$ rpki-client -vvf rpki-rsync.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa File: 3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: LMawcFvlyGAFjmzGIPIL0Pb1GIlo75+QClOxIhDqopY= Subject key identifier: EC:7B:D0:F0:B7:92:3C:BE:3A:34:31:A1:89:83:28:5E:71:9B:38:2D Certificate issuer: /CN=8A8B155E8335C028549D2BF6B54C25E4A78B8C92 Certificate serial: 2689910390C6BA20E3D59E8D152BFD2D59B3253E Authority key identifier: 8A:8B:15:5E:83:35:C0:28:54:9D:2B:F6:B5:4C:25:E4:A7:8B:8C:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8A8B155E8335C028549D2BF6B54C25E4A78B8C92.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 03:16:24 +0000 ROA not before: Sun 03 May 2026 03:11:24 +0000 ROA not after: Sun 02 May 2027 03:16:24 +0000 asID: 17995 IP address blocks: 103.162.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8A8B155E8335C028549D2BF6B54C25E4A78B8C92.crl rsync://rpki-rsync.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8A8B155E8335C028549D2BF6B54C25E4A78B8C92.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8A8B155E8335C028549D2BF6B54C25E4A78B8C92.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 17:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:89:91:03:90:c6:ba:20:e3:d5:9e:8d:15:2b:fd:2d:59:b3:25:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A8B155E8335C028549D2BF6B54C25E4A78B8C92 Validity Not Before: May 3 03:11:24 2026 GMT Not After : May 2 03:16:24 2027 GMT Subject: CN=EC7BD0F0B7923CBE3A3431A18983285E719B382D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:dd:65:88:bc:ba:03:d6:6a:57:84:2a:83:31: 03:f2:2a:90:c6:51:24:99:76:16:91:50:0f:dd:29: b9:7a:7f:d4:04:7d:7e:62:86:8e:52:ff:27:54:66: 14:ff:a8:63:22:49:43:13:4b:f9:76:47:b0:eb:11: f9:86:37:98:12:c9:15:5d:e1:c4:d4:f3:6a:7a:72: 19:f9:2e:2b:56:49:ca:27:74:00:73:f5:ef:c9:cc: 15:fa:1b:6e:d6:75:cd:12:85:76:07:9d:12:bd:9b: 35:e9:62:92:65:f8:37:37:cc:6d:b3:5a:34:81:97: 44:18:c3:be:c7:d7:70:0c:19:63:a0:d3:aa:25:ea: a8:04:1d:43:15:79:de:d7:93:67:22:88:94:a7:9d: 2e:37:61:b3:e9:a7:0e:1d:52:52:1f:ff:8b:f3:7d: c1:35:8a:94:2a:51:05:fb:ca:88:f1:0e:55:8b:7f: 88:ae:60:a2:32:e4:57:6e:d2:1e:b0:37:05:8d:fe: 3d:14:a4:b6:ac:61:6c:eb:14:62:94:72:f8:40:2b: 0e:b2:b6:b1:20:df:d4:44:c3:c2:f6:db:46:ac:b1: d1:80:a5:5b:56:74:80:af:4c:06:fa:24:ef:f0:55: 38:e8:44:a4:26:c9:62:e1:6c:dc:55:2f:87:2a:1d: 18:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7B:D0:F0:B7:92:3C:BE:3A:34:31:A1:89:83:28:5E:71:9B:38:2D X509v3 Authority Key Identifier: keyid:8A:8B:15:5E:83:35:C0:28:54:9D:2B:F6:B5:4C:25:E4:A7:8B:8C:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8A8B155E8335C028549D2BF6B54C25E4A78B8C92.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8A8B155E8335C028549D2BF6B54C25E4A78B8C92.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.146.0/23 Signature Algorithm: sha256WithRSAEncryption b2:02:7a:19:45:69:f0:46:50:cd:20:61:0d:57:22:f6:12:77: 61:73:44:30:dc:92:3e:b9:5f:aa:2d:2e:6e:fd:02:1d:27:e9: 0b:cf:c9:c7:fc:4d:4a:55:ad:29:50:5a:6e:88:6d:d1:26:da: 7c:f6:ff:15:1e:0f:90:18:fd:a2:28:09:f0:df:4d:6e:80:22: a3:52:02:d2:ca:11:31:d3:62:c1:78:e3:c0:98:72:d3:ee:59: 85:61:83:5b:59:e5:53:56:9c:de:1f:40:c6:8e:33:7b:7a:f5: b0:c9:fc:20:83:bb:8d:fb:dd:ee:44:0b:e4:dc:f4:55:b4:41: 4d:af:80:da:32:cb:10:b3:e7:d6:c0:be:14:77:f9:9c:30:91: 37:06:c5:83:c6:8a:81:e4:90:f2:40:b4:fc:b4:4e:2b:77:4b: 8a:6c:43:5c:4e:ae:93:fe:47:9f:8f:b2:2a:3f:e4:60:8b:e8: 3c:6d:2f:60:e7:7a:6c:ff:1c:6e:5d:40:88:67:eb:ea:61:85: c8:50:ae:87:90:65:73:5b:da:7a:09:4b:64:dd:6c:ec:f1:a6: f4:5c:a2:14:3d:49:c4:17:e0:35:44:58:62:20:6e:f1:86:2a: 50:43:3c:14:66:f2:7d:9e:15:d2:4a:da:b7:0c:4e:4f:22:b9: cf:75:82:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJomRA5DGuiDj1Z6NFSv9LVmzJT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE4QjE1NUU4MzM1QzAyODU0OUQyQkY2QjU0QzI1RTRB NzhCOEM5MjAeFw0yNjA1MDMwMzExMjRaFw0yNzA1MDIwMzE2MjRaMDMxMTAvBgNV BAMTKEVDN0JEMEYwQjc5MjNDQkUzQTM0MzFBMTg5ODMyODVFNzE5QjM4MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCN3WWIvLoD1mpXhCqDMQPyKpDG USSZdhaRUA/dKbl6f9QEfX5iho5S/ydUZhT/qGMiSUMTS/l2R7DrEfmGN5gSyRVd 4cTU82p6chn5LitWScondABz9e/JzBX6G27Wdc0ShXYHnRK9mzXpYpJl+Dc3zG2z WjSBl0QYw77H13AMGWOg06ol6qgEHUMVed7Xk2ciiJSnnS43YbPppw4dUlIf/4vz fcE1ipQqUQX7yojxDlWLf4iuYKIy5Fdu0h6wNwWN/j0UpLasYWzrFGKUcvhAKw6y trEg39REw8L220assdGApVtWdICvTAb6JO/wVTjoRKQmyWLhbNxVL4cqHRiHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7HvQ8LeSPL46NDGhiYMoXnGbOC0wHwYDVR0j BBgwFoAUiosVXoM1wChUnSv2tUwl5KeLjJIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjA1MjBiNTQtM2JhNy00NjMxLWFmMGItNTU5ODRiMGJhN2YyLzAvOEE4QjE1NUU4 MzM1QzAyODU0OUQyQkY2QjU0QzI1RTRBNzhCOEM5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QThCMTU1RTgzMzVDMDI4NTQ5RDJCRjZCNTRDMjVFNEE3OEI4 QzkyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YwNTIwYjU0LTNiYTctNDYzMS1h ZjBiLTU1OTg0YjBiYTdmMi8wLzMxMzAzMzJlMzEzNjMyMmUzMTM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6KSMA0GCSqG SIb3DQEBCwUAA4IBAQCyAnoZRWnwRlDNIGENVyL2Endhc0Qw3JI+uV+qLS5u/QId J+kLz8nH/E1KVa0pUFpuiG3RJtp89v8VHg+QGP2iKAnw301ugCKjUgLSyhEx02LB eOPAmHLT7lmFYYNbWeVTVpzeH0DGjjN7evWwyfwgg7uN+93uRAvk3PRVtEFNr4Da MssQs+fWwL4Ud/mcMJE3BsWDxoqB5JDyQLT8tE4rd0uKbENcTq6T/kefj7IqP+Rg i+g8bS9g53ps/xxuXUCIZ+vqYYXIUK6HkGVzW9p6CUtk3Wzs8ab0XKIUPUnEF+A1 RFhiIG7xhipQQzwUZvJ9nhXSStq3DE5PIrnPdYIp -----END CERTIFICATE-----Generated at Fri May 8 06:35:56 2026 by rpki-client