$ rpki-client -vvf rpki-rsync.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/3130332e3134322e38392e302f32342d3234203d3e20313339333638.roa File: 3130332e3134322e38392e302f32342d3234203d3e20313339333638.roa (raw, json) Hash identifier: 4JRcCjrbt6UQy9keTGtyxuVyA16nB/RDNc0x3IcBoFU= Subject key identifier: A9:22:03:1B:E3:87:80:BF:FD:6D:A2:A9:FE:02:96:4F:3A:14:46:10 Certificate issuer: /CN=5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564 Certificate serial: 1C7F032D2011BEB68755442FEC9BC96F44ED27DF Authority key identifier: 5D:F5:DB:B1:48:D0:F4:EA:BB:1A:70:87:D8:CA:D8:7F:B2:A9:15:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/3130332e3134322e38392e302f32342d3234203d3e20313339333638.roa Signing time: Sun 03 May 2026 03:15:48 +0000 ROA not before: Sun 03 May 2026 03:10:48 +0000 ROA not after: Sun 02 May 2027 03:15:48 +0000 asID: 139368 IP address blocks: 103.142.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564.crl rsync://rpki-rsync.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7f:03:2d:20:11:be:b6:87:55:44:2f:ec:9b:c9:6f:44:ed:27:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564 Validity Not Before: May 3 03:10:48 2026 GMT Not After : May 2 03:15:48 2027 GMT Subject: CN=A922031BE38780BFFD6DA2A9FE02964F3A144610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:c6:a2:81:13:11:7f:64:a7:81:1d:4f:b9:28: 06:75:c7:63:8b:ae:3c:ce:f9:2e:df:65:95:d6:6e: 8e:88:2a:07:e1:1d:68:a3:8e:14:30:b6:8f:54:e8: ab:81:44:4e:55:29:96:83:05:35:0c:1d:e6:ef:79: 70:a2:6a:16:c9:4a:bd:e6:08:67:65:84:0c:12:e4: b3:43:cc:82:14:e9:36:ff:1e:70:82:77:7b:b4:c9: 14:b3:32:91:cc:2c:a5:4d:5b:03:5a:44:c4:e6:a4: 8e:bc:b9:86:c6:9e:54:0b:bd:df:c6:bf:c5:46:4b: 26:45:7b:22:1d:5c:d6:92:c9:3d:cd:5f:8e:3d:25: c3:17:a6:99:a6:39:d7:ab:a9:08:92:de:16:28:1a: bc:b8:71:bb:25:e7:60:29:e6:33:ea:6d:41:59:f4: 4a:07:38:57:24:af:4a:60:44:f9:1a:3e:09:76:4e: 57:68:bc:24:1a:1e:b9:89:51:90:a7:d1:ff:b6:19: 75:dd:d9:fb:7a:cf:d0:39:07:06:70:aa:76:f7:88: 2f:78:29:4f:80:2e:63:fc:ba:74:a9:c2:a0:80:d8: ad:5f:2c:fb:9f:8c:1a:22:7c:d8:f5:c4:34:de:ca: 5d:51:4e:8b:3d:ba:90:6a:b2:29:ca:e5:da:a3:73: 1e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:22:03:1B:E3:87:80:BF:FD:6D:A2:A9:FE:02:96:4F:3A:14:46:10 X509v3 Authority Key Identifier: keyid:5D:F5:DB:B1:48:D0:F4:EA:BB:1A:70:87:D8:CA:D8:7F:B2:A9:15:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5DF5DBB148D0F4EABB1A7087D8CAD87FB2A91564.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/3130332e3134322e38392e302f32342d3234203d3e20313339333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.89.0/24 Signature Algorithm: sha256WithRSAEncryption 81:61:12:82:27:d6:d7:94:3c:ec:e5:76:d0:b8:e1:ab:ee:81: 50:10:00:ee:f9:f7:04:22:9d:ee:ff:0b:cb:71:db:9e:87:c1: a6:03:00:ae:fd:77:c2:72:b1:1c:6e:fd:80:d3:78:51:1c:6e: da:40:9f:2f:93:2e:10:a0:2f:13:61:63:0e:40:42:12:94:af: 48:ba:5e:2e:32:12:83:be:1f:7b:69:51:2e:57:f4:1d:cd:bd: 35:98:76:44:fc:49:e5:d7:63:e3:71:c9:4a:e2:86:c0:76:55: 09:33:d3:95:fc:f1:92:e5:8b:8f:5f:c5:12:00:be:b6:f1:62: b5:38:b0:40:30:79:13:08:7e:33:0f:d1:f2:8b:95:9b:76:76: 2d:35:2b:a0:48:62:5b:a8:b7:66:cf:d7:1d:4a:4c:a4:0e:34: ee:98:3d:3c:e2:c7:44:23:9a:37:7e:ad:5a:72:dd:1d:81:05: 38:bd:ff:4b:2c:95:30:a8:8e:5f:a8:4d:04:c6:48:22:72:a0: 5e:c9:33:79:a7:5c:09:1d:4b:48:52:d1:74:74:3f:d5:a1:dd: b7:54:15:67:b8:c4:a4:57:93:60:62:10:75:e5:fc:c9:cd:28: c9:fe:ed:96:89:93:0c:7f:ad:24:d3:0a:2c:e8:28:54:c1:03: 0b:81:d4:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHH8DLSARvraHVUQv7JvJb0TtJ98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGNURCQjE0OEQwRjRFQUJCMUE3MDg3RDhDQUQ4N0ZC MkE5MTU2NDAeFw0yNjA1MDMwMzEwNDhaFw0yNzA1MDIwMzE1NDhaMDMxMTAvBgNV BAMTKEE5MjIwMzFCRTM4NzgwQkZGRDZEQTJBOUZFMDI5NjRGM0ExNDQ2MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCAxqKBExF/ZKeBHU+5KAZ1x2OL rjzO+S7fZZXWbo6IKgfhHWijjhQwto9U6KuBRE5VKZaDBTUMHebveXCiahbJSr3m CGdlhAwS5LNDzIIU6Tb/HnCCd3u0yRSzMpHMLKVNWwNaRMTmpI68uYbGnlQLvd/G v8VGSyZFeyIdXNaSyT3NX449JcMXppmmOderqQiS3hYoGry4cbsl52Ap5jPqbUFZ 9EoHOFckr0pgRPkaPgl2TldovCQaHrmJUZCn0f+2GXXd2ft6z9A5BwZwqnb3iC94 KU+ALmP8unSpwqCA2K1fLPufjBoifNj1xDTeyl1RTos9upBqsinK5dqjcx7PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqSIDG+OHgL/9baKp/gKWTzoURhAwHwYDVR0j BBgwFoAUXfXbsUjQ9Oq7GnCH2MrYf7KpFWQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWQ0OWQ0OWItZGFlYS00OGMwLThkNzctMTM3MzhiNzQ1NzcyLzAvNURGNURCQjE0 OEQwRjRFQUJCMUE3MDg3RDhDQUQ4N0ZCMkE5MTU2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81REY1REJCMTQ4RDBGNEVBQkIxQTcwODdEOENBRDg3RkIyQTkx NTY0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VkNDlkNDliLWRhZWEtNDhjMC04 ZDc3LTEzNzM4Yjc0NTc3Mi8wLzMxMzAzMzJlMzEzNDMyMmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ45ZMA0GCSqG SIb3DQEBCwUAA4IBAQCBYRKCJ9bXlDzs5XbQuOGr7oFQEADu+fcEIp3u/wvLcdue h8GmAwCu/XfCcrEcbv2A03hRHG7aQJ8vky4QoC8TYWMOQEISlK9Iul4uMhKDvh97 aVEuV/Qdzb01mHZE/Enl12PjcclK4obAdlUJM9OV/PGS5YuPX8USAL628WK1OLBA MHkTCH4zD9Hyi5WbdnYtNSugSGJbqLdmz9cdSkykDjTumD084sdEI5o3fq1act0d gQU4vf9LLJUwqI5fqE0ExkgicqBeyTN5p1wJHUtIUtF0dD/Vod23VBVnuMSkV5Ng YhB15fzJzSjJ/u2WiZMMf60k0wos6ChUwQMLgdTL -----END CERTIFICATE-----Generated at Wed May 13 10:07:38 2026 by rpki-client