$ rpki-client -vvf rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230342e302f32342d3234203d3e203538333937.roa File: 3130332e34312e3230342e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: 7J+fQcGnrWcJgu4AWb0Pueoldil+uuzO3rZSOi/YFCY= Subject key identifier: A4:6A:E2:1B:55:49:7D:03:29:0D:19:B7:9D:99:8D:60:5B:25:75:0F Certificate issuer: /CN=039655B785EC7CB007D8EC3057559737EDFECF68 Certificate serial: 7DFED523CD480DE7D5E966E6D02B9A30EC2AD63E Authority key identifier: 03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230342e302f32342d3234203d3e203538333937.roa Signing time: Sun 03 May 2026 03:11:10 +0000 ROA not before: Sun 03 May 2026 03:06:10 +0000 ROA not after: Sun 02 May 2027 03:11:10 +0000 asID: 58397 IP address blocks: 103.41.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:fe:d5:23:cd:48:0d:e7:d5:e9:66:e6:d0:2b:9a:30:ec:2a:d6:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=039655B785EC7CB007D8EC3057559737EDFECF68 Validity Not Before: May 3 03:06:10 2026 GMT Not After : May 2 03:11:10 2027 GMT Subject: CN=A46AE21B55497D03290D19B79D998D605B25750F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:91:3b:0d:99:4d:0a:c2:ea:e3:53:61:73:c8: 17:a3:d5:f7:55:62:90:b6:ba:f2:40:65:d9:2c:b0: 0b:6c:dc:ce:ee:e1:eb:2d:35:b6:e5:ed:22:1a:d8: 97:2a:b1:3b:94:5b:d6:f0:70:f8:4d:b8:8d:67:6d: 6d:cd:25:da:a8:bd:9d:5e:17:5f:f6:89:49:e1:1f: 00:38:fc:b9:25:10:31:16:43:a0:0c:1c:d7:bb:77: 0c:db:9a:b3:1a:94:71:af:82:34:26:25:17:e8:b7: ae:3a:00:44:ea:3a:89:b8:18:69:c8:b7:76:9f:5f: 7c:40:5e:6d:8e:d5:da:39:77:38:c2:65:14:a7:01: 8d:14:73:f8:c7:d7:a8:16:35:f8:e1:2f:53:51:a8: c3:97:92:8a:31:d0:a3:9f:7c:72:fc:d9:ba:60:35: a4:33:9a:5b:c2:9b:f4:90:a0:17:23:1f:da:90:a2: c6:25:88:c9:6a:03:e7:10:76:01:26:24:a8:c2:ce: 07:72:77:79:6f:7e:65:9c:54:bf:12:05:ff:d1:94: 01:ba:5d:3d:3b:5e:86:b7:1d:91:5c:6b:55:81:09: b7:04:38:ec:fb:7b:5d:5e:69:52:8e:5c:9b:27:83: 3a:15:7f:91:d9:fd:b9:bc:40:26:db:99:aa:a6:16: 7d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:6A:E2:1B:55:49:7D:03:29:0D:19:B7:9D:99:8D:60:5B:25:75:0F X509v3 Authority Key Identifier: keyid:03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230342e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.204.0/24 Signature Algorithm: sha256WithRSAEncryption 33:09:65:bb:b2:41:d8:fd:ab:67:1d:42:58:74:45:ef:1e:29: 70:48:5a:56:64:14:95:eb:9a:64:bb:08:0c:61:15:53:e4:75: ff:89:35:a9:c8:6c:c5:e7:c2:80:13:1c:7d:e1:9f:93:58:f7: 8f:27:46:97:b4:c0:40:fb:32:02:81:69:bc:62:d2:4c:44:1b: f5:c7:2c:ba:aa:4e:0a:eb:a7:2b:6f:32:29:8f:86:d5:67:ed: e6:bf:bd:1d:07:2b:0f:0a:7d:55:c3:30:62:ab:9c:3d:e3:0e: 78:61:5e:75:07:63:3b:f2:3c:4e:0a:3b:89:5f:cc:40:30:1e: e5:fe:c4:a3:fa:8a:0e:a8:7c:3b:f8:c4:5d:7f:7f:da:33:90: 1e:9a:54:c2:31:df:2a:2a:d9:f8:18:29:a8:6f:40:6f:1f:1c: d0:b6:8d:99:6b:e8:14:29:78:c5:8e:b0:3a:d9:b8:64:b1:fc: a0:32:ee:de:9f:b3:36:e8:71:84:49:1e:5c:85:ba:bb:7d:4b: 15:3c:8f:f3:fd:29:e3:fb:ac:66:26:d7:d1:cb:62:87:16:e5: 8d:41:6f:31:9f:65:1a:7c:e8:ad:e0:8d:f4:16:ea:ca:55:00: 5b:bd:ac:67:dd:cd:02:0a:5e:18:d2:48:45:f8:22:37:38:3a: 68:3c:88:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUff7VI81IDefV6Wbm0CuaMOwq1j4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdF REZFQ0Y2ODAeFw0yNjA1MDMwMzA2MTBaFw0yNzA1MDIwMzExMTBaMDMxMTAvBgNV BAMTKEE0NkFFMjFCNTU0OTdEMDMyOTBEMTlCNzlEOTk4RDYwNUIyNTc1MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCekTsNmU0KwurjU2FzyBej1fdV YpC2uvJAZdkssAts3M7u4estNbbl7SIa2JcqsTuUW9bwcPhNuI1nbW3NJdqovZ1e F1/2iUnhHwA4/LklEDEWQ6AMHNe7dwzbmrMalHGvgjQmJRfot646AETqOom4GGnI t3afX3xAXm2O1do5dzjCZRSnAY0Uc/jH16gWNfjhL1NRqMOXkoox0KOffHL82bpg NaQzmlvCm/SQoBcjH9qQosYliMlqA+cQdgEmJKjCzgdyd3lvfmWcVL8SBf/RlAG6 XT07Xoa3HZFca1WBCbcEOOz7e11eaVKOXJsngzoVf5HZ/bm8QCbbmaqmFn0zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpGriG1VJfQMpDRm3nZmNYFsldQ8wHwYDVR0j BBgwFoAUA5ZVt4XsfLAH2OwwV1WXN+3+z2gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGI4YmE0NWUtZjVkYS00NTgxLWJmZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4 NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdFREZFQ0Y2OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMzk2NTVCNzg1RUM3Q0IwMDdEOEVDMzA1NzU1OTczN0VERkVD RjY4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzAzMzJlMzQzMTJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcpzDANBgkqhkiG 9w0BAQsFAAOCAQEAMwllu7JB2P2rZx1CWHRF7x4pcEhaVmQUleuaZLsIDGEVU+R1 /4k1qchsxefCgBMcfeGfk1j3jydGl7TAQPsyAoFpvGLSTEQb9ccsuqpOCuunK28y KY+G1Wft5r+9HQcrDwp9VcMwYqucPeMOeGFedQdjO/I8Tgo7iV/MQDAe5f7Eo/qK Dqh8O/jEXX9/2jOQHppUwjHfKirZ+BgpqG9Abx8c0LaNmWvoFCl4xY6wOtm4ZLH8 oDLu3p+zNuhxhEkeXIW6u31LFTyP8/0p4/usZibX0ctihxbljUFvMZ9lGnzoreCN 9BbqylUAW72sZ93NAgpeGNJIRfgiNzg6aDyIyg== -----END CERTIFICATE-----Generated at Wed May 13 05:47:59 2026 by rpki-client