:AB:7D:32:5B:35:CB:89:AC:FA:1B:63:C2:2B:EA:9E:19:33:5D:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/3130332e3133332e36382e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.68.0/22 Signature Algorithm: sha256WithRSAEncryption 04:b4:39:b5:c9:2f:8a:82:1d:de:a0:eb:b3:b5:0f:00:55:76: 5e:a8:76:6b:58:a3:10:c5:c6:24:9a:d7:32:13:ae:c0:8a:69: e3:c7:fa:67:ba:31:5c:17:8d:77:dc:7c:42:e0:da:61:0e:8d: 25:91:d2:f6:1f:ea:01:9c:03:e8:b5:a2:38:06:42:7d:f2:28: dd:d1:44:76:bc:9b:96:8e:b7:3a:e8:1f:76:f1:b3:82:de:2b: 58:03:4f:c1:22:56:db:38:18:98:68:1c:75:0c:30:cb:6f:4b: e4:51:26:29:02:1c:d6:e4:bb:8c:ab:d6:56:7f:09:48:f2:58: 7a:ed:47:04:b1:98:86:e4:4d:00:23:65:2a:42:1b:35:0e:50: 21:df:4a:e9:65:af:07:17:26:50:6d:71:5a:f5:a9:23:5e:a4: 1b:9a:dd:6e:65:28:b8:80:bc:ea:7d:97:6e:6d:49:a6:ae:a1: bf:ba:9f:a4:e0:18:ee:62:4c:8e:8b:4d:54:db:9a:e5:c6:c5: 20:ae:13:f7:09:cc:82:29:ff:72:9d:d6:50:37:39:ae:e4:3c: 88:76:86:db:71:3b:5e:88:d0:1b:e6:5b:b1:06:6f:aa:48:75: ca:49:32:97:0d:aa:8c:98:63:a3:26:cc:c4:60:1c:c8:a3:ce: 8d:51:47:4e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPKX8YUkSIcIc1J3olE0qh+gBR8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNBQjdEMzI1QjM1Q0I4OUFDRkExQjYzQzIyQkVBOUUx OTMzNURBMTAeFw0yNjA1MDMwMjU2MzRaFw0yNzA1MDIwMzAxMzRaMDMxMTAvBgNV BAMTKDNBRjc1MjVCNDYwNTUzMDE1NzczNURCMEE3QkQ2QUY0NjVDMzA1NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtkJYzuMdMmWOnhkMj63KJYOHO wx8TgScC1KPFb1L6nk25aiGx1S/ZNXVn+unEAzQ5ArKvW1ZpYPAPXRePshVX8TeT qZUKHJ8TntbrJUS8PsMfMfts4vZab/i2/GRuhW/muDeMCTOpKSivlIXAQdM7GO+K mjakwYbv3J6vzfa9etx6TG6BfJStyWU8hTSke0RCKAE7FFGD2/iADbyTso09Ow4z bz1QrZsw99JRERHdlpayjU03TfkTAKHb09GYLtgFb88w72eylG/UijStnQD0R8gZ N0TM4F/mDF9MNg1E6gqQ9MnfZsi2DbT/gSokwnxQigOmDrJ9DIz2LNB8OpgBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOvdSW0YFUwFXc12wp71q9GXDBUowHwYDVR0j BBgwFoAUU6t9Mls1y4ms+htjwivqnhkzXaEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjY5ZmQ1YTEtNjAyNi00YmZhLWE2NzEtZjI3NzFhZmUwMDdjLzAvNTNBQjdEMzI1 QjM1Q0I4OUFDRkExQjYzQzIyQkVBOUUxOTMzNURBMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81M0FCN0QzMjVCMzVDQjg5QUNGQTFCNjNDMjJCRUE5RTE5MzM1 REExLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I2OWZkNWExLTYwMjYtNGJmYS1h NjcxLWYyNzcxYWZlMDA3Yy8wLzMxMzAzMzJlMzEzMzMzMmUzNjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmeFRDANBgkqhkiG 9w0BAQsFAAOCAQEABLQ5tckvioId3qDrs7UPAFV2Xqh2a1ijEMXGJJrXMhOuwIpp 48f6Z7oxXBeNd9x8QuDaYQ6NJZHS9h/qAZwD6LWiOAZCffIo3dFEdryblo63Ougf dvGzgt4rWANPwSJW2zgYmGgcdQwwy29L5FEmKQIc1uS7jKvWVn8JSPJYeu1HBLGY huRNACNlKkIbNQ5QId9K6WWvBxcmUG1xWvWpI16kG5rdbmUouIC86n2Xbm1Jpq6h v7qfpOAY7mJMjotNVNua5cbFIK4T9wnMgin/cp3WUDc5ruQ8iHaG23E7XojQG+Zb sQZvqkh1ykkylw2qjJhjoybMxGAcyKPOjVFHTg== -----END CERTIFICATE-----Generated at Wed May 13 14:27:40 2026 by rpki-client