$ rpki-client -vvf rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa File: 3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa (raw, json) Hash identifier: aC4RLZpJ1CIL1Btz47Fr7aIh879KOm3isCxWG9+kLpI= Subject key identifier: 1C:62:3A:30:E0:9C:BA:31:87:B1:FB:67:0A:C0:29:E9:AC:2E:92:6B Certificate issuer: /CN=0446D571B5FD57D22786B0872C74829904EAAB9F Certificate serial: 0B74CAC4D016CB0DF634B5AE43BB9358BF71FDE5 Authority key identifier: 04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa Signing time: Sun 03 May 2026 02:17:25 +0000 ROA not before: Sun 03 May 2026 02:12:25 +0000 ROA not after: Sun 02 May 2027 02:17:25 +0000 asID: 138074 IP address blocks: 103.123.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:74:ca:c4:d0:16:cb:0d:f6:34:b5:ae:43:bb:93:58:bf:71:fd:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0446D571B5FD57D22786B0872C74829904EAAB9F Validity Not Before: May 3 02:12:25 2026 GMT Not After : May 2 02:17:25 2027 GMT Subject: CN=1C623A30E09CBA3187B1FB670AC029E9AC2E926B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4a:4a:c8:01:17:40:4c:f5:d4:fa:71:99:55: 0d:3f:47:92:0e:2e:3f:b8:56:45:54:88:6b:df:9d: 30:6d:16:28:be:6a:6e:05:59:ce:81:3a:a0:63:14: d1:55:38:73:39:a4:f2:ba:2b:ef:34:69:a0:d9:e9: e7:9d:79:03:c2:34:e4:30:0b:7e:50:fe:10:7b:2e: 62:52:ab:42:b8:33:16:07:30:df:34:b6:23:be:39: ea:bf:f0:43:3e:ee:c4:45:1b:47:8a:3c:09:ef:69: 85:8f:29:f9:45:35:c3:15:9d:51:70:38:e8:15:cf: a1:ce:e3:c4:56:da:9c:10:ec:5f:9e:fa:3e:c9:9a: b8:a0:a8:49:47:5c:45:39:61:5f:fc:14:11:c0:7f: 46:7b:06:02:15:00:7a:67:61:9f:5a:cb:a2:a3:cf: bc:29:9b:50:96:df:6a:01:34:ec:81:29:4a:d9:08: 93:f6:f2:c7:25:68:bb:da:f7:0f:5d:4a:89:88:44: a7:e5:0d:d4:ec:3a:fe:05:fa:1b:7c:62:39:69:fe: 7f:b4:5e:c6:18:01:fe:b2:5b:4d:10:26:70:f7:9a: 33:91:bf:68:6d:0d:e3:ab:a4:f7:94:99:d6:dc:56: a6:37:24:3c:8a:c7:ce:b4:d3:a9:3f:44:48:f9:67: 03:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:62:3A:30:E0:9C:BA:31:87:B1:FB:67:0A:C0:29:E9:AC:2E:92:6B X509v3 Authority Key Identifier: keyid:04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.96.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:fb:8b:15:92:b1:56:fb:80:53:49:0f:87:e8:25:9a:5a:e4: 66:09:24:4d:11:28:5f:14:7e:b2:28:79:bd:8b:50:a3:73:c9: 0b:34:d2:89:93:9b:ac:8f:e5:5e:d5:13:6b:7c:bd:d6:5c:2a: 4f:54:59:14:6b:67:d6:99:89:1b:b7:12:25:14:d6:65:ee:3b: 44:2c:43:11:6d:42:57:68:73:95:3e:1a:f1:6d:3a:37:f9:68: 49:d1:fb:b1:62:3a:af:84:0e:d4:83:d8:0f:c9:f5:ae:de:0a: 1c:ef:8e:1f:43:96:04:3b:d2:bd:a4:07:c3:a5:f5:aa:4f:2c: 44:57:15:d8:74:37:3a:7d:37:96:6c:29:2c:41:bd:d2:96:bb: e0:09:03:4e:e4:5e:4d:9b:d1:0d:94:9d:dc:5d:ab:15:40:d8: 41:5c:ae:46:e4:0a:84:21:4e:16:93:11:37:c4:0e:12:b2:99: 10:7c:72:2b:4a:b3:0c:92:ad:1b:8a:a9:c4:f0:87:49:06:bc: 6e:b7:0f:c1:f9:f1:17:5b:68:d3:6a:a9:89:5f:08:94:1b:a2: 15:19:33:80:11:a9:df:e3:ca:d8:b5:85:cf:6c:15:4d:20:23: 65:9d:90:57:d3:3a:8d:c0:e5:cf:1e:ad:8c:7b:aa:a1:55:a9: 76:53:66:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC3TKxNAWyw32NLWuQ7uTWL9x/eUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ0NkQ1NzFCNUZENTdEMjI3ODZCMDg3MkM3NDgyOTkw NEVBQUI5RjAeFw0yNjA1MDMwMjEyMjVaFw0yNzA1MDIwMjE3MjVaMDMxMTAvBgNV BAMTKDFDNjIzQTMwRTA5Q0JBMzE4N0IxRkI2NzBBQzAyOUU5QUMyRTkyNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBSkrIARdATPXU+nGZVQ0/R5IO Lj+4VkVUiGvfnTBtFii+am4FWc6BOqBjFNFVOHM5pPK6K+80aaDZ6eedeQPCNOQw C35Q/hB7LmJSq0K4MxYHMN80tiO+Oeq/8EM+7sRFG0eKPAnvaYWPKflFNcMVnVFw OOgVz6HO48RW2pwQ7F+e+j7JmrigqElHXEU5YV/8FBHAf0Z7BgIVAHpnYZ9ay6Kj z7wpm1CW32oBNOyBKUrZCJP28sclaLva9w9dSomIRKflDdTsOv4F+ht8Yjlp/n+0 XsYYAf6yW00QJnD3mjORv2htDeOrpPeUmdbcVqY3JDyKx86006k/REj5ZwNfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHGI6MOCcujGHsftnCsAp6awukmswHwYDVR0j BBgwFoAUBEbVcbX9V9InhrCHLHSCmQTqq58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWMyODk3MDYtYTRmNC00ZTFmLTlhNmUtMDFjOWM1M2NkOGY5LzAvMDQ0NkQ1NzFC NUZENTdEMjI3ODZCMDg3MkM3NDgyOTkwNEVBQUI5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNDQ2RDU3MUI1RkQ1N0QyMjc4NkIwODcyQzc0ODI5OTA0RUFB QjlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMxMzAzMzJlMzEzMjMzMmUzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3tgMA0GCSqG SIb3DQEBCwUAA4IBAQCb+4sVkrFW+4BTSQ+H6CWaWuRmCSRNEShfFH6yKHm9i1Cj c8kLNNKJk5usj+Ve1RNrfL3WXCpPVFkUa2fWmYkbtxIlFNZl7jtELEMRbUJXaHOV PhrxbTo3+WhJ0fuxYjqvhA7Ug9gPyfWu3goc744fQ5YEO9K9pAfDpfWqTyxEVxXY dDc6fTeWbCksQb3SlrvgCQNO5F5Nm9ENlJ3cXasVQNhBXK5G5AqEIU4WkxE3xA4S spkQfHIrSrMMkq0biqnE8IdJBrxutw/B+fEXW2jTaqmJXwiUG6IVGTOAEanf48rY tYXPbBVNICNlnZBX0zqNwOXPHq2Me6qhVal2U2Zq -----END CERTIFICATE-----Generated at Wed May 6 03:28:50 2026 by rpki-client