$ rpki-client -vvf rpki-rsync.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa File: 3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: Rie1EWmYCW5AS7gherk1HJqeE5vY8I4Pjrh2HLZJQzM= Subject key identifier: D5:0C:AE:ED:73:65:4E:32:33:DB:22:51:20:21:63:01:77:77:61:25 Certificate issuer: /CN=CDAD8AE64850B7306026A1B46FF84D08284104C9 Certificate serial: 10913F020E496F58AC3DC51C9926C91893417419 Authority key identifier: CD:AD:8A:E6:48:50:B7:30:60:26:A1:B4:6F:F8:4D:08:28:41:04:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CDAD8AE64850B7306026A1B46FF84D08284104C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:35:53 +0000 ROA not before: Sun 03 May 2026 02:30:53 +0000 ROA not after: Sun 02 May 2027 02:35:53 +0000 asID: 17995 IP address blocks: 103.169.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/CDAD8AE64850B7306026A1B46FF84D08284104C9.crl rsync://rpki-rsync.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/CDAD8AE64850B7306026A1B46FF84D08284104C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CDAD8AE64850B7306026A1B46FF84D08284104C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 18:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:91:3f:02:0e:49:6f:58:ac:3d:c5:1c:99:26:c9:18:93:41:74:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDAD8AE64850B7306026A1B46FF84D08284104C9 Validity Not Before: May 3 02:30:53 2026 GMT Not After : May 2 02:35:53 2027 GMT Subject: CN=D50CAEED73654E3233DB22512021630177776125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:38:52:67:c2:0b:82:7f:48:53:e4:fb:dd:cd: e5:0e:a4:3d:21:b2:2c:90:40:bc:d3:04:96:2f:42: 73:90:3a:79:22:97:95:36:77:d5:14:21:5e:90:f7: 13:0f:b0:4e:33:d3:2f:7b:57:3b:ce:24:d8:e9:eb: 7f:4d:68:3b:82:52:55:65:b9:15:ab:84:e6:50:bc: d8:2e:d1:e4:c4:4a:60:c1:9d:29:8e:09:e0:49:3b: b5:91:1a:cd:3d:81:9b:0d:9c:5d:47:a5:b0:2f:bb: 83:e0:e3:a3:de:48:c5:de:dc:b0:cd:79:97:31:cc: 24:2d:77:90:e6:64:b1:86:76:47:07:fa:e2:ac:c7: 5f:14:ed:11:f9:43:ca:fb:71:e0:42:e1:09:05:ae: ec:1f:c5:22:84:ca:bb:d1:9f:c9:47:a5:e0:31:e1: 87:aa:8f:86:0d:07:44:90:ef:c3:c1:15:55:4b:c1: 15:76:38:2e:89:7c:0a:27:9b:c6:d2:a0:da:31:0c: fc:b4:ee:86:c5:ca:89:de:28:24:5e:fc:55:fa:55: e6:6c:f7:f3:3d:44:23:1f:86:7e:1c:27:e1:d8:77: 3d:b2:2a:a4:3d:67:78:38:a2:ff:41:33:ed:71:a4: 8b:2e:db:f2:70:63:b2:20:c2:a5:b3:19:c4:b3:55: d4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0C:AE:ED:73:65:4E:32:33:DB:22:51:20:21:63:01:77:77:61:25 X509v3 Authority Key Identifier: keyid:CD:AD:8A:E6:48:50:B7:30:60:26:A1:B4:6F:F8:4D:08:28:41:04:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/CDAD8AE64850B7306026A1B46FF84D08284104C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CDAD8AE64850B7306026A1B46FF84D08284104C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.252.0/23 Signature Algorithm: sha256WithRSAEncryption 18:b0:fd:bc:6c:61:63:c3:92:9a:34:c1:c9:37:58:5a:0d:e0: 3e:ce:43:b6:b9:45:ec:b0:b3:c5:3a:4b:c7:f7:d4:5a:3d:e9: cb:31:89:cd:2d:b3:30:a7:2d:f3:74:7a:2f:4d:f0:ed:3d:db: 17:d2:35:19:6e:0f:ee:cf:bf:d2:07:03:80:6f:97:21:1f:af: 69:1e:ac:bf:71:f9:77:79:0c:b0:5d:eb:30:ca:fe:b5:ea:a6: b9:47:88:cb:6e:f2:3e:9d:7b:72:18:6e:b1:be:c4:2e:7c:03: 66:45:a9:ca:31:76:50:be:77:55:ea:af:a7:15:2f:0b:ec:a5: a9:32:b3:82:1c:38:af:e5:b8:ce:73:6a:2e:15:51:e5:05:c0: 96:3a:74:e8:7e:f5:14:6c:55:7a:d1:44:71:6f:98:bc:20:0b: 04:3d:a5:23:66:28:a7:e5:4e:2a:39:54:13:eb:3d:d4:99:a4: d7:a2:7d:2e:16:40:d1:d8:eb:d9:11:e4:e4:1e:9c:db:da:e4: 55:78:97:b9:22:12:44:2c:c1:81:dc:6f:75:27:8a:c1:70:b9: 6c:a0:c2:d2:58:25:23:64:8a:6c:86:cf:44:a7:3e:4a:6b:61: 8d:d1:76:a6:25:39:e0:4f:a6:ef:5a:c2:29:ac:8e:64:29:e8: fc:a6:1d:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEJE/Ag5Jb1isPcUcmSbJGJNBdBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RBRDhBRTY0ODUwQjczMDYwMjZBMUI0NkZGODREMDgy ODQxMDRDOTAeFw0yNjA1MDMwMjMwNTNaFw0yNzA1MDIwMjM1NTNaMDMxMTAvBgNV BAMTKEQ1MENBRUVENzM2NTRFMzIzM0RCMjI1MTIwMjE2MzAxNzc3NzYxMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPOFJnwguCf0hT5PvdzeUOpD0h siyQQLzTBJYvQnOQOnkil5U2d9UUIV6Q9xMPsE4z0y97VzvOJNjp639NaDuCUlVl uRWrhOZQvNgu0eTESmDBnSmOCeBJO7WRGs09gZsNnF1HpbAvu4Pg46PeSMXe3LDN eZcxzCQtd5DmZLGGdkcH+uKsx18U7RH5Q8r7ceBC4QkFruwfxSKEyrvRn8lHpeAx 4Yeqj4YNB0SQ78PBFVVLwRV2OC6JfAonm8bSoNoxDPy07obFyoneKCRe/FX6VeZs 9/M9RCMfhn4cJ+HYdz2yKqQ9Z3g4ov9BM+1xpIsu2/JwY7IgwqWzGcSzVdRzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1Qyu7XNlTjIz2yJRICFjAXd3YSUwHwYDVR0j BBgwFoAUza2K5khQtzBgJqG0b/hNCChBBMkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWI4YzU0M2MtZGUxZi00ZWY0LTkyYjEtNjg1NTZmZjEzMWEzLzAvQ0RBRDhBRTY0 ODUwQjczMDYwMjZBMUI0NkZGODREMDgyODQxMDRDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DREFEOEFFNjQ4NTBCNzMwNjAyNkExQjQ2RkY4NEQwODI4NDEw NEM5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzViOGM1NDNjLWRlMWYtNGVmNC05 MmIxLTY4NTU2ZmYxMzFhMy8wLzMxMzAzMzJlMzEzNjM5MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6n8MA0GCSqG SIb3DQEBCwUAA4IBAQAYsP28bGFjw5KaNMHJN1haDeA+zkO2uUXssLPFOkvH99Ra PenLMYnNLbMwpy3zdHovTfDtPdsX0jUZbg/uz7/SBwOAb5chH69pHqy/cfl3eQyw Xeswyv616qa5R4jLbvI+nXtyGG6xvsQufANmRanKMXZQvndV6q+nFS8L7KWpMrOC HDiv5bjOc2ouFVHlBcCWOnTofvUUbFV60URxb5i8IAsEPaUjZiin5U4qOVQT6z3U maTXon0uFkDR2OvZEeTkHpzb2uRVeJe5IhJELMGB3G91J4rBcLlsoMLSWCUjZIps hs9Epz5Ka2GN0XamJTngT6bvWsIprI5kKej8ph2u -----END CERTIFICATE-----Generated at Fri May 8 06:35:57 2026 by rpki-client