$ rpki-client -vvf rpki-rsync.idnic.net/repo/3e19abc8-8507-41ed-8289-7e3ac7b24935/0/3130332e33392e37342e302f32332d3234203d3e20313530323732.roa File: 3130332e33392e37342e302f32332d3234203d3e20313530323732.roa (raw, json) Hash identifier: BnM/pd6T0nNd5d7QI+jI59NRWk0b0EsbuiWKkA+Hh+0= Subject key identifier: 94:3A:7D:D4:F1:E9:46:C2:DA:86:0A:5B:13:78:87:B8:EC:85:58:37 Certificate issuer: /CN=EF44D1A95206A20CB3AB52607DC981EEC1AA8744 Certificate serial: 300DDDEFF8BCE38E009AA567E6AF68A2D9B5771B Authority key identifier: EF:44:D1:A9:52:06:A2:0C:B3:AB:52:60:7D:C9:81:EE:C1:AA:87:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF44D1A95206A20CB3AB52607DC981EEC1AA8744.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3e19abc8-8507-41ed-8289-7e3ac7b24935/0/3130332e33392e37342e302f32332d3234203d3e20313530323732.roa Signing time: Sun 03 May 2026 02:28:22 +0000 ROA not before: Sun 03 May 2026 02:23:22 +0000 ROA not after: Sun 02 May 2027 02:28:22 +0000 asID: 150272 IP address blocks: 103.39.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3e19abc8-8507-41ed-8289-7e3ac7b24935/0/EF44D1A95206A20CB3AB52607DC981EEC1AA8744.crl rsync://rpki-rsync.idnic.net/repo/3e19abc8-8507-41ed-8289-7e3ac7b24935/0/EF44D1A95206A20CB3AB52607DC981EEC1AA8744.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF44D1A95206A20CB3AB52607DC981EEC1AA8744.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:0d:dd:ef:f8:bc:e3:8e:00:9a:a5:67:e6:af:68:a2:d9:b5:77:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EF44D1A95206A20CB3AB52607DC981EEC1AA8744 Validity Not Before: May 3 02:23:22 2026 GMT Not After : May 2 02:28:22 2027 GMT Subject: CN=943A7DD4F1E946C2DA860A5B137887B8EC855837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:a7:96:43:29:45:40:12:9c:74:e1:e4:e4:7c: 91:dd:57:ee:d9:f2:2f:d8:b7:59:8e:0a:d8:32:5e: 0f:7e:16:61:b8:f6:93:03:7e:32:43:ec:c4:e5:de: 02:a5:c6:2f:f3:4e:95:9d:6e:79:66:30:74:75:40: d9:9e:fc:90:63:47:27:9b:32:1c:2f:ac:d2:d1:84: f6:b4:06:37:17:1c:b2:53:cf:f6:11:34:1d:52:06: 9a:c2:0e:a1:b5:51:22:71:f7:ed:2c:d6:58:f9:bb: 58:c3:30:58:d2:67:ef:0e:d6:de:46:6c:60:ce:99: 72:4c:5e:7d:fe:ec:48:89:47:ea:87:c5:ec:17:61: 78:62:5c:29:5f:08:71:46:c6:32:5f:06:a6:09:60: 12:a4:89:11:48:e7:cd:b0:2c:90:5a:5f:00:18:68: b9:a4:b6:c7:45:9c:44:a0:e7:05:31:09:f8:69:21: 4e:c1:ec:6a:9a:40:fe:72:75:83:27:f9:a7:95:bf: 62:20:f5:cc:bb:8c:b2:fa:ee:98:b4:56:6a:1b:bf: 63:d5:91:08:db:89:60:3c:b1:cc:d5:ec:bd:1c:96: af:64:51:08:2e:46:04:e1:00:3c:b5:b8:89:37:99: d8:aa:f2:2c:fa:cf:ef:7b:2f:1e:ff:ca:f9:90:07: e3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3A:7D:D4:F1:E9:46:C2:DA:86:0A:5B:13:78:87:B8:EC:85:58:37 X509v3 Authority Key Identifier: keyid:EF:44:D1:A9:52:06:A2:0C:B3:AB:52:60:7D:C9:81:EE:C1:AA:87:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3e19abc8-8507-41ed-8289-7e3ac7b24935/0/EF44D1A95206A20CB3AB52607DC981EEC1AA8744.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF44D1A95206A20CB3AB52607DC981EEC1AA8744.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3e19abc8-8507-41ed-8289-7e3ac7b24935/0/3130332e33392e37342e302f32332d3234203d3e20313530323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.74.0/23 Signature Algorithm: sha256WithRSAEncryption ce:86:3e:9f:70:7d:03:58:54:d7:1e:0f:d1:6b:a1:1d:be:20: b5:8d:c5:6c:4a:31:f1:e9:32:66:16:44:bd:9b:eb:f7:8e:c9: 53:ae:b5:89:20:fe:63:39:ef:9f:82:b1:a0:bd:05:9b:f2:00: 38:5b:ae:de:de:3c:51:bd:17:cf:54:2f:7a:6f:e5:39:7f:43: 12:38:0e:7b:7c:44:c4:ee:65:c0:e8:c8:d6:c0:c8:4f:54:6e: 8f:b0:2e:88:17:e7:cf:32:a4:d1:b6:15:c6:79:7d:0c:e0:e4: f7:aa:f1:7b:5a:3b:49:c2:5d:c9:52:5c:42:70:7f:be:92:4d: 2d:6e:31:8c:c4:a8:bd:f6:67:c2:4f:9c:af:13:f5:df:2b:a7: 9c:13:6b:16:76:7b:f1:bd:f0:98:cf:39:4d:f4:ad:2d:98:dc: 9b:51:7d:eb:2c:b3:b1:2c:cd:cd:a2:60:0a:3e:e7:c8:6c:0e: b8:90:73:6b:57:7d:11:3d:58:4e:aa:04:ab:22:7c:df:b3:8d: 05:da:b7:93:3a:e6:8e:e1:75:06:da:f1:13:bb:50:b3:b4:13: fe:58:88:96:6e:b5:75:55:d4:98:3c:a8:c8:9f:94:2f:47:04: 42:2d:15:42:24:b9:fa:ff:22:91:64:60:72:de:ab:c0:a7:7d: bc:fa:1d:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMA3d7/i8444AmqVn5q9ootm1dxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUY0NEQxQTk1MjA2QTIwQ0IzQUI1MjYwN0RDOTgxRUVD MUFBODc0NDAeFw0yNjA1MDMwMjIzMjJaFw0yNzA1MDIwMjI4MjJaMDMxMTAvBgNV BAMTKDk0M0E3REQ0RjFFOTQ2QzJEQTg2MEE1QjEzNzg4N0I4RUM4NTU4MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIp5ZDKUVAEpx04eTkfJHdV+7Z 8i/Yt1mOCtgyXg9+FmG49pMDfjJD7MTl3gKlxi/zTpWdbnlmMHR1QNme/JBjRyeb MhwvrNLRhPa0BjcXHLJTz/YRNB1SBprCDqG1USJx9+0s1lj5u1jDMFjSZ+8O1t5G bGDOmXJMXn3+7EiJR+qHxewXYXhiXClfCHFGxjJfBqYJYBKkiRFI582wLJBaXwAY aLmktsdFnESg5wUxCfhpIU7B7GqaQP5ydYMn+aeVv2Ig9cy7jLL67pi0Vmobv2PV kQjbiWA8sczV7L0clq9kUQguRgThADy1uIk3mdiq8iz6z+97Lx7/yvmQB+ONAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlDp91PHpRsLahgpbE3iHuOyFWDcwHwYDVR0j BBgwFoAU70TRqVIGogyzq1JgfcmB7sGqh0QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2UxOWFiYzgtODUwNy00MWVkLTgyODktN2UzYWM3YjI0OTM1LzAvRUY0NEQxQTk1 MjA2QTIwQ0IzQUI1MjYwN0RDOTgxRUVDMUFBODc0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRjQ0RDFBOTUyMDZBMjBDQjNBQjUyNjA3REM5ODFFRUMxQUE4 NzQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNlMTlhYmM4LTg1MDctNDFlZC04 Mjg5LTdlM2FjN2IyNDkzNS8wLzMxMzAzMzJlMzMzOTJlMzczNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcnSjANBgkqhkiG 9w0BAQsFAAOCAQEAzoY+n3B9A1hU1x4P0WuhHb4gtY3FbEox8ekyZhZEvZvr947J U661iSD+Yznvn4KxoL0Fm/IAOFuu3t48Ub0Xz1Qvem/lOX9DEjgOe3xExO5lwOjI 1sDIT1Ruj7AuiBfnzzKk0bYVxnl9DODk96rxe1o7ScJdyVJcQnB/vpJNLW4xjMSo vfZnwk+crxP13yunnBNrFnZ78b3wmM85TfStLZjcm1F96yyzsSzNzaJgCj7nyGwO uJBza1d9ET1YTqoEqyJ837ONBdq3kzrmjuF1BtrxE7tQs7QT/liIlm61dVXUmDyo yJ+UL0cEQi0VQiS5+v8ikWRgct6rwKd9vPodNw== -----END CERTIFICATE-----Generated at Tue May 5 09:59:51 2026 by rpki-client