$ rpki-client -vvf rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32332d3233203d3e20313331373137.roa File: 3130332e31342e32302e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: c+MUV7F3nnYwWrux4q4qrlxJQ1ToGP6qwbUAs1FDJW0= Subject key identifier: 56:21:53:36:73:C8:6B:D0:72:02:5C:F6:D6:ED:FD:EB:44:4B:06:CF Certificate issuer: /CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Certificate serial: 21A73877E1D84D16E47A90181FC5973A559DA6DC Authority key identifier: CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32332d3233203d3e20313331373137.roa Signing time: Sun 03 May 2026 03:08:09 +0000 ROA not before: Sun 03 May 2026 03:03:09 +0000 ROA not after: Sun 02 May 2027 03:08:09 +0000 asID: 131717 IP address blocks: 103.14.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a7:38:77:e1:d8:4d:16:e4:7a:90:18:1f:c5:97:3a:55:9d:a6:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Validity Not Before: May 3 03:03:09 2026 GMT Not After : May 2 03:08:09 2027 GMT Subject: CN=5621533673C86BD072025CF6D6EDFDEB444B06CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:36:46:1a:4a:aa:35:1a:de:82:16:e0:d3:05: 2c:c1:59:74:58:8f:0a:a7:a8:f5:53:ca:f1:33:27: 58:56:36:6f:7d:87:92:9b:27:7a:18:3f:c1:01:59: f0:45:f0:34:86:3e:b9:35:2c:8b:6e:57:fa:f8:0c: 46:e5:71:16:6f:4a:ba:c8:7b:61:6c:4e:96:b4:9b: 8b:e0:c6:ea:23:e2:3c:01:67:7f:5b:d3:ef:71:0c: c4:57:6b:76:82:27:d0:fd:83:c7:96:67:a8:61:c0: dc:38:2d:45:7e:e9:40:66:1f:fc:97:0d:ff:fb:54: 1b:55:39:13:55:85:05:9e:81:1d:7d:e1:fd:66:65: 78:54:f9:f7:90:34:d8:32:23:54:ab:95:bd:dd:9f: f8:22:1a:50:3a:ff:9b:2b:d2:60:5d:5a:b5:38:5d: 4d:d7:29:f1:24:7b:88:80:f4:32:cc:43:db:3a:bc: ed:7d:ec:0e:cb:ec:bd:66:0a:24:82:30:1b:b6:e1: e3:f0:59:a9:c3:42:c9:91:2e:c5:9f:a4:dd:ec:de: 9d:aa:18:c1:54:c2:27:99:f1:e2:a7:63:39:13:39: db:62:03:6e:98:9f:0c:bf:5c:c6:20:75:d3:17:57: 57:b1:19:af:65:dc:4e:3f:ab:da:34:42:dc:b9:d0: b1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:21:53:36:73:C8:6B:D0:72:02:5C:F6:D6:ED:FD:EB:44:4B:06:CF X509v3 Authority Key Identifier: keyid:CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.20.0/23 Signature Algorithm: sha256WithRSAEncryption ae:6c:36:de:1d:53:81:b7:c3:4e:69:84:12:7b:55:db:29:68: 51:59:15:fd:80:fe:b2:36:a3:94:dd:3e:35:e6:15:f2:e6:96: d0:17:81:fd:32:64:52:4c:33:44:4a:62:24:d7:4c:69:c0:d6: 8b:b1:a3:0e:d5:44:37:d7:88:c6:21:e6:2c:c3:6d:f4:38:06: c8:06:ce:a9:7e:43:a2:d4:b1:b6:b3:a2:f9:3e:fe:68:11:07: 45:d4:a9:ae:0f:8d:6c:8e:a7:19:84:0c:7c:41:d8:5d:67:a3: 7f:de:b4:8d:64:53:78:a0:5d:e8:e3:18:f6:01:5f:23:f0:8b: 32:48:47:72:0c:9a:39:4f:61:69:6d:f9:ac:b3:7f:80:41:8f: ab:43:b6:1c:ee:fd:f2:d6:4f:37:7f:40:fd:ed:3f:9c:38:94: 7f:8b:66:b0:8b:21:86:78:82:c0:c5:1e:65:6f:dd:78:15:a6: 18:75:03:b0:b3:a0:e5:c4:dc:6c:ef:9e:fe:95:04:05:13:c0: b1:44:1b:5a:79:5b:25:b3:67:a7:2f:91:46:7a:8e:b9:72:83: 1b:2b:10:c0:75:9d:75:1d:c4:0c:8b:33:2f:ec:20:c1:d8:94: 23:98:3e:83:14:83:95:87:41:e2:6a:9b:2c:5a:b5:13:5b:47: 07:4c:aa:1c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIac4d+HYTRbkepAYH8WXOlWdptwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0IwQTYwNkZEMDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5 QTkyOTU5RjAeFw0yNjA1MDMwMzAzMDlaFw0yNzA1MDIwMzA4MDlaMDMxMTAvBgNV BAMTKDU2MjE1MzM2NzNDODZCRDA3MjAyNUNGNkQ2RURGREVCNDQ0QjA2Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0NkYaSqo1Gt6CFuDTBSzBWXRY jwqnqPVTyvEzJ1hWNm99h5KbJ3oYP8EBWfBF8DSGPrk1LItuV/r4DEblcRZvSrrI e2FsTpa0m4vgxuoj4jwBZ39b0+9xDMRXa3aCJ9D9g8eWZ6hhwNw4LUV+6UBmH/yX Df/7VBtVORNVhQWegR194f1mZXhU+feQNNgyI1Srlb3dn/giGlA6/5sr0mBdWrU4 XU3XKfEke4iA9DLMQ9s6vO197A7L7L1mCiSCMBu24ePwWanDQsmRLsWfpN3s3p2q GMFUwieZ8eKnYzkTOdtiA26Ynwy/XMYgddMXV1exGa9l3E4/q9o0Qty50LEXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUViFTNnPIa9ByAlz21u3960RLBs8wHwYDVR0j BBgwFoAUywpgb9BkLmi1ISrnUZU+C5qSlZ8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA3NDcxYTMtZWU1My00OTljLTlmMmQtY2YxNmIxZTRhMzUzLzAvQ0IwQTYwNkZE MDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5QTkyOTU5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQjBBNjA2RkQwNjQyRTY4QjUyMTJBRTc1MTk1M0UwQjlBOTI5 NTlGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzEzNDJlMzIzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcOFDANBgkqhkiG 9w0BAQsFAAOCAQEArmw23h1TgbfDTmmEEntV2yloUVkV/YD+sjajlN0+NeYV8uaW 0BeB/TJkUkwzREpiJNdMacDWi7GjDtVEN9eIxiHmLMNt9DgGyAbOqX5DotSxtrOi +T7+aBEHRdSprg+NbI6nGYQMfEHYXWejf960jWRTeKBd6OMY9gFfI/CLMkhHcgya OU9haW35rLN/gEGPq0O2HO798tZPN39A/e0/nDiUf4tmsIshhniCwMUeZW/deBWm GHUDsLOg5cTcbO+e/pUEBRPAsUQbWnlbJbNnpy+RRnqOuXKDGysQwHWddR3EDIsz L+wgwdiUI5g+gxSDlYdB4mqbLFq1E1tHB0yqHA== -----END CERTIFICATE-----Generated at Wed May 13 00:45:08 2026 by rpki-client