$ rpki-client -vvf rpki-rsync.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa File: 3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa (raw, json) Hash identifier: XBcafkxD6M3SvFYGO48/RaxEmuX/AwJyNlM1io7xsgc= Subject key identifier: 22:26:EC:79:D7:0B:E8:CA:B1:10:1B:16:B0:B4:8A:10:3C:7F:69:FE Certificate issuer: /CN=B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4 Certificate serial: 776554B447288CB1A323C83E3C40844B595C2737 Authority key identifier: B0:BF:B6:6B:C0:AE:9B:A6:A8:FA:29:C8:B0:33:8C:97:7C:DD:A9:E4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa Signing time: Sun 03 May 2026 02:20:58 +0000 ROA not before: Sun 03 May 2026 02:15:58 +0000 ROA not after: Sun 02 May 2027 02:20:58 +0000 asID: 134651 IP address blocks: 103.208.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4.crl rsync://rpki-rsync.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 00:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:65:54:b4:47:28:8c:b1:a3:23:c8:3e:3c:40:84:4b:59:5c:27:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4 Validity Not Before: May 3 02:15:58 2026 GMT Not After : May 2 02:20:58 2027 GMT Subject: CN=2226EC79D70BE8CAB1101B16B0B48A103C7F69FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d2:26:11:dc:73:a4:1f:9d:c7:38:48:20:67: 1c:2e:84:4a:1f:c9:78:55:6b:2b:7f:7e:f5:b6:89: 7e:0f:c9:c2:a0:5c:62:e5:db:55:36:c0:6a:4c:db: 7e:49:89:69:7b:dd:8a:b9:93:4f:ef:c5:71:56:77: 66:51:e2:8e:c8:f1:c7:91:d7:35:99:20:80:4b:3e: c2:91:5b:1a:ac:7c:59:0d:0d:d6:af:0b:65:fd:13: 70:37:87:7d:fc:92:40:16:61:45:2b:0f:93:00:4f: cc:1e:3d:9b:4c:84:76:40:22:64:20:6b:93:a2:88: 7b:66:a6:05:8e:d8:2e:8d:77:2c:ad:7f:7a:c8:42: 9b:89:2a:58:94:97:e2:bf:11:8b:11:59:fe:99:49: 8e:c7:78:c3:f7:48:2d:84:da:6d:5d:d2:98:07:b5: 5b:35:75:16:1e:93:52:c0:36:69:51:c1:e3:56:06: 51:38:cd:b3:49:3a:2a:7f:76:53:04:30:c6:f2:c1: 16:74:19:54:65:ef:a1:6d:5c:5d:d4:a4:b2:77:b7: b4:a7:46:c3:da:73:3b:50:2c:44:79:79:5f:91:91: 15:10:3e:1e:5f:37:38:ee:6f:82:65:15:a5:f8:48: 31:5c:6f:ea:ef:28:f4:3c:28:3f:12:4f:1d:33:a8: 2f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:26:EC:79:D7:0B:E8:CA:B1:10:1B:16:B0:B4:8A:10:3C:7F:69:FE X509v3 Authority Key Identifier: keyid:B0:BF:B6:6B:C0:AE:9B:A6:A8:FA:29:C8:B0:33:8C:97:7C:DD:A9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0BFB66BC0AE9BA6A8FA29C8B0338C977CDDA9E4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.204.0/22 Signature Algorithm: sha256WithRSAEncryption 80:8e:74:68:ae:c3:25:0b:81:84:20:d7:89:77:1d:53:7a:9b: 77:59:31:ed:a8:70:b9:2f:ba:ce:42:e9:58:68:d1:fa:4a:d0: cf:0d:3e:f8:39:de:d2:7e:e0:93:3e:5b:34:cf:cb:7f:17:ed: 76:96:23:d2:42:cb:19:fb:89:08:30:8a:f1:9f:69:bc:fb:ce: bd:f1:f2:22:e4:f7:a1:fd:dc:42:9e:fd:c9:a4:43:16:82:f7: 7d:27:36:5b:ac:24:01:23:70:a1:f2:f9:ea:9f:94:94:0e:13: 2f:21:89:54:d5:a3:2d:a9:52:6e:65:bd:39:f1:00:e8:77:9b: c8:42:07:4d:26:58:87:0d:93:cc:49:0e:ae:fb:d5:78:d2:ab: 38:66:16:cb:23:8e:d2:c8:58:13:85:7c:89:22:d0:3a:8c:fe: 32:71:c1:21:aa:c0:0f:96:ee:59:bc:4f:ff:35:f0:79:e0:b3: a7:3e:24:6f:7f:76:96:e4:70:b1:e9:29:68:45:d7:f0:3d:03: 77:e0:37:d9:a4:77:e8:86:7c:71:b4:2d:55:d7:f5:2e:b8:3b: ee:a4:e2:42:a2:c3:9f:1b:1f:5f:29:8d:4b:a1:35:f2:38:0e: 12:39:58:90:d8:4d:58:e2:eb:ea:3b:70:6a:5c:57:af:4d:ca: 1d:5f:46:32 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd2VUtEcojLGjI8g+PECES1lcJzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBCRkI2NkJDMEFFOUJBNkE4RkEyOUM4QjAzMzhDOTc3 Q0REQTlFNDAeFw0yNjA1MDMwMjE1NThaFw0yNzA1MDIwMjIwNThaMDMxMTAvBgNV BAMTKDIyMjZFQzc5RDcwQkU4Q0FCMTEwMUIxNkIwQjQ4QTEwM0M3RjY5RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX0iYR3HOkH53HOEggZxwuhEof yXhVayt/fvW2iX4PycKgXGLl21U2wGpM235JiWl73Yq5k0/vxXFWd2ZR4o7I8ceR 1zWZIIBLPsKRWxqsfFkNDdavC2X9E3A3h338kkAWYUUrD5MAT8wePZtMhHZAImQg a5OiiHtmpgWO2C6Ndyytf3rIQpuJKliUl+K/EYsRWf6ZSY7HeMP3SC2E2m1d0pgH tVs1dRYek1LANmlRweNWBlE4zbNJOip/dlMEMMbywRZ0GVRl76FtXF3UpLJ3t7Sn RsPacztQLER5eV+RkRUQPh5fNzjub4JlFaX4SDFcb+rvKPQ8KD8STx0zqC9VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIibsedcL6MqxEBsWsLSKEDx/af4wHwYDVR0j BBgwFoAUsL+2a8Cum6ao+inIsDOMl3zdqeQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mjc3MjdjM2UtOWMxYS00NmRlLWEyYjgtYzg4YjkwMzk5ZjNkLzAvQjBCRkI2NkJD MEFFOUJBNkE4RkEyOUM4QjAzMzhDOTc3Q0REQTlFNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMEJGQjY2QkMwQUU5QkE2QThGQTI5QzhCMDMzOEM5NzdDRERB OUU0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI3NzI3YzNlLTljMWEtNDZkZS1h MmI4LWM4OGI5MDM5OWYzZC8wLzMxMzAzMzJlMzIzMDM4MmUzMjMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0MwwDQYJ KoZIhvcNAQELBQADggEBAICOdGiuwyULgYQg14l3HVN6m3dZMe2ocLkvus5C6Vho 0fpK0M8NPvg53tJ+4JM+WzTPy38X7XaWI9JCyxn7iQgwivGfabz7zr3x8iLk96H9 3EKe/cmkQxaC930nNlusJAEjcKHy+eqflJQOEy8hiVTVoy2pUm5lvTnxAOh3m8hC B00mWIcNk8xJDq771XjSqzhmFssjjtLIWBOFfIki0DqM/jJxwSGqwA+W7lm8T/81 8Hngs6c+JG9/dpbkcLHpKWhF1/A9A3fgN9mkd+iGfHG0LVXX9S64O+6k4kKiw58b H18pjUuhNfI4DhI5WJDYTVji6+o7cGpcV69Nyh1fRjI= -----END CERTIFICATE-----Generated at Thu May 7 04:29:46 2026 by rpki-client