$ rpki-client -vvf rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa File: 3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: /Cpp1MQoDAZjHBD8Zezrrpf76FfuIh27guzqvCU4E0o= Subject key identifier: 41:13:5E:47:6F:9D:F5:AC:33:91:DE:93:68:16:88:B5:00:1A:BB:D1 Certificate issuer: /CN=40929298F65205185DF4DD6F4BE251452B43C09A Certificate serial: 7AB46C2584D6140B1952F16A5D4BCB2990F4C0DB Authority key identifier: 40:92:92:98:F6:52:05:18:5D:F4:DD:6F:4B:E2:51:45:2B:43:C0:9A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40929298F65205185DF4DD6F4BE251452B43C09A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa Signing time: Sun 03 May 2026 02:16:10 +0000 ROA not before: Sun 03 May 2026 02:11:10 +0000 ROA not after: Sun 02 May 2027 02:16:10 +0000 asID: 9341 IP address blocks: 103.189.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/40929298F65205185DF4DD6F4BE251452B43C09A.crl rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/40929298F65205185DF4DD6F4BE251452B43C09A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40929298F65205185DF4DD6F4BE251452B43C09A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:b4:6c:25:84:d6:14:0b:19:52:f1:6a:5d:4b:cb:29:90:f4:c0:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40929298F65205185DF4DD6F4BE251452B43C09A Validity Not Before: May 3 02:11:10 2026 GMT Not After : May 2 02:16:10 2027 GMT Subject: CN=41135E476F9DF5AC3391DE93681688B5001ABBD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:8c:c3:36:7e:b0:2c:1d:86:1e:f2:ad:ba: bb:6e:4d:de:4e:e2:94:9f:0f:4d:26:4a:97:1b:15: 7a:7f:99:c2:f1:d0:8e:b1:b8:1b:83:82:b0:30:dc: ee:45:bf:c5:9b:0b:57:36:ad:4c:69:e7:63:1a:3d: 61:7c:77:e6:e6:93:9a:93:a4:fd:f4:37:c5:ee:ba: 26:52:a9:5d:ff:43:87:eb:0e:33:0a:9c:f8:66:16: 61:ed:82:6d:07:83:73:35:6a:8a:4a:9d:ca:b7:57: ae:53:5a:08:d2:69:11:b6:ce:89:3b:77:4b:6c:81: 3a:82:7d:8a:59:94:6c:44:9a:9d:f6:5b:e1:bd:e0: 5d:fd:a8:cb:61:0e:bf:79:30:ee:69:d9:fb:18:34: 60:f1:66:b6:78:54:ee:d5:25:42:d0:27:28:64:20: 99:7f:87:93:cb:00:b1:40:0f:06:b9:45:1c:75:14: d1:93:65:4f:a1:e5:21:0c:e8:2e:36:49:fb:ec:19: 40:30:ea:c4:8c:12:08:d5:2f:2f:22:94:59:a7:9d: 7c:9a:af:0f:f0:71:ec:d4:79:b2:b7:a2:13:e5:33: 0f:c8:c3:95:93:3b:5c:9c:a1:69:bf:a2:08:6c:23: be:4d:12:96:4f:25:4f:81:eb:10:60:07:3f:65:39: 86:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:13:5E:47:6F:9D:F5:AC:33:91:DE:93:68:16:88:B5:00:1A:BB:D1 X509v3 Authority Key Identifier: keyid:40:92:92:98:F6:52:05:18:5D:F4:DD:6F:4B:E2:51:45:2B:43:C0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/40929298F65205185DF4DD6F4BE251452B43C09A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40929298F65205185DF4DD6F4BE251452B43C09A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.206.0/23 Signature Algorithm: sha256WithRSAEncryption 38:93:37:06:b7:3e:09:ac:f3:6a:a1:b8:91:bd:28:8b:c1:83: e8:af:00:72:ea:66:98:21:15:1d:37:a8:04:74:9b:61:6d:cc: 5f:8e:f5:3c:b9:b3:b0:60:6d:1c:32:28:6a:43:9d:fd:4a:5e: 94:14:b0:10:4f:17:c1:ac:b5:ac:53:45:56:a6:63:de:27:1e: eb:36:56:4d:57:75:1b:13:52:5b:90:df:b7:5f:91:19:15:ab: 6a:00:cf:d9:61:ec:5a:2f:45:14:81:71:9e:2d:ac:da:47:09: ef:9b:88:99:49:99:1a:23:e8:7b:1a:c1:00:fa:4d:ac:f3:a1: 51:cb:9c:57:54:51:eb:46:79:72:a5:09:76:55:40:7f:68:d7: bc:24:90:fc:b5:81:fc:ef:85:67:65:d2:69:e2:77:97:b1:dd: ac:88:c0:49:6e:54:81:37:af:dc:b1:c3:cf:a2:a1:9a:1e:47: 55:b6:07:73:08:ba:16:1a:70:77:f7:c9:42:e1:56:1a:9b:9d: df:71:a3:f4:9f:35:7f:63:46:6a:b2:fd:82:07:54:e0:f0:36: 72:30:aa:94:bd:b7:c6:4d:61:b9:66:3e:99:31:ca:a0:7e:00: 35:01:17:b7:7b:1e:d3:ba:ce:83:2b:5f:17:8e:59:de:15:d2: f8:46:71:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUerRsJYTWFAsZUvFqXUvLKZD0wNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5MjkyOThGNjUyMDUxODVERjRERDZGNEJFMjUxNDUy QjQzQzA5QTAeFw0yNjA1MDMwMjExMTBaFw0yNzA1MDIwMjE2MTBaMDMxMTAvBgNV BAMTKDQxMTM1RTQ3NkY5REY1QUMzMzkxREU5MzY4MTY4OEI1MDAxQUJCRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4qIzDNn6wLB2GHvKturtuTd5O 4pSfD00mSpcbFXp/mcLx0I6xuBuDgrAw3O5Fv8WbC1c2rUxp52MaPWF8d+bmk5qT pP30N8XuuiZSqV3/Q4frDjMKnPhmFmHtgm0Hg3M1aopKncq3V65TWgjSaRG2zok7 d0tsgTqCfYpZlGxEmp32W+G94F39qMthDr95MO5p2fsYNGDxZrZ4VO7VJULQJyhk IJl/h5PLALFADwa5RRx1FNGTZU+h5SEM6C42SfvsGUAw6sSMEgjVLy8ilFmnnXya rw/wcezUebK3ohPlMw/Iw5WTO1ycoWm/oghsI75NEpZPJU+B6xBgBz9lOYbfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQRNeR2+d9awzkd6TaBaItQAau9EwHwYDVR0j BBgwFoAUQJKSmPZSBRhd9N1vS+JRRStDwJowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTgzMWVlYjQtZjM1Ny00NWE3LTkyNjUtNDI4YjAwN2EwMjcwLzAvNDA5MjkyOThG NjUyMDUxODVERjRERDZGNEJFMjUxNDUyQjQzQzA5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDkyOTI5OEY2NTIwNTE4NURGNERENkY0QkUyNTE0NTJCNDND MDlBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4MzFlZWI0LWYzNTctNDVhNy05 MjY1LTQyOGIwMDdhMDI3MC8wLzMxMzAzMzJlMzEzODM5MmUzMjMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9zjANBgkqhkiG 9w0BAQsFAAOCAQEAOJM3Brc+CazzaqG4kb0oi8GD6K8AcupmmCEVHTeoBHSbYW3M X471PLmzsGBtHDIoakOd/UpelBSwEE8Xway1rFNFVqZj3ice6zZWTVd1GxNSW5Df t1+RGRWragDP2WHsWi9FFIFxni2s2kcJ75uImUmZGiPoexrBAPpNrPOhUcucV1RR 60Z5cqUJdlVAf2jXvCSQ/LWB/O+FZ2XSaeJ3l7HdrIjASW5UgTev3LHDz6Khmh5H VbYHcwi6Fhpwd/fJQuFWGpud33Gj9J81f2NGarL9ggdU4PA2cjCqlL23xk1huWY+ mTHKoH4ANQEXt3se07rOgytfF45Z3hXS+EZx1g== -----END CERTIFICATE-----Generated at Tue May 5 13:30:21 2026 by rpki-client