$ rpki-client -vvf rpki-rsync.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132322e302f32342d3234203d3e20313338383836.roa File: 3130332e3138392e3132322e302f32342d3234203d3e20313338383836.roa (raw, json) Hash identifier: w/XB+eAcVCXSBvP5zeesaKGcdg6afVF0i1dOhvajHGI= Subject key identifier: 2A:4C:76:74:C6:DD:E9:64:EE:2F:5D:ED:0E:E9:F7:8E:AD:A2:44:BC Certificate issuer: /CN=DD4FFECAC6FB13C4F147602F8B1824429851A1B9 Certificate serial: 29F5E282ABDE62DF63B4A953564B1611257189E1 Authority key identifier: DD:4F:FE:CA:C6:FB:13:C4:F1:47:60:2F:8B:18:24:42:98:51:A1:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD4FFECAC6FB13C4F147602F8B1824429851A1B9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132322e302f32342d3234203d3e20313338383836.roa Signing time: Sun 03 May 2026 02:12:42 +0000 ROA not before: Sun 03 May 2026 02:07:42 +0000 ROA not after: Sun 02 May 2027 02:12:42 +0000 asID: 138886 IP address blocks: 103.189.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/DD4FFECAC6FB13C4F147602F8B1824429851A1B9.crl rsync://rpki-rsync.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/DD4FFECAC6FB13C4F147602F8B1824429851A1B9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD4FFECAC6FB13C4F147602F8B1824429851A1B9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f5:e2:82:ab:de:62:df:63:b4:a9:53:56:4b:16:11:25:71:89:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD4FFECAC6FB13C4F147602F8B1824429851A1B9 Validity Not Before: May 3 02:07:42 2026 GMT Not After : May 2 02:12:42 2027 GMT Subject: CN=2A4C7674C6DDE964EE2F5DED0EE9F78EADA244BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b8:d7:a7:69:5f:ce:a7:a5:87:f0:74:10:38: 31:84:10:79:ab:cc:0d:fa:98:aa:30:82:f9:0a:54: f7:e2:61:72:3a:a5:12:62:1a:5b:cb:2a:39:82:5a: f6:e3:51:dd:3b:11:2a:06:d2:fe:5a:a4:0f:6b:ca: 0d:06:79:65:8d:d0:f5:ce:7e:09:49:73:65:1b:fe: 33:e1:0f:9b:a6:20:37:9f:fc:d8:50:bb:d7:d5:ab: 3e:15:b3:e9:b2:ed:53:06:2a:be:c3:b9:40:65:60: 3d:3b:70:a9:cf:a4:1e:97:2f:51:36:13:59:87:ec: 6e:c0:73:6e:70:36:f4:be:a2:46:5f:95:cf:9a:35: f5:1c:d8:1d:76:b6:d9:1a:ba:5b:5c:45:a4:44:17: 18:92:d3:e2:f3:21:a3:91:3c:a5:6a:0c:d4:f1:8b: 70:8f:a8:ea:10:ab:94:f7:be:1d:7c:3a:f0:d7:77: f3:d3:6d:68:b2:8f:ce:b1:c0:25:97:01:1b:6b:80: 55:09:5a:5c:94:34:21:0d:5d:a6:98:2f:40:23:3c: e7:ff:46:94:5e:20:48:17:75:18:b8:e1:1d:4e:18: ae:20:f8:2a:41:2c:d1:25:74:58:e4:36:74:b7:e6: 87:2d:82:2f:9f:9d:ca:27:4b:bb:78:72:f2:22:18: 2b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:4C:76:74:C6:DD:E9:64:EE:2F:5D:ED:0E:E9:F7:8E:AD:A2:44:BC X509v3 Authority Key Identifier: keyid:DD:4F:FE:CA:C6:FB:13:C4:F1:47:60:2F:8B:18:24:42:98:51:A1:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/DD4FFECAC6FB13C4F147602F8B1824429851A1B9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DD4FFECAC6FB13C4F147602F8B1824429851A1B9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132322e302f32342d3234203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.122.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:39:e8:89:e9:d9:52:e6:4b:f8:45:73:f2:be:93:a6:18:81: 2b:db:b0:07:95:9a:1c:d6:33:0f:7a:b9:6b:f7:4c:60:62:cf: f3:c8:a2:fb:61:d0:0a:b3:59:5a:c1:60:68:58:bd:b1:b5:ca: 45:78:5c:52:13:94:83:bb:98:03:dc:8f:3b:ec:dd:bb:cd:22: 8b:33:fb:f5:51:9a:35:b0:ec:95:46:62:94:29:2a:14:23:7e: a4:48:99:01:a0:9b:0f:01:a1:90:f4:16:70:ad:32:45:ed:38: 04:d4:1c:00:70:b8:d3:84:bb:da:e0:8b:a7:33:b6:47:27:59: f6:4a:3c:46:e8:5d:9f:1b:1b:7d:c8:8c:2d:cb:2a:b8:f0:0e: 66:5e:46:25:ed:df:c8:69:8b:1c:58:6b:87:95:49:8b:c4:f6: 57:0d:84:9f:34:21:7f:bc:da:ff:8e:ff:0e:a6:66:6d:d7:8a: e1:b7:51:9c:e1:09:e6:cf:cd:f6:49:ac:bd:78:d3:11:5d:e5: f6:e2:9a:b6:38:d6:8b:b5:7c:17:79:b2:d3:6b:21:95:3c:2b: 36:3b:b4:db:98:3b:55:b7:2e:b1:e3:6d:33:14:d3:98:bd:55: 85:e8:16:7c:41:77:cd:3a:6b:49:5a:6e:13:d2:a1:62:10:06: 59:c7:e1:b4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKfXigqveYt9jtKlTVksWESVxieEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ0RkZFQ0FDNkZCMTNDNEYxNDc2MDJGOEIxODI0NDI5 ODUxQTFCOTAeFw0yNjA1MDMwMjA3NDJaFw0yNzA1MDIwMjEyNDJaMDMxMTAvBgNV BAMTKDJBNEM3Njc0QzZEREU5NjRFRTJGNURFRDBFRTlGNzhFQURBMjQ0QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZuNenaV/Op6WH8HQQODGEEHmr zA36mKowgvkKVPfiYXI6pRJiGlvLKjmCWvbjUd07ESoG0v5apA9ryg0GeWWN0PXO fglJc2Ub/jPhD5umIDef/NhQu9fVqz4Vs+my7VMGKr7DuUBlYD07cKnPpB6XL1E2 E1mH7G7Ac25wNvS+okZflc+aNfUc2B12ttkaultcRaREFxiS0+LzIaORPKVqDNTx i3CPqOoQq5T3vh18OvDXd/PTbWiyj86xwCWXARtrgFUJWlyUNCENXaaYL0AjPOf/ RpReIEgXdRi44R1OGK4g+CpBLNEldFjkNnS35octgi+fnconS7t4cvIiGCupAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKkx2dMbd6WTuL13tDun3jq2iRLwwHwYDVR0j BBgwFoAU3U/+ysb7E8TxR2AvixgkQphRobkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGJhMGI4ZjgtNGZjZi00YjliLTk3OTQtY2QzYjRlNDA2ZWFiLzAvREQ0RkZFQ0FD NkZCMTNDNEYxNDc2MDJGOEIxODI0NDI5ODUxQTFCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERDRGRkVDQUM2RkIxM0M0RjE0NzYwMkY4QjE4MjQ0Mjk4NTFB MUI5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBiYTBiOGY4LTRmY2YtNGI5Yi05 Nzk0LWNkM2I0ZTQwNmVhYi8wLzMxMzAzMzJlMzEzODM5MmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXowDQYJ KoZIhvcNAQELBQADggEBAA456Inp2VLmS/hFc/K+k6YYgSvbsAeVmhzWMw96uWv3 TGBiz/PIovth0AqzWVrBYGhYvbG1ykV4XFITlIO7mAPcjzvs3bvNIosz+/VRmjWw 7JVGYpQpKhQjfqRImQGgmw8BoZD0FnCtMkXtOATUHABwuNOEu9rgi6cztkcnWfZK PEboXZ8bG33IjC3LKrjwDmZeRiXt38hpixxYa4eVSYvE9lcNhJ80IX+82v+O/w6m Zm3XiuG3UZzhCebPzfZJrL140xFd5fbimrY41ou1fBd5stNrIZU8KzY7tNuYO1W3 LrHjbTMU05i9VYXoFnxBd806a0labhPSoWIQBlnH4bQ= -----END CERTIFICATE-----Generated at Tue May 5 16:49:08 2026 by rpki-client