$ rpki-client -vvf rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa File: 3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa (raw, json) Hash identifier: 5vV5ZfJoSxF8YdCtjpH1p1DLAYvEvLGC91Wktf8Mw9c= Subject key identifier: DF:0D:3D:85:9E:6D:1E:15:57:6D:8A:9C:E2:38:8D:91:24:7F:2D:D4 Certificate issuer: /CN=04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4 Certificate serial: 2ED82BBB695116640BD6B2169D337F27A099026A Authority key identifier: 04:DB:47:55:C7:5A:83:1C:D9:18:17:E6:A9:B7:E4:E1:ED:2D:F2:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa Signing time: Sun 03 May 2026 03:13:15 +0000 ROA not before: Sun 03 May 2026 03:08:15 +0000 ROA not after: Sun 02 May 2027 03:13:15 +0000 asID: 64300 IP address blocks: 103.153.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.crl rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d8:2b:bb:69:51:16:64:0b:d6:b2:16:9d:33:7f:27:a0:99:02:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4 Validity Not Before: May 3 03:08:15 2026 GMT Not After : May 2 03:13:15 2027 GMT Subject: CN=DF0D3D859E6D1E15576D8A9CE2388D91247F2DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:af:6d:53:15:11:5a:a2:de:53:33:38:1e:63: d6:98:64:68:f0:74:9e:82:08:61:b3:d1:ba:fd:ed: 35:81:f9:33:fa:b5:7e:68:48:80:30:58:b1:9b:2b: 3a:f8:1f:29:18:ca:80:90:8f:16:1c:be:3c:b9:ea: 41:eb:b0:67:ec:3d:61:d0:fa:58:3d:9f:16:ca:3e: 02:bd:4e:60:56:eb:82:e6:53:20:c5:38:33:1d:4e: e7:7c:ab:1e:b0:75:43:9e:a6:35:99:1c:5d:19:b8: df:23:e6:20:38:9a:c3:43:2f:3a:72:57:09:e1:e1: 41:b5:7c:3d:49:10:a5:47:95:3e:5d:40:ed:4b:ab: 6b:e3:07:be:d1:13:63:ed:1d:15:76:41:e4:80:d0: 19:c4:85:44:9b:7c:f9:ae:a2:bb:8f:f3:6e:87:82: 58:7f:2c:c2:43:18:83:65:41:c0:16:26:99:67:ff: 04:39:aa:a7:17:ff:41:28:63:cf:b2:32:5c:f8:67: ea:11:e5:d7:16:27:61:70:d3:48:ad:17:95:9b:cb: 8f:87:6d:9e:76:09:9c:b9:58:4e:e7:6e:e2:47:bf: bb:ed:5c:71:dc:be:b6:13:d0:9d:7b:97:59:4c:f6: 57:c2:37:13:42:be:5e:a0:67:13:ab:02:61:37:6b: f7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0D:3D:85:9E:6D:1E:15:57:6D:8A:9C:E2:38:8D:91:24:7F:2D:D4 X509v3 Authority Key Identifier: keyid:04:DB:47:55:C7:5A:83:1C:D9:18:17:E6:A9:B7:E4:E1:ED:2D:F2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.149.0/24 Signature Algorithm: sha256WithRSAEncryption a1:ba:d5:a3:c4:dd:21:72:0c:75:79:3f:95:59:11:0f:3c:b5: 8d:76:5c:b1:71:92:7c:e6:a6:1c:b8:f9:aa:80:0b:13:0f:90: 74:94:28:4e:74:82:80:a9:71:16:65:03:46:c1:d4:41:ea:99: 18:eb:25:aa:32:c8:68:5d:97:3f:f8:7e:27:17:b2:f5:67:e2: 28:58:ca:6f:e4:66:26:d4:a7:f2:52:1b:0f:40:c8:bf:e9:19: 33:65:6a:6f:9e:7c:13:2a:a7:88:f1:51:ee:cf:a7:42:b7:f0: cb:0e:3a:7c:01:41:36:a7:5a:fa:d1:68:b5:f8:65:69:89:08: 23:08:68:97:14:b9:a5:cb:86:9f:45:2e:43:b7:73:4c:36:5d: 41:fa:03:47:06:b2:f3:0e:57:0f:d8:f8:ac:2f:a2:82:81:95: df:53:28:45:d0:6b:86:ef:ea:33:4a:3e:04:2b:a5:e8:70:a4: 6a:98:a4:ce:d1:4c:83:57:05:35:f6:8e:13:ca:ae:0d:b3:ce: d5:6d:85:b2:36:74:c7:2f:33:1a:5b:64:63:79:78:29:24:89: 3f:ab:d0:72:24:2a:55:36:49:ae:15:24:47:1e:91:e1:dd:8f: 11:8a:ff:2d:bb:85:79:ba:e3:2c:28:a3:b8:72:fb:83:e7:3d: aa:35:fc:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULtgru2lRFmQL1rIWnTN/J6CZAmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREQjQ3NTVDNzVBODMxQ0Q5MTgxN0U2QTlCN0U0RTFF RDJERjJENDAeFw0yNjA1MDMwMzA4MTVaFw0yNzA1MDIwMzEzMTVaMDMxMTAvBgNV BAMTKERGMEQzRDg1OUU2RDFFMTU1NzZEOEE5Q0UyMzg4RDkxMjQ3RjJERDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRr21TFRFaot5TMzgeY9aYZGjw dJ6CCGGz0br97TWB+TP6tX5oSIAwWLGbKzr4HykYyoCQjxYcvjy56kHrsGfsPWHQ +lg9nxbKPgK9TmBW64LmUyDFODMdTud8qx6wdUOepjWZHF0ZuN8j5iA4msNDLzpy Vwnh4UG1fD1JEKVHlT5dQO1Lq2vjB77RE2PtHRV2QeSA0BnEhUSbfPmuoruP826H glh/LMJDGINlQcAWJpln/wQ5qqcX/0EoY8+yMlz4Z+oR5dcWJ2Fw00itF5Wby4+H bZ52CZy5WE7nbuJHv7vtXHHcvrYT0J17l1lM9lfCNxNCvl6gZxOrAmE3a/e7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3w09hZ5tHhVXbYqc4jiNkSR/LdQwHwYDVR0j BBgwFoAUBNtHVcdagxzZGBfmqbfk4e0t8tQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTQzMDRiNjQtMjg5OS00ODMwLTljM2MtMzc1ODRhMzI3ZTFlLzAvMDREQjQ3NTVD NzVBODMxQ0Q5MTgxN0U2QTlCN0U0RTFFRDJERjJENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNERCNDc1NUM3NUE4MzFDRDkxODE3RTZBOUI3RTRFMUVEMkRG MkQ0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U0MzA0YjY0LTI4OTktNDgzMC05 YzNjLTM3NTg0YTMyN2UxZS8wLzMxMzAzMzJlMzEzNTMzMmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzMzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5mVMA0GCSqG SIb3DQEBCwUAA4IBAQChutWjxN0hcgx1eT+VWREPPLWNdlyxcZJ85qYcuPmqgAsT D5B0lChOdIKAqXEWZQNGwdRB6pkY6yWqMshoXZc/+H4nF7L1Z+IoWMpv5GYm1Kfy UhsPQMi/6RkzZWpvnnwTKqeI8VHuz6dCt/DLDjp8AUE2p1r60Wi1+GVpiQgjCGiX FLmly4afRS5Dt3NMNl1B+gNHBrLzDlcP2PisL6KCgZXfUyhF0GuG7+ozSj4EK6Xo cKRqmKTO0UyDVwU19o4Tyq4Ns87VbYWyNnTHLzMaW2RjeXgpJIk/q9ByJCpVNkmu FSRHHpHh3Y8Riv8tu4V5uuMsKKO4cvuD5z2qNfyN -----END CERTIFICATE-----Generated at Wed May 13 11:21:33 2026 by rpki-client