$ rpki-client -vvf rpki-rsync.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32332e302f32342d3234203d3e20313530353537.roa File: 3130332e39352e32332e302f32342d3234203d3e20313530353537.roa (raw, json) Hash identifier: QUvsonqLXdsih84z12pFdTCBAMOMy8pmVg5n4B/zEOQ= Subject key identifier: B5:97:BB:AF:3E:B2:01:F0:4D:01:6C:42:89:8F:1F:C4:EA:07:D1:55 Certificate issuer: /CN=2FE1FA7D4DD3388355BABAD73020013D485C168C Certificate serial: 27136524567B332163246FCEF24073EED7548CBC Authority key identifier: 2F:E1:FA:7D:4D:D3:38:83:55:BA:BA:D7:30:20:01:3D:48:5C:16:8C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FE1FA7D4DD3388355BABAD73020013D485C168C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32332e302f32342d3234203d3e20313530353537.roa Signing time: Sun 03 May 2026 03:12:14 +0000 ROA not before: Sun 03 May 2026 03:07:14 +0000 ROA not after: Sun 02 May 2027 03:12:14 +0000 asID: 150557 IP address blocks: 103.95.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/2FE1FA7D4DD3388355BABAD73020013D485C168C.crl rsync://rpki-rsync.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/2FE1FA7D4DD3388355BABAD73020013D485C168C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FE1FA7D4DD3388355BABAD73020013D485C168C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:13:65:24:56:7b:33:21:63:24:6f:ce:f2:40:73:ee:d7:54:8c:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FE1FA7D4DD3388355BABAD73020013D485C168C Validity Not Before: May 3 03:07:14 2026 GMT Not After : May 2 03:12:14 2027 GMT Subject: CN=B597BBAF3EB201F04D016C42898F1FC4EA07D155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:4f:d0:1e:1f:bb:24:30:52:e7:12:0e:af: aa:21:b2:18:0e:c5:43:80:95:db:07:08:3e:12:02: b8:1b:16:ca:21:2d:be:a8:42:d9:8b:06:ca:31:b9: 57:f9:41:58:86:ae:e6:61:db:ae:f3:e3:fd:58:03: bb:5b:74:a5:14:cf:bd:88:8f:fe:85:59:92:30:70: 51:a5:75:ed:b1:5e:cf:f0:bd:d3:73:65:3e:b4:6b: 8f:78:5f:65:6b:da:41:9c:96:38:36:10:86:f9:16: f2:68:c0:7b:51:aa:48:ed:d5:05:32:0c:28:ed:8d: db:a2:a1:9c:2a:4b:5c:d7:f3:50:91:93:c0:31:64: 3f:89:a5:57:da:c3:74:e7:b6:a2:b0:b1:7d:bb:b2: d5:6e:34:c6:88:0a:66:15:84:ca:59:3c:25:d3:10: a1:ad:6c:19:22:a4:94:4c:67:2d:85:c6:df:7b:a7: 87:44:b6:91:59:27:4a:52:0d:6f:54:8f:d9:4c:42: 63:62:da:48:87:df:c6:e2:64:5d:7b:ca:13:5b:7d: 71:ca:26:a2:04:4e:9c:4b:5e:00:5e:7f:21:41:d0: 40:34:d6:9a:54:cf:23:74:29:ba:dd:28:cb:bd:64: a5:b5:aa:6c:46:8f:dc:43:0f:aa:d5:ef:73:ae:07: e4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:97:BB:AF:3E:B2:01:F0:4D:01:6C:42:89:8F:1F:C4:EA:07:D1:55 X509v3 Authority Key Identifier: keyid:2F:E1:FA:7D:4D:D3:38:83:55:BA:BA:D7:30:20:01:3D:48:5C:16:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/2FE1FA7D4DD3388355BABAD73020013D485C168C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FE1FA7D4DD3388355BABAD73020013D485C168C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32332e302f32342d3234203d3e20313530353537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.23.0/24 Signature Algorithm: sha256WithRSAEncryption 19:99:27:a5:d0:5a:b9:ca:78:d9:22:21:45:6a:9d:32:9c:6d: 1c:ae:40:65:26:bf:da:a8:b4:e9:8a:61:2a:96:6c:7f:ba:08: f2:c1:7c:bc:01:8e:9f:28:61:76:8e:2f:96:b9:98:35:74:c7: b2:6a:73:b3:ff:dc:cc:79:6d:8f:aa:58:1b:03:c3:ee:a2:a6: 06:72:c2:76:17:9d:a8:46:05:1a:ff:41:20:04:2f:79:02:96: 04:13:12:be:7c:ab:15:77:c7:d9:bd:5c:b8:bb:7f:c4:85:98: d2:75:a3:be:35:18:76:5d:28:fb:23:69:10:d6:39:64:4a:ec: 6f:95:7d:85:65:ae:cb:1f:11:20:56:d9:7d:8c:6a:bc:43:05: a1:4f:78:6a:74:3d:86:6f:1e:34:4d:b1:6d:3a:c4:c3:7d:25: 45:f7:ea:c6:8d:08:f4:be:43:a6:78:23:60:9c:2e:69:ed:7f: eb:78:b9:2c:ca:00:04:e1:4d:8a:97:2b:74:da:ef:d6:d8:7d: 16:61:f7:1a:74:b3:23:16:f5:8d:4e:ac:c2:c7:80:81:8d:e6: e6:70:94:a5:97:eb:65:53:95:39:76:c4:ed:ae:0a:2f:a4:12: 76:c8:54:fc:a8:1a:f5:56:0d:b6:ae:6d:ed:36:af:31:e4:d6: e6:21:18:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJxNlJFZ7MyFjJG/O8kBz7tdUjLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZFMUZBN0Q0REQzMzg4MzU1QkFCQUQ3MzAyMDAxM0Q0 ODVDMTY4QzAeFw0yNjA1MDMwMzA3MTRaFw0yNzA1MDIwMzEyMTRaMDMxMTAvBgNV BAMTKEI1OTdCQkFGM0VCMjAxRjA0RDAxNkM0Mjg5OEYxRkM0RUEwN0QxNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6m0/QHh+7JDBS5xIOr6ohshgO xUOAldsHCD4SArgbFsohLb6oQtmLBsoxuVf5QViGruZh267z4/1YA7tbdKUUz72I j/6FWZIwcFGlde2xXs/wvdNzZT60a494X2Vr2kGcljg2EIb5FvJowHtRqkjt1QUy DCjtjduioZwqS1zX81CRk8AxZD+JpVfaw3TntqKwsX27stVuNMaICmYVhMpZPCXT EKGtbBkipJRMZy2Fxt97p4dEtpFZJ0pSDW9Uj9lMQmNi2kiH38biZF17yhNbfXHK JqIETpxLXgBefyFB0EA01ppUzyN0KbrdKMu9ZKW1qmxGj9xDD6rV73OuB+T9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtZe7rz6yAfBNAWxCiY8fxOoH0VUwHwYDVR0j BBgwFoAUL+H6fU3TOINVurrXMCABPUhcFowwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGZkNGY4NjktNGRiNi00YjBhLWFhYjYtY2RlNDdiNDQ3ZDc3LzAvMkZFMUZBN0Q0 REQzMzg4MzU1QkFCQUQ3MzAyMDAxM0Q0ODVDMTY4Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRkUxRkE3RDRERDMzODgzNTVCQUJBRDczMDIwMDEzRDQ4NUMx NjhDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmZDRmODY5LTRkYjYtNGIwYS1h YWI2LWNkZTQ3YjQ0N2Q3Ny8wLzMxMzAzMzJlMzkzNTJlMzIzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzUzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdfFzANBgkqhkiG 9w0BAQsFAAOCAQEAGZknpdBaucp42SIhRWqdMpxtHK5AZSa/2qi06YphKpZsf7oI 8sF8vAGOnyhhdo4vlrmYNXTHsmpzs//czHltj6pYGwPD7qKmBnLCdhedqEYFGv9B IAQveQKWBBMSvnyrFXfH2b1cuLt/xIWY0nWjvjUYdl0o+yNpENY5ZErsb5V9hWWu yx8RIFbZfYxqvEMFoU94anQ9hm8eNE2xbTrEw30lRffqxo0I9L5DpngjYJwuae1/ 63i5LMoABOFNipcrdNrv1th9FmH3GnSzIxb1jU6swseAgY3m5nCUpZfrZVOVOXbE 7a4KL6QSdshU/Kga9VYNtq5t7TavMeTW5iEYew== -----END CERTIFICATE-----Generated at Wed May 13 00:45:27 2026 by rpki-client