$ rpki-client -vvf rpki-rsync.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/3130332e3138372e3131322e302f32332d3234203d3e20313439373230.roa File: 3130332e3138372e3131322e302f32332d3234203d3e20313439373230.roa (raw, json) Hash identifier: XKdnxw/xojNzwS4ZrpciIaEdrs5hQa/CJQz9/Iivznw= Subject key identifier: ED:2D:AA:42:51:B8:BC:A8:75:D7:2E:CC:33:2D:D4:DE:D5:32:92:65 Certificate issuer: /CN=FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F Certificate serial: 6FD1F2DD4889AF2B71B95AA1C6AED7CF487620E0 Authority key identifier: FA:71:B0:5D:8F:31:2A:8D:F7:AB:D8:79:96:CB:5D:1A:3C:FF:83:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/3130332e3138372e3131322e302f32332d3234203d3e20313439373230.roa Signing time: Sun 03 May 2026 02:43:36 +0000 ROA not before: Sun 03 May 2026 02:38:36 +0000 ROA not after: Sun 02 May 2027 02:43:36 +0000 asID: 149720 IP address blocks: 103.187.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F.crl rsync://rpki-rsync.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:d1:f2:dd:48:89:af:2b:71:b9:5a:a1:c6:ae:d7:cf:48:76:20:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F Validity Not Before: May 3 02:38:36 2026 GMT Not After : May 2 02:43:36 2027 GMT Subject: CN=ED2DAA4251B8BCA875D72ECC332DD4DED5329265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:62:e8:55:1a:fe:36:1a:b2:16:7d:9e:af:2d: 2e:1f:0a:1e:30:9b:31:34:62:2e:1d:3c:65:b9:48: 98:ac:8a:b9:9d:32:4a:0a:8f:9c:65:e7:0c:7d:a9: 4d:8b:9a:74:85:bf:92:39:5c:d9:a6:44:98:4f:29: f6:fc:b3:a5:f7:6a:41:d8:00:94:af:1c:02:23:02: 4e:15:bb:39:f7:a1:31:90:58:b2:d1:3f:e9:6c:c1: 65:ca:f9:c6:28:bf:8a:6b:24:3f:8e:d1:f9:a7:ff: 12:47:0b:2b:6e:c7:2b:b4:9a:59:2e:c3:d8:84:b2: d3:20:72:e2:f9:3d:03:fb:3c:6e:36:69:43:dc:86: ac:c9:13:70:6e:66:dd:fc:da:6b:2d:06:a8:b1:1b: 98:fa:bb:99:bc:40:d1:7b:73:20:75:29:b7:08:94: a7:b3:67:81:ab:d5:70:f2:b5:c5:50:38:98:9e:cf: 1f:83:7b:f5:70:8c:6e:a5:b5:14:dd:fe:a0:a5:9d: 52:27:9c:c2:7b:e1:c9:fe:1f:84:54:31:7b:12:ed: 70:b9:b7:c1:f4:6c:f5:41:ca:e5:2e:53:a4:e2:af: 6d:aa:5d:71:8e:0f:6a:56:59:06:77:eb:0e:85:b7: 5d:70:3e:6f:7a:22:de:5a:05:37:e3:08:f9:2f:82: 0c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2D:AA:42:51:B8:BC:A8:75:D7:2E:CC:33:2D:D4:DE:D5:32:92:65 X509v3 Authority Key Identifier: keyid:FA:71:B0:5D:8F:31:2A:8D:F7:AB:D8:79:96:CB:5D:1A:3C:FF:83:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FA71B05D8F312A8DF7ABD87996CB5D1A3CFF839F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/3130332e3138372e3131322e302f32332d3234203d3e20313439373230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.112.0/23 Signature Algorithm: sha256WithRSAEncryption 73:02:87:3a:7a:9b:b9:98:a4:4c:e3:e9:5c:73:3b:dd:d8:77: 0a:cf:a7:01:8f:fb:1b:72:4a:43:3d:c8:6e:a6:27:d7:c9:11: 23:87:21:e0:d2:de:26:6c:42:24:1f:44:0e:19:e4:54:c7:78: 74:74:b4:3e:db:f9:8e:cb:4a:e3:27:05:90:54:38:84:a1:f9: 39:7a:07:dd:4a:7e:6c:23:92:a4:b8:27:72:ac:8e:32:27:60: 91:90:61:ee:0a:da:f2:d0:6c:c3:21:68:af:62:d9:04:da:20: 78:c5:65:48:9d:f3:d3:fd:12:21:f2:16:f7:be:b7:74:e6:72: 00:46:b2:74:03:51:68:cb:3e:e5:a1:86:2c:25:79:eb:6d:fb: ad:ef:70:17:04:90:42:96:fc:2e:83:90:fc:80:3b:b4:60:a6: 3c:80:74:f3:7b:03:b3:94:a2:96:b9:3e:60:c3:b6:e8:6f:c9: ff:8c:7f:ea:35:e8:98:13:08:89:96:ac:e1:dc:89:06:29:e5: ab:f0:79:96:f8:7e:ad:9e:ab:f6:d4:f5:25:f8:a9:5d:92:1e: 92:41:4a:49:08:05:ed:4d:b1:53:5a:18:54:ba:4b:98:93:6b: f9:d1:c4:45:9f:f6:56:c0:05:87:96:ab:52:06:27:42:8b:ac: 39:36:e7:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb9Hy3UiJrytxuVqhxq7Xz0h2IOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE3MUIwNUQ4RjMxMkE4REY3QUJEODc5OTZDQjVEMUEz Q0ZGODM5RjAeFw0yNjA1MDMwMjM4MzZaFw0yNzA1MDIwMjQzMzZaMDMxMTAvBgNV BAMTKEVEMkRBQTQyNTFCOEJDQTg3NUQ3MkVDQzMzMkRENERFRDUzMjkyNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6YuhVGv42GrIWfZ6vLS4fCh4w mzE0Yi4dPGW5SJisirmdMkoKj5xl5wx9qU2LmnSFv5I5XNmmRJhPKfb8s6X3akHY AJSvHAIjAk4Vuzn3oTGQWLLRP+lswWXK+cYov4prJD+O0fmn/xJHCytuxyu0mlku w9iEstMgcuL5PQP7PG42aUPchqzJE3BuZt382mstBqixG5j6u5m8QNF7cyB1KbcI lKezZ4Gr1XDytcVQOJiezx+De/VwjG6ltRTd/qClnVInnMJ74cn+H4RUMXsS7XC5 t8H0bPVByuUuU6Tir22qXXGOD2pWWQZ36w6Ft11wPm96It5aBTfjCPkvggxnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7S2qQlG4vKh11y7MMy3U3tUykmUwHwYDVR0j BBgwFoAU+nGwXY8xKo33q9h5lstdGjz/g58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzU4ZGI4N2ItMTZjZC00MzdhLWE1YjUtMDhjYjM1ZGE5N2YwLzAvRkE3MUIwNUQ4 RjMxMkE4REY3QUJEODc5OTZDQjVEMUEzQ0ZGODM5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQTcxQjA1RDhGMzEyQThERjdBQkQ4Nzk5NkNCNUQxQTNDRkY4 MzlGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc1OGRiODdiLTE2Y2QtNDM3YS1h NWI1LTA4Y2IzNWRhOTdmMC8wLzMxMzAzMzJlMzEzODM3MmUzMTMxMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnu3AwDQYJ KoZIhvcNAQELBQADggEBAHMChzp6m7mYpEzj6VxzO93YdwrPpwGP+xtySkM9yG6m J9fJESOHIeDS3iZsQiQfRA4Z5FTHeHR0tD7b+Y7LSuMnBZBUOISh+Tl6B91Kfmwj kqS4J3KsjjInYJGQYe4K2vLQbMMhaK9i2QTaIHjFZUid89P9EiHyFve+t3TmcgBG snQDUWjLPuWhhiwleett+63vcBcEkEKW/C6DkPyAO7RgpjyAdPN7A7OUopa5PmDD tuhvyf+Mf+o16JgTCImWrOHciQYp5avweZb4fq2eq/bU9SX4qV2SHpJBSkkIBe1N sVNaGFS6S5iTa/nRxEWf9lbABYeWq1IGJ0KLrDk251c= -----END CERTIFICATE-----Generated at Tue May 5 16:49:32 2026 by rpki-client