$ rpki-client -vvf rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa File: 3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa (raw, json) Hash identifier: 4DtXaRxKzA2NgphfITj3rvmS/5Zg3IKyMFd8f9pE1pU= Subject key identifier: FB:D9:A6:37:5F:48:2F:60:5D:58:70:8C:ED:C8:6E:19:00:01:A3:66 Certificate issuer: /CN=3699EDD71DA60ABC50B3C8187A77DB9A24A8B877 Certificate serial: 05BA290B0853E9849B3B4E9AF6FBC136AA5809D2 Authority key identifier: 36:99:ED:D7:1D:A6:0A:BC:50:B3:C8:18:7A:77:DB:9A:24:A8:B8:77 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa Signing time: Sun 03 May 2026 02:14:39 +0000 ROA not before: Sun 03 May 2026 02:09:39 +0000 ROA not after: Sun 02 May 2027 02:14:39 +0000 asID: 133210 IP address blocks: 103.120.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.crl rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 21:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:ba:29:0b:08:53:e9:84:9b:3b:4e:9a:f6:fb:c1:36:aa:58:09:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3699EDD71DA60ABC50B3C8187A77DB9A24A8B877 Validity Not Before: May 3 02:09:39 2026 GMT Not After : May 2 02:14:39 2027 GMT Subject: CN=FBD9A6375F482F605D58708CEDC86E190001A366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:89:84:50:57:27:04:d1:93:32:76:9f:30:4c: f2:93:ae:aa:3c:51:19:35:1c:67:49:7d:7d:17:65: 51:c6:ba:c1:8f:4b:df:e4:5d:a8:66:49:3e:97:f3: 3b:9f:27:c8:68:fb:c2:49:d4:83:08:47:a8:a4:60: 5e:3c:dc:0a:e0:c1:65:61:e3:f7:50:88:3a:05:19: 75:40:30:bf:12:0a:91:1b:8d:10:8a:12:4d:dc:35: fa:ba:c9:42:3e:1e:e1:a3:97:ba:c8:de:4f:8a:64: f8:6b:2a:1f:f2:35:76:11:48:ab:6f:36:71:0f:c9: 35:87:58:0b:01:1d:1a:f8:9b:01:59:02:3a:93:b0: cf:6a:9f:7a:69:b5:af:6d:88:04:a2:f6:f9:dc:c0: 86:14:f6:be:e3:39:bb:7d:a3:ea:2d:6f:ad:e3:fd: b2:c6:53:5e:7b:63:67:bf:8c:7d:a6:57:67:67:2e: 1e:62:e1:bf:2a:c6:54:e4:ca:aa:d4:f4:2a:ec:ea: b2:01:37:35:f6:b0:34:3e:ff:e2:8f:c2:f2:f7:2d: ba:2c:fe:ea:f0:54:90:e5:07:75:8f:af:22:d3:02: 58:a5:5c:4c:87:99:fb:26:60:9f:d1:06:e5:24:b3: 73:ae:7f:80:3c:8b:55:4e:7e:b4:e4:09:95:88:08: b3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D9:A6:37:5F:48:2F:60:5D:58:70:8C:ED:C8:6E:19:00:01:A3:66 X509v3 Authority Key Identifier: keyid:36:99:ED:D7:1D:A6:0A:BC:50:B3:C8:18:7A:77:DB:9A:24:A8:B8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.207.0/24 Signature Algorithm: sha256WithRSAEncryption 50:6e:cb:aa:da:a7:64:63:db:f2:6a:81:d8:1f:83:65:9c:67: 73:6d:51:5b:f5:05:d9:35:96:37:66:42:6d:32:7e:e7:6f:2d: ad:e3:09:4a:68:ed:7a:a7:6f:cc:c1:83:b0:ef:9d:fb:96:fd: 21:73:61:d1:24:26:89:6d:62:1d:19:e5:c0:a3:7f:d8:54:7b: e8:a5:87:ea:fc:a9:c2:3a:db:06:1f:c0:f3:e9:c5:d6:91:ab: d0:af:35:7b:0a:ca:73:3c:d2:4e:29:a7:87:d7:47:3b:35:6b: e8:78:99:ce:b4:cd:92:6f:af:a6:65:88:61:b6:9d:05:da:63: b0:b1:d6:bb:c4:b3:c6:18:2d:c5:7c:e0:c0:5b:1b:31:eb:40: 89:5c:8f:44:21:b8:0b:48:ad:ac:e8:b9:15:53:a8:68:f5:95: f4:1f:4f:61:5f:f0:2e:c8:67:45:37:7d:4d:38:37:57:c1:fb: f1:45:fc:82:ea:60:ae:e5:d6:73:5b:be:e2:a1:4b:f6:9c:1a: 76:2c:c4:02:ad:b1:85:c3:d2:f7:28:c0:4f:2a:10:13:6e:de: 5d:56:5f:7a:3c:e1:e2:f7:ad:e8:10:14:25:b7:c7:41:b7:88: c0:ff:93:e7:96:0f:43:a6:ba:7c:7a:8d:29:9d:16:38:aa:76: f7:3b:64:77 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBbopCwhT6YSbO06a9vvBNqpYCdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY5OUVERDcxREE2MEFCQzUwQjNDODE4N0E3N0RCOUEy NEE4Qjg3NzAeFw0yNjA1MDMwMjA5MzlaFw0yNzA1MDIwMjE0MzlaMDMxMTAvBgNV BAMTKEZCRDlBNjM3NUY0ODJGNjA1RDU4NzA4Q0VEQzg2RTE5MDAwMUEzNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdiYRQVycE0ZMydp8wTPKTrqo8 URk1HGdJfX0XZVHGusGPS9/kXahmST6X8zufJ8ho+8JJ1IMIR6ikYF483ArgwWVh 4/dQiDoFGXVAML8SCpEbjRCKEk3cNfq6yUI+HuGjl7rI3k+KZPhrKh/yNXYRSKtv NnEPyTWHWAsBHRr4mwFZAjqTsM9qn3ppta9tiASi9vncwIYU9r7jObt9o+otb63j /bLGU157Y2e/jH2mV2dnLh5i4b8qxlTkyqrU9Crs6rIBNzX2sDQ+/+KPwvL3Lbos /urwVJDlB3WPryLTAlilXEyHmfsmYJ/RBuUks3Ouf4A8i1VOfrTkCZWICLMVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+9mmN19IL2BdWHCM7chuGQABo2YwHwYDVR0j BBgwFoAUNpnt1x2mCrxQs8gYenfbmiSouHcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTQwZjM3YzAtMzgwYy00MDUzLWIzYmEtYjMyZWYwMzVjMjhmLzAvMzY5OUVERDcx REE2MEFCQzUwQjNDODE4N0E3N0RCOUEyNEE4Qjg3Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNjk5RURENzFEQTYwQUJDNTBCM0M4MTg3QTc3REI5QTI0QThC ODc3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMjMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneM8wDQYJ KoZIhvcNAQELBQADggEBAFBuy6rap2Rj2/Jqgdgfg2WcZ3NtUVv1Bdk1ljdmQm0y fudvLa3jCUpo7Xqnb8zBg7DvnfuW/SFzYdEkJoltYh0Z5cCjf9hUe+ilh+r8qcI6 2wYfwPPpxdaRq9CvNXsKynM80k4pp4fXRzs1a+h4mc60zZJvr6ZliGG2nQXaY7Cx 1rvEs8YYLcV84MBbGzHrQIlcj0QhuAtIrazouRVTqGj1lfQfT2Ff8C7IZ0U3fU04 N1fB+/FF/ILqYK7l1nNbvuKhS/acGnYsxAKtsYXD0vcowE8qEBNu3l1WX3o84eL3 regQFCW3x0G3iMD/k+eWD0Omunx6jSmdFjiqdvc7ZHc= -----END CERTIFICATE-----Generated at Thu May 7 04:13:37 2026 by rpki-client