$ rpki-client -vvf rpki-rsync.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/3130332e3135332e34332e302f32342d3234203d3e20313430343434.roa File: 3130332e3135332e34332e302f32342d3234203d3e20313430343434.roa (raw, json) Hash identifier: HK/N3jJS+JzZ86LurZHVJQHoGpVJnd2NzI7n/JqdXTw= Subject key identifier: 3B:16:C9:72:1B:E9:5A:CA:5C:82:43:26:52:1E:9C:94:49:31:73:F8 Certificate issuer: /CN=7CB53701F9A5E6CBB24596105D30044B647BBC84 Certificate serial: 0CD5F0F17F23FF3D04FDA547E791719E856046D9 Authority key identifier: 7C:B5:37:01:F9:A5:E6:CB:B2:45:96:10:5D:30:04:4B:64:7B:BC:84 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CB53701F9A5E6CBB24596105D30044B647BBC84.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/3130332e3135332e34332e302f32342d3234203d3e20313430343434.roa Signing time: Sun 03 May 2026 03:05:49 +0000 ROA not before: Sun 03 May 2026 03:00:49 +0000 ROA not after: Sun 02 May 2027 03:05:49 +0000 asID: 140444 IP address blocks: 103.153.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/7CB53701F9A5E6CBB24596105D30044B647BBC84.crl rsync://rpki-rsync.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/7CB53701F9A5E6CBB24596105D30044B647BBC84.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CB53701F9A5E6CBB24596105D30044B647BBC84.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d5:f0:f1:7f:23:ff:3d:04:fd:a5:47:e7:91:71:9e:85:60:46:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB53701F9A5E6CBB24596105D30044B647BBC84 Validity Not Before: May 3 03:00:49 2026 GMT Not After : May 2 03:05:49 2027 GMT Subject: CN=3B16C9721BE95ACA5C824326521E9C94493173F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:51:59:f7:98:3f:3d:6a:19:f2:a9:b5:11:9e: a2:d7:79:1e:dd:1e:4c:f4:a9:4b:a4:9e:7c:59:cd: 62:51:9e:de:3b:03:81:68:a4:96:39:36:44:a2:38: c5:86:34:63:1a:8c:41:a7:90:91:c8:88:f0:53:10: 3f:78:3c:aa:99:61:4b:4d:06:5e:fd:f4:87:f5:1c: bb:9f:f7:4f:f5:1c:ce:52:f0:38:fd:d2:93:0f:d3: 6a:a0:69:96:75:38:5e:e2:52:54:29:7e:96:ff:de: aa:ec:19:e8:7b:30:93:05:eb:8c:ed:d7:23:ec:1e: 47:d6:a4:c9:f2:27:08:09:04:35:26:0f:2e:65:89: 5a:bd:fd:62:b0:f6:fb:e8:8d:b8:9d:dd:76:64:23: d9:15:88:d9:4f:53:d0:3d:f3:6c:f6:46:3f:bd:94: 1a:17:64:9d:6d:1d:b9:cf:7b:ca:33:5c:34:c3:7a: 9d:5e:f1:27:b2:7c:3a:ec:a7:20:c1:63:5f:ae:a9: cd:ee:ae:51:7b:5a:d5:4d:dc:2a:32:48:ac:e7:07: 4f:eb:35:72:8d:fd:2f:f7:bd:a5:d1:52:65:12:ea: ac:ec:56:52:0c:84:e2:69:30:e4:12:77:fc:9d:1f: ae:24:2a:4b:0d:aa:e9:42:d0:35:03:6e:e2:e1:d2: bb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:16:C9:72:1B:E9:5A:CA:5C:82:43:26:52:1E:9C:94:49:31:73:F8 X509v3 Authority Key Identifier: keyid:7C:B5:37:01:F9:A5:E6:CB:B2:45:96:10:5D:30:04:4B:64:7B:BC:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/7CB53701F9A5E6CBB24596105D30044B647BBC84.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CB53701F9A5E6CBB24596105D30044B647BBC84.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/3130332e3135332e34332e302f32342d3234203d3e20313430343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.43.0/24 Signature Algorithm: sha256WithRSAEncryption 29:0a:4a:6b:1a:0f:a2:2c:c6:89:27:f8:32:31:45:75:e9:1f: f4:fc:cc:b5:8a:b9:f2:a1:73:97:db:8a:57:80:f3:4b:13:d2: f8:a1:51:c8:9b:4b:39:3e:bd:33:ee:18:0c:01:67:f3:3d:cb: aa:36:1f:7d:f6:8b:bc:87:ad:88:f1:8c:29:8e:68:4d:2c:45: 91:c8:06:a5:8c:81:16:74:24:f8:0d:9d:d8:56:9a:fc:5f:ea: 0e:1a:f9:64:8e:1d:c6:d9:15:dd:f3:ff:5d:c9:54:e3:f4:c5: 50:6f:a5:1a:1d:1b:53:82:07:d2:57:b7:c7:77:42:1a:a9:e1: 22:28:8f:a2:7c:46:67:49:da:71:9f:89:9c:b1:da:90:a7:e1: e9:ca:f3:93:0c:4c:2e:b6:3d:02:3a:38:a2:02:0e:e2:06:08: 94:6f:c7:1b:e8:b3:9e:fb:7d:26:d8:2e:d7:04:db:e7:6b:e0: 04:16:35:8c:b6:29:18:75:67:6c:01:f2:db:45:4c:1f:95:f5: d1:9c:77:b8:25:0c:2c:f3:23:5c:b3:42:2b:d8:3c:e9:09:9d: 56:3c:b8:8b:25:b9:09:c7:53:cd:dd:1b:dc:1e:f7:a8:33:c9: 87:29:24:7e:45:89:a3:af:d4:9f:69:8f:99:14:2f:9d:90:49: f3:e1:af:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDNXw8X8j/z0E/aVH55FxnoVgRtkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCNTM3MDFGOUE1RTZDQkIyNDU5NjEwNUQzMDA0NEI2 NDdCQkM4NDAeFw0yNjA1MDMwMzAwNDlaFw0yNzA1MDIwMzA1NDlaMDMxMTAvBgNV BAMTKDNCMTZDOTcyMUJFOTVBQ0E1QzgyNDMyNjUyMUU5Qzk0NDkzMTczRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGUVn3mD89ahnyqbURnqLXeR7d Hkz0qUuknnxZzWJRnt47A4FopJY5NkSiOMWGNGMajEGnkJHIiPBTED94PKqZYUtN Bl799If1HLuf90/1HM5S8Dj90pMP02qgaZZ1OF7iUlQpfpb/3qrsGeh7MJMF64zt 1yPsHkfWpMnyJwgJBDUmDy5liVq9/WKw9vvojbid3XZkI9kViNlPU9A982z2Rj+9 lBoXZJ1tHbnPe8ozXDTDep1e8SeyfDrspyDBY1+uqc3urlF7WtVN3CoySKznB0/r NXKN/S/3vaXRUmUS6qzsVlIMhOJpMOQSd/ydH64kKksNqulC0DUDbuLh0rv1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOxbJchvpWspcgkMmUh6clEkxc/gwHwYDVR0j BBgwFoAUfLU3Afml5suyRZYQXTAES2R7vIQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzcxMTU1OWUtZDVlYy00YzE5LWIzMzUtZWUyOWRkZmJiOWQ1LzAvN0NCNTM3MDFG OUE1RTZDQkIyNDU5NjEwNUQzMDA0NEI2NDdCQkM4NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83Q0I1MzcwMUY5QTVFNkNCQjI0NTk2MTA1RDMwMDQ0QjY0N0JC Qzg0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M3MTE1NTllLWQ1ZWMtNGMxOS1i MzM1LWVlMjlkZGZiYjlkNS8wLzMxMzAzMzJlMzEzNTMzMmUzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5krMA0GCSqG SIb3DQEBCwUAA4IBAQApCkprGg+iLMaJJ/gyMUV16R/0/My1irnyoXOX24pXgPNL E9L4oVHIm0s5Pr0z7hgMAWfzPcuqNh999ou8h62I8YwpjmhNLEWRyAaljIEWdCT4 DZ3YVpr8X+oOGvlkjh3G2RXd8/9dyVTj9MVQb6UaHRtTggfSV7fHd0IaqeEiKI+i fEZnSdpxn4mcsdqQp+HpyvOTDEwutj0COjiiAg7iBgiUb8cb6LOe+30m2C7XBNvn a+AEFjWMtikYdWdsAfLbRUwflfXRnHe4JQws8yNcs0Ir2DzpCZ1WPLiLJbkJx1PN 3RvcHveoM8mHKSR+RYmjr9SfaY+ZFC+dkEnz4a9K -----END CERTIFICATE-----Generated at Wed May 13 00:27:47 2026 by rpki-client