$ rpki-client -vvf rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39302e302f32332d3234203d3e203538333831.roa File: 3130332e32302e39302e302f32332d3234203d3e203538333831.roa (raw, json) Hash identifier: t0sQe3wy1nx7fCaoG1vw4eb+2MVxEa2LAolsSj9bAGg= Subject key identifier: 7F:81:A2:FD:D5:EA:91:DE:93:B9:93:AC:90:91:EC:90:72:BE:03:A9 Certificate issuer: /CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Certificate serial: 283D4213C1F863ACD8D2BE6DCB62FDB97957F834 Authority key identifier: 0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39302e302f32332d3234203d3e203538333831.roa Signing time: Sun 03 May 2026 02:24:44 +0000 ROA not before: Sun 03 May 2026 02:19:44 +0000 ROA not after: Sun 02 May 2027 02:24:44 +0000 asID: 58381 IP address blocks: 103.20.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:3d:42:13:c1:f8:63:ac:d8:d2:be:6d:cb:62:fd:b9:79:57:f8:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Validity Not Before: May 3 02:19:44 2026 GMT Not After : May 2 02:24:44 2027 GMT Subject: CN=7F81A2FDD5EA91DE93B993AC9091EC9072BE03A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9e:55:5c:dc:92:9b:95:cb:57:9f:c3:3f:c0: d4:48:b4:c2:43:85:57:8c:06:23:ec:33:ad:bb:dc: c3:4f:99:4f:5b:94:72:31:26:00:1e:73:d7:54:77: 8f:d7:24:e3:3a:be:a0:87:48:7f:4a:3d:04:19:1d: 97:e9:9b:33:52:0d:c8:86:3b:d2:9b:24:d1:be:aa: 7a:04:c5:e3:3d:12:21:96:04:66:43:e2:64:71:b4: f4:e8:d4:e6:b4:06:e8:55:b6:d6:2d:48:03:15:59: 66:07:9f:18:2a:98:89:75:12:ef:8b:a9:ea:6f:57: 95:52:c9:fb:78:c9:76:b4:e9:4a:27:f9:9a:b6:b5: 6e:e8:51:1b:80:d3:9a:3b:f3:4c:5a:1e:42:b3:43: cc:16:78:65:13:f9:37:07:79:3c:38:23:37:12:db: 3b:6a:2e:87:71:8c:c7:5f:10:64:d6:56:c7:01:1c: 08:48:1d:77:ab:b2:b1:d8:73:1d:cd:57:ea:47:2d: 9d:ce:e0:b0:89:8f:1a:24:e6:b4:38:8b:51:b7:08: 92:1c:a4:99:cb:00:6c:ba:e7:d4:1a:40:b3:42:96: 3a:e1:d1:e1:0e:7b:ba:a1:94:d7:c6:aa:78:6e:c9: 1c:4e:03:4e:83:57:b3:b6:70:71:9c:5f:3b:a1:37: e0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:81:A2:FD:D5:EA:91:DE:93:B9:93:AC:90:91:EC:90:72:BE:03:A9 X509v3 Authority Key Identifier: keyid:0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39302e302f32332d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.90.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:92:70:88:c8:0d:cf:c3:c1:eb:a1:b8:54:49:21:ac:35:2d: 16:ef:7e:b7:75:8c:68:0a:7a:7f:d3:f2:83:b1:a9:e5:81:4b: 18:f6:3d:c8:20:d9:08:7c:88:63:93:e6:ef:83:2d:ac:e3:0d: 72:43:d7:b7:9a:70:49:fc:45:35:19:9d:98:e7:a5:0a:d7:91: 1c:4b:76:fc:76:09:24:c0:47:e9:5e:e5:2a:ef:00:a7:e6:26: 6f:23:35:ab:d0:a9:e2:0a:4b:68:19:3f:fc:48:ef:6a:67:13: 39:fd:8e:fc:4d:6f:0e:9f:24:94:5f:29:39:32:00:7d:32:58: 1a:19:23:f6:b5:f7:5f:22:cb:eb:8b:fd:50:cd:a8:c5:80:5c: 79:7c:1f:71:7a:5c:a4:5d:42:78:82:17:7d:3a:4d:26:84:7d: 95:e0:77:bd:20:a0:8d:3e:18:66:88:a9:1f:44:c2:1c:04:dd: 09:d0:b8:8b:2e:94:8e:9c:90:7e:a4:35:1a:fe:dd:dc:08:34: e1:c2:a3:22:48:f7:86:30:58:d6:72:38:5b:46:cc:03:12:b9: f0:8e:3a:86:ed:84:bd:0f:f3:46:72:56:6e:ba:49:86:0b:f5: b7:86:3d:3f:4d:fe:f4:57:16:21:61:48:97:c9:dd:00:d8:17: c8:58:7e:4f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKD1CE8H4Y6zY0r5ty2L9uXlX+DQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZCNDI0QjIwRDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJC REE5OUNCMDAeFw0yNjA1MDMwMjE5NDRaFw0yNzA1MDIwMjI0NDRaMDMxMTAvBgNV BAMTKDdGODFBMkZERDVFQTkxREU5M0I5OTNBQzkwOTFFQzkwNzJCRTAzQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCknlVc3JKblctXn8M/wNRItMJD hVeMBiPsM6273MNPmU9blHIxJgAec9dUd4/XJOM6vqCHSH9KPQQZHZfpmzNSDciG O9KbJNG+qnoExeM9EiGWBGZD4mRxtPTo1Oa0BuhVttYtSAMVWWYHnxgqmIl1Eu+L qepvV5VSyft4yXa06Uon+Zq2tW7oURuA05o780xaHkKzQ8wWeGUT+TcHeTw4IzcS 2ztqLodxjMdfEGTWVscBHAhIHXersrHYcx3NV+pHLZ3O4LCJjxok5rQ4i1G3CJIc pJnLAGy659QaQLNCljrh0eEOe7qhlNfGqnhuyRxOA06DV7O2cHGcXzuhN+BPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUf4Gi/dXqkd6TuZOskJHskHK+A6kwHwYDVR0j BBgwFoAUD7Qksg1qRYDm0yM/zy658r2pnLAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzM4ZDI3NTUtMzgwZC00NzdlLWJmMjUtMGFmMjkwMjZiZDcwLzAvMEZCNDI0QjIw RDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJCREE5OUNCMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRkI0MjRCMjBENkE0NTgwRTZEMzIzM0ZDRjJFQjlGMkJEQTk5 Q0IwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzOGQyNzU1LTM4MGQtNDc3ZS1i ZjI1LTBhZjI5MDI2YmQ3MC8wLzMxMzAzMzJlMzIzMDJlMzkzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnFFowDQYJKoZIhvcN AQELBQADggEBAI2ScIjIDc/DweuhuFRJIaw1LRbvfrd1jGgKen/T8oOxqeWBSxj2 Pcgg2Qh8iGOT5u+DLazjDXJD17eacEn8RTUZnZjnpQrXkRxLdvx2CSTAR+le5Srv AKfmJm8jNavQqeIKS2gZP/xI72pnEzn9jvxNbw6fJJRfKTkyAH0yWBoZI/a1918i y+uL/VDNqMWAXHl8H3F6XKRdQniCF306TSaEfZXgd70goI0+GGaIqR9EwhwE3QnQ uIsulI6ckH6kNRr+3dwINOHCoyJI94YwWNZyOFtGzAMSufCOOobthL0P80ZyVm66 SYYL9beGPT9N/vRXFiFhSJfJ3QDYF8hYfk8= -----END CERTIFICATE-----Generated at Wed May 6 02:05:41 2026 by rpki-client