$ rpki-client -vvf rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32342d3234203d3e2039333431.roa File: 3130332e3138392e3230362e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: FaKND3k0/W3hoCdXnlN+l2wX86NxXD4PJzdg9/BiXgA= Subject key identifier: 74:1C:BE:8B:F0:5E:2A:DA:61:3C:F6:16:F5:95:40:2B:38:A0:AA:E4 Certificate issuer: /CN=40929298F65205185DF4DD6F4BE251452B43C09A Certificate serial: 10D43C7134E45153E6246AF64FEE747A5764067D Authority key identifier: 40:92:92:98:F6:52:05:18:5D:F4:DD:6F:4B:E2:51:45:2B:43:C0:9A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40929298F65205185DF4DD6F4BE251452B43C09A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 02:16:09 +0000 ROA not before: Sun 03 May 2026 02:11:09 +0000 ROA not after: Sun 02 May 2027 02:16:09 +0000 asID: 9341 IP address blocks: 103.189.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/40929298F65205185DF4DD6F4BE251452B43C09A.crl rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/40929298F65205185DF4DD6F4BE251452B43C09A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40929298F65205185DF4DD6F4BE251452B43C09A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:d4:3c:71:34:e4:51:53:e6:24:6a:f6:4f:ee:74:7a:57:64:06:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40929298F65205185DF4DD6F4BE251452B43C09A Validity Not Before: May 3 02:11:09 2026 GMT Not After : May 2 02:16:09 2027 GMT Subject: CN=741CBE8BF05E2ADA613CF616F595402B38A0AAE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:78:c3:38:09:43:9b:a4:0d:12:ef:78:c3:f0: 6f:71:69:74:0b:f7:4b:f3:98:88:08:4c:9b:7a:84: 87:28:f6:86:72:03:46:24:ba:05:bc:c3:a8:f4:bf: 6f:3f:38:23:73:b3:a8:bd:76:15:d8:85:aa:f5:db: 9a:20:7e:c0:c2:2f:c0:19:4c:36:a8:0f:c8:6c:50: 52:c5:92:ac:ce:9c:43:9c:ee:db:4d:11:a7:19:5d: 9b:c4:10:de:c2:bb:16:9e:ff:b5:7a:18:a1:66:09: ad:a0:cb:ea:9a:4e:6e:96:12:4f:10:3c:c2:ac:8a: db:17:0f:1a:9a:ad:62:95:9b:f2:76:cb:4e:d9:61: 52:fe:2d:8a:85:5f:a9:2b:25:87:3b:84:2d:1f:bc: cd:03:52:e8:3c:2a:d4:5e:d2:8f:b2:27:b3:17:5d: 53:66:05:90:81:cc:62:d4:50:10:c9:4c:e5:f2:4d: 72:85:10:16:ff:82:4e:c4:38:14:ac:28:b8:8b:37: fd:31:39:27:69:33:3e:15:65:d8:73:47:29:4e:fe: 34:36:c6:8a:d1:81:bd:b3:80:d4:d7:58:99:0d:02: 1f:0f:37:95:32:b1:f0:be:1b:56:d1:f2:c8:63:c6: 35:1d:c2:3f:e8:35:38:de:ed:2a:e8:ba:31:26:bb: e9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:1C:BE:8B:F0:5E:2A:DA:61:3C:F6:16:F5:95:40:2B:38:A0:AA:E4 X509v3 Authority Key Identifier: keyid:40:92:92:98:F6:52:05:18:5D:F4:DD:6F:4B:E2:51:45:2B:43:C0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/40929298F65205185DF4DD6F4BE251452B43C09A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40929298F65205185DF4DD6F4BE251452B43C09A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.206.0/24 Signature Algorithm: sha256WithRSAEncryption 87:15:a5:94:50:96:02:ad:cd:4e:4c:71:60:57:d0:9f:44:01: 98:46:a0:fc:15:ae:3b:bb:08:d1:5b:23:6e:5f:86:d3:e3:cf: 16:41:07:bd:8b:a4:b6:f6:b3:3b:3a:e0:4f:46:23:8b:60:51: 0b:85:db:fa:96:d7:4a:a2:02:7c:1e:24:eb:70:e2:ca:9a:e6: 3e:e4:58:33:4c:24:b5:54:fc:56:a4:e2:71:44:4d:07:d6:be: f8:43:7b:3e:0c:72:65:b9:09:93:97:e3:dc:91:a7:f7:8a:91: 1f:4b:58:00:c7:a6:7c:5a:8b:b1:91:18:a9:92:93:6a:31:86: d6:05:f0:e0:96:38:3d:e3:86:31:81:87:df:de:97:77:f1:af: e9:a9:b4:90:9d:1a:72:db:4f:d9:af:76:b1:7d:f9:9a:bf:75: 00:b6:3e:f0:e8:f4:bb:19:21:05:15:9a:92:72:69:e7:f5:07: 7f:00:cc:1d:a5:69:9d:41:f0:15:e2:a2:d4:68:cb:df:c9:cc: ef:64:bf:91:3c:3b:68:29:e6:7d:30:e8:5a:06:54:0f:89:c3: bb:5d:0e:b9:b3:88:1d:8a:ab:76:7d:7f:a0:2a:c8:16:c6:90: ca:1f:a0:91:94:b7:c5:c9:96:48:b1:55:e9:e8:f3:f4:80:bf: 3a:f5:10:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUENQ8cTTkUVPmJGr2T+50eldkBn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5MjkyOThGNjUyMDUxODVERjRERDZGNEJFMjUxNDUy QjQzQzA5QTAeFw0yNjA1MDMwMjExMDlaFw0yNzA1MDIwMjE2MDlaMDMxMTAvBgNV BAMTKDc0MUNCRThCRjA1RTJBREE2MTNDRjYxNkY1OTU0MDJCMzhBMEFBRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQeMM4CUObpA0S73jD8G9xaXQL 90vzmIgITJt6hIco9oZyA0YkugW8w6j0v28/OCNzs6i9dhXYhar125ogfsDCL8AZ TDaoD8hsUFLFkqzOnEOc7ttNEacZXZvEEN7Cuxae/7V6GKFmCa2gy+qaTm6WEk8Q PMKsitsXDxqarWKVm/J2y07ZYVL+LYqFX6krJYc7hC0fvM0DUug8KtRe0o+yJ7MX XVNmBZCBzGLUUBDJTOXyTXKFEBb/gk7EOBSsKLiLN/0xOSdpMz4VZdhzRylO/jQ2 xorRgb2zgNTXWJkNAh8PN5UysfC+G1bR8shjxjUdwj/oNTje7SroujEmu+mDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdBy+i/BeKtphPPYW9ZVAKzigquQwHwYDVR0j BBgwFoAUQJKSmPZSBRhd9N1vS+JRRStDwJowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTgzMWVlYjQtZjM1Ny00NWE3LTkyNjUtNDI4YjAwN2EwMjcwLzAvNDA5MjkyOThG NjUyMDUxODVERjRERDZGNEJFMjUxNDUyQjQzQzA5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDkyOTI5OEY2NTIwNTE4NURGNERENkY0QkUyNTE0NTJCNDND MDlBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4MzFlZWI0LWYzNTctNDVhNy05 MjY1LTQyOGIwMDdhMDI3MC8wLzMxMzAzMzJlMzEzODM5MmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe9zjANBgkqhkiG 9w0BAQsFAAOCAQEAhxWllFCWAq3NTkxxYFfQn0QBmEag/BWuO7sI0Vsjbl+G0+PP FkEHvYuktvazOzrgT0Yji2BRC4Xb+pbXSqICfB4k63DiyprmPuRYM0wktVT8VqTi cURNB9a++EN7PgxyZbkJk5fj3JGn94qRH0tYAMemfFqLsZEYqZKTajGG1gXw4JY4 PeOGMYGH396Xd/Gv6am0kJ0acttP2a92sX35mr91ALY+8Oj0uxkhBRWaknJp5/UH fwDMHaVpnUHwFeKi1GjL38nM72S/kTw7aCnmfTDoWgZUD4nDu10OubOIHYqrdn1/ oCrIFsaQyh+gkZS3xcmWSLFV6ejz9IC/OvUQKA== -----END CERTIFICATE-----Generated at Tue May 5 13:31:08 2026 by rpki-client