$ rpki-client -vvf rpki-rsync.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa File: 3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: jRxu5an33fAHIDK703BGcnxxr2+K2imQoOMYIzAUMUk= Subject key identifier: EA:23:1A:E8:DF:C2:9A:67:45:F6:14:E3:D2:04:86:3E:83:1A:13:41 Certificate issuer: /CN=0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5 Certificate serial: 44B8D86E6DC21C5C5EDC85B93F1222DEE7BF3463 Authority key identifier: 0F:3D:CD:95:FC:3F:C6:D7:D7:B3:D1:68:76:AB:81:E1:44:75:23:E5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa Signing time: Sun 03 May 2026 03:09:34 +0000 ROA not before: Sun 03 May 2026 03:04:34 +0000 ROA not after: Sun 02 May 2027 03:09:34 +0000 asID: 38320 IP address blocks: 103.158.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5.crl rsync://rpki-rsync.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:b8:d8:6e:6d:c2:1c:5c:5e:dc:85:b9:3f:12:22:de:e7:bf:34:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5 Validity Not Before: May 3 03:04:34 2026 GMT Not After : May 2 03:09:34 2027 GMT Subject: CN=EA231AE8DFC29A6745F614E3D204863E831A1341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9c:3f:1b:c5:ee:20:70:1f:d4:6f:bd:b2:7a: 11:63:d4:4a:a3:36:93:ea:21:7e:78:e2:72:f5:b2: 8b:95:58:45:f3:0a:54:68:a8:64:a1:30:b6:e0:6c: 9a:e6:3c:30:2e:3c:c1:b6:86:97:b1:ec:cb:d4:f3: 23:15:26:a9:bf:02:20:be:f6:a7:e5:4c:01:4f:a5: 38:fd:dd:35:16:21:16:70:9c:a9:d8:21:de:f9:7c: 75:92:bf:be:67:21:5b:d9:66:c4:bc:23:8e:fc:dd: 77:81:82:9d:4a:cb:34:4a:1f:da:4c:57:70:a1:7c: 95:e0:c3:0f:39:b0:df:f2:79:35:fb:2f:da:ab:b9: fc:12:52:6b:e3:12:cb:0a:72:92:d2:1b:cb:d3:08: 00:a6:90:66:71:75:0f:76:1a:79:cb:b0:1a:36:ad: 5b:b9:82:b3:6a:36:6d:66:fa:c2:61:eb:3e:d4:07: 6f:c6:5d:3c:d0:65:03:63:81:b8:af:b1:15:8a:fc: 2b:20:73:af:9b:b7:0a:e8:c1:21:47:ff:74:eb:04: 14:4a:89:d5:b2:c4:3e:54:61:4c:67:9a:20:5d:fa: 8c:3f:a5:21:99:35:48:b9:45:14:a9:fa:f2:21:bb: ed:b5:af:6d:ee:0b:67:7d:0c:bc:29:61:2f:a7:2d: 2c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:23:1A:E8:DF:C2:9A:67:45:F6:14:E3:D2:04:86:3E:83:1A:13:41 X509v3 Authority Key Identifier: keyid:0F:3D:CD:95:FC:3F:C6:D7:D7:B3:D1:68:76:AB:81:E1:44:75:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F3DCD95FC3FC6D7D7B3D16876AB81E1447523E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.126.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:4b:85:d3:4b:13:eb:7e:25:c3:3a:2c:2a:8b:72:df:0b:44: 88:48:a9:62:2f:62:b0:9a:47:22:3c:48:02:95:5c:97:8e:f9: 39:dc:c9:9c:4c:41:cd:96:f9:ba:0f:c1:19:f5:16:d6:8b:58: e2:15:1d:cf:16:c4:cb:f4:b8:34:17:f8:9f:a8:42:c3:fb:0e: 35:c1:cb:00:c0:1e:75:c5:92:07:51:44:80:a7:a4:d2:b2:9c: 36:10:30:47:11:46:0b:39:68:62:a3:40:c1:9e:df:cc:fb:42: e9:73:99:7a:04:b1:ba:a8:fe:56:89:7b:04:89:2d:50:2d:04: 57:94:15:b6:72:32:42:01:a7:03:f6:7e:dc:9c:91:d2:c5:6c: 1a:fb:c4:3d:fd:ce:d6:62:75:f9:ca:ab:47:05:09:bf:90:b3: d0:e8:29:67:85:22:88:9a:0c:23:91:56:f9:ad:b6:cd:f0:85: 75:ff:78:66:6e:7d:08:b6:f8:aa:e5:10:77:cd:db:d8:0f:37: 3e:3a:f7:33:ba:07:72:09:f3:0e:dc:5b:56:9f:4c:e4:3a:d6: 58:49:60:53:5a:d1:64:78:44:ff:f4:35:97:8b:47:9d:9b:70: bd:0b:c3:13:92:ed:be:e0:e5:3b:32:dc:62:66:9e:77:4e:68: f1:e0:1f:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURLjYbm3CHFxe3IW5PxIi3ue/NGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEYzRENEOTVGQzNGQzZEN0Q3QjNEMTY4NzZBQjgxRTE0 NDc1MjNFNTAeFw0yNjA1MDMwMzA0MzRaFw0yNzA1MDIwMzA5MzRaMDMxMTAvBgNV BAMTKEVBMjMxQUU4REZDMjlBNjc0NUY2MTRFM0QyMDQ4NjNFODMxQTEzNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmnD8bxe4gcB/Ub72yehFj1Eqj NpPqIX544nL1souVWEXzClRoqGShMLbgbJrmPDAuPMG2hpex7MvU8yMVJqm/AiC+ 9qflTAFPpTj93TUWIRZwnKnYId75fHWSv75nIVvZZsS8I4783XeBgp1KyzRKH9pM V3ChfJXgww85sN/yeTX7L9qrufwSUmvjEssKcpLSG8vTCACmkGZxdQ92GnnLsBo2 rVu5grNqNm1m+sJh6z7UB2/GXTzQZQNjgbivsRWK/Csgc6+btwrowSFH/3TrBBRK idWyxD5UYUxnmiBd+ow/pSGZNUi5RRSp+vIhu+21r23uC2d9DLwpYS+nLSzLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6iMa6N/CmmdF9hTj0gSGPoMaE0EwHwYDVR0j BBgwFoAUDz3Nlfw/xtfXs9FodquB4UR1I+UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDQ0ZGZiNWEtNmUyNC00YTRkLTg5NjktZWIzY2JlMzRlNDdlLzAvMEYzRENEOTVG QzNGQzZEN0Q3QjNEMTY4NzZBQjgxRTE0NDc1MjNFNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRjNEQ0Q5NUZDM0ZDNkQ3RDdCM0QxNjg3NkFCODFFMTQ0NzUy M0U1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q0NGRmYjVhLTZlMjQtNGE0ZC04 OTY5LWViM2NiZTM0ZTQ3ZS8wLzMxMzAzMzJlMzEzNTM4MmUzMTMyMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ55+MA0GCSqG SIb3DQEBCwUAA4IBAQCOS4XTSxPrfiXDOiwqi3LfC0SISKliL2KwmkciPEgClVyX jvk53MmcTEHNlvm6D8EZ9RbWi1jiFR3PFsTL9Lg0F/ifqELD+w41wcsAwB51xZIH UUSAp6TSspw2EDBHEUYLOWhio0DBnt/M+0Lpc5l6BLG6qP5WiXsEiS1QLQRXlBW2 cjJCAacD9n7cnJHSxWwa+8Q9/c7WYnX5yqtHBQm/kLPQ6ClnhSKImgwjkVb5rbbN 8IV1/3hmbn0Itviq5RB3zdvYDzc+OvczugdyCfMO3FtWn0zkOtZYSWBTWtFkeET/ 9DWXi0edm3C9C8MTku2+4OU7MtxiZp53Tmjx4B+t -----END CERTIFICATE-----Generated at Wed May 13 05:37:55 2026 by rpki-client