$ rpki-client -vvf rpki-rsync.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: ATgc6Id4lihO/sLAGAO1j7xGe/4awMhi2w1w0ztaLuU= Subject key identifier: B3:93:DE:AD:68:53:CC:D1:75:E7:03:43:41:75:13:0C:C8:09:FA:7F Certificate issuer: /CN=4138E0AD4646D8B5B19164813105E2EC7C5AC4A5 Certificate serial: 3C47409FD4569985CA599D50C8B04CAFDC3DE128 Authority key identifier: 41:38:E0:AD:46:46:D8:B5:B1:91:64:81:31:05:E2:EC:7C:5A:C4:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4138E0AD4646D8B5B19164813105E2EC7C5AC4A5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa Signing time: Sun 03 May 2026 03:07:32 +0000 ROA not before: Sun 03 May 2026 03:02:32 +0000 ROA not after: Sun 02 May 2027 03:07:32 +0000 asID: 135439 IP address blocks: 103.214.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/4138E0AD4646D8B5B19164813105E2EC7C5AC4A5.crl rsync://rpki-rsync.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/4138E0AD4646D8B5B19164813105E2EC7C5AC4A5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4138E0AD4646D8B5B19164813105E2EC7C5AC4A5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:47:40:9f:d4:56:99:85:ca:59:9d:50:c8:b0:4c:af:dc:3d:e1:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4138E0AD4646D8B5B19164813105E2EC7C5AC4A5 Validity Not Before: May 3 03:02:32 2026 GMT Not After : May 2 03:07:32 2027 GMT Subject: CN=B393DEAD6853CCD175E703434175130CC809FA7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:58:61:c2:3a:cd:8c:86:fc:6f:7f:58:98: b4:f2:7a:86:9c:f5:48:de:55:ac:b6:7e:09:9f:26: ad:41:f7:17:84:1d:c9:20:20:ef:3a:ac:cd:2f:76: c8:7c:54:ab:99:c9:58:f5:b8:e0:92:6f:07:fc:0d: 64:31:47:fa:4d:17:30:99:20:0b:de:2a:68:13:80: fe:a2:fb:89:99:56:fc:af:bc:14:61:bb:36:c1:7e: d7:61:be:40:e5:20:79:65:a8:94:b5:3b:31:00:ad: ad:fe:1d:ee:3c:50:6d:e6:32:da:3b:a2:c7:c4:fd: c2:27:fd:0e:dc:38:d4:83:34:70:bf:a3:e2:a2:19: c2:d7:b5:44:76:3b:a9:e0:c8:06:bd:7a:f1:11:78: 8a:71:35:3c:88:67:5d:66:90:aa:04:c6:62:08:03: 76:7f:31:e0:21:da:37:67:66:f3:68:50:38:61:f8: ef:97:b6:01:97:24:d2:90:e9:78:93:fc:0e:eb:63: 69:e5:26:18:22:59:e7:f2:73:66:92:31:63:e3:6a: 59:e5:81:f7:a2:0a:d0:35:b9:c8:ce:b2:37:e6:23: 72:d9:7e:ce:c7:9a:fe:f1:33:86:38:5b:ce:31:9b: e0:04:4c:58:a5:05:e2:34:e8:0a:79:da:46:87:6c: c4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:93:DE:AD:68:53:CC:D1:75:E7:03:43:41:75:13:0C:C8:09:FA:7F X509v3 Authority Key Identifier: keyid:41:38:E0:AD:46:46:D8:B5:B1:91:64:81:31:05:E2:EC:7C:5A:C4:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/4138E0AD4646D8B5B19164813105E2EC7C5AC4A5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4138E0AD4646D8B5B19164813105E2EC7C5AC4A5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.238.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:71:d5:f0:ac:9e:65:6f:86:31:da:f3:61:aa:ad:e7:ab:92: 11:13:50:ae:9c:7a:c0:01:ab:94:d1:b1:99:44:58:c4:2d:8d: 5c:fc:b1:e1:99:91:d1:f6:6f:f9:98:6c:3a:66:9b:bd:0b:b9: 4d:bd:45:47:d1:c1:9c:b1:47:55:c2:de:db:dc:4f:a2:bb:48: 0a:14:09:ce:8e:9a:fd:3d:7b:f5:4a:cd:0e:69:0b:96:b9:0e: c2:19:ed:40:5a:55:b7:35:80:98:58:66:6a:4d:7c:3b:45:d9: 7c:2e:68:79:1b:1d:c3:d1:c9:53:9c:cb:d0:8e:f3:01:26:81: 9f:92:35:60:01:17:d7:8b:66:33:1c:df:46:cd:f4:f6:d6:45: 6d:a0:6c:42:a5:ca:d3:e5:74:67:e0:c7:3e:a9:50:30:35:35: b1:e4:82:a1:ee:86:ad:7f:8d:ec:d8:2e:b6:9a:91:81:1c:f7: 2d:c1:f9:fb:98:0c:f8:58:0a:66:8e:98:a6:04:bc:33:b0:29: 60:f5:09:d5:37:01:6a:c7:94:46:44:84:f0:ac:3f:3e:e8:cb: f9:a0:36:85:2f:44:25:21:a2:eb:1f:b8:0a:80:08:b5:54:77: f4:16:b9:a9:f0:54:05:bd:ea:6d:eb:e0:90:ca:f0:0c:7c:ad: b0:02:6b:be -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPEdAn9RWmYXKWZ1QyLBMr9w94SgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEzOEUwQUQ0NjQ2RDhCNUIxOTE2NDgxMzEwNUUyRUM3 QzVBQzRBNTAeFw0yNjA1MDMwMzAyMzJaFw0yNzA1MDIwMzA3MzJaMDMxMTAvBgNV BAMTKEIzOTNERUFENjg1M0NDRDE3NUU3MDM0MzQxNzUxMzBDQzgwOUZBN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDaVhhwjrNjIb8b39YmLTyeoac 9UjeVay2fgmfJq1B9xeEHckgIO86rM0vdsh8VKuZyVj1uOCSbwf8DWQxR/pNFzCZ IAveKmgTgP6i+4mZVvyvvBRhuzbBftdhvkDlIHllqJS1OzEAra3+He48UG3mMto7 osfE/cIn/Q7cONSDNHC/o+KiGcLXtUR2O6ngyAa9evEReIpxNTyIZ11mkKoExmII A3Z/MeAh2jdnZvNoUDhh+O+XtgGXJNKQ6XiT/A7rY2nlJhgiWefyc2aSMWPjalnl gfeiCtA1ucjOsjfmI3LZfs7Hmv7xM4Y4W84xm+AETFilBeI06Ap52kaHbMSxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUs5PerWhTzNF15wNDQXUTDMgJ+n8wHwYDVR0j BBgwFoAUQTjgrUZG2LWxkWSBMQXi7HxaxKUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2RlNzE0MzctODVmYy00N2FmLTk2ODctOTAzYmFmYjJjMTYxLzAvNDEzOEUwQUQ0 NjQ2RDhCNUIxOTE2NDgxMzEwNUUyRUM3QzVBQzRBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MTM4RTBBRDQ2NDZEOEI1QjE5MTY0ODEzMTA1RTJFQzdDNUFD NEE1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1u4wDQYJ KoZIhvcNAQELBQADggEBAFxx1fCsnmVvhjHa82GqreerkhETUK6cesABq5TRsZlE WMQtjVz8seGZkdH2b/mYbDpmm70LuU29RUfRwZyxR1XC3tvcT6K7SAoUCc6Omv09 e/VKzQ5pC5a5DsIZ7UBaVbc1gJhYZmpNfDtF2XwuaHkbHcPRyVOcy9CO8wEmgZ+S NWABF9eLZjMc30bN9PbWRW2gbEKlytPldGfgxz6pUDA1NbHkgqHuhq1/jezYLraa kYEc9y3B+fuYDPhYCmaOmKYEvDOwKWD1CdU3AWrHlEZEhPCsPz7oy/mgNoUvRCUh ousfuAqACLVUd/QWuanwVAW96m3r4JDK8Ax8rbACa74= -----END CERTIFICATE-----Generated at Wed May 13 02:49:07 2026 by rpki-client