$ rpki-client -vvf rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135332e302f32342d3234203d3e2039333431.roa File: 3130332e33352e3135332e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 0WLfS7aDlUOO8gGFrEIWmBmwKDx6lnGogb/aAhlDo0s= Subject key identifier: 5C:9B:D8:4D:93:F6:C7:FE:0F:73:74:B6:27:C0:98:C7:A2:18:91:5A Certificate issuer: /CN=C3FB32C4A43D1AF4473AFFD72DA37C6041767F29 Certificate serial: 2FF6329B05FD6BD62CF3EB72C4CC0C22C23978CD Authority key identifier: C3:FB:32:C4:A4:3D:1A:F4:47:3A:FF:D7:2D:A3:7C:60:41:76:7F:29 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135332e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 02:14:48 +0000 ROA not before: Sun 03 May 2026 02:09:48 +0000 ROA not after: Sun 02 May 2027 02:14:48 +0000 asID: 9341 IP address blocks: 103.35.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.crl rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f6:32:9b:05:fd:6b:d6:2c:f3:eb:72:c4:cc:0c:22:c2:39:78:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3FB32C4A43D1AF4473AFFD72DA37C6041767F29 Validity Not Before: May 3 02:09:48 2026 GMT Not After : May 2 02:14:48 2027 GMT Subject: CN=5C9BD84D93F6C7FE0F7374B627C098C7A218915A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5f:b7:37:aa:98:fb:83:b0:a7:07:f4:81:04: 3c:a9:39:91:7e:96:c8:93:f2:c9:fb:70:4b:17:cb: 16:e9:5c:c1:0e:31:79:9c:5e:20:22:14:07:ac:7e: 37:9a:3a:ac:64:8f:7a:0a:3b:bc:81:34:6a:d0:97: d1:bd:f0:3d:bd:02:60:1f:fc:20:2a:c8:3b:3d:90: cf:bc:cd:97:a9:fb:ac:5f:12:83:88:a4:15:c8:af: e0:24:b3:83:f9:c5:55:14:7f:ca:c3:56:b4:17:e4: 1f:ad:e7:39:b0:34:43:ab:a7:28:5c:7e:26:94:d9: c3:ea:ca:cf:71:fe:0e:76:57:a3:ea:fc:fc:42:07: 6d:14:19:72:c1:56:46:9c:c7:52:81:a7:d3:15:97: d9:10:e8:25:77:1f:ec:10:3a:c0:3f:8f:12:5d:11: c1:a1:a6:11:56:c4:81:71:75:74:02:1e:ec:14:22: 4f:1b:18:e4:20:81:eb:3a:47:39:15:70:ff:f7:92: 1f:47:0b:d1:1e:a7:6d:a2:9c:d4:42:1b:1e:5a:a6: 1c:84:82:6a:3e:04:82:be:2b:c0:fa:6b:71:8a:64: 88:80:f9:7a:4a:42:d7:17:07:20:fc:dc:60:72:32: 81:58:5d:20:2a:97:ec:a4:e1:02:75:4f:0e:fd:67: 30:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:9B:D8:4D:93:F6:C7:FE:0F:73:74:B6:27:C0:98:C7:A2:18:91:5A X509v3 Authority Key Identifier: keyid:C3:FB:32:C4:A4:3D:1A:F4:47:3A:FF:D7:2D:A3:7C:60:41:76:7F:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3FB32C4A43D1AF4473AFFD72DA37C6041767F29.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135332e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.35.153.0/24 Signature Algorithm: sha256WithRSAEncryption 70:93:3a:d4:d8:44:81:f3:3a:32:9e:f3:eb:0e:42:66:c8:d8: 49:8d:68:c4:35:fb:72:f0:14:16:ea:7c:bc:b6:12:cf:a1:41: 7c:aa:db:09:47:c3:ad:33:5f:96:82:44:e7:b7:55:0c:c6:1c: f0:1a:26:51:f9:ee:44:06:d4:db:b9:b8:e0:4a:7f:37:ad:10: 1c:8c:56:71:cd:d7:c8:f9:24:0d:0d:68:99:83:c2:ce:3f:89: f0:c2:ce:09:a1:aa:1c:da:91:12:f8:75:47:4e:67:28:73:bc: 32:81:4b:6f:dc:c8:f2:fd:35:11:dd:a8:c6:e0:75:22:95:76: aa:d7:26:53:94:75:2f:74:6d:98:63:cd:f2:f1:70:50:99:86: 74:04:24:a2:29:96:d4:e4:75:a0:57:94:46:a3:97:5b:f1:56: 01:6b:90:d7:ea:81:7c:17:d5:d2:d3:dd:77:43:b0:cc:56:0e: 7c:85:bc:c5:25:27:13:59:76:8c:61:c9:83:42:ef:8e:19:d8: 07:86:54:4e:85:ee:56:f1:ef:71:66:fc:52:46:af:e4:3d:de: 6c:38:44:0c:80:ed:60:56:1e:84:47:26:2a:e7:91:a8:71:96: b5:b2:0f:5b:8e:14:f2:72:e1:f1:54:83:c8:a9:ba:61:2c:4a: 85:19:4d:27 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUL/YymwX9a9Ys8+tyxMwMIsI5eM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGQjMyQzRBNDNEMUFGNDQ3M0FGRkQ3MkRBMzdDNjA0 MTc2N0YyOTAeFw0yNjA1MDMwMjA5NDhaFw0yNzA1MDIwMjE0NDhaMDMxMTAvBgNV BAMTKDVDOUJEODREOTNGNkM3RkUwRjczNzRCNjI3QzA5OEM3QTIxODkxNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0X7c3qpj7g7CnB/SBBDypOZF+ lsiT8sn7cEsXyxbpXMEOMXmcXiAiFAesfjeaOqxkj3oKO7yBNGrQl9G98D29AmAf /CAqyDs9kM+8zZep+6xfEoOIpBXIr+Aks4P5xVUUf8rDVrQX5B+t5zmwNEOrpyhc fiaU2cPqys9x/g52V6Pq/PxCB20UGXLBVkacx1KBp9MVl9kQ6CV3H+wQOsA/jxJd EcGhphFWxIFxdXQCHuwUIk8bGOQgges6RzkVcP/3kh9HC9Eep22inNRCGx5aphyE gmo+BIK+K8D6a3GKZIiA+XpKQtcXByD83GByMoFYXSAql+yk4QJ1Tw79ZzCvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXJvYTZP2x/4Pc3S2J8CYx6IYkVowHwYDVR0j BBgwFoAUw/syxKQ9GvRHOv/XLaN8YEF2fykwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTQ4ODU1MjUtY2IwZi00NmEwLTgyNTMtMDQyZDdkN2FmZjM4LzAvQzNGQjMyQzRB NDNEMUFGNDQ3M0FGRkQ3MkRBMzdDNjA0MTc2N0YyOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DM0ZCMzJDNEE0M0QxQUY0NDczQUZGRDcyREEzN0M2MDQxNzY3 RjI5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE0ODg1NTI1LWNiMGYtNDZhMC04 MjUzLTA0MmQ3ZDdhZmYzOC8wLzMxMzAzMzJlMzMzNTJlMzEzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnI5kwDQYJKoZIhvcN AQELBQADggEBAHCTOtTYRIHzOjKe8+sOQmbI2EmNaMQ1+3LwFBbqfLy2Es+hQXyq 2wlHw60zX5aCROe3VQzGHPAaJlH57kQG1Nu5uOBKfzetEByMVnHN18j5JA0NaJmD ws4/ifDCzgmhqhzakRL4dUdOZyhzvDKBS2/cyPL9NRHdqMbgdSKVdqrXJlOUdS90 bZhjzfLxcFCZhnQEJKIpltTkdaBXlEajl1vxVgFrkNfqgXwX1dLT3XdDsMxWDnyF vMUlJxNZdoxhyYNC744Z2AeGVE6F7lbx73Fm/FJGr+Q93mw4RAyA7WBWHoRHJirn kahxlrWyD1uOFPJy4fFUg8ipumEsSoUZTSc= -----END CERTIFICATE-----Generated at Tue May 5 13:29:46 2026 by rpki-client