$ rpki-client -vvf rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa File: 3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 7fp5Ub3jhSAS7agpOvlqaj1locBlJuu/plnhXOCrJf0= Subject key identifier: 67:2C:FA:2D:90:CF:FD:5E:5E:DA:D1:F7:CA:63:7E:EA:4D:4C:E3:2B Certificate issuer: /CN=B159D33D3522D27CDFCF4C81911382E2AB8C5F60 Certificate serial: 3664F063C7D0C4AA27A60E3571182DF815C8ADA9 Authority key identifier: B1:59:D3:3D:35:22:D2:7C:DF:CF:4C:81:91:13:82:E2:AB:8C:5F:60 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 02:25:37 +0000 ROA not before: Sun 03 May 2026 02:20:37 +0000 ROA not after: Sun 02 May 2027 02:25:37 +0000 asID: 9341 IP address blocks: 103.245.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.crl rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:64:f0:63:c7:d0:c4:aa:27:a6:0e:35:71:18:2d:f8:15:c8:ad:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B159D33D3522D27CDFCF4C81911382E2AB8C5F60 Validity Not Before: May 3 02:20:37 2026 GMT Not After : May 2 02:25:37 2027 GMT Subject: CN=672CFA2D90CFFD5E5EDAD1F7CA637EEA4D4CE32B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ea:61:3f:d8:78:4b:f9:8d:ac:85:e6:da:de: d7:04:e4:56:60:f4:20:aa:0a:02:5d:9e:ef:a4:4c: 32:71:cc:b2:75:ba:93:74:fe:69:0d:c0:54:89:8a: b2:e6:e6:e7:77:61:5f:3c:92:49:df:42:cc:7a:f4: f4:c8:63:60:b3:78:89:34:c3:19:64:40:8d:ce:84: cb:21:81:e3:4d:70:e3:5b:a1:2f:f7:58:45:f0:26: f2:d2:19:7a:c4:ef:19:db:1f:09:83:fd:91:48:2d: b1:c1:ac:f4:a4:fb:67:21:f1:7d:fd:b7:40:3f:2b: d9:f2:c7:c5:ab:bf:0f:16:e7:5c:ee:4e:98:7e:4c: fa:8a:4b:78:3e:4c:60:e5:8a:e3:d8:5d:c5:56:3c: 34:a2:a9:85:ee:a6:39:0a:7a:f3:6c:07:72:bd:45: 2b:21:ea:7c:86:4d:31:be:ae:79:c7:47:da:e1:ab: a7:05:dd:73:62:14:94:ce:1e:9d:ea:ca:83:98:7d: e5:27:ce:21:2c:82:80:59:ef:f1:36:b1:ec:96:96: e5:a4:c4:de:92:db:c5:54:88:3a:eb:86:99:52:a4: 2e:55:2c:be:16:96:f9:1c:9c:fb:ed:35:ba:4b:3f: 60:3f:dc:dc:a0:b3:10:5f:fe:60:5a:bb:b7:1a:b9: 5d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2C:FA:2D:90:CF:FD:5E:5E:DA:D1:F7:CA:63:7E:EA:4D:4C:E3:2B X509v3 Authority Key Identifier: keyid:B1:59:D3:3D:35:22:D2:7C:DF:CF:4C:81:91:13:82:E2:AB:8C:5F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.178.0/24 Signature Algorithm: sha256WithRSAEncryption 12:d7:ec:b6:7a:e6:5c:fa:5f:3c:f5:0f:82:97:a1:8f:81:a7: 41:8f:46:a4:02:64:d0:52:b0:79:0e:1c:92:f2:ad:d8:8a:99: 5a:97:c3:dc:2f:5c:de:25:36:1d:0c:32:e2:f9:6b:08:97:3e: d7:06:c8:86:71:f4:56:b8:cd:e1:e5:9e:b1:c5:64:16:ce:b3: da:6e:e5:f6:2f:09:60:07:32:f0:be:30:95:f8:ff:93:46:6c: 0e:28:5e:d5:67:89:28:1f:68:2b:ca:47:82:81:b4:d1:b1:81: 1b:97:40:2e:1b:37:12:c6:1b:21:18:2b:5f:d0:b5:9b:c9:b0: 55:7f:9c:15:0a:4b:b4:8b:42:95:b9:33:a0:ab:42:d4:09:65: f2:06:d6:51:a2:45:ac:ee:86:c5:f7:b6:e0:98:c3:ec:e4:e5: ea:8b:cf:0f:0c:04:a0:40:a2:a5:99:d3:b8:3e:c8:a8:9d:92: 74:9d:09:3d:2f:f5:18:da:3a:a2:05:6a:37:e8:aa:66:eb:9e: 1f:02:22:22:e2:21:2e:87:c9:5f:2d:0c:8d:07:ac:05:77:08: 25:1b:de:0d:62:61:17:9e:28:30:11:9c:16:e0:ea:46:43:b1: b5:a1:e2:a9:35:2a:01:ac:ef:f2:7b:86:16:41:73:da:c7:41: 87:ba:b9:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNmTwY8fQxKonpg41cRgt+BXIrakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE1OUQzM0QzNTIyRDI3Q0RGQ0Y0QzgxOTExMzgyRTJB QjhDNUY2MDAeFw0yNjA1MDMwMjIwMzdaFw0yNzA1MDIwMjI1MzdaMDMxMTAvBgNV BAMTKDY3MkNGQTJEOTBDRkZENUU1RURBRDFGN0NBNjM3RUVBNEQ0Q0UzMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu6mE/2HhL+Y2sheba3tcE5FZg 9CCqCgJdnu+kTDJxzLJ1upN0/mkNwFSJirLm5ud3YV88kknfQsx69PTIY2CzeIk0 wxlkQI3OhMshgeNNcONboS/3WEXwJvLSGXrE7xnbHwmD/ZFILbHBrPSk+2ch8X39 t0A/K9nyx8Wrvw8W51zuTph+TPqKS3g+TGDliuPYXcVWPDSiqYXupjkKevNsB3K9 RSsh6nyGTTG+rnnHR9rhq6cF3XNiFJTOHp3qyoOYfeUnziEsgoBZ7/E2seyWluWk xN6S28VUiDrrhplSpC5VLL4WlvkcnPvtNbpLP2A/3NygsxBf/mBau7cauV39AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZyz6LZDP/V5e2tH3ymN+6k1M4yswHwYDVR0j BBgwFoAUsVnTPTUi0nzfz0yBkROC4quMX2AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzcwYzQ3NTktNDNiOC00ZTgwLWJlOGMtODNjYmU5ZjgyMzFiLzAvQjE1OUQzM0Qz NTIyRDI3Q0RGQ0Y0QzgxOTExMzgyRTJBQjhDNUY2MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMTU5RDMzRDM1MjJEMjdDREZDRjRDODE5MTEzODJFMkFCOEM1 RjYwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM3MGM0NzU5LTQzYjgtNGU4MC1i ZThjLTgzY2JlOWY4MjMxYi8wLzMxMzAzMzJlMzIzNDM1MmUzMTM3MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf1sjANBgkqhkiG 9w0BAQsFAAOCAQEAEtfstnrmXPpfPPUPgpehj4GnQY9GpAJk0FKweQ4ckvKt2IqZ WpfD3C9c3iU2HQwy4vlrCJc+1wbIhnH0VrjN4eWescVkFs6z2m7l9i8JYAcy8L4w lfj/k0ZsDihe1WeJKB9oK8pHgoG00bGBG5dALhs3EsYbIRgrX9C1m8mwVX+cFQpL tItClbkzoKtC1All8gbWUaJFrO6Gxfe24JjD7OTl6ovPDwwEoECipZnTuD7IqJ2S dJ0JPS/1GNo6ogVqN+iqZuueHwIiIuIhLofJXy0MjQesBXcIJRveDWJhF54oMBGc FuDqRkOxtaHiqTUqAazv8nuGFkFz2sdBh7q56A== -----END CERTIFICATE-----Generated at Tue May 5 13:29:46 2026 by rpki-client