$ rpki-client -vvf rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39302e302f32342d3234203d3e203538333831.roa File: 3130332e32302e39302e302f32342d3234203d3e203538333831.roa (raw, json) Hash identifier: j/oR6MYId1xXKHb1Z5SsBRuqUKKVLnH73F7eTR7zcCg= Subject key identifier: 38:90:4B:4E:C1:64:20:38:AB:EC:92:07:37:29:75:C4:71:78:D0:81 Certificate issuer: /CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Certificate serial: 6F1699AD583B6E8774D6A5FB17BA159419009A85 Authority key identifier: 0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39302e302f32342d3234203d3e203538333831.roa Signing time: Sun 03 May 2026 02:24:46 +0000 ROA not before: Sun 03 May 2026 02:19:46 +0000 ROA not after: Sun 02 May 2027 02:24:46 +0000 asID: 58381 IP address blocks: 103.20.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:16:99:ad:58:3b:6e:87:74:d6:a5:fb:17:ba:15:94:19:00:9a:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Validity Not Before: May 3 02:19:46 2026 GMT Not After : May 2 02:24:46 2027 GMT Subject: CN=38904B4EC1642038ABEC9207372975C47178D081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c0:e6:20:00:ee:bc:b4:90:c0:1e:5a:5a:c7: e9:1f:57:de:af:4c:e0:8a:62:a2:ff:89:71:87:d4: 60:26:28:fd:e0:a1:a6:24:4f:4e:4d:44:05:da:50: f2:1e:77:18:81:71:b9:ef:9d:5a:be:f6:f4:09:ac: 37:59:48:71:f6:4d:65:bc:3d:92:64:59:1e:6c:7c: 15:57:4e:f6:83:62:14:8d:55:03:df:62:45:95:2f: b7:ac:ea:da:b7:12:57:69:7f:37:83:35:50:98:6e: 80:41:f7:d4:72:a8:35:cd:56:4e:1b:5b:ca:d3:46: 71:24:26:37:9f:a0:d4:28:c1:ed:10:c0:6b:e5:8f: 32:1a:ae:89:da:09:a6:0b:a9:7c:e2:ec:d1:32:81: 2b:37:57:88:c0:29:cc:ba:de:32:66:a8:bf:d3:c8: b7:dd:a8:da:db:c9:66:a9:93:74:6d:9f:c7:4a:79: 93:13:64:c4:a8:0c:47:b9:4b:dd:21:1b:33:2b:74: 86:25:7d:0a:3a:d6:72:3a:16:aa:da:81:a6:41:e9: 16:8d:63:fe:ee:72:48:90:c9:58:10:ce:fb:cb:1c: 78:fd:34:97:81:00:35:ac:83:a2:d6:bd:49:93:cc: d4:f4:71:0e:35:f9:2e:ac:29:6b:5f:0a:4e:e0:65: 55:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:90:4B:4E:C1:64:20:38:AB:EC:92:07:37:29:75:C4:71:78:D0:81 X509v3 Authority Key Identifier: keyid:0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39302e302f32342d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.90.0/24 Signature Algorithm: sha256WithRSAEncryption 11:b4:41:dc:7d:7e:0f:f9:48:14:e0:b3:11:7d:20:a0:19:92: 6b:af:0c:de:c6:24:20:c6:4b:a7:b2:19:4a:2c:cd:2e:80:41: 2f:0e:be:17:49:17:6e:c0:79:f4:88:16:49:df:6e:b6:c5:ac: 5e:40:11:3d:9a:e9:fb:8e:4d:bb:ba:00:1b:b1:54:35:18:2a: 84:a2:a8:9e:52:7e:f8:de:db:bc:91:b5:93:c2:e7:a0:9c:f4: 18:3a:fe:6e:d3:06:28:b6:e8:fe:91:3d:23:9f:01:9e:20:3e: 85:1f:45:0f:4c:80:9f:33:0e:38:99:83:b0:ce:cb:32:10:ba: e4:db:f0:4e:ff:46:f1:50:79:a6:05:32:76:93:c7:be:74:0b: 95:57:8d:71:ed:31:0a:6d:ac:c1:36:ec:eb:8e:90:eb:5a:08: b0:0c:75:d7:d1:57:e6:df:c2:ab:6d:e8:97:2d:02:f8:ca:04: e2:7a:28:df:50:06:cb:59:94:f1:9c:bf:b8:2c:50:64:47:e8: 9d:b4:a2:bf:bd:d3:01:65:46:bf:c8:e0:14:6f:c3:91:bb:4e: af:1b:da:b4:f3:a7:ae:2b:c0:be:77:02:b5:a3:f9:13:0f:a3: 68:59:12:fc:9a:9c:3f:17:dc:39:51:a4:38:ee:a2:32:18:c3: 8d:7a:f4:ba -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbxaZrVg7bod01qX7F7oVlBkAmoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZCNDI0QjIwRDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJC REE5OUNCMDAeFw0yNjA1MDMwMjE5NDZaFw0yNzA1MDIwMjI0NDZaMDMxMTAvBgNV BAMTKDM4OTA0QjRFQzE2NDIwMzhBQkVDOTIwNzM3Mjk3NUM0NzE3OEQwODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjwOYgAO68tJDAHlpax+kfV96v TOCKYqL/iXGH1GAmKP3goaYkT05NRAXaUPIedxiBcbnvnVq+9vQJrDdZSHH2TWW8 PZJkWR5sfBVXTvaDYhSNVQPfYkWVL7es6tq3EldpfzeDNVCYboBB99RyqDXNVk4b W8rTRnEkJjefoNQowe0QwGvljzIaronaCaYLqXzi7NEygSs3V4jAKcy63jJmqL/T yLfdqNrbyWapk3Rtn8dKeZMTZMSoDEe5S90hGzMrdIYlfQo61nI6FqragaZB6RaN Y/7uckiQyVgQzvvLHHj9NJeBADWsg6LWvUmTzNT0cQ41+S6sKWtfCk7gZVXjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOJBLTsFkIDir7JIHNyl1xHF40IEwHwYDVR0j BBgwFoAUD7Qksg1qRYDm0yM/zy658r2pnLAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzM4ZDI3NTUtMzgwZC00NzdlLWJmMjUtMGFmMjkwMjZiZDcwLzAvMEZCNDI0QjIw RDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJCREE5OUNCMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRkI0MjRCMjBENkE0NTgwRTZEMzIzM0ZDRjJFQjlGMkJEQTk5 Q0IwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzOGQyNzU1LTM4MGQtNDc3ZS1i ZjI1LTBhZjI5MDI2YmQ3MC8wLzMxMzAzMzJlMzIzMDJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnFFowDQYJKoZIhvcN AQELBQADggEBABG0Qdx9fg/5SBTgsxF9IKAZkmuvDN7GJCDGS6eyGUoszS6AQS8O vhdJF27AefSIFknfbrbFrF5AET2a6fuOTbu6ABuxVDUYKoSiqJ5Sfvje27yRtZPC 56Cc9Bg6/m7TBii26P6RPSOfAZ4gPoUfRQ9MgJ8zDjiZg7DOyzIQuuTb8E7/RvFQ eaYFMnaTx750C5VXjXHtMQptrME27OuOkOtaCLAMddfRV+bfwqtt6JctAvjKBOJ6 KN9QBstZlPGcv7gsUGRH6J20or+90wFlRr/I4BRvw5G7Tq8b2rTzp64rwL53ArWj +RMPo2hZEvyanD8X3DlRpDjuojIYw4169Lo= -----END CERTIFICATE-----Generated at Wed May 6 02:05:45 2026 by rpki-client