$ rpki-client -vvf rpki-rsync.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa File: 3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: j4uOmqabq0ad/AKZExp7hObnjfcRylodyVWsclS/JAc= Subject key identifier: A0:75:26:95:76:8F:29:6B:FE:EF:B1:F1:7F:4C:88:C5:F0:46:1A:D1 Certificate issuer: /CN=BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103 Certificate serial: 02D34207837CBEBD33767A47AE9B0EEA4D8B6ABD Authority key identifier: BF:EF:30:6C:31:3A:6C:7B:19:46:97:CF:5A:5B:F6:FC:FF:8E:21:03 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa Signing time: Sun 03 May 2026 03:09:58 +0000 ROA not before: Sun 03 May 2026 03:04:58 +0000 ROA not after: Sun 02 May 2027 03:09:58 +0000 asID: 136841 IP address blocks: 103.79.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103.crl rsync://rpki-rsync.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d3:42:07:83:7c:be:bd:33:76:7a:47:ae:9b:0e:ea:4d:8b:6a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103 Validity Not Before: May 3 03:04:58 2026 GMT Not After : May 2 03:09:58 2027 GMT Subject: CN=A0752695768F296BFEEFB1F17F4C88C5F0461AD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:da:2f:87:f0:ac:14:a2:9d:1e:e1:cd:7b:7d: 5e:6b:88:88:1e:39:e5:0d:52:78:8a:29:8f:da:77: 8d:2f:6b:b3:ec:f5:31:e4:45:47:87:94:37:f1:78: c1:96:5f:2a:7b:e4:4b:e9:f5:73:9a:f9:f6:0a:02: 49:fa:75:d2:25:66:f8:51:2c:55:10:78:22:50:4c: d4:eb:98:bd:21:69:e2:f0:8b:21:bb:69:93:ec:50: ee:34:d8:44:f9:31:db:7e:cf:53:4b:51:20:20:c0: f2:fe:14:6d:a3:5e:b3:07:79:f8:96:22:6b:56:5a: 99:60:7b:16:8b:2d:8b:cf:a5:48:3e:5c:5b:5b:0f: c5:a8:f0:8d:55:30:e4:b2:44:46:72:10:40:0d:8e: 15:90:e6:76:b1:80:9e:ff:50:1f:7a:dd:8a:ab:b1: ca:5e:9b:44:51:06:df:7c:f8:d8:3e:60:9a:2e:b9: 80:38:d7:03:44:31:71:e4:cf:7b:fe:75:8b:f0:b2: 57:d8:57:d9:85:c2:4f:6f:24:db:23:6e:54:72:0e: 4c:11:57:00:eb:81:e4:c5:82:9d:bf:1d:7a:74:09: 03:01:69:00:cc:23:03:77:40:cd:f8:3c:4c:73:4d: 33:03:87:43:e0:67:2c:2f:91:6b:35:d3:cb:e3:1a: 15:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:75:26:95:76:8F:29:6B:FE:EF:B1:F1:7F:4C:88:C5:F0:46:1A:D1 X509v3 Authority Key Identifier: keyid:BF:EF:30:6C:31:3A:6C:7B:19:46:97:CF:5A:5B:F6:FC:FF:8E:21:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BFEF306C313A6C7B194697CF5A5BF6FCFF8E2103.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.238.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:3e:e9:61:3a:46:ff:94:7e:6e:70:03:85:ab:eb:06:11:a0: 71:ef:c6:21:6d:d5:b7:28:07:8d:e3:59:e7:ba:f0:09:e8:10: 83:a4:14:5d:21:d2:ee:9d:c3:fd:9b:f7:b7:99:0c:e2:9c:46: 7a:34:b1:1d:c0:53:41:35:c0:24:a2:63:a9:22:e6:2f:17:a0: d1:0d:06:93:1c:0b:ec:5b:50:c3:a9:fa:73:ec:17:ce:71:6f: 09:6b:d7:71:20:1f:db:ff:db:e4:7e:4c:f5:bf:b6:13:29:3b: 20:20:06:ac:8b:bb:f5:b7:ba:07:cd:99:c0:b9:37:ff:f5:78: f5:b7:e5:07:07:4d:ef:e2:d2:a4:50:c7:47:73:e4:81:e7:e9: 68:1c:86:98:91:db:05:dc:e9:e8:2b:5d:a1:e2:13:60:7b:61: ef:a6:8d:c0:6f:19:3d:85:7a:95:c0:d3:0f:a2:bc:07:33:25: 3f:36:a1:48:ca:0e:9d:f1:ca:c0:f2:ab:b1:65:09:b3:e6:c6: 23:66:a4:86:a7:ea:b0:b6:fa:e3:ab:b2:01:b0:d1:5d:0d:7e: 67:6e:f4:ac:98:5d:ac:26:ff:a9:dc:c9:45:49:d1:fa:8b:61: 2a:19:50:ac:1a:39:5f:d3:44:8e:b5:ee:71:91:84:30:b5:d4: 65:01:5c:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAtNCB4N8vr0zdnpHrpsO6k2Lar0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZFRjMwNkMzMTNBNkM3QjE5NDY5N0NGNUE1QkY2RkNG RjhFMjEwMzAeFw0yNjA1MDMwMzA0NThaFw0yNzA1MDIwMzA5NThaMDMxMTAvBgNV BAMTKEEwNzUyNjk1NzY4RjI5NkJGRUVGQjFGMTdGNEM4OEM1RjA0NjFBRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf2i+H8KwUop0e4c17fV5riIge OeUNUniKKY/ad40va7Ps9THkRUeHlDfxeMGWXyp75Evp9XOa+fYKAkn6ddIlZvhR LFUQeCJQTNTrmL0haeLwiyG7aZPsUO402ET5Mdt+z1NLUSAgwPL+FG2jXrMHefiW ImtWWplgexaLLYvPpUg+XFtbD8Wo8I1VMOSyREZyEEANjhWQ5naxgJ7/UB963Yqr scpem0RRBt98+Ng+YJouuYA41wNEMXHkz3v+dYvwslfYV9mFwk9vJNsjblRyDkwR VwDrgeTFgp2/HXp0CQMBaQDMIwN3QM34PExzTTMDh0PgZywvkWs108vjGhUzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoHUmlXaPKWv+77Hxf0yIxfBGGtEwHwYDVR0j BBgwFoAUv+8wbDE6bHsZRpfPWlv2/P+OIQMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDZkZjI2OTEtZGI2Mi00M2I5LThhNTctMGUwNmRhMWFjYzY0LzAvQkZFRjMwNkMz MTNBNkM3QjE5NDY5N0NGNUE1QkY2RkNGRjhFMjEwMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRkVGMzA2QzMxM0E2QzdCMTk0Njk3Q0Y1QTVCRjZGQ0ZGOEUy MTAzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q2ZGYyNjkxLWRiNjItNDNiOS04 YTU3LTBlMDZkYTFhY2M2NC8wLzMxMzAzMzJlMzczOTJlMzIzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0/uMA0GCSqG SIb3DQEBCwUAA4IBAQBqPulhOkb/lH5ucAOFq+sGEaBx78YhbdW3KAeN41nnuvAJ 6BCDpBRdIdLuncP9m/e3mQzinEZ6NLEdwFNBNcAkomOpIuYvF6DRDQaTHAvsW1DD qfpz7BfOcW8Ja9dxIB/b/9vkfkz1v7YTKTsgIAasi7v1t7oHzZnAuTf/9Xj1t+UH B03v4tKkUMdHc+SB5+loHIaYkdsF3OnoK12h4hNge2Hvpo3Abxk9hXqVwNMPorwH MyU/NqFIyg6d8crA8quxZQmz5sYjZqSGp+qwtvrjq7IBsNFdDX5nbvSsmF2sJv+p 3MlFSdH6i2EqGVCsGjlf00SOte5xkYQwtdRlAVx9 -----END CERTIFICATE-----Generated at Wed May 13 05:57:14 2026 by rpki-client