$ rpki-client -vvf rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32342d3234203d3e2039333431.roa File: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: NyzMvcvP5P8597pti0RlOgOJdexX/ZQfgDt+YCdTIKE= Subject key identifier: 15:F1:E1:AB:53:36:7F:DD:B8:87:14:F2:48:9E:B6:50:EB:88:1E:41 Certificate issuer: /CN=F840F8B6D332E57EA3DCB867DBB0D85427B24040 Certificate serial: 5F04744D699AF93BD60240649DC366281399A2A2 Authority key identifier: F8:40:F8:B6:D3:32:E5:7E:A3:DC:B8:67:DB:B0:D8:54:27:B2:40:40 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F840F8B6D332E57EA3DCB867DBB0D85427B24040.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 03:07:57 +0000 ROA not before: Sun 03 May 2026 03:02:57 +0000 ROA not after: Sun 02 May 2027 03:07:57 +0000 asID: 9341 IP address blocks: 103.36.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.crl rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F840F8B6D332E57EA3DCB867DBB0D85427B24040.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:04:74:4d:69:9a:f9:3b:d6:02:40:64:9d:c3:66:28:13:99:a2:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F840F8B6D332E57EA3DCB867DBB0D85427B24040 Validity Not Before: May 3 03:02:57 2026 GMT Not After : May 2 03:07:57 2027 GMT Subject: CN=15F1E1AB53367FDDB88714F2489EB650EB881E41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2a:48:60:3f:a0:b5:ed:f5:43:e7:c5:ce:b6: f1:7a:f0:7e:45:4a:39:82:12:7e:19:f6:cf:c2:29: c8:5f:b4:4e:89:3d:7c:5f:f6:e3:89:56:cb:8f:10: a9:63:f4:17:16:07:d6:0c:11:d1:ca:12:c0:85:59: 93:8a:19:43:a1:ef:ca:b0:60:a4:42:48:ca:80:fa: 57:b0:4b:d9:74:09:4a:6b:ba:10:28:28:a1:79:d8: 72:f7:2a:df:ab:cd:19:56:85:b7:dc:cf:e6:9a:3a: 76:42:5e:a4:83:c3:db:56:fb:db:c0:02:ba:f8:17: ff:76:45:15:d8:45:e2:35:8d:da:ef:b6:af:f2:23: d6:7c:24:6e:af:93:df:1a:50:a2:15:02:c6:7a:7a: a5:2c:25:6e:45:e4:2f:ac:49:1c:33:9d:e7:19:da: e8:9f:2b:b1:fb:61:b3:29:b7:f0:8b:fe:74:e9:5c: b1:91:66:16:85:52:30:07:53:b0:8e:f5:6f:cc:88: 3b:ca:6b:ad:0b:de:c3:72:70:f7:dd:61:c9:a6:19: 1f:28:f6:97:2c:4f:87:c4:0c:c1:c8:40:fb:ea:df: f8:d9:9a:d8:10:3b:99:8c:ee:b0:2d:1d:45:16:c4: 64:16:fc:ab:d9:cf:72:17:6b:67:76:ce:4d:f9:e0: d4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F1:E1:AB:53:36:7F:DD:B8:87:14:F2:48:9E:B6:50:EB:88:1E:41 X509v3 Authority Key Identifier: keyid:F8:40:F8:B6:D3:32:E5:7E:A3:DC:B8:67:DB:B0:D8:54:27:B2:40:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F840F8B6D332E57EA3DCB867DBB0D85427B24040.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.52.0/24 Signature Algorithm: sha256WithRSAEncryption 32:5a:74:93:56:f6:86:4a:9a:6e:0a:bd:0f:7c:43:c2:97:d5: 43:1f:4c:b0:1d:10:0f:3c:74:7c:ce:07:bc:b6:7b:8c:f1:e7: 9b:06:73:d4:fe:fd:f5:57:be:e4:c8:16:83:e5:14:ff:58:96: 21:e2:07:7f:2b:8a:39:b8:28:f7:af:31:26:7f:71:41:84:5e: df:1b:10:b1:d5:19:3d:7a:c3:08:4a:d8:75:e5:f5:92:1e:ef: 8d:84:6a:a9:14:97:9f:c5:e5:ee:9c:43:59:25:30:cf:30:5d: c8:f1:e8:5f:22:aa:fe:1f:e0:b9:44:65:dd:45:bb:1c:21:a7: 07:25:aa:11:d5:0b:0a:46:69:b1:4e:9f:e9:f8:ed:d2:38:a7: f7:ab:94:78:24:18:a6:3a:c6:97:c6:ac:2d:1a:b1:4f:39:4c: e3:9e:fe:ef:54:78:07:c5:21:51:4b:90:68:0b:0d:5b:21:2c: 41:1d:d6:1e:3e:11:65:12:94:48:fd:59:74:99:17:0f:bd:3d: d9:ff:11:d6:81:1e:a8:e7:43:73:9f:c8:cb:40:1a:24:7f:d9: 5a:cb:ec:9e:8a:e4:4b:5e:cf:41:46:06:53:e0:12:ff:c3:73: 2b:85:0b:80:5f:2e:65:21:79:85:f1:39:e8:d5:85:a5:e9:0e: 7b:44:b4:d2 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUXwR0TWma+TvWAkBkncNmKBOZoqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjg0MEY4QjZEMzMyRTU3RUEzRENCODY3REJCMEQ4NTQy N0IyNDA0MDAeFw0yNjA1MDMwMzAyNTdaFw0yNzA1MDIwMzA3NTdaMDMxMTAvBgNV BAMTKDE1RjFFMUFCNTMzNjdGRERCODg3MTRGMjQ4OUVCNjUwRUI4ODFFNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaKkhgP6C17fVD58XOtvF68H5F SjmCEn4Z9s/CKchftE6JPXxf9uOJVsuPEKlj9BcWB9YMEdHKEsCFWZOKGUOh78qw YKRCSMqA+lewS9l0CUpruhAoKKF52HL3Kt+rzRlWhbfcz+aaOnZCXqSDw9tW+9vA Arr4F/92RRXYReI1jdrvtq/yI9Z8JG6vk98aUKIVAsZ6eqUsJW5F5C+sSRwznecZ 2uifK7H7YbMpt/CL/nTpXLGRZhaFUjAHU7CO9W/MiDvKa60L3sNycPfdYcmmGR8o 9pcsT4fEDMHIQPvq3/jZmtgQO5mM7rAtHUUWxGQW/KvZz3IXa2d2zk354NQDAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUFfHhq1M2f924hxTySJ62UOuIHkEwHwYDVR0j BBgwFoAU+ED4ttMy5X6j3Lhn27DYVCeyQEAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA0M2E4ODktYzg2MS00ZDI5LTlkNzctOTIzZDkyN2U3NjM0LzAvRjg0MEY4QjZE MzMyRTU3RUEzRENCODY3REJCMEQ4NTQyN0IyNDA0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GODQwRjhCNkQzMzJFNTdFQTNEQ0I4NjdEQkIwRDg1NDI3QjI0 MDQwLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvMzEzMDMzMmUzMzM2MmUzNTMyMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnJDQwDQYJKoZIhvcNAQEL BQADggEBADJadJNW9oZKmm4KvQ98Q8KX1UMfTLAdEA88dHzOB7y2e4zx55sGc9T+ /fVXvuTIFoPlFP9YliHiB38rijm4KPevMSZ/cUGEXt8bELHVGT16wwhK2HXl9ZIe 742EaqkUl5/F5e6cQ1klMM8wXcjx6F8iqv4f4LlEZd1FuxwhpwclqhHVCwpGabFO n+n47dI4p/erlHgkGKY6xpfGrC0asU85TOOe/u9UeAfFIVFLkGgLDVshLEEd1h4+ EWUSlEj9WXSZFw+9Pdn/EdaBHqjnQ3OfyMtAGiR/2VrL7J6K5Etez0FGBlPgEv/D cyuFC4BfLmUheYXxOejVhaXpDntEtNI= -----END CERTIFICATE-----Generated at Tue May 5 13:27:37 2026 by rpki-client