$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa File: 3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa (raw, json) Hash identifier: esc3McyAl6hUlG4d1U+cxH9phLSFNKnapu2B7Ix2aTI= Subject key identifier: 8C:78:B4:93:7D:3C:8B:A8:26:D9:9F:07:DD:0C:4C:3E:D5:84:DD:AC Certificate issuer: /CN=4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4 Certificate serial: 684F3A9825C760E4DDB97F4271F26C01CFCF300E Authority key identifier: 4B:3B:54:F4:A1:20:3D:9D:F5:E8:09:42:28:C9:1F:C2:1F:F2:C5:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa Signing time: Sun 03 May 2026 03:14:59 +0000 ROA not before: Sun 03 May 2026 03:09:59 +0000 ROA not after: Sun 02 May 2027 03:14:59 +0000 asID: 140463 IP address blocks: 103.153.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.crl rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4f:3a:98:25:c7:60:e4:dd:b9:7f:42:71:f2:6c:01:cf:cf:30:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4 Validity Not Before: May 3 03:09:59 2026 GMT Not After : May 2 03:14:59 2027 GMT Subject: CN=8C78B4937D3C8BA826D99F07DD0C4C3ED584DDAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:79:5f:49:dd:fd:a9:bc:ee:22:71:c5:eb:4e: 3e:58:dd:ad:1e:0d:8b:19:f8:20:6d:5e:58:e7:c2: 02:f4:b5:eb:ec:d6:d3:45:37:e2:74:ba:4b:ff:37: ff:51:ac:32:ba:85:d2:3c:ac:f9:02:67:94:7e:28: db:7f:35:3a:1c:32:ab:7c:2a:d0:49:69:ce:34:21: e7:ad:28:ab:51:23:95:bc:7b:a2:65:eb:90:c6:ee: 78:7f:23:69:0c:e6:4d:63:20:ce:98:97:6c:cc:db: 55:dc:83:74:61:b4:24:2e:80:0f:94:7f:f8:47:5f: 26:81:81:a1:c3:69:92:94:9a:d9:da:ad:56:19:c8: 8a:c3:b9:f0:e2:8a:a0:83:89:ad:1a:95:f6:48:4b: b2:59:98:f7:ec:d1:09:c7:4f:69:40:fe:82:ea:5b: d0:3e:c7:f4:b1:64:3a:a1:ab:5c:ce:03:82:df:1d: 2c:31:45:4a:37:84:58:15:4a:ad:7b:c0:1f:31:4e: da:7a:8f:1b:c4:af:fd:d5:04:67:67:dd:af:b1:ec: 99:69:8e:48:6b:af:6b:4f:40:95:02:b7:46:1f:8c: e6:c8:a8:d5:d0:5b:19:a0:37:44:29:9d:d6:44:cb: 94:b8:c4:68:b2:4c:2f:f7:cc:db:c9:0d:0b:78:ae: dc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:78:B4:93:7D:3C:8B:A8:26:D9:9F:07:DD:0C:4C:3E:D5:84:DD:AC X509v3 Authority Key Identifier: keyid:4B:3B:54:F4:A1:20:3D:9D:F5:E8:09:42:28:C9:1F:C2:1F:F2:C5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.131.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:63:43:56:41:90:d6:5a:5c:5b:fa:67:19:d9:20:13:4c:d9: 39:0a:82:f6:f7:6d:ff:27:7d:30:a3:bb:28:b3:22:31:ec:ee: 9b:69:2e:0a:e3:56:8a:e6:a5:3d:e7:59:cd:b3:5a:6d:c0:c2: 46:22:a9:9a:21:1d:4f:1f:27:1b:a1:a7:4c:1c:06:62:99:6b: e5:07:cd:51:f5:6b:a8:5e:f4:2f:9e:bc:f7:72:64:84:57:d4: b6:54:ed:c8:e8:73:c2:f3:f2:3c:24:58:6a:97:a4:e1:45:f7: 54:ce:7a:9d:4c:82:c9:d8:85:48:ee:03:47:d7:0e:ed:a1:ba: 21:d3:e1:ae:ca:a1:13:c8:b1:c5:95:56:bf:44:a1:2a:38:66: d8:54:cf:07:f8:5e:a0:1d:7d:16:fd:dd:10:93:eb:c2:07:53: ea:84:25:70:4c:bb:82:bf:e3:3e:c9:0b:97:2f:72:68:70:a5: f5:00:9d:39:1e:3d:e1:59:3c:fc:b3:2f:92:f8:4c:7a:6c:fd: 38:74:78:40:63:e7:ed:27:cf:4a:0c:6f:b6:46:28:f2:e8:a3: 1e:96:8a:0d:69:bb:12:37:86:12:b3:6f:74:fc:37:3c:e4:74: 79:46:1e:94:6d:e4:46:53:d4:f4:c6:c3:8a:27:4d:4e:b8:cd: 71:da:2c:63 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaE86mCXHYOTduX9CcfJsAc/PMA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzQjU0RjRBMTIwM0Q5REY1RTgwOTQyMjhDOTFGQzIx RkYyQzVDNDAeFw0yNjA1MDMwMzA5NTlaFw0yNzA1MDIwMzE0NTlaMDMxMTAvBgNV BAMTKDhDNzhCNDkzN0QzQzhCQTgyNkQ5OUYwN0REMEM0QzNFRDU4NEREQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9eV9J3f2pvO4iccXrTj5Y3a0e DYsZ+CBtXljnwgL0tevs1tNFN+J0ukv/N/9RrDK6hdI8rPkCZ5R+KNt/NTocMqt8 KtBJac40IeetKKtRI5W8e6Jl65DG7nh/I2kM5k1jIM6Yl2zM21Xcg3RhtCQugA+U f/hHXyaBgaHDaZKUmtnarVYZyIrDufDiiqCDia0alfZIS7JZmPfs0QnHT2lA/oLq W9A+x/SxZDqhq1zOA4LfHSwxRUo3hFgVSq17wB8xTtp6jxvEr/3VBGdn3a+x7Jlp jkhrr2tPQJUCt0YfjObIqNXQWxmgN0QpndZEy5S4xGiyTC/3zNvJDQt4rtzFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjHi0k308i6gm2Z8H3QxMPtWE3awwHwYDVR0j BBgwFoAUSztU9KEgPZ316AlCKMkfwh/yxcQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWExZTBiZDctMjgxYS00ZWJhLWI5OGMtODI5MzkzMjdkZGQ3LzAvNEIzQjU0RjRB MTIwM0Q5REY1RTgwOTQyMjhDOTFGQzIxRkYyQzVDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QjNCNTRGNEExMjAzRDlERjVFODA5NDIyOEM5MUZDMjFGRjJD NUM0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhMWUwYmQ3LTI4MWEtNGViYS1i OThjLTgyOTM5MzI3ZGRkNy8wLzMxMzAzMzJlMzEzNTMzMmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmYMwDQYJ KoZIhvcNAQELBQADggEBAC5jQ1ZBkNZaXFv6ZxnZIBNM2TkKgvb3bf8nfTCjuyiz IjHs7ptpLgrjVormpT3nWc2zWm3AwkYiqZohHU8fJxuhp0wcBmKZa+UHzVH1a6he 9C+evPdyZIRX1LZU7cjoc8Lz8jwkWGqXpOFF91TOep1MgsnYhUjuA0fXDu2huiHT 4a7KoRPIscWVVr9EoSo4ZthUzwf4XqAdfRb93RCT68IHU+qEJXBMu4K/4z7JC5cv cmhwpfUAnTkePeFZPPyzL5L4THps/Th0eEBj5+0nz0oMb7ZGKPLoox6Wig1puxI3 hhKzb3T8NzzkdHlGHpRt5EZT1PTGw4onTU64zXHaLGM= -----END CERTIFICATE-----Generated at Wed May 13 04:48:18 2026 by rpki-client