$ rpki-client -vvf rpki-rsync.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/3130332e3135372e3131362e302f32332d3234203d3e20313337333331.roa File: 3130332e3135372e3131362e302f32332d3234203d3e20313337333331.roa (raw, json) Hash identifier: fT4vbblEyZhxJwWJVYRrx1888tV3IqafJdFzwCoLzIU= Subject key identifier: 2E:F6:85:48:30:E7:36:EF:C9:C5:18:23:B3:8F:F4:67:B3:30:29:91 Certificate issuer: /CN=4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391 Certificate serial: 41A785DF897C5800F332F3E0DB29193081D26952 Authority key identifier: 4D:4C:BE:65:1A:A2:20:F9:08:8E:4D:BB:BC:97:BB:E2:D0:E0:D3:91 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/3130332e3135372e3131362e302f32332d3234203d3e20313337333331.roa Signing time: Sun 03 May 2026 02:17:36 +0000 ROA not before: Sun 03 May 2026 02:12:36 +0000 ROA not after: Sun 02 May 2027 02:17:36 +0000 asID: 137331 IP address blocks: 103.157.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391.crl rsync://rpki-rsync.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a7:85:df:89:7c:58:00:f3:32:f3:e0:db:29:19:30:81:d2:69:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391 Validity Not Before: May 3 02:12:36 2026 GMT Not After : May 2 02:17:36 2027 GMT Subject: CN=2EF6854830E736EFC9C51823B38FF467B3302991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8e:8d:29:8c:38:dc:10:e5:99:82:8c:f5:4d: c6:35:e6:1b:81:a4:ec:fb:ee:ae:f0:6f:a5:2f:44: 05:6c:f6:11:14:61:66:dc:7b:c6:6c:15:8b:5b:25: f5:53:f6:d9:6e:2d:07:11:e9:1e:f1:e6:d2:87:d4: 1b:c3:c8:0a:27:fe:8d:94:76:21:91:7f:93:dd:5b: cd:d4:83:87:51:98:44:08:a5:b1:1c:f9:18:f2:cd: 72:23:85:1e:3d:3e:bb:26:08:a1:14:21:8a:2d:22: 64:a5:02:9a:bd:22:e1:9f:f7:00:89:04:50:d4:7d: ef:04:cd:f9:72:02:b2:36:c0:02:11:cc:07:8d:53: 09:bb:20:c2:c1:10:de:9d:c8:ad:72:28:40:ab:63: 2e:81:22:e9:05:2c:1d:e2:4a:f7:35:12:e2:d3:86: 89:ef:b7:e5:a1:99:9a:9a:14:4d:9d:7d:cd:0e:9f: ee:ff:0a:ee:8b:00:cc:b2:1d:6d:e5:3e:7c:8a:da: 74:52:0f:df:a5:d2:08:0a:99:f3:2f:05:07:0d:1c: 56:e0:6e:0b:e5:22:c1:7d:a4:cd:af:3e:48:bc:26: 92:dd:37:d8:55:ed:7a:cd:2e:e5:8b:cc:6f:ee:9c: d8:3c:2f:72:ae:e9:f6:d3:2c:2d:0c:10:45:b9:de: 1a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F6:85:48:30:E7:36:EF:C9:C5:18:23:B3:8F:F4:67:B3:30:29:91 X509v3 Authority Key Identifier: keyid:4D:4C:BE:65:1A:A2:20:F9:08:8E:4D:BB:BC:97:BB:E2:D0:E0:D3:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4CBE651AA220F9088E4DBBBC97BBE2D0E0D391.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/3130332e3135372e3131362e302f32332d3234203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.116.0/23 Signature Algorithm: sha256WithRSAEncryption 83:0c:6c:b0:3b:e9:95:5f:16:69:9e:ee:bf:e1:1a:2e:62:2c: 0f:10:62:c5:4e:fd:08:e6:ff:c1:b8:5e:11:47:1f:26:bf:4e: e9:ce:43:4a:a2:79:1d:3b:1f:d2:17:8c:0d:97:54:23:fb:47: 0e:58:0f:17:47:fb:aa:d5:19:37:9b:ba:26:66:55:2b:8b:39: 95:8a:b9:d8:a2:90:73:40:90:9e:5d:04:dd:ba:d2:85:42:8b: da:ae:10:54:f0:67:92:cb:cb:b4:2a:b4:70:9f:04:99:1b:cd: 2c:7c:d5:42:86:0a:d8:a3:06:d7:a8:e0:5a:b6:9b:b8:28:d3: 4f:ba:5a:f9:e7:af:c2:20:0b:0d:92:09:f1:f8:3e:00:f5:be: 10:60:a0:bd:8a:a8:1d:be:5d:9a:f4:30:1b:c4:0a:89:a3:6a: 7e:d8:05:2c:d2:44:86:33:fc:77:0e:23:66:53:5c:ed:2b:12: f2:5b:4f:4e:a4:bb:73:ee:6b:19:03:a4:2b:0d:bd:84:7c:43: 8d:f7:53:c7:83:ac:3b:a7:70:bb:eb:2b:5b:98:3e:ba:22:e7: 0f:11:47:6a:2f:a8:b3:95:30:1f:95:36:e6:86:2c:0b:4b:4c: 87:92:06:14:cf:2c:63:57:7e:c7:09:5b:2a:cd:a6:b1:dc:25: 22:92:35:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQaeF34l8WADzMvPg2ykZMIHSaVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ0Q0JFNjUxQUEyMjBGOTA4OEU0REJCQkM5N0JCRTJE MEUwRDM5MTAeFw0yNjA1MDMwMjEyMzZaFw0yNzA1MDIwMjE3MzZaMDMxMTAvBgNV BAMTKDJFRjY4NTQ4MzBFNzM2RUZDOUM1MTgyM0IzOEZGNDY3QjMzMDI5OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQjo0pjDjcEOWZgoz1TcY15huB pOz77q7wb6UvRAVs9hEUYWbce8ZsFYtbJfVT9tluLQcR6R7x5tKH1BvDyAon/o2U diGRf5PdW83Ug4dRmEQIpbEc+RjyzXIjhR49PrsmCKEUIYotImSlApq9IuGf9wCJ BFDUfe8EzflyArI2wAIRzAeNUwm7IMLBEN6dyK1yKECrYy6BIukFLB3iSvc1EuLT honvt+WhmZqaFE2dfc0On+7/Cu6LAMyyHW3lPnyK2nRSD9+l0ggKmfMvBQcNHFbg bgvlIsF9pM2vPki8JpLdN9hV7XrNLuWLzG/unNg8L3Ku6fbTLC0MEEW53hr3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULvaFSDDnNu/JxRgjs4/0Z7MwKZEwHwYDVR0j BBgwFoAUTUy+ZRqiIPkIjk27vJe74tDg05EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWQwN2UzZDgtOWJmYy00NDgzLWEyZGQtYWZhNDU5MzgxMWU1LzAvNEQ0Q0JFNjUx QUEyMjBGOTA4OEU0REJCQkM5N0JCRTJEMEUwRDM5MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RDRDQkU2NTFBQTIyMEY5MDg4RTREQkJCQzk3QkJFMkQwRTBE MzkxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkMDdlM2Q4LTliZmMtNDQ4My1h MmRkLWFmYTQ1OTM4MTFlNS8wLzMxMzAzMzJlMzEzNTM3MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnXQwDQYJ KoZIhvcNAQELBQADggEBAIMMbLA76ZVfFmme7r/hGi5iLA8QYsVO/Qjm/8G4XhFH Hya/TunOQ0qieR07H9IXjA2XVCP7Rw5YDxdH+6rVGTebuiZmVSuLOZWKudiikHNA kJ5dBN260oVCi9quEFTwZ5LLy7QqtHCfBJkbzSx81UKGCtijBteo4Fq2m7go00+6 Wvnnr8IgCw2SCfH4PgD1vhBgoL2KqB2+XZr0MBvEComjan7YBSzSRIYz/HcOI2ZT XO0rEvJbT06ku3PuaxkDpCsNvYR8Q433U8eDrDuncLvrK1uYProi5w8RR2ovqLOV MB+VNuaGLAtLTIeSBhTPLGNXfscJWyrNprHcJSKSNUM= -----END CERTIFICATE-----Generated at Tue May 5 16:56:49 2026 by rpki-client