$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135382e302f32342d3234203d3e203234343239.roa File: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (raw, json) Hash identifier: fBRRCTp4CwR8YGVVkOjEeR/NmxPJKKKc/fK4TrmWWrk= Subject key identifier: D9:C1:42:8A:37:8A:82:6E:54:7E:8D:BC:DA:11:A8:70:08:89:95:4E Certificate issuer: /CN=B69A98F297C5A1D4B56FAFC494906B492BA4C200 Certificate serial: 1893AA1BD123E2B5EC2759D68A1813872A06A174 Authority key identifier: B6:9A:98:F2:97:C5:A1:D4:B5:6F:AF:C4:94:90:6B:49:2B:A4:C2:00 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B69A98F297C5A1D4B56FAFC494906B492BA4C200.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135382e302f32342d3234203d3e203234343239.roa Signing time: Sun 03 May 2026 02:26:27 +0000 ROA not before: Sun 03 May 2026 02:21:27 +0000 ROA not after: Sun 02 May 2027 02:26:27 +0000 asID: 24429 IP address blocks: 103.73.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/B69A98F297C5A1D4B56FAFC494906B492BA4C200.crl rsync://rpki-rsync.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/B69A98F297C5A1D4B56FAFC494906B492BA4C200.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B69A98F297C5A1D4B56FAFC494906B492BA4C200.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:93:aa:1b:d1:23:e2:b5:ec:27:59:d6:8a:18:13:87:2a:06:a1:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B69A98F297C5A1D4B56FAFC494906B492BA4C200 Validity Not Before: May 3 02:21:27 2026 GMT Not After : May 2 02:26:27 2027 GMT Subject: CN=D9C1428A378A826E547E8DBCDA11A8700889954E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:37:ab:cd:27:99:cf:93:3a:3b:72:f2:79:1d: b1:f1:61:5e:c6:cb:1b:3f:61:42:97:70:47:0e:ab: e1:10:cb:e1:2c:d7:59:0c:03:a1:e3:33:be:87:9b: 8d:85:52:5d:29:fa:2c:ac:c9:05:3f:ac:54:ac:bc: e0:6f:f5:92:f3:1e:99:31:ab:a5:54:d6:00:27:a9: 2f:43:ca:6a:d2:73:a1:0d:e1:c2:cb:52:e8:5e:76: 9f:0b:2c:44:19:33:b6:71:ef:03:c5:42:58:66:a6: 84:2b:b4:e2:1d:c1:4b:ae:5e:13:3e:ef:b6:b8:8f: 42:79:61:1d:77:2d:15:9b:a3:53:ef:b3:f6:f0:87: 76:f1:14:28:9b:04:da:48:5c:41:0a:16:da:0a:49: 28:d2:67:f8:eb:76:1e:4a:16:4b:de:c2:68:6d:35: a9:19:1e:a9:c6:2e:20:1b:23:8c:fb:4a:97:1f:d1: b8:d2:84:e8:da:ac:54:a1:78:60:a8:ed:b4:07:7a: 83:4b:78:db:5b:c2:c6:2a:4b:6f:08:30:f4:05:5f: cf:fd:a9:f3:b4:1e:30:2a:48:ef:67:ba:9e:9d:a5: 01:41:67:94:c7:60:31:eb:b4:eb:b4:05:aa:43:d3: 5c:5a:92:89:f3:61:a9:06:12:fb:35:03:f2:ea:0d: ca:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C1:42:8A:37:8A:82:6E:54:7E:8D:BC:DA:11:A8:70:08:89:95:4E X509v3 Authority Key Identifier: keyid:B6:9A:98:F2:97:C5:A1:D4:B5:6F:AF:C4:94:90:6B:49:2B:A4:C2:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/B69A98F297C5A1D4B56FAFC494906B492BA4C200.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B69A98F297C5A1D4B56FAFC494906B492BA4C200.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135382e302f32342d3234203d3e203234343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.158.0/24 Signature Algorithm: sha256WithRSAEncryption 12:6d:b6:96:ef:d0:7e:bd:f2:df:09:62:48:1c:7c:5e:83:fd: dd:09:b7:1b:32:31:45:6e:51:27:a1:eb:6f:2e:54:b8:98:db: a5:06:51:43:53:c8:36:dc:16:41:d9:e3:d1:bf:bd:83:f8:e8: cd:d0:76:83:c8:15:a0:7a:18:01:e9:fe:cd:9a:8c:3a:fa:6f: 9a:22:aa:b5:42:17:c4:5a:79:a8:02:1a:83:e6:f3:73:78:25: b5:c7:37:9d:5b:10:d7:1b:6a:6e:ed:0b:28:0e:84:84:b8:4d: cd:14:47:a9:2c:cc:d1:cd:87:4f:0e:de:28:89:17:74:24:a9: 1a:a9:33:94:02:5d:32:1f:94:6d:28:27:fe:56:f9:60:94:50: fa:3d:47:cb:93:b3:be:3a:67:96:4b:e3:aa:0a:5e:a9:69:4f: 2e:16:0c:da:ca:1b:35:cc:d5:29:4d:9b:54:3c:0b:cb:c1:2a: 43:cd:15:b3:f5:7b:3d:42:05:df:b7:f8:05:b4:e5:64:79:cb: d7:d0:b6:6c:e3:0b:a9:5f:5a:db:51:b6:90:e8:d6:5d:e1:86: 35:a2:8f:a5:55:de:f0:e6:e4:01:1c:39:ae:04:81:b1:cc:06: 54:43:87:e1:84:ae:43:ee:17:1a:88:f1:73:f8:08:8b:f8:b8: c5:31:f4:91 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGJOqG9Ej4rXsJ1nWihgThyoGoXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY5QTk4RjI5N0M1QTFENEI1NkZBRkM0OTQ5MDZCNDky QkE0QzIwMDAeFw0yNjA1MDMwMjIxMjdaFw0yNzA1MDIwMjI2MjdaMDMxMTAvBgNV BAMTKEQ5QzE0MjhBMzc4QTgyNkU1NDdFOERCQ0RBMTFBODcwMDg4OTk1NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClN6vNJ5nPkzo7cvJ5HbHxYV7G yxs/YUKXcEcOq+EQy+Es11kMA6HjM76Hm42FUl0p+iysyQU/rFSsvOBv9ZLzHpkx q6VU1gAnqS9DymrSc6EN4cLLUuhedp8LLEQZM7Zx7wPFQlhmpoQrtOIdwUuuXhM+ 77a4j0J5YR13LRWbo1Pvs/bwh3bxFCibBNpIXEEKFtoKSSjSZ/jrdh5KFkvewmht NakZHqnGLiAbI4z7Spcf0bjShOjarFSheGCo7bQHeoNLeNtbwsYqS28IMPQFX8/9 qfO0HjAqSO9nup6dpQFBZ5THYDHrtOu0BapD01xakonzYakGEvs1A/LqDcrJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2cFCijeKgm5Ufo282hGocAiJlU4wHwYDVR0j BBgwFoAUtpqY8pfFodS1b6/ElJBrSSukwgAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E0MDZjZGItMTc5MS00NzhkLTlkMjgtOWUzN2E2ZjgwOWNjLzAvQjY5QTk4RjI5 N0M1QTFENEI1NkZBRkM0OTQ5MDZCNDkyQkE0QzIwMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNjlBOThGMjk3QzVBMUQ0QjU2RkFGQzQ5NDkwNkI0OTJCQTRD MjAwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNDA2Y2RiLTE3OTEtNDc4ZC05 ZDI4LTllMzdhNmY4MDljYy8wLzMxMzAzMzJlMzczMzJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdJnjANBgkqhkiG 9w0BAQsFAAOCAQEAEm22lu/Qfr3y3wliSBx8XoP93Qm3GzIxRW5RJ6Hrby5UuJjb pQZRQ1PINtwWQdnj0b+9g/jozdB2g8gVoHoYAen+zZqMOvpvmiKqtUIXxFp5qAIa g+bzc3gltcc3nVsQ1xtqbu0LKA6EhLhNzRRHqSzM0c2HTw7eKIkXdCSpGqkzlAJd Mh+UbSgn/lb5YJRQ+j1Hy5OzvjpnlkvjqgpeqWlPLhYM2sobNczVKU2bVDwLy8Eq Q80Vs/V7PUIF37f4BbTlZHnL19C2bOMLqV9a21G2kOjWXeGGNaKPpVXe8ObkARw5 rgSBscwGVEOH4YSuQ+4XGojxc/gIi/i4xTH0kQ== -----END CERTIFICATE-----Generated at Tue May 5 18:56:46 2026 by rpki-client