$ rpki-client -vvf rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa File: 3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa (raw, json) Hash identifier: CWqy2Yz1lUV+bgx0wIDq9A3JsKeVTWQekOJKBjnBtxc= Subject key identifier: 6A:E9:36:69:AC:2D:BB:8D:7A:D4:3D:11:17:CB:E6:51:94:81:EC:5D Certificate issuer: /CN=40CAF98483C41DA7BDC759A128942EA7634B575E Certificate serial: 652F03E26DE51D7BD22CAE65E98E59E14DE630D6 Authority key identifier: 40:CA:F9:84:83:C4:1D:A7:BD:C7:59:A1:28:94:2E:A7:63:4B:57:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40CAF98483C41DA7BDC759A128942EA7634B575E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa Signing time: Sun 03 May 2026 03:08:03 +0000 ROA not before: Sun 03 May 2026 03:03:03 +0000 ROA not after: Sun 02 May 2027 03:08:03 +0000 asID: 149749 IP address blocks: 103.189.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.crl rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40CAF98483C41DA7BDC759A128942EA7634B575E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2f:03:e2:6d:e5:1d:7b:d2:2c:ae:65:e9:8e:59:e1:4d:e6:30:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40CAF98483C41DA7BDC759A128942EA7634B575E Validity Not Before: May 3 03:03:03 2026 GMT Not After : May 2 03:08:03 2027 GMT Subject: CN=6AE93669AC2DBB8D7AD43D1117CBE6519481EC5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:0a:59:88:89:61:5e:c0:36:c7:c2:8f:67:f5: 03:b3:ed:1c:de:02:86:20:f3:93:1c:d4:25:13:e0: ce:0e:51:67:9c:ea:dd:ee:83:19:6f:64:6e:82:e4: 42:23:d8:6c:86:4b:70:8b:91:65:21:5d:93:b7:b2: 8b:89:9d:93:46:54:73:e2:14:2c:eb:b5:31:f0:70: f4:d1:75:a2:66:e7:d0:a1:d5:d0:9a:f5:a9:25:a9: 90:76:35:33:0e:1a:45:70:7f:db:94:c9:40:35:c3: e3:ae:cf:63:69:a5:c9:c2:8f:39:51:a9:c9:5e:3e: 6f:e8:32:3b:79:b8:09:7c:35:67:47:1d:af:81:ad: 71:4f:eb:f2:6f:0a:3c:42:dd:fd:ef:ab:a0:03:60: 8b:6f:4a:ed:48:c9:67:32:a5:65:ff:83:a3:fe:63: 60:3a:91:1f:b5:32:21:6a:49:70:e4:99:53:11:e7: e0:1b:31:58:6f:cf:0a:ce:a2:c2:da:8d:31:7f:46: 5e:ef:3e:4b:6f:4b:62:17:8e:99:45:1a:23:d7:72: ca:18:4f:3a:fa:d9:f1:3f:29:52:bc:10:9f:cb:24: 9a:36:79:de:2b:b0:84:f8:47:e3:f5:d4:1c:47:90: dd:5a:1e:ef:7a:8c:de:2c:5a:4a:e8:eb:05:e9:82: 14:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E9:36:69:AC:2D:BB:8D:7A:D4:3D:11:17:CB:E6:51:94:81:EC:5D X509v3 Authority Key Identifier: keyid:40:CA:F9:84:83:C4:1D:A7:BD:C7:59:A1:28:94:2E:A7:63:4B:57:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40CAF98483C41DA7BDC759A128942EA7634B575E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.111.0/24 Signature Algorithm: sha256WithRSAEncryption 92:37:e8:db:80:cf:7d:92:bc:c9:3c:76:d8:9b:a5:09:fb:e4: e4:ed:de:cb:e7:be:71:e7:d7:03:63:62:6f:dd:01:9e:b9:de: 25:71:f4:2f:ba:d2:5e:25:74:46:72:35:e2:a9:62:c8:ca:1e: 45:df:29:7f:07:6a:b8:f1:bd:55:d9:53:1d:d2:b0:d1:e7:ae: 59:74:46:50:60:29:a4:d3:c9:ea:bd:bb:ec:d6:d9:b9:1b:0e: 5a:b6:e0:08:6f:77:32:cc:1a:da:33:d2:4b:a1:99:4d:07:a3: b2:34:b3:25:4b:ff:ff:75:aa:7a:83:aa:fd:7f:38:6c:8b:73: 1e:87:7a:d2:d9:73:6a:7a:be:15:65:5e:52:52:cc:08:57:a2: ac:ed:54:38:af:dd:df:0e:28:02:03:ed:1a:0f:22:3a:fc:5b: 6a:10:c4:13:06:99:df:54:a8:4c:92:4d:5e:7c:2e:fa:f6:86: cd:b2:2b:93:f8:85:71:1a:32:67:3b:8f:06:92:e0:4f:da:cf: 60:6b:cc:98:44:66:8f:17:df:5d:f9:5b:bf:6a:bc:5c:09:dd: e4:81:ec:a6:b9:e3:6e:38:08:c7:06:9a:6e:ef:59:49:b2:54: 71:a6:39:e1:b7:db:9f:37:88:93:4c:75:bc:61:bb:23:e8:90: b9:9c:f6:60 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZS8D4m3lHXvSLK5l6Y5Z4U3mMNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDQUY5ODQ4M0M0MURBN0JEQzc1OUExMjg5NDJFQTc2 MzRCNTc1RTAeFw0yNjA1MDMwMzAzMDNaFw0yNzA1MDIwMzA4MDNaMDMxMTAvBgNV BAMTKDZBRTkzNjY5QUMyREJCOEQ3QUQ0M0QxMTE3Q0JFNjUxOTQ4MUVDNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNClmIiWFewDbHwo9n9QOz7Rze AoYg85Mc1CUT4M4OUWec6t3ugxlvZG6C5EIj2GyGS3CLkWUhXZO3souJnZNGVHPi FCzrtTHwcPTRdaJm59Ch1dCa9aklqZB2NTMOGkVwf9uUyUA1w+Ouz2NppcnCjzlR qclePm/oMjt5uAl8NWdHHa+BrXFP6/JvCjxC3f3vq6ADYItvSu1IyWcypWX/g6P+ Y2A6kR+1MiFqSXDkmVMR5+AbMVhvzwrOosLajTF/Rl7vPktvS2IXjplFGiPXcsoY Tzr62fE/KVK8EJ/LJJo2ed4rsIT4R+P11BxHkN1aHu96jN4sWkro6wXpghRfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUauk2aawtu4161D0RF8vmUZSB7F0wHwYDVR0j BBgwFoAUQMr5hIPEHae9x1mhKJQup2NLV14wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA1ZTVhMzAtMDgwMi00YzVjLTk0N2UtOThlZjI4NWY0ZjZiLzAvNDBDQUY5ODQ4 M0M0MURBN0JEQzc1OUExMjg5NDJFQTc2MzRCNTc1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MENBRjk4NDgzQzQxREE3QkRDNzU5QTEyODk0MkVBNzYzNEI1 NzVFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwNWU1YTMwLTA4MDItNGM1Yy05 NDdlLTk4ZWYyODVmNGY2Yi8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvW8wDQYJ KoZIhvcNAQELBQADggEBAJI36NuAz32SvMk8dtibpQn75OTt3svnvnHn1wNjYm/d AZ653iVx9C+60l4ldEZyNeKpYsjKHkXfKX8HarjxvVXZUx3SsNHnrll0RlBgKaTT yeq9u+zW2bkbDlq24AhvdzLMGtoz0kuhmU0Ho7I0syVL//91qnqDqv1/OGyLcx6H etLZc2p6vhVlXlJSzAhXoqztVDiv3d8OKAID7RoPIjr8W2oQxBMGmd9UqEySTV58 Lvr2hs2yK5P4hXEaMmc7jwaS4E/az2BrzJhEZo8X3135W79qvFwJ3eSB7Ka54244 CMcGmm7vWUmyVHGmOeG32583iJNMdbxhuyPokLmc9mA= -----END CERTIFICATE-----Generated at Wed May 13 07:56:24 2026 by rpki-client