$ rpki-client -vvf rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa File: 3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: gCpw2vGjm5jpbPiN9g0VamqWAxByjyrdBgvX9WD/FEw= Subject key identifier: 14:A9:A9:F8:01:F4:4A:EE:67:5E:EE:5A:51:B0:00:2F:D9:31:7D:49 Certificate issuer: /CN=B159D33D3522D27CDFCF4C81911382E2AB8C5F60 Certificate serial: 5D09A71140DC59A7159689907FA5480BAD2F8AAE Authority key identifier: B1:59:D3:3D:35:22:D2:7C:DF:CF:4C:81:91:13:82:E2:AB:8C:5F:60 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa Signing time: Sun 03 May 2026 02:25:37 +0000 ROA not before: Sun 03 May 2026 02:20:37 +0000 ROA not after: Sun 02 May 2027 02:25:37 +0000 asID: 9341 IP address blocks: 103.245.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.crl rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:09:a7:11:40:dc:59:a7:15:96:89:90:7f:a5:48:0b:ad:2f:8a:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B159D33D3522D27CDFCF4C81911382E2AB8C5F60 Validity Not Before: May 3 02:20:37 2026 GMT Not After : May 2 02:25:37 2027 GMT Subject: CN=14A9A9F801F44AEE675EEE5A51B0002FD9317D49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:85:09:f8:e1:f1:4f:42:61:d0:6f:d5:45: 8f:fc:72:d2:3b:48:ff:62:ad:6a:34:2a:a4:e1:e7: dc:10:45:f5:7f:96:d5:a1:8f:0d:bb:db:7e:a1:f8: 28:96:19:c4:28:47:ee:b1:c7:42:d0:e6:e3:65:d7: a6:d3:77:18:b8:d9:b5:cb:82:f0:96:de:d9:59:65: 5f:6f:59:87:8b:09:da:85:41:58:03:7b:69:7f:3a: 5e:33:d5:eb:0b:29:8c:01:25:87:8f:b7:a6:ac:e4: c3:87:dd:bb:a6:c5:57:e4:3a:f5:0f:f9:e7:b3:cc: 4d:43:c1:36:de:8f:82:0d:9f:97:5e:13:ea:cf:55: cf:92:9c:13:03:50:b6:8e:2d:d0:0b:40:55:2d:a1: 3c:73:82:fd:de:69:4e:b1:6d:0b:e7:fa:d2:f5:49: 1c:25:c9:dd:ba:a0:55:f5:d9:36:af:a7:36:80:61: bc:38:9d:5f:31:8d:e3:43:54:4a:32:9e:bf:e4:7b: 17:4f:8a:d9:34:dd:9f:52:db:26:fa:61:10:b9:15: 93:99:3d:89:a6:ea:3b:66:5d:47:e8:57:a1:fd:d1: a7:54:33:4c:f5:7c:a9:17:1e:b2:a5:3c:cc:4d:ed: 91:f2:52:d8:df:46:45:03:12:d6:44:1a:99:db:85: 1d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A9:A9:F8:01:F4:4A:EE:67:5E:EE:5A:51:B0:00:2F:D9:31:7D:49 X509v3 Authority Key Identifier: keyid:B1:59:D3:3D:35:22:D2:7C:DF:CF:4C:81:91:13:82:E2:AB:8C:5F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.178.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:c7:0c:4f:82:35:dc:22:f8:ed:d3:d6:57:3e:8a:3c:cb:35: 0d:f5:45:39:60:31:24:6a:68:31:c3:a0:da:60:65:80:48:a1: 03:2b:bf:4e:66:c6:fd:c7:ff:43:db:f1:5d:53:89:dd:39:ab: 55:10:50:ae:1a:cb:8b:07:a0:7c:82:de:83:55:25:17:95:ff: cf:78:b0:ac:35:9e:f9:fa:d9:4a:bb:32:7a:ad:9f:72:07:17: 3a:61:f6:5a:e1:aa:81:ac:0c:c1:bf:84:b3:2a:97:a1:98:80: b1:0b:f7:2c:e8:d4:33:ea:52:35:74:d5:51:2b:cc:b8:60:66: 6d:e4:01:9a:60:a8:4b:ad:99:36:fb:cd:94:ed:33:74:53:86: bc:b3:74:7f:c8:f9:f0:20:19:3c:3b:91:ea:95:94:4f:f2:bf: f4:db:92:96:35:bd:cf:e9:e9:01:8f:62:ee:6e:3c:86:15:6a: 4b:c2:62:1e:34:fd:2e:1c:79:8f:4d:56:01:3d:49:9d:86:c4: 71:d6:e6:01:e2:76:4e:1c:6a:f0:a0:1e:52:f8:cf:a0:cd:23: cd:97:ac:42:5e:fc:81:44:c9:5c:96:f1:60:c6:1b:82:9d:72: 0a:6d:99:3c:9a:75:c3:f2:87:ae:71:0a:9f:22:d6:7a:2d:e5: 1b:58:5c:a1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXQmnEUDcWacVlomQf6VIC60viq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE1OUQzM0QzNTIyRDI3Q0RGQ0Y0QzgxOTExMzgyRTJB QjhDNUY2MDAeFw0yNjA1MDMwMjIwMzdaFw0yNzA1MDIwMjI1MzdaMDMxMTAvBgNV BAMTKDE0QTlBOUY4MDFGNDRBRUU2NzVFRUU1QTUxQjAwMDJGRDkzMTdENDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnr4UJ+OHxT0Jh0G/VRY/8ctI7 SP9irWo0KqTh59wQRfV/ltWhjw27236h+CiWGcQoR+6xx0LQ5uNl16bTdxi42bXL gvCW3tlZZV9vWYeLCdqFQVgDe2l/Ol4z1esLKYwBJYePt6as5MOH3bumxVfkOvUP +eezzE1DwTbej4INn5deE+rPVc+SnBMDULaOLdALQFUtoTxzgv3eaU6xbQvn+tL1 SRwlyd26oFX12TavpzaAYbw4nV8xjeNDVEoynr/kexdPitk03Z9S2yb6YRC5FZOZ PYmm6jtmXUfoV6H90adUM0z1fKkXHrKlPMxN7ZHyUtjfRkUDEtZEGpnbhR1HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFKmp+AH0Su5nXu5aUbAAL9kxfUkwHwYDVR0j BBgwFoAUsVnTPTUi0nzfz0yBkROC4quMX2AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzcwYzQ3NTktNDNiOC00ZTgwLWJlOGMtODNjYmU5ZjgyMzFiLzAvQjE1OUQzM0Qz NTIyRDI3Q0RGQ0Y0QzgxOTExMzgyRTJBQjhDNUY2MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMTU5RDMzRDM1MjJEMjdDREZDRjRDODE5MTEzODJFMkFCOEM1 RjYwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM3MGM0NzU5LTQzYjgtNGU4MC1i ZThjLTgzY2JlOWY4MjMxYi8wLzMxMzAzMzJlMzIzNDM1MmUzMTM3MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf1sjANBgkqhkiG 9w0BAQsFAAOCAQEALMcMT4I13CL47dPWVz6KPMs1DfVFOWAxJGpoMcOg2mBlgEih Ayu/TmbG/cf/Q9vxXVOJ3TmrVRBQrhrLiwegfILeg1UlF5X/z3iwrDWe+frZSrsy eq2fcgcXOmH2WuGqgawMwb+EsyqXoZiAsQv3LOjUM+pSNXTVUSvMuGBmbeQBmmCo S62ZNvvNlO0zdFOGvLN0f8j58CAZPDuR6pWUT/K/9NuSljW9z+npAY9i7m48hhVq S8JiHjT9Lhx5j01WAT1JnYbEcdbmAeJ2Thxq8KAeUvjPoM0jzZesQl78gUTJXJbx YMYbgp1yCm2ZPJp1w/KHrnEKnyLWei3lG1hcoQ== -----END CERTIFICATE-----Generated at Tue May 5 13:28:24 2026 by rpki-client