$ rpki-client -vvf rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa File: 3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa (raw, json) Hash identifier: vvSuvDOTbwgabu1p62sLlTY9X75KrHQScc7XDf9sZcM= Subject key identifier: 0F:95:BD:A1:9E:AD:15:59:AA:2A:B8:C6:F8:06:A7:5A:8D:0C:33:C5 Certificate issuer: /CN=CA342D64E10FDED8935633F782F970DA5D9B064C Certificate serial: 681A921C6FF95F5BC37702EABDB34D33425EB376 Authority key identifier: CA:34:2D:64:E1:0F:DE:D8:93:56:33:F7:82:F9:70:DA:5D:9B:06:4C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA342D64E10FDED8935633F782F970DA5D9B064C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa Signing time: Sun 03 May 2026 03:11:46 +0000 ROA not before: Sun 03 May 2026 03:06:46 +0000 ROA not after: Sun 02 May 2027 03:11:46 +0000 asID: 141122 IP address blocks: 103.157.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/CA342D64E10FDED8935633F782F970DA5D9B064C.crl rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/CA342D64E10FDED8935633F782F970DA5D9B064C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA342D64E10FDED8935633F782F970DA5D9B064C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:1a:92:1c:6f:f9:5f:5b:c3:77:02:ea:bd:b3:4d:33:42:5e:b3:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA342D64E10FDED8935633F782F970DA5D9B064C Validity Not Before: May 3 03:06:46 2026 GMT Not After : May 2 03:11:46 2027 GMT Subject: CN=0F95BDA19EAD1559AA2AB8C6F806A75A8D0C33C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e8:eb:f7:4e:b7:13:70:7a:f7:4c:d2:e9:c5: 27:9a:8d:e6:d9:38:41:e2:02:a3:7f:31:ac:2b:85: 49:e8:c1:f0:2f:a0:a0:9e:ec:28:ce:54:69:eb:3a: b1:2d:b3:8a:74:8b:07:05:e2:cd:4e:22:dd:4d:0d: 4b:4a:e8:93:ef:73:01:99:f6:bc:9f:af:6d:b7:11: f9:c6:9e:f3:68:69:6d:90:3e:16:92:66:c5:e3:c9: 86:28:88:23:da:65:66:4d:2f:5a:f9:a9:d5:2c:5e: 98:b2:77:11:0b:84:1e:4b:0e:14:c9:b4:b7:d9:ae: 95:30:77:28:2e:f3:4b:90:96:5a:2c:0d:bc:eb:dc: 25:29:15:8a:0c:86:e0:c0:72:74:e5:40:a6:19:d7: a9:c9:22:60:d5:a8:04:90:50:a0:19:6b:ce:f1:e5: 2f:b3:60:4a:6e:d0:df:3a:0d:d4:03:53:27:48:34: d8:76:50:4c:78:4e:10:d7:6e:a5:5c:39:0a:ac:34: a0:ee:08:47:aa:d5:93:70:bc:9a:2d:2c:fc:c5:07: 72:37:05:02:ad:e0:d9:61:53:31:83:ad:62:0a:26: 51:cb:c4:df:54:31:f5:0f:b5:87:a8:2e:2e:c2:90: 65:c3:e3:95:0c:98:b4:93:30:6f:d5:2f:60:76:1c: ad:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:95:BD:A1:9E:AD:15:59:AA:2A:B8:C6:F8:06:A7:5A:8D:0C:33:C5 X509v3 Authority Key Identifier: keyid:CA:34:2D:64:E1:0F:DE:D8:93:56:33:F7:82:F9:70:DA:5D:9B:06:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/CA342D64E10FDED8935633F782F970DA5D9B064C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA342D64E10FDED8935633F782F970DA5D9B064C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.192.0/23 Signature Algorithm: sha256WithRSAEncryption 15:cc:69:94:7b:11:81:60:5c:b4:fe:42:73:ce:3b:7a:8a:a2: c0:3a:76:51:5a:89:5c:cf:d9:68:cc:9a:af:16:7e:2d:79:e3: fd:63:a5:82:1e:17:31:44:cd:33:b5:1e:3c:ed:5b:a9:8f:18: e4:9e:c2:5f:ac:ec:c0:55:0e:e5:d2:cf:8a:c7:9b:06:95:14: 1b:93:d9:58:ed:df:34:8d:e0:49:86:34:fc:ad:3b:d3:e5:c8: 6b:20:e0:18:4f:fb:c7:68:ca:bc:db:f6:10:4b:6e:46:6a:aa: 49:6f:4f:07:59:fc:95:4f:ce:b7:af:31:a7:12:e9:0c:2a:c7: cf:89:de:01:0b:38:20:a3:55:17:e9:65:b1:33:50:ca:c6:ad: b3:6b:1f:56:1e:76:0a:7e:d3:5c:c4:37:6f:38:e2:77:9e:c7: 6a:4b:22:a5:2d:e2:f6:e9:dd:1c:1d:9c:6b:f4:33:19:27:10: b3:ec:33:a3:4f:ae:4d:41:5c:1f:79:10:59:4f:2b:eb:6f:1a: 31:1c:99:2c:20:d3:b6:83:2d:ef:0e:0c:46:ab:46:28:42:40: a0:6e:46:aa:6d:c1:d2:64:c2:e9:27:e6:3a:34:a3:e3:c9:f8: 78:e8:ab:6a:6a:1b:d9:9f:2d:e1:9b:cd:bb:40:bb:b4:16:41: 4d:87:2e:7b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaBqSHG/5X1vDdwLqvbNNM0Jes3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNDJENjRFMTBGREVEODkzNTYzM0Y3ODJGOTcwREE1 RDlCMDY0QzAeFw0yNjA1MDMwMzA2NDZaFw0yNzA1MDIwMzExNDZaMDMxMTAvBgNV BAMTKDBGOTVCREExOUVBRDE1NTlBQTJBQjhDNkY4MDZBNzVBOEQwQzMzQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU6Ov3TrcTcHr3TNLpxSeajebZ OEHiAqN/MawrhUnowfAvoKCe7CjOVGnrOrEts4p0iwcF4s1OIt1NDUtK6JPvcwGZ 9ryfr223EfnGnvNoaW2QPhaSZsXjyYYoiCPaZWZNL1r5qdUsXpiydxELhB5LDhTJ tLfZrpUwdygu80uQllosDbzr3CUpFYoMhuDAcnTlQKYZ16nJImDVqASQUKAZa87x 5S+zYEpu0N86DdQDUydINNh2UEx4ThDXbqVcOQqsNKDuCEeq1ZNwvJotLPzFB3I3 BQKt4NlhUzGDrWIKJlHLxN9UMfUPtYeoLi7CkGXD45UMmLSTMG/VL2B2HK1fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUD5W9oZ6tFVmqKrjG+AanWo0MM8UwHwYDVR0j BBgwFoAUyjQtZOEP3tiTVjP3gvlw2l2bBkwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGU2ZjVjZTctYjM2Yi00NzNkLWE1YmUtOWMwMzUwZDFmMzgyLzAvQ0EzNDJENjRF MTBGREVEODkzNTYzM0Y3ODJGOTcwREE1RDlCMDY0Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTM0MkQ2NEUxMEZERUQ4OTM1NjMzRjc4MkY5NzBEQTVEOUIw NjRDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RlNmY1Y2U3LWIzNmItNDczZC1h NWJlLTljMDM1MGQxZjM4Mi8wLzMxMzAzMzJlMzEzNTM3MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnncAwDQYJ KoZIhvcNAQELBQADggEBABXMaZR7EYFgXLT+QnPOO3qKosA6dlFaiVzP2WjMmq8W fi154/1jpYIeFzFEzTO1HjztW6mPGOSewl+s7MBVDuXSz4rHmwaVFBuT2Vjt3zSN 4EmGNPytO9PlyGsg4BhP+8doyrzb9hBLbkZqqklvTwdZ/JVPzrevMacS6Qwqx8+J 3gELOCCjVRfpZbEzUMrGrbNrH1Yedgp+01zEN2844neex2pLIqUt4vbp3RwdnGv0 MxknELPsM6NPrk1BXB95EFlPK+tvGjEcmSwg07aDLe8ODEarRihCQKBuRqptwdJk wukn5jo0o+PJ+Hjoq2pqG9mfLeGbzbtAu7QWQU2HLns= -----END CERTIFICATE-----Generated at Wed May 13 03:59:49 2026 by rpki-client