$ rpki-client -vvf rpki-rsync.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa File: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (raw, json) Hash identifier: /WJInhgSCHask4I5VFsuoFBnkjbFAmOBsJyj+3cOySg= Subject key identifier: 34:15:02:3E:20:C4:83:E4:29:42:03:8A:FB:87:10:42:3A:51:3B:0B Certificate issuer: /CN=49F46115365EBDF5886E7F2CF139E606717666E0 Certificate serial: 7121C75776BD2FEF9B37020FFF08E04B83B03EBC Authority key identifier: 49:F4:61:15:36:5E:BD:F5:88:6E:7F:2C:F1:39:E6:06:71:76:66:E0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/49F46115365EBDF5886E7F2CF139E606717666E0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa Signing time: Sun 03 May 2026 03:08:28 +0000 ROA not before: Sun 03 May 2026 03:03:28 +0000 ROA not after: Sun 02 May 2027 03:08:28 +0000 asID: 141634 IP address blocks: 103.162.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/49F46115365EBDF5886E7F2CF139E606717666E0.crl rsync://rpki-rsync.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/49F46115365EBDF5886E7F2CF139E606717666E0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/49F46115365EBDF5886E7F2CF139E606717666E0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:21:c7:57:76:bd:2f:ef:9b:37:02:0f:ff:08:e0:4b:83:b0:3e:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49F46115365EBDF5886E7F2CF139E606717666E0 Validity Not Before: May 3 03:03:28 2026 GMT Not After : May 2 03:08:28 2027 GMT Subject: CN=3415023E20C483E42942038AFB8710423A513B0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:7d:e9:50:3d:4f:2f:0c:e8:d4:e9:02:f0:a8: 4e:14:2a:b8:5c:cc:3e:e9:9c:94:1d:d4:22:8e:40: a0:ac:37:82:fe:13:68:ad:01:a2:eb:68:97:62:2e: c7:6f:d8:ec:33:dc:2b:d5:99:ae:9f:f1:20:2c:7a: c7:77:15:4a:8d:cd:74:e1:24:be:50:f6:8e:29:ec: 76:b8:27:fc:de:72:42:23:2c:bd:8d:51:69:b7:bf: 78:a9:15:64:6d:04:00:09:35:63:d6:93:96:1d:ac: 63:2c:c4:94:80:70:bc:75:e5:e4:15:4f:45:32:39: f0:f6:79:91:20:86:67:66:80:41:9a:65:db:a4:45: 77:8b:cb:a6:a0:e2:59:19:28:53:52:ca:1d:47:a7: bb:c1:0d:2c:db:a8:d3:31:22:04:59:31:fd:0f:4c: 86:a2:41:c1:b5:44:78:f6:1f:05:6d:98:45:62:31: 8d:74:8b:fb:3e:a0:77:25:91:01:33:4c:ef:f7:4c: 1c:d9:eb:a9:1f:9e:1a:3b:30:07:ed:f6:83:2c:c9: e9:f9:75:aa:47:56:6c:8d:b6:9a:42:bf:4f:bc:0a: 19:d6:55:43:19:3f:d4:0d:8d:35:db:43:9a:6d:7b: a8:73:b4:9d:14:2f:e6:90:fd:f5:49:b7:28:0c:6a: 3b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:15:02:3E:20:C4:83:E4:29:42:03:8A:FB:87:10:42:3A:51:3B:0B X509v3 Authority Key Identifier: keyid:49:F4:61:15:36:5E:BD:F5:88:6E:7F:2C:F1:39:E6:06:71:76:66:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/49F46115365EBDF5886E7F2CF139E606717666E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/49F46115365EBDF5886E7F2CF139E606717666E0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.0.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:9f:b9:1c:ff:b7:e9:c5:ee:0e:01:fb:db:d3:e7:f7:c8:55: 7c:37:53:b9:97:46:95:ba:92:c8:fd:f9:cb:b9:06:91:d7:4e: be:19:84:69:7d:24:45:58:b8:b9:90:6f:49:73:67:25:99:4b: 6b:41:42:e3:be:81:75:16:52:18:cc:51:a3:d1:b0:e4:8b:80: 33:bc:ff:f7:6c:8c:cf:a5:43:48:cc:ff:5e:75:e2:98:ca:8a: 7d:54:bc:19:ee:df:bc:a5:63:6f:03:cc:c5:0e:12:61:58:85: 29:1d:38:39:ae:18:90:ca:e9:58:eb:7b:66:59:13:41:4b:1c: e2:ce:76:4c:87:d3:1b:5a:09:6b:16:ef:a3:fc:70:1a:dd:66: e0:bc:54:c3:01:92:52:c0:6d:c3:2a:58:52:a1:06:bb:9a:8c: 3e:d7:f6:7c:32:4c:c5:3a:0d:b2:7f:8e:66:c8:4a:ff:5e:90: 29:b2:09:da:ce:2f:64:94:ee:12:66:42:bf:7b:9f:68:b8:1f: f9:c1:55:5e:a6:26:b8:e3:69:9e:83:22:e8:57:b6:91:e7:e8: e2:f6:c4:a7:c8:67:33:67:3c:31:dc:69:8b:82:c5:f1:d0:4d: 16:f9:d0:e9:d9:ac:1d:c4:7c:1b:7b:36:af:1b:e5:70:ca:f6: 7a:6a:27:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcSHHV3a9L++bNwIP/wjgS4OwPrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlGNDYxMTUzNjVFQkRGNTg4NkU3RjJDRjEzOUU2MDY3 MTc2NjZFMDAeFw0yNjA1MDMwMzAzMjhaFw0yNzA1MDIwMzA4MjhaMDMxMTAvBgNV BAMTKDM0MTUwMjNFMjBDNDgzRTQyOTQyMDM4QUZCODcxMDQyM0E1MTNCMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7felQPU8vDOjU6QLwqE4UKrhc zD7pnJQd1CKOQKCsN4L+E2itAaLraJdiLsdv2Owz3CvVma6f8SAsesd3FUqNzXTh JL5Q9o4p7Ha4J/zeckIjLL2NUWm3v3ipFWRtBAAJNWPWk5YdrGMsxJSAcLx15eQV T0UyOfD2eZEghmdmgEGaZdukRXeLy6ag4lkZKFNSyh1Hp7vBDSzbqNMxIgRZMf0P TIaiQcG1RHj2HwVtmEViMY10i/s+oHclkQEzTO/3TBzZ66kfnho7MAft9oMsyen5 dapHVmyNtppCv0+8ChnWVUMZP9QNjTXbQ5pte6hztJ0UL+aQ/fVJtygMajtZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNBUCPiDEg+QpQgOK+4cQQjpROwswHwYDVR0j BBgwFoAUSfRhFTZevfWIbn8s8TnmBnF2ZuAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDE0MTkzYzQtNGFiZC00ZTJjLWExZDAtMWI1Y2UzMmU0MjBiLzAvNDlGNDYxMTUz NjVFQkRGNTg4NkU3RjJDRjEzOUU2MDY3MTc2NjZFMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80OUY0NjExNTM2NUVCREY1ODg2RTdGMkNGMTM5RTYwNjcxNzY2 NkUwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeiADANBgkqhkiG 9w0BAQsFAAOCAQEAbZ+5HP+36cXuDgH729Pn98hVfDdTuZdGlbqSyP35y7kGkddO vhmEaX0kRVi4uZBvSXNnJZlLa0FC476BdRZSGMxRo9Gw5IuAM7z/92yMz6VDSMz/ XnXimMqKfVS8Ge7fvKVjbwPMxQ4SYViFKR04Oa4YkMrpWOt7ZlkTQUsc4s52TIfT G1oJaxbvo/xwGt1m4LxUwwGSUsBtwypYUqEGu5qMPtf2fDJMxToNsn+OZshK/16Q KbIJ2s4vZJTuEmZCv3ufaLgf+cFVXqYmuONpnoMi6Fe2kefo4vbEp8hnM2c8Mdxp i4LF8dBNFvnQ6dmsHcR8G3s2rxvlcMr2emondQ== -----END CERTIFICATE-----Generated at Tue May 12 22:29:04 2026 by rpki-client