$ rpki-client -vvf rpki-rsync.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32342d3234203d3e203438343635.roa File: 3130332e3135302e3134382e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: 8wp+UX0eKC57lngDUIgSZuJvHJ5tDAZofYJHo8cFmpA= Subject key identifier: D1:20:8B:19:A0:2E:03:68:F3:D3:91:1D:D1:63:EF:9C:B3:52:0A:08 Certificate issuer: /CN=4DD4106B03003D9C5B51BF893631C8E467E07F65 Certificate serial: 4EBB54082155E5B2774EFB3EE41BDC0A0ADD2C57 Authority key identifier: 4D:D4:10:6B:03:00:3D:9C:5B:51:BF:89:36:31:C8:E4:67:E0:7F:65 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DD4106B03003D9C5B51BF893631C8E467E07F65.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32342d3234203d3e203438343635.roa Signing time: Sun 03 May 2026 02:17:21 +0000 ROA not before: Sun 03 May 2026 02:12:21 +0000 ROA not after: Sun 02 May 2027 02:17:21 +0000 asID: 48465 IP address blocks: 103.150.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/4DD4106B03003D9C5B51BF893631C8E467E07F65.crl rsync://rpki-rsync.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/4DD4106B03003D9C5B51BF893631C8E467E07F65.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DD4106B03003D9C5B51BF893631C8E467E07F65.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:bb:54:08:21:55:e5:b2:77:4e:fb:3e:e4:1b:dc:0a:0a:dd:2c:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DD4106B03003D9C5B51BF893631C8E467E07F65 Validity Not Before: May 3 02:12:21 2026 GMT Not After : May 2 02:17:21 2027 GMT Subject: CN=D1208B19A02E0368F3D3911DD163EF9CB3520A08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:23:29:1e:3d:cf:0b:8c:88:5d:a8:68:82:c8: 4e:d3:86:fc:ed:c4:31:1f:65:b9:c5:14:1b:54:e9: ae:97:4c:21:3f:20:be:09:8e:26:43:7a:1c:2f:06: 24:bd:ab:1d:5c:6d:f6:e5:43:d1:01:8d:52:51:a1: d7:0c:44:5b:dc:e3:a3:b3:fc:14:46:ac:39:bd:5b: 36:16:67:a2:9d:b1:fc:4e:98:c1:1f:fd:9c:02:af: 61:3e:8a:25:ba:cb:85:f4:2f:ce:62:ba:03:63:5f: 30:ca:98:aa:36:f0:6b:0f:11:7a:01:75:1b:91:7c: fc:16:a8:07:e9:d2:2f:57:d6:54:a0:0b:91:44:c4: 89:94:6a:f5:6b:d5:57:22:5a:11:5d:c3:fe:d7:a8: a3:80:dd:e3:04:ba:24:96:87:c8:c3:b9:46:18:c8: 6e:02:8a:ef:3b:4f:fb:ab:65:46:37:ae:6e:04:43: d3:95:85:8f:a7:6e:1d:d7:03:50:58:d7:be:f2:aa: 16:94:fa:fd:61:04:f7:89:6a:cd:e0:52:e8:97:55: cd:83:2d:eb:85:33:00:3b:d5:1d:ac:5b:cd:b4:a8: 28:50:87:e6:23:e5:02:81:fd:31:90:48:58:58:f6: 7e:a9:80:41:6b:44:0b:e7:d1:7e:44:a9:ee:ea:5b: d0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:20:8B:19:A0:2E:03:68:F3:D3:91:1D:D1:63:EF:9C:B3:52:0A:08 X509v3 Authority Key Identifier: keyid:4D:D4:10:6B:03:00:3D:9C:5B:51:BF:89:36:31:C8:E4:67:E0:7F:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/4DD4106B03003D9C5B51BF893631C8E467E07F65.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DD4106B03003D9C5B51BF893631C8E467E07F65.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.148.0/24 Signature Algorithm: sha256WithRSAEncryption 50:9c:de:2b:b1:06:bd:f6:2b:04:62:85:26:60:24:e9:76:06: 3a:01:42:3f:e9:43:7f:16:5f:15:fa:bc:4b:e3:0f:ef:7d:bc: 0e:28:5e:f9:71:d7:8e:db:da:df:22:31:83:71:33:29:4a:2c: 88:5c:a9:e3:92:d7:de:6e:f7:b6:d4:c0:ca:02:e2:6e:5f:14: 81:9e:18:c7:20:fb:57:6d:f0:5e:6b:c5:1e:d8:89:41:53:c1: 90:01:d2:4e:24:33:13:bd:f9:8f:06:1b:8f:4f:41:d7:29:b0: 13:82:cd:bf:0d:63:9d:e9:3b:f9:79:fc:21:73:ec:4f:9e:e8: b2:46:2d:e6:63:cb:8d:6f:2f:3d:9e:2e:1b:e8:d0:70:60:a7: 79:af:93:55:7b:71:23:8b:a9:c9:0c:c1:96:d8:69:2e:60:66: 66:a4:90:1a:f9:39:76:bd:56:dc:66:48:8d:96:7f:c3:1f:d6: c1:d3:b7:2f:c6:bd:0d:7d:03:9c:89:08:e2:5b:70:f5:aa:12: eb:75:3d:b1:eb:bb:8d:59:88:fe:96:06:62:7b:41:0d:2b:3a: 09:2a:cf:f2:e7:f1:1e:32:b6:70:9d:1f:a5:11:c7:a1:3a:f0: 9e:85:85:23:c9:97:55:2c:f8:3d:43:d3:88:ff:c7:14:3c:86: 8f:89:92:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTrtUCCFV5bJ3Tvs+5BvcCgrdLFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERENDEwNkIwMzAwM0Q5QzVCNTFCRjg5MzYzMUM4RTQ2 N0UwN0Y2NTAeFw0yNjA1MDMwMjEyMjFaFw0yNzA1MDIwMjE3MjFaMDMxMTAvBgNV BAMTKEQxMjA4QjE5QTAyRTAzNjhGM0QzOTExREQxNjNFRjlDQjM1MjBBMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJIykePc8LjIhdqGiCyE7Thvzt xDEfZbnFFBtU6a6XTCE/IL4JjiZDehwvBiS9qx1cbfblQ9EBjVJRodcMRFvc46Oz /BRGrDm9WzYWZ6KdsfxOmMEf/ZwCr2E+iiW6y4X0L85iugNjXzDKmKo28GsPEXoB dRuRfPwWqAfp0i9X1lSgC5FExImUavVr1VciWhFdw/7XqKOA3eMEuiSWh8jDuUYY yG4Ciu87T/urZUY3rm4EQ9OVhY+nbh3XA1BY177yqhaU+v1hBPeJas3gUuiXVc2D LeuFMwA71R2sW820qChQh+Yj5QKB/TGQSFhY9n6pgEFrRAvn0X5Eqe7qW9DBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0SCLGaAuA2jz05Ed0WPvnLNSCggwHwYDVR0j BBgwFoAUTdQQawMAPZxbUb+JNjHI5Gfgf2UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWJkZTkzNmItNTNjZi00YjA4LWI1ZjctMmI5MGRlMjFmZTk0LzAvNERENDEwNkIw MzAwM0Q5QzVCNTFCRjg5MzYzMUM4RTQ2N0UwN0Y2NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80REQ0MTA2QjAzMDAzRDlDNUI1MUJGODkzNjMxQzhFNDY3RTA3 RjY1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiZGU5MzZiLTUzY2YtNGIwOC1i NWY3LTJiOTBkZTIxZmU5NC8wLzMxMzAzMzJlMzEzNTMwMmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5aUMA0GCSqG SIb3DQEBCwUAA4IBAQBQnN4rsQa99isEYoUmYCTpdgY6AUI/6UN/Fl8V+rxL4w/v fbwOKF75cdeO29rfIjGDcTMpSiyIXKnjktfebve21MDKAuJuXxSBnhjHIPtXbfBe a8Ue2IlBU8GQAdJOJDMTvfmPBhuPT0HXKbATgs2/DWOd6Tv5efwhc+xPnuiyRi3m Y8uNby89ni4b6NBwYKd5r5NVe3Eji6nJDMGW2GkuYGZmpJAa+Tl2vVbcZkiNln/D H9bB07cvxr0NfQOciQjiW3D1qhLrdT2x67uNWYj+lgZie0ENKzoJKs/y5/EeMrZw nR+lEcehOvCehYUjyZdVLPg9Q9OI/8cUPIaPiZLY -----END CERTIFICATE-----Generated at Tue May 5 16:56:15 2026 by rpki-client