$ rpki-client -vvf rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135322e302f32332d3233203d3e2039333431.roa File: 3130332e33352e3135322e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: RYDFjSUq7+WTBKXlmjbV9d6C3LLSVr9xribVCYh4jog= Subject key identifier: 78:09:B2:ED:4D:41:AD:AD:34:83:6B:BF:1B:30:4F:AB:54:7F:A7:5D Certificate issuer: /CN=C3FB32C4A43D1AF4473AFFD72DA37C6041767F29 Certificate serial: 6734DB9DDF25DE881F7C46A638CBD51C31B8AADB Authority key identifier: C3:FB:32:C4:A4:3D:1A:F4:47:3A:FF:D7:2D:A3:7C:60:41:76:7F:29 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135322e302f32332d3233203d3e2039333431.roa Signing time: Sun 03 May 2026 02:14:48 +0000 ROA not before: Sun 03 May 2026 02:09:48 +0000 ROA not after: Sun 02 May 2027 02:14:48 +0000 asID: 9341 IP address blocks: 103.35.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.crl rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:34:db:9d:df:25:de:88:1f:7c:46:a6:38:cb:d5:1c:31:b8:aa:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3FB32C4A43D1AF4473AFFD72DA37C6041767F29 Validity Not Before: May 3 02:09:48 2026 GMT Not After : May 2 02:14:48 2027 GMT Subject: CN=7809B2ED4D41ADAD34836BBF1B304FAB547FA75D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5e:4f:25:c7:05:61:39:a6:89:86:0a:c1:ec: 43:ab:e6:8b:73:7f:c9:f6:f1:3c:8c:49:40:49:ab: 14:8e:f2:d1:00:36:4b:e1:6c:f0:10:f0:4c:a0:ef: b6:c8:99:96:71:45:a0:2b:28:a2:a1:d8:4e:83:79: f7:ff:ea:f6:3a:07:c2:c4:f9:dc:01:3c:c2:bb:48: be:58:83:18:90:c0:4a:b2:2b:e4:45:21:a3:29:71: 21:ff:a1:4c:8b:1c:ad:b9:46:8e:20:4d:ad:fb:23: 1d:77:23:95:ba:f4:d4:50:e9:d7:fb:6a:56:ac:e1: 9b:23:a5:19:ea:d2:79:d2:fb:b0:df:d1:60:8a:bf: 52:fb:9f:c7:c7:0e:98:3e:cf:1e:ee:f5:e6:f6:fa: 99:d0:61:e7:3e:36:bd:f2:e5:2f:e3:7e:9b:f0:6e: ad:a5:fe:5f:55:9c:47:b3:f4:ee:bc:60:37:e0:6c: 0e:c1:45:c0:29:10:38:b6:df:e7:7e:c2:d9:8e:16: 49:b7:63:fb:32:d8:3c:4a:e0:9a:a0:11:73:ab:39: ab:75:92:6b:47:68:2a:1c:d2:3d:69:ca:66:7c:41: cb:a3:b7:4c:87:bd:b8:60:c5:2d:cd:51:a6:ec:26: 16:40:bc:04:0f:33:e4:b1:6d:42:88:be:5d:d5:c6: 1a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:09:B2:ED:4D:41:AD:AD:34:83:6B:BF:1B:30:4F:AB:54:7F:A7:5D X509v3 Authority Key Identifier: keyid:C3:FB:32:C4:A4:3D:1A:F4:47:3A:FF:D7:2D:A3:7C:60:41:76:7F:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135322e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.35.152.0/23 Signature Algorithm: sha256WithRSAEncryption 24:02:5c:b3:c8:32:ef:3e:eb:41:3a:a3:3b:40:0c:03:dc:3b: 26:d9:d1:f2:3d:75:34:c1:35:44:ac:e7:13:b6:c8:ac:33:8b: 27:35:e5:c1:a3:c9:11:30:f5:4c:1f:06:f2:5e:66:a2:b2:93: 1e:e8:e2:32:c3:3d:01:ec:60:5a:b2:cf:90:10:16:9a:0f:48: 08:b9:69:13:62:58:b6:f2:00:6c:15:6d:08:f3:eb:c3:da:db: 06:bd:3f:19:aa:62:83:b1:29:7f:81:ff:c2:5f:ac:74:5d:b6: 9e:79:ca:3e:9b:5f:4f:95:da:c9:ca:de:db:76:4a:d5:a4:de: 3b:73:2d:13:f4:20:a4:c9:36:24:05:10:13:07:4a:eb:fb:5c: 0c:34:e4:1e:ed:ac:59:f3:5a:f1:53:49:ab:34:56:c4:16:36: 2f:94:41:80:9f:35:32:69:ae:59:35:fc:c8:bd:0e:2d:48:46: fa:5e:0a:b3:13:00:59:6c:d6:ec:b3:e7:0c:d4:f4:2f:d0:4a: af:b5:95:25:4f:a2:6d:3b:db:2a:d2:0f:f3:4c:f6:c5:8e:97: 13:d1:54:26:9d:5f:ff:79:74:9d:1e:97:3c:54:c8:0f:16:b7: b2:d0:d4:3b:16:5c:f4:5b:65:98:8a:28:08:3d:db:c6:bc:ea: 66:9a:1f:52 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZzTbnd8l3ogffEamOMvVHDG4qtswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGQjMyQzRBNDNEMUFGNDQ3M0FGRkQ3MkRBMzdDNjA0 MTc2N0YyOTAeFw0yNjA1MDMwMjA5NDhaFw0yNzA1MDIwMjE0NDhaMDMxMTAvBgNV BAMTKDc4MDlCMkVENEQ0MUFEQUQzNDgzNkJCRjFCMzA0RkFCNTQ3RkE3NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnXk8lxwVhOaaJhgrB7EOr5otz f8n28TyMSUBJqxSO8tEANkvhbPAQ8Eyg77bImZZxRaArKKKh2E6Deff/6vY6B8LE +dwBPMK7SL5YgxiQwEqyK+RFIaMpcSH/oUyLHK25Ro4gTa37Ix13I5W69NRQ6df7 alas4ZsjpRnq0nnS+7Df0WCKv1L7n8fHDpg+zx7u9eb2+pnQYec+Nr3y5S/jfpvw bq2l/l9VnEez9O68YDfgbA7BRcApEDi23+d+wtmOFkm3Y/sy2DxK4JqgEXOrOat1 kmtHaCoc0j1pymZ8Qcujt0yHvbhgxS3NUabsJhZAvAQPM+SxbUKIvl3VxhrxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUeAmy7U1Bra00g2u/GzBPq1R/p10wHwYDVR0j BBgwFoAUw/syxKQ9GvRHOv/XLaN8YEF2fykwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTQ4ODU1MjUtY2IwZi00NmEwLTgyNTMtMDQyZDdkN2FmZjM4LzAvQzNGQjMyQzRB NDNEMUFGNDQ3M0FGRkQ3MkRBMzdDNjA0MTc2N0YyOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DM0ZCMzJDNEE0M0QxQUY0NDczQUZGRDcyREEzN0M2MDQxNzY3 RjI5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE0ODg1NTI1LWNiMGYtNDZhMC04 MjUzLTA0MmQ3ZDdhZmYzOC8wLzMxMzAzMzJlMzMzNTJlMzEzNTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnI5gwDQYJKoZIhvcN AQELBQADggEBACQCXLPIMu8+60E6oztADAPcOybZ0fI9dTTBNUSs5xO2yKwziyc1 5cGjyREw9UwfBvJeZqKykx7o4jLDPQHsYFqyz5AQFpoPSAi5aRNiWLbyAGwVbQjz 68Pa2wa9PxmqYoOxKX+B/8JfrHRdtp55yj6bX0+V2snK3tt2StWk3jtzLRP0IKTJ NiQFEBMHSuv7XAw05B7trFnzWvFTSas0VsQWNi+UQYCfNTJprlk1/Mi9Di1IRvpe CrMTAFls1uyz5wzU9C/QSq+1lSVPom072yrSD/NM9sWOlxPRVCadX/95dJ0elzxU yA8Wt7LQ1DsWXPRbZZiKKAg928a86maaH1I= -----END CERTIFICATE-----Generated at Tue May 5 13:27:38 2026 by rpki-client