$ rpki-client -vvf rpki-rsync.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/3130332e3135332e3139312e302f32342d3234203d3e20313430343639.roa File: 3130332e3135332e3139312e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: 3MtPZsgaG3GGHW0Fsi5xI0TV6YGTe2Jk4x3Wr8wYof4= Subject key identifier: 38:CA:00:91:DC:6D:00:C2:F3:36:AC:D6:49:FD:F2:75:69:A7:B3:20 Certificate issuer: /CN=333C12DD288104B6B3C5A2CAB606BF5508F4DDDF Certificate serial: 608EDB81C4A0BDB073F698EDDC989728503AFDB4 Authority key identifier: 33:3C:12:DD:28:81:04:B6:B3:C5:A2:CA:B6:06:BF:55:08:F4:DD:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/333C12DD288104B6B3C5A2CAB606BF5508F4DDDF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/3130332e3135332e3139312e302f32342d3234203d3e20313430343639.roa Signing time: Sun 03 May 2026 03:19:15 +0000 ROA not before: Sun 03 May 2026 03:14:15 +0000 ROA not after: Sun 02 May 2027 03:19:15 +0000 asID: 140469 IP address blocks: 103.153.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/333C12DD288104B6B3C5A2CAB606BF5508F4DDDF.crl rsync://rpki-rsync.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/333C12DD288104B6B3C5A2CAB606BF5508F4DDDF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/333C12DD288104B6B3C5A2CAB606BF5508F4DDDF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8e:db:81:c4:a0:bd:b0:73:f6:98:ed:dc:98:97:28:50:3a:fd:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=333C12DD288104B6B3C5A2CAB606BF5508F4DDDF Validity Not Before: May 3 03:14:15 2026 GMT Not After : May 2 03:19:15 2027 GMT Subject: CN=38CA0091DC6D00C2F336ACD649FDF27569A7B320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0b:9c:b1:7c:36:a5:5f:65:f7:f8:f2:77:45: 18:51:03:12:40:41:84:51:29:41:dc:cb:ac:82:57: 3b:c5:2e:4a:3e:f9:5e:cb:d3:ad:d8:03:f7:c9:69: d4:47:dc:55:0e:27:df:d7:75:41:ee:e7:37:48:03: 3a:03:44:1b:8e:97:45:2f:e0:86:a9:a7:fd:0a:65: 29:35:39:bb:89:8e:c7:15:ad:d2:0d:a7:74:cb:8f: 4d:a1:dc:45:9e:83:49:e9:65:a4:19:83:2e:19:6d: 52:e5:65:f9:eb:b5:5f:4d:56:98:91:63:57:88:c2: 45:37:2b:3d:61:e8:73:1f:45:fc:30:6a:55:b6:03: 4c:f1:f7:ef:d5:54:7f:29:04:ad:b6:e5:6f:78:ac: f6:71:e3:d6:03:35:a9:dc:59:7e:a0:1d:22:23:7f: 2a:5f:37:4d:dc:7e:b8:eb:3f:66:e5:18:bd:4b:aa: a0:3e:3b:41:12:fb:96:36:a0:6c:f6:de:38:3a:70: 6f:19:bc:b6:dd:0d:43:56:54:ea:fd:12:64:4f:12: 81:12:b4:d3:3a:54:99:e1:12:15:00:6b:b0:cc:a8: 09:1e:bc:5c:cc:f0:74:9f:35:cd:0e:46:5f:99:68: da:71:3a:fd:90:20:ce:91:28:b0:06:d7:42:f4:e9: bb:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CA:00:91:DC:6D:00:C2:F3:36:AC:D6:49:FD:F2:75:69:A7:B3:20 X509v3 Authority Key Identifier: keyid:33:3C:12:DD:28:81:04:B6:B3:C5:A2:CA:B6:06:BF:55:08:F4:DD:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/333C12DD288104B6B3C5A2CAB606BF5508F4DDDF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/333C12DD288104B6B3C5A2CAB606BF5508F4DDDF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/3130332e3135332e3139312e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.191.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:a7:60:75:e9:63:72:f7:7d:7f:a5:68:b3:cb:b8:05:1f:0b: fb:ec:ef:fa:49:07:00:12:59:a8:86:0e:c3:80:65:f0:a9:51: 80:b4:4c:d1:24:5f:3e:86:00:ab:de:f5:af:ce:eb:ac:f7:e7: 3e:e2:c6:b7:1a:89:6b:62:ac:17:62:ff:e7:d2:6a:9d:b4:30: f8:c6:fd:73:12:a9:2b:be:f5:82:dd:32:d9:d9:b1:20:1c:f0: 11:1b:63:a6:06:b7:0b:c0:dd:05:fb:7f:33:6c:23:f7:eb:bc: 89:2c:0b:ae:c6:df:5e:fe:aa:fa:1e:b4:c8:3a:b0:cb:b5:fb: 63:13:c3:24:95:fb:df:8d:cb:74:79:59:61:45:81:06:1a:78: ca:d4:92:da:ce:d7:26:2a:83:16:23:e6:47:21:1c:bc:bf:9e: 13:bf:3f:39:0b:17:1d:23:f1:4d:bd:d2:b7:75:c8:77:b7:04: 44:64:8c:0e:01:c1:96:bd:6b:cd:7e:86:9d:1d:3a:ee:ee:d6: 3f:d6:42:cc:c1:f7:cf:c8:8e:6f:29:3a:52:0f:ce:2a:5c:e8: e2:0a:69:2a:c7:c9:b4:4c:8d:b8:98:1f:d5:b5:1d:ec:78:02: 85:0f:af:df:e1:63:19:14:01:4b:82:d1:6a:1c:7e:40:ee:e6: c4:ad:96:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYI7bgcSgvbBz9pjt3JiXKFA6/bQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMzQzEyREQyODgxMDRCNkIzQzVBMkNBQjYwNkJGNTUw OEY0RERERjAeFw0yNjA1MDMwMzE0MTVaFw0yNzA1MDIwMzE5MTVaMDMxMTAvBgNV BAMTKDM4Q0EwMDkxREM2RDAwQzJGMzM2QUNENjQ5RkRGMjc1NjlBN0IzMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6C5yxfDalX2X3+PJ3RRhRAxJA QYRRKUHcy6yCVzvFLko++V7L063YA/fJadRH3FUOJ9/XdUHu5zdIAzoDRBuOl0Uv 4Iapp/0KZSk1ObuJjscVrdINp3TLj02h3EWeg0npZaQZgy4ZbVLlZfnrtV9NVpiR Y1eIwkU3Kz1h6HMfRfwwalW2A0zx9+/VVH8pBK225W94rPZx49YDNancWX6gHSIj fypfN03cfrjrP2blGL1LqqA+O0ES+5Y2oGz23jg6cG8ZvLbdDUNWVOr9EmRPEoES tNM6VJnhEhUAa7DMqAkevFzM8HSfNc0ORl+ZaNpxOv2QIM6RKLAG10L06bvRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOMoAkdxtAMLzNqzWSf3ydWmnsyAwHwYDVR0j BBgwFoAUMzwS3SiBBLazxaLKtga/VQj03d8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmM1NjhiNWItYjZhZS00NTNlLThlMTYtZDU1ZGQ2MzU0NjBiLzAvMzMzQzEyREQy ODgxMDRCNkIzQzVBMkNBQjYwNkJGNTUwOEY0RERERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMzNDMTJERDI4ODEwNEI2QjNDNUEyQ0FCNjA2QkY1NTA4RjRE RERGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZjNTY4YjViLWI2YWUtNDUzZS04 ZTE2LWQ1NWRkNjM1NDYwYi8wLzMxMzAzMzJlMzEzNTMzMmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmb8wDQYJ KoZIhvcNAQELBQADggEBAGunYHXpY3L3fX+laLPLuAUfC/vs7/pJBwASWaiGDsOA ZfCpUYC0TNEkXz6GAKve9a/O66z35z7ixrcaiWtirBdi/+fSap20MPjG/XMSqSu+ 9YLdMtnZsSAc8BEbY6YGtwvA3QX7fzNsI/frvIksC67G317+qvoetMg6sMu1+2MT wySV+9+Ny3R5WWFFgQYaeMrUktrO1yYqgxYj5kchHLy/nhO/PzkLFx0j8U290rd1 yHe3BERkjA4BwZa9a81+hp0dOu7u1j/WQszB98/Ijm8pOlIPzipc6OIKaSrHybRM jbiYH9W1Hex4AoUPr9/hYxkUAUuC0WocfkDu5sStluI= -----END CERTIFICATE-----Generated at Wed May 13 08:28:39 2026 by rpki-client