$ rpki-client -vvf rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/3130332e3233342e33352e302f32342d3234203d3e20313531353231.roa File: 3130332e3233342e33352e302f32342d3234203d3e20313531353231.roa (raw, json) Hash identifier: osJeCPZtE9R9btD8iw5N1b2W8PoHsZHfReclzn2JK+k= Subject key identifier: BA:63:7B:F9:BC:08:14:22:17:AD:29:EA:D4:73:C9:51:AA:41:7A:05 Certificate issuer: /CN=D007B768F676B78650AA828FA3D4B1BBE28EED3A Certificate serial: 1DD14B4765C8AB394F3666896780D7CEADFC4086 Authority key identifier: D0:07:B7:68:F6:76:B7:86:50:AA:82:8F:A3:D4:B1:BB:E2:8E:ED:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/3130332e3233342e33352e302f32342d3234203d3e20313531353231.roa Signing time: Sun 03 May 2026 03:10:12 +0000 ROA not before: Sun 03 May 2026 03:05:12 +0000 ROA not after: Sun 02 May 2027 03:10:12 +0000 asID: 151521 IP address blocks: 103.234.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.crl rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d1:4b:47:65:c8:ab:39:4f:36:66:89:67:80:d7:ce:ad:fc:40:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D007B768F676B78650AA828FA3D4B1BBE28EED3A Validity Not Before: May 3 03:05:12 2026 GMT Not After : May 2 03:10:12 2027 GMT Subject: CN=BA637BF9BC08142217AD29EAD473C951AA417A05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:4f:1f:ff:c1:d5:e0:12:cc:ba:ea:35:2c:78: 66:48:e4:59:bb:92:79:94:dc:9c:bc:af:da:26:89: 7f:ff:84:c9:a3:10:a2:47:e2:ec:9b:44:0e:0e:d1: c8:97:c5:7d:8b:7d:65:ba:29:1f:5b:95:d2:d4:fc: a6:24:03:bb:2a:e7:e9:6e:18:01:d9:26:80:33:c8: 1d:4b:4a:61:56:3d:b7:f5:da:19:a0:aa:3b:88:44: b0:54:31:7b:32:5c:fc:3c:5e:00:61:dd:e2:ef:ff: c4:cf:15:9a:d7:06:b6:26:b3:76:7a:b4:84:9a:60: ce:d6:2b:8a:26:6e:b5:ac:82:66:a9:a7:c9:3a:14: b8:29:18:ed:51:89:ae:b8:9c:55:d1:07:bc:7f:87: 03:2e:97:3f:f5:58:86:48:6b:c1:64:45:b2:0c:37: 2c:9f:68:6e:cc:ce:cb:77:9f:02:df:94:e9:0b:0f: e5:77:63:71:98:40:c3:51:e5:a8:3b:00:5b:37:9e: 24:b8:78:02:8c:0a:78:2f:ce:fd:f1:b7:23:7d:43: 9b:9e:6b:97:e1:9a:fb:bd:55:21:52:23:c7:55:81: 99:59:9d:51:35:42:82:9b:3f:b0:11:bc:6e:84:d0: 4b:eb:6d:e7:94:ae:ee:74:8a:f0:7e:b6:68:ff:fe: 36:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:63:7B:F9:BC:08:14:22:17:AD:29:EA:D4:73:C9:51:AA:41:7A:05 X509v3 Authority Key Identifier: keyid:D0:07:B7:68:F6:76:B7:86:50:AA:82:8F:A3:D4:B1:BB:E2:8E:ED:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/3130332e3233342e33352e302f32342d3234203d3e20313531353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.35.0/24 Signature Algorithm: sha256WithRSAEncryption 43:4d:58:d7:a4:85:05:36:61:b8:84:8f:0e:9f:31:f4:2e:a0: 11:69:ad:cf:39:79:ba:5d:48:d7:ed:47:71:e1:8e:d7:c7:66: 86:05:ae:d5:92:20:f4:2e:35:33:f0:ae:97:81:7f:28:a0:51: 9d:45:f6:60:33:67:b1:2a:c3:ba:43:44:20:95:64:71:93:31: c2:37:39:9f:99:74:5e:db:c9:4d:c8:f8:df:bf:4c:ff:6f:b5: 29:17:42:ba:50:c3:f7:71:8b:e4:08:e1:ac:72:9e:8f:33:2b: 13:bb:8a:2f:4d:b8:d2:c7:0c:a9:f2:3e:74:b8:18:fc:5f:db: 58:62:65:d4:df:63:fc:e2:2d:ec:c7:96:49:82:a7:1d:0f:ef: 2b:92:52:c9:c0:b5:6b:03:fd:de:e0:e0:bd:2d:4b:9e:f6:3f: 12:d7:c1:4c:2a:95:b0:7d:6d:da:3f:3c:69:b0:d6:18:d0:52: 9a:b8:b7:63:dd:6b:b2:f9:60:ff:bc:28:31:5a:26:8e:f5:4e: 2a:4f:3a:05:99:77:c4:ce:c1:f9:e1:a2:ba:92:1e:ca:a2:ee: 61:39:7b:72:2c:24:66:5d:62:4f:71:dc:24:38:45:10:c9:a3: 12:14:6c:23:08:01:c6:24:3b:62:b3:5d:91:75:4e:60:7c:e1: a2:4e:90:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHdFLR2XIqzlPNmaJZ4DXzq38QIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwN0I3NjhGNjc2Qjc4NjUwQUE4MjhGQTNENEIxQkJF MjhFRUQzQTAeFw0yNjA1MDMwMzA1MTJaFw0yNzA1MDIwMzEwMTJaMDMxMTAvBgNV BAMTKEJBNjM3QkY5QkMwODE0MjIxN0FEMjlFQUQ0NzNDOTUxQUE0MTdBMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMTx//wdXgEsy66jUseGZI5Fm7 knmU3Jy8r9omiX//hMmjEKJH4uybRA4O0ciXxX2LfWW6KR9bldLU/KYkA7sq5+lu GAHZJoAzyB1LSmFWPbf12hmgqjuIRLBUMXsyXPw8XgBh3eLv/8TPFZrXBrYms3Z6 tISaYM7WK4ombrWsgmapp8k6FLgpGO1Ria64nFXRB7x/hwMulz/1WIZIa8FkRbIM NyyfaG7Mzst3nwLflOkLD+V3Y3GYQMNR5ag7AFs3niS4eAKMCngvzv3xtyN9Q5ue a5fhmvu9VSFSI8dVgZlZnVE1QoKbP7ARvG6E0EvrbeeUru50ivB+tmj//jaxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUumN7+bwIFCIXrSnq1HPJUapBegUwHwYDVR0j BBgwFoAU0Ae3aPZ2t4ZQqoKPo9Sxu+KO7TowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDdhNmIyM2ItYzQxZS00NDQ5LWExNDktYmMwYzZjOGIwMTFiLzAvRDAwN0I3NjhG Njc2Qjc4NjUwQUE4MjhGQTNENEIxQkJFMjhFRUQzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDA3Qjc2OEY2NzZCNzg2NTBBQTgyOEZBM0Q0QjFCQkUyOEVF RDNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q3YTZiMjNiLWM0MWUtNDQ0OS1h MTQ5LWJjMGM2YzhiMDExYi8wLzMxMzAzMzJlMzIzMzM0MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ojMA0GCSqG SIb3DQEBCwUAA4IBAQBDTVjXpIUFNmG4hI8OnzH0LqARaa3POXm6XUjX7Udx4Y7X x2aGBa7VkiD0LjUz8K6XgX8ooFGdRfZgM2exKsO6Q0QglWRxkzHCNzmfmXRe28lN yPjfv0z/b7UpF0K6UMP3cYvkCOGscp6PMysTu4ovTbjSxwyp8j50uBj8X9tYYmXU 32P84i3sx5ZJgqcdD+8rklLJwLVrA/3e4OC9LUue9j8S18FMKpWwfW3aPzxpsNYY 0FKauLdj3Wuy+WD/vCgxWiaO9U4qTzoFmXfEzsH54aK6kh7Kou5hOXtyLCRmXWJP cdwkOEUQyaMSFGwjCAHGJDtis12RdU5gfOGiTpAg -----END CERTIFICATE-----Generated at Tue May 12 22:33:00 2026 by rpki-client