$ rpki-client -vvf rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: fKsBX0OWuQw6kFhHb1Pfy7hACtoTRk+vAz87zGxbi4A= Subject key identifier: 3C:B0:02:08:0B:CC:5A:B3:70:4C:43:A5:E7:72:53:70:EA:40:E2:70 Certificate issuer: /CN=4916565C52234EF87B2101E4B733E4674131F669 Certificate serial: 066615A776E4A0929739F0F81A809BE9BB8AEE1D Authority key identifier: 49:16:56:5C:52:23:4E:F8:7B:21:01:E4:B7:33:E4:67:41:31:F6:69 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4916565C52234EF87B2101E4B733E4674131F669.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa Signing time: Sun 03 May 2026 03:11:05 +0000 ROA not before: Sun 03 May 2026 03:06:05 +0000 ROA not after: Sun 02 May 2027 03:11:05 +0000 asID: 138070 IP address blocks: 103.123.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/4916565C52234EF87B2101E4B733E4674131F669.crl rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/4916565C52234EF87B2101E4B733E4674131F669.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4916565C52234EF87B2101E4B733E4674131F669.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:66:15:a7:76:e4:a0:92:97:39:f0:f8:1a:80:9b:e9:bb:8a:ee:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4916565C52234EF87B2101E4B733E4674131F669 Validity Not Before: May 3 03:06:05 2026 GMT Not After : May 2 03:11:05 2027 GMT Subject: CN=3CB002080BCC5AB3704C43A5E7725370EA40E270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d3:43:15:31:b6:c9:93:1f:24:b4:5b:c2:13: 0f:53:ef:5b:be:ac:7e:06:fb:07:6b:74:69:cf:d7: bc:50:c8:11:d7:34:e2:1e:9a:ee:d7:f4:8a:b5:20: 26:c5:96:80:55:6a:13:c2:0b:ce:92:4f:52:0d:9b: 79:e3:6e:21:8a:ab:75:e0:b2:88:03:eb:50:6f:28: 4e:6a:37:13:ca:6e:6e:47:0a:e1:8d:e6:0d:00:f2: f8:7f:aa:17:5c:27:5f:67:60:aa:59:a1:8a:de:3d: ed:18:e8:6c:a4:9a:13:14:1e:6c:5c:22:3f:cb:9e: b7:64:c3:1e:4d:aa:20:bb:bd:97:cd:05:87:f8:7e: 32:ea:6c:ea:8d:2d:52:7c:10:db:7c:c8:ba:0e:c2: 9f:65:b2:49:ab:d5:7c:7e:57:f7:0c:e3:3e:5c:1f: 1a:18:cb:f0:e9:9a:09:20:0e:d1:0d:7b:64:81:76: ec:4c:66:08:74:4a:88:65:97:0e:ce:e3:f1:47:60: 57:2c:dd:32:e6:e8:d5:05:2b:f4:4d:a9:12:b4:74: 5b:5f:31:09:21:c1:e4:3b:82:87:c7:c1:67:87:ec: 41:f0:29:4e:85:72:a2:39:65:39:a2:36:67:16:31: f5:23:5c:f3:2b:02:d8:62:3f:81:ad:33:79:42:d1: dd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B0:02:08:0B:CC:5A:B3:70:4C:43:A5:E7:72:53:70:EA:40:E2:70 X509v3 Authority Key Identifier: keyid:49:16:56:5C:52:23:4E:F8:7B:21:01:E4:B7:33:E4:67:41:31:F6:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/4916565C52234EF87B2101E4B733E4674131F669.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4916565C52234EF87B2101E4B733E4674131F669.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.106.0/24 Signature Algorithm: sha256WithRSAEncryption 96:4a:1d:bf:dd:da:0d:d2:0e:ba:32:40:29:d1:cb:e9:b2:d7: 04:35:56:05:32:fb:35:fe:8b:0f:9c:f7:36:a1:0d:79:67:bd: f6:8c:18:63:8d:8a:bf:98:13:db:ba:ea:14:ec:fb:01:b8:85: e6:31:6b:40:75:dd:cf:77:55:65:02:65:77:8d:a8:c8:97:c3: e0:6d:1f:ab:e2:cb:ad:6b:ec:e3:c2:88:fb:eb:46:43:2d:07: 57:93:a1:51:0b:d5:d4:2a:47:2b:14:55:33:2b:0f:4f:6e:ac: 10:de:4c:2d:ed:e1:30:0d:22:4a:0c:b5:4a:40:ce:75:41:9c: ae:e2:68:5c:7b:3d:41:f3:ac:50:16:ad:a6:df:ca:39:77:56: 8a:27:51:72:74:4b:b5:e9:79:ba:46:94:85:2f:d8:bb:06:1c: 5e:69:a0:6b:dd:95:4f:34:85:10:ff:32:5c:72:69:3e:48:14: 7b:09:04:46:e2:bf:f7:95:a3:22:d6:ea:25:bf:04:b7:be:f0: fe:ef:c3:aa:b9:61:fb:84:a9:c2:5d:3e:94:25:e8:b6:bd:b8: 82:ba:9a:d4:bd:f0:8a:d9:f1:95:8b:0b:85:b4:06:ea:3d:d2: e6:cb:8a:73:f9:40:a4:8d:41:3f:a8:89:f6:97:42:6a:29:73: c9:2b:a8:0c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBmYVp3bkoJKXOfD4GoCb6buK7h0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxNjU2NUM1MjIzNEVGODdCMjEwMUU0QjczM0U0Njc0 MTMxRjY2OTAeFw0yNjA1MDMwMzA2MDVaFw0yNzA1MDIwMzExMDVaMDMxMTAvBgNV BAMTKDNDQjAwMjA4MEJDQzVBQjM3MDRDNDNBNUU3NzI1MzcwRUE0MEUyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT00MVMbbJkx8ktFvCEw9T71u+ rH4G+wdrdGnP17xQyBHXNOIemu7X9Iq1ICbFloBVahPCC86ST1INm3njbiGKq3Xg sogD61BvKE5qNxPKbm5HCuGN5g0A8vh/qhdcJ19nYKpZoYrePe0Y6GykmhMUHmxc Ij/Lnrdkwx5NqiC7vZfNBYf4fjLqbOqNLVJ8ENt8yLoOwp9lskmr1Xx+V/cM4z5c HxoYy/DpmgkgDtENe2SBduxMZgh0Sohllw7O4/FHYFcs3TLm6NUFK/RNqRK0dFtf MQkhweQ7gofHwWeH7EHwKU6FcqI5ZTmiNmcWMfUjXPMrAthiP4GtM3lC0d3XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPLACCAvMWrNwTEOl53JTcOpA4nAwHwYDVR0j BBgwFoAUSRZWXFIjTvh7IQHktzPkZ0Ex9mkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGFkNjdkNWYtNTcxMy00MTUzLTg3MWItMWIwMDhmN2ZmZGQyLzAvNDkxNjU2NUM1 MjIzNEVGODdCMjEwMUU0QjczM0U0Njc0MTMxRjY2OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80OTE2NTY1QzUyMjM0RUY4N0IyMTAxRTRCNzMzRTQ2NzQxMzFG NjY5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2owDQYJ KoZIhvcNAQELBQADggEBAJZKHb/d2g3SDroyQCnRy+my1wQ1VgUy+zX+iw+c9zah DXlnvfaMGGONir+YE9u66hTs+wG4heYxa0B13c93VWUCZXeNqMiXw+BtH6viy61r 7OPCiPvrRkMtB1eToVEL1dQqRysUVTMrD09urBDeTC3t4TANIkoMtUpAznVBnK7i aFx7PUHzrFAWrabfyjl3VoonUXJ0S7XpebpGlIUv2LsGHF5poGvdlU80hRD/Mlxy aT5IFHsJBEbiv/eVoyLW6iW/BLe+8P7vw6q5YfuEqcJdPpQl6La9uIK6mtS98IrZ 8ZWLC4W0Buo90ubLinP5QKSNQT+oifaXQmopc8krqAw= -----END CERTIFICATE-----Generated at Wed May 13 11:34:58 2026 by rpki-client