$ rpki-client -vvf rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230342e302f32342d3234203d3e20323032373336.roa File: 3130332e3132302e3230342e302f32342d3234203d3e20323032373336.roa (raw, json) Hash identifier: eaitOk5B7Jr1jxdZCm0AVOvl4hgE6wJsB8PnaacOno4= Subject key identifier: 02:36:04:FA:E7:33:CA:B6:B0:AC:0E:1B:C1:DB:C5:1A:A0:C3:2E:12 Certificate issuer: /CN=3699EDD71DA60ABC50B3C8187A77DB9A24A8B877 Certificate serial: 44890C90C088ADBA29BC03CB9931B0BAAD9A3B41 Authority key identifier: 36:99:ED:D7:1D:A6:0A:BC:50:B3:C8:18:7A:77:DB:9A:24:A8:B8:77 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230342e302f32342d3234203d3e20323032373336.roa Signing time: Sun 03 May 2026 02:14:39 +0000 ROA not before: Sun 03 May 2026 02:09:39 +0000 ROA not after: Sun 02 May 2027 02:14:39 +0000 asID: 202736 IP address blocks: 103.120.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.crl rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 21:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:89:0c:90:c0:88:ad:ba:29:bc:03:cb:99:31:b0:ba:ad:9a:3b:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3699EDD71DA60ABC50B3C8187A77DB9A24A8B877 Validity Not Before: May 3 02:09:39 2026 GMT Not After : May 2 02:14:39 2027 GMT Subject: CN=023604FAE733CAB6B0AC0E1BC1DBC51AA0C32E12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6e:f2:1a:57:d9:65:ca:14:5e:e4:73:09:9b: 88:6b:55:d8:f6:d4:a5:6d:b9:85:ad:fd:34:50:3c: 64:05:3e:10:c8:b4:b5:0c:8d:f5:b3:8a:93:5d:c4: f3:57:cd:83:4e:40:a5:61:f9:83:cd:34:f4:45:e0: 12:c4:b6:c0:16:19:8f:95:9c:a8:6f:b4:6d:8f:30: f6:10:ec:01:39:ca:ba:9f:9f:bc:d6:85:5f:ba:ee: 2a:87:74:dc:ce:77:5b:71:1c:55:e1:45:dd:4d:2d: 53:89:f3:a4:a7:b9:0f:80:f8:f9:8f:e1:a0:33:46: 1c:99:7a:ca:36:06:a1:bb:91:13:cb:19:c6:e1:c7: eb:0d:d9:b7:20:7f:85:35:1a:2e:c8:5c:c7:e9:43: 03:70:50:ca:72:12:56:6f:f7:5e:07:d6:d3:29:7f: c9:35:6d:2e:6c:1f:db:27:84:d5:8f:39:0a:c3:3f: 34:83:a3:9a:60:7b:91:17:5c:77:07:92:e4:6e:d8: 80:f7:91:98:58:07:ff:d0:65:b9:60:9e:27:23:96: 29:44:30:6b:7d:b6:a3:a0:81:13:49:b3:a2:04:74: ff:be:94:22:bd:03:d0:1f:0d:c4:32:1f:6a:74:bc: 07:c4:d7:d1:16:f1:4d:c0:09:a5:30:2f:fc:98:e4: 56:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:36:04:FA:E7:33:CA:B6:B0:AC:0E:1B:C1:DB:C5:1A:A0:C3:2E:12 X509v3 Authority Key Identifier: keyid:36:99:ED:D7:1D:A6:0A:BC:50:B3:C8:18:7A:77:DB:9A:24:A8:B8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3699EDD71DA60ABC50B3C8187A77DB9A24A8B877.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230342e302f32342d3234203d3e20323032373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.204.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:55:46:5f:d9:8f:aa:d3:0b:e8:e4:35:8b:60:7d:96:b4:bf: c8:44:7a:1c:d2:8a:52:e4:0d:29:8f:f8:cf:9e:dc:78:25:52: e6:79:e9:c8:7c:5a:28:b0:68:45:e4:69:df:95:a4:2f:be:2c: a7:01:3a:ca:7c:41:98:6c:0b:29:39:f2:ff:2f:68:2b:95:38: 32:d2:25:53:5a:33:ba:ac:ab:60:28:dd:55:5d:aa:0a:b9:a1: 9a:28:38:7e:d2:19:00:bc:03:71:45:c1:41:4c:88:85:95:04: 91:47:89:af:d2:1a:e4:8b:05:d5:be:b7:b9:55:e3:32:f6:5b: b4:1d:c1:34:9b:c6:dd:6b:83:43:85:0e:bb:64:48:ee:bd:62: 58:0f:59:9c:c3:ef:3e:bb:a4:05:c3:71:fd:46:a4:c7:1a:1f: 8d:c9:71:6b:73:c3:74:00:68:81:4d:f7:65:3b:4e:0d:b7:8d: 19:c4:bb:63:98:1c:60:ae:5b:67:75:1b:94:42:72:c6:a4:00: 82:9d:e0:66:9d:c3:cd:d7:f6:d7:ee:8f:47:6f:37:29:3c:bf: f0:55:d5:a4:fb:ac:e1:43:a0:5b:5f:60:d9:09:21:f2:e0:90: 07:00:83:36:ba:4d:66:5e:e9:1e:0a:13:5f:c1:6f:50:c3:84: 6c:c2:f8:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURIkMkMCIrbopvAPLmTGwuq2aO0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY5OUVERDcxREE2MEFCQzUwQjNDODE4N0E3N0RCOUEy NEE4Qjg3NzAeFw0yNjA1MDMwMjA5MzlaFw0yNzA1MDIwMjE0MzlaMDMxMTAvBgNV BAMTKDAyMzYwNEZBRTczM0NBQjZCMEFDMEUxQkMxREJDNTFBQTBDMzJFMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfbvIaV9llyhRe5HMJm4hrVdj2 1KVtuYWt/TRQPGQFPhDItLUMjfWzipNdxPNXzYNOQKVh+YPNNPRF4BLEtsAWGY+V nKhvtG2PMPYQ7AE5yrqfn7zWhV+67iqHdNzOd1txHFXhRd1NLVOJ86SnuQ+A+PmP 4aAzRhyZeso2BqG7kRPLGcbhx+sN2bcgf4U1Gi7IXMfpQwNwUMpyElZv914H1tMp f8k1bS5sH9snhNWPOQrDPzSDo5pge5EXXHcHkuRu2ID3kZhYB//QZblgnicjlilE MGt9tqOggRNJs6IEdP++lCK9A9AfDcQyH2p0vAfE19EW8U3ACaUwL/yY5FaVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAjYE+uczyrawrA4bwdvFGqDDLhIwHwYDVR0j BBgwFoAUNpnt1x2mCrxQs8gYenfbmiSouHcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTQwZjM3YzAtMzgwYy00MDUzLWIzYmEtYjMyZWYwMzVjMjhmLzAvMzY5OUVERDcx REE2MEFCQzUwQjNDODE4N0E3N0RCOUEyNEE4Qjg3Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNjk5RURENzFEQTYwQUJDNTBCM0M4MTg3QTc3REI5QTI0QThC ODc3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMwMzIzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneMwwDQYJ KoZIhvcNAQELBQADggEBAA1VRl/Zj6rTC+jkNYtgfZa0v8hEehzSilLkDSmP+M+e 3HglUuZ56ch8WiiwaEXkad+VpC++LKcBOsp8QZhsCyk58v8vaCuVODLSJVNaM7qs q2Ao3VVdqgq5oZooOH7SGQC8A3FFwUFMiIWVBJFHia/SGuSLBdW+t7lV4zL2W7Qd wTSbxt1rg0OFDrtkSO69YlgPWZzD7z67pAXDcf1GpMcaH43JcWtzw3QAaIFN92U7 Tg23jRnEu2OYHGCuW2d1G5RCcsakAIKd4Gadw83X9tfuj0dvNyk8v/BV1aT7rOFD oFtfYNkJIfLgkAcAgza6TWZe6R4KE1/Bb1DDhGzC+EM= -----END CERTIFICATE-----Generated at Thu May 7 05:38:32 2026 by rpki-client