$ rpki-client -vvf rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa File: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (raw, json) Hash identifier: cqIEZQxU+EZc9SYrpFqE5pS8nDzAxvnkTbzbHwD4B2w= Subject key identifier: 77:1B:CB:C8:C1:CA:F2:FF:57:CE:BB:41:56:85:93:CB:F4:5E:9E:40 Certificate issuer: /CN=28051FF190AD60F286AE69A5C2C2A75002CD5C22 Certificate serial: 5E2D15237BC9A1175169D3B3725D2B88DFC1B297 Authority key identifier: 28:05:1F:F1:90:AD:60:F2:86:AE:69:A5:C2:C2:A7:50:02:CD:5C:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa Signing time: Sun 03 May 2026 03:09:57 +0000 ROA not before: Sun 03 May 2026 03:04:57 +0000 ROA not after: Sun 02 May 2027 03:09:57 +0000 asID: 139408 IP address blocks: 103.143.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.crl rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:2d:15:23:7b:c9:a1:17:51:69:d3:b3:72:5d:2b:88:df:c1:b2:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28051FF190AD60F286AE69A5C2C2A75002CD5C22 Validity Not Before: May 3 03:04:57 2026 GMT Not After : May 2 03:09:57 2027 GMT Subject: CN=771BCBC8C1CAF2FF57CEBB41568593CBF45E9E40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:2f:9d:8c:c5:1c:7c:36:2d:b1:8a:b9:4f: dc:8e:e7:1c:24:d3:a5:8c:d5:84:b9:99:2c:68:ba: b3:81:ef:be:72:ea:37:f3:1e:51:c4:af:7b:47:b0: 21:da:e9:b9:eb:b6:4d:38:e2:1a:ff:fb:55:f3:72: 98:9c:89:cc:23:d4:49:d0:74:5f:6d:e1:00:96:31: 12:0c:37:04:14:99:26:14:90:a5:03:03:3d:e4:ae: 0f:0e:6d:b8:61:6f:5d:62:ba:03:9f:92:4b:22:96: 9c:16:ef:ef:61:03:02:08:e3:c2:7d:9e:e4:cb:05: 84:67:9d:a7:92:25:75:46:fd:97:1f:84:42:a0:ed: 67:f5:16:4b:86:5e:20:8b:94:41:79:36:27:da:a2: c2:e3:d4:f9:16:07:2a:f7:eb:0b:f2:8e:ac:f5:d6: c9:82:a5:8e:3a:d9:14:71:e3:c3:9f:ee:bb:4b:8f: 49:7c:9e:09:f5:05:bc:b8:ea:a2:0b:24:98:ec:bb: 98:cb:3c:07:72:36:00:69:a9:04:57:c7:f9:35:dd: e3:b6:00:35:29:3f:99:e5:92:67:4b:2f:b0:0a:b0: 11:87:f2:08:82:de:5d:cd:de:e8:53:cc:0c:70:76: 71:b7:c7:01:2b:7d:68:b8:fd:c7:44:43:fe:5e:07: 7a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1B:CB:C8:C1:CA:F2:FF:57:CE:BB:41:56:85:93:CB:F4:5E:9E:40 X509v3 Authority Key Identifier: keyid:28:05:1F:F1:90:AD:60:F2:86:AE:69:A5:C2:C2:A7:50:02:CD:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.232.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:40:28:58:39:f3:a2:af:49:61:22:e8:80:c0:ed:19:74:ec: f8:a4:16:17:ab:fc:3c:a3:65:f3:92:68:c7:29:67:32:bb:8d: 1e:37:61:c6:3e:7f:51:ed:98:9e:13:4b:eb:e8:c1:fb:12:c2: 8a:47:8d:64:f3:01:14:b4:bf:44:95:0b:6e:71:1f:fb:2a:64: 92:7e:41:49:1a:c4:e7:3c:de:41:ee:64:b8:eb:10:84:61:90: 99:cc:f8:5b:b5:c4:0f:db:ee:7e:15:12:d8:06:86:60:ca:80: 6c:87:74:29:4d:80:b1:0c:b3:db:76:e2:e2:a9:db:18:a0:d6: b2:b8:ce:95:b8:9d:af:45:f6:47:c1:58:73:9b:97:4a:41:57: 48:19:95:23:80:62:5e:05:fa:d0:b4:43:67:f2:0c:6e:6c:dc: ae:b8:55:22:a3:0b:91:65:5f:48:ce:e0:6e:7e:f9:07:52:29: 53:65:41:3c:2c:f5:52:2a:c6:9a:3f:9b:67:d8:ce:de:7c:c9: 46:fb:8c:af:cb:ec:c8:4d:ba:c4:3d:d8:e1:10:c7:d7:71:5b: 03:5d:8c:98:56:27:68:00:90:1e:35:1c:4f:f6:ad:f7:7a:a2: 34:2d:b2:4a:e0:f9:c5:b4:f7:b5:db:6a:e7:07:a6:91:b7:b0: 85:93:af:a6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXi0VI3vJoRdRadOzcl0riN/BspcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgwNTFGRjE5MEFENjBGMjg2QUU2OUE1QzJDMkE3NTAw MkNENUMyMjAeFw0yNjA1MDMwMzA0NTdaFw0yNzA1MDIwMzA5NTdaMDMxMTAvBgNV BAMTKDc3MUJDQkM4QzFDQUYyRkY1N0NFQkI0MTU2ODU5M0NCRjQ1RTlFNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2S+djMUcfDYtsYq5T9yO5xwk 06WM1YS5mSxourOB775y6jfzHlHEr3tHsCHa6bnrtk044hr/+1Xzcpicicwj1EnQ dF9t4QCWMRIMNwQUmSYUkKUDAz3krg8Obbhhb11iugOfkksilpwW7+9hAwII48J9 nuTLBYRnnaeSJXVG/ZcfhEKg7Wf1FkuGXiCLlEF5NifaosLj1PkWByr36wvyjqz1 1smCpY462RRx48Of7rtLj0l8ngn1Bby46qILJJjsu5jLPAdyNgBpqQRXx/k13eO2 ADUpP5nlkmdLL7AKsBGH8giC3l3N3uhTzAxwdnG3xwErfWi4/cdEQ/5eB3qjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdxvLyMHK8v9XzrtBVoWTy/RenkAwHwYDVR0j BBgwFoAUKAUf8ZCtYPKGrmmlwsKnUALNXCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDZjOGIzYTktNGVmZi00NjBkLWIwMWQtNmJhNWQ5OWRhZGI5LzAvMjgwNTFGRjE5 MEFENjBGMjg2QUU2OUE1QzJDMkE3NTAwMkNENUMyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODA1MUZGMTkwQUQ2MEYyODZBRTY5QTVDMkMyQTc1MDAyQ0Q1 QzIyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMxMzAzMzJlMzEzNDMzMmUzMjMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj+gwDQYJ KoZIhvcNAQELBQADggEBAG5AKFg586KvSWEi6IDA7Rl07PikFher/DyjZfOSaMcp ZzK7jR43YcY+f1HtmJ4TS+vowfsSwopHjWTzARS0v0SVC25xH/sqZJJ+QUkaxOc8 3kHuZLjrEIRhkJnM+Fu1xA/b7n4VEtgGhmDKgGyHdClNgLEMs9t24uKp2xig1rK4 zpW4na9F9kfBWHObl0pBV0gZlSOAYl4F+tC0Q2fyDG5s3K64VSKjC5FlX0jO4G5+ +QdSKVNlQTws9VIqxpo/m2fYzt58yUb7jK/L7MhNusQ92OEQx9dxWwNdjJhWJ2gA kB41HE/2rfd6ojQtskrg+cW097XbaucHppG3sIWTr6Y= -----END CERTIFICATE-----Generated at Wed May 13 03:55:51 2026 by rpki-client