$ rpki-client -vvf rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa File: 3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa (raw, json) Hash identifier: mha8gB43Q52dsFp/n7sRBfxP/9miPkjrCifPwwjXt6U= Subject key identifier: 21:66:CE:7E:2B:CC:26:5E:31:D5:E1:CF:5C:54:79:F3:55:B1:21:71 Certificate issuer: /CN=252837CA144B3EE7DB243EBCB0C10F818A4EE404 Certificate serial: 3203752BCD9B583B51028C712FEB8D7E7450865E Authority key identifier: 25:28:37:CA:14:4B:3E:E7:DB:24:3E:BC:B0:C1:0F:81:8A:4E:E4:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa Signing time: Sun 03 May 2026 02:16:14 +0000 ROA not before: Sun 03 May 2026 02:11:14 +0000 ROA not after: Sun 02 May 2027 02:16:14 +0000 asID: 56243 IP address blocks: 103.246.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.crl rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 09:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:03:75:2b:cd:9b:58:3b:51:02:8c:71:2f:eb:8d:7e:74:50:86:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=252837CA144B3EE7DB243EBCB0C10F818A4EE404 Validity Not Before: May 3 02:11:14 2026 GMT Not After : May 2 02:16:14 2027 GMT Subject: CN=2166CE7E2BCC265E31D5E1CF5C5479F355B12171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ec:05:cc:d4:8d:88:70:2e:44:5d:09:09:be: f5:9c:6c:9e:d1:dd:18:72:76:ff:78:46:a0:80:34: bc:cf:5d:4e:14:ee:57:9f:07:04:d7:35:42:6f:85: 42:09:14:41:aa:66:7d:06:f8:f7:06:f4:d5:17:19: 9c:d9:0f:e8:ac:60:3a:f9:6e:9d:ac:fc:95:4c:c7: d5:e5:44:27:a0:20:a4:6e:9e:9d:86:8b:d7:31:6b: 4e:8d:1d:48:2a:4d:b5:87:8e:59:84:15:6c:dc:02: e3:c0:5f:ff:fa:39:26:22:16:a9:b0:4e:81:c6:e0: 1f:21:fb:c6:db:99:cb:2d:d2:95:02:20:78:0a:27: ed:d1:26:43:9e:7d:14:ca:76:d8:fe:46:90:a5:d1: 4e:10:8d:9b:4a:3f:37:8d:54:ca:66:a3:4e:18:c4: 54:1a:08:a3:49:bd:bf:32:dd:c6:42:22:20:d1:9e: 2a:0d:83:92:4c:d2:e1:55:fa:37:16:68:b4:d1:fe: b3:48:e6:71:d7:78:5d:e9:ab:0d:b5:38:a4:67:17: b2:2d:eb:06:4c:10:6f:50:7b:09:3e:a8:53:8a:81: f0:2f:e2:85:31:2c:6b:d3:5d:d0:3a:93:f3:a0:69: c5:0a:8c:87:bc:c6:1b:c3:79:07:24:5a:57:af:5e: 34:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:66:CE:7E:2B:CC:26:5E:31:D5:E1:CF:5C:54:79:F3:55:B1:21:71 X509v3 Authority Key Identifier: keyid:25:28:37:CA:14:4B:3E:E7:DB:24:3E:BC:B0:C1:0F:81:8A:4E:E4:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.118.0/24 Signature Algorithm: sha256WithRSAEncryption 06:9a:5d:f9:00:c6:b5:1f:9d:b5:88:15:78:2b:2b:ae:3e:e5: ec:74:c2:aa:a6:cd:e0:74:b3:40:37:8a:0d:2b:e6:6a:84:f1: 39:b8:eb:f7:d1:46:d4:15:18:dc:08:43:e9:4a:b4:44:d3:2d: 6c:63:69:8a:bb:0d:fb:61:ef:59:02:35:d5:65:cc:88:b2:b6: 37:15:20:c4:9d:ae:77:04:86:f0:41:11:5b:cb:ab:38:a7:b5: 0e:04:c6:2c:6d:e3:59:9c:d3:27:6e:1b:b0:fe:d7:4e:43:77: c5:ad:a0:f3:cd:5c:cd:e3:a2:0a:46:53:e6:de:f4:42:73:5a: aa:8d:ce:69:46:0b:1a:84:94:6b:44:1d:22:08:fe:4a:c0:15: f5:80:2f:aa:d3:2b:e5:92:54:a7:a1:e4:08:0c:24:72:4d:33: 90:48:75:51:d5:08:e3:d1:f0:c5:a4:d4:7b:92:b9:82:f8:e9: c9:49:df:51:83:51:c0:13:df:72:3c:5d:e7:98:04:fd:b5:f0: bc:00:5e:9f:41:32:10:57:79:b8:98:7b:25:dd:fb:b8:b5:1a: 40:af:77:f5:47:a8:6e:1e:c8:53:c8:6e:d6:2f:84:8f:f6:05: 65:1f:34:79:d3:38:a7:b4:6d:e1:32:af:cd:29:ed:77:8e:09: a6:b3:1d:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMgN1K82bWDtRAoxxL+uNfnRQhl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUyODM3Q0ExNDRCM0VFN0RCMjQzRUJDQjBDMTBGODE4 QTRFRTQwNDAeFw0yNjA1MDMwMjExMTRaFw0yNzA1MDIwMjE2MTRaMDMxMTAvBgNV BAMTKDIxNjZDRTdFMkJDQzI2NUUzMUQ1RTFDRjVDNTQ3OUYzNTVCMTIxNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT7AXM1I2IcC5EXQkJvvWcbJ7R 3Rhydv94RqCANLzPXU4U7lefBwTXNUJvhUIJFEGqZn0G+PcG9NUXGZzZD+isYDr5 bp2s/JVMx9XlRCegIKRunp2Gi9cxa06NHUgqTbWHjlmEFWzcAuPAX//6OSYiFqmw ToHG4B8h+8bbmcst0pUCIHgKJ+3RJkOefRTKdtj+RpCl0U4QjZtKPzeNVMpmo04Y xFQaCKNJvb8y3cZCIiDRnioNg5JM0uFV+jcWaLTR/rNI5nHXeF3pqw21OKRnF7It 6wZMEG9Qewk+qFOKgfAv4oUxLGvTXdA6k/OgacUKjIe8xhvDeQckWlevXjQZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIWbOfivMJl4x1eHPXFR581WxIXEwHwYDVR0j BBgwFoAUJSg3yhRLPufbJD68sMEPgYpO5AQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg2YjM4ODktNjk2Ni00NWVmLTkwNzMtYWQxNDAxMWFjM2IyLzAvMjUyODM3Q0Ex NDRCM0VFN0RCMjQzRUJDQjBDMTBGODE4QTRFRTQwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNTI4MzdDQTE0NEIzRUU3REIyNDNFQkNCMEMxMEY4MThBNEVF NDA0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMxMzAzMzJlMzIzNDM2MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM2MzIzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/Z2MA0GCSqG SIb3DQEBCwUAA4IBAQAGml35AMa1H521iBV4KyuuPuXsdMKqps3gdLNAN4oNK+Zq hPE5uOv30UbUFRjcCEPpSrRE0y1sY2mKuw37Ye9ZAjXVZcyIsrY3FSDEna53BIbw QRFby6s4p7UOBMYsbeNZnNMnbhuw/tdOQ3fFraDzzVzN46IKRlPm3vRCc1qqjc5p RgsahJRrRB0iCP5KwBX1gC+q0yvlklSnoeQIDCRyTTOQSHVR1Qjj0fDFpNR7krmC +OnJSd9Rg1HAE99yPF3nmAT9tfC8AF6fQTIQV3m4mHsl3fu4tRpAr3f1R6huHshT yG7WL4SP9gVlHzR50zintG3hMq/NKe13jgmmsx31 -----END CERTIFICATE-----Generated at Fri May 8 01:28:07 2026 by rpki-client