$ rpki-client -vvf rpki-rsync.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa File: 3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa (raw, json) Hash identifier: VH+O4TH4eDJSI25JypJZ7rsLYdNS/p0NBbNxGChAQqQ= Subject key identifier: 0D:97:D9:4C:57:37:BB:BF:E3:7E:A0:D6:F4:DC:F8:26:34:93:AD:1E Certificate issuer: /CN=27B0A2FA02827040E4DF65067C7A0D50DA5154E6 Certificate serial: 3198E1322280B402ED10F3FE2BD8B443F9950D81 Authority key identifier: 27:B0:A2:FA:02:82:70:40:E4:DF:65:06:7C:7A:0D:50:DA:51:54:E6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/27B0A2FA02827040E4DF65067C7A0D50DA5154E6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa Signing time: Sun 03 May 2026 02:27:42 +0000 ROA not before: Sun 03 May 2026 02:22:42 +0000 ROA not after: Sun 02 May 2027 02:27:42 +0000 asID: 150519 IP address blocks: 103.141.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/27B0A2FA02827040E4DF65067C7A0D50DA5154E6.crl rsync://rpki-rsync.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/27B0A2FA02827040E4DF65067C7A0D50DA5154E6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/27B0A2FA02827040E4DF65067C7A0D50DA5154E6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:98:e1:32:22:80:b4:02:ed:10:f3:fe:2b:d8:b4:43:f9:95:0d:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B0A2FA02827040E4DF65067C7A0D50DA5154E6 Validity Not Before: May 3 02:22:42 2026 GMT Not After : May 2 02:27:42 2027 GMT Subject: CN=0D97D94C5737BBBFE37EA0D6F4DCF8263493AD1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:53:93:0d:13:24:bb:9b:4d:17:cb:16:4a: ec:5d:0f:16:23:e4:2e:24:13:2e:9e:41:2c:4c:62: 24:c1:88:d4:e6:a8:dc:43:67:f4:5a:cf:3b:1a:79: 64:24:a4:bc:05:06:28:0c:55:eb:70:fe:b2:5c:12: b7:2e:35:b9:ae:31:f3:15:b8:c5:c5:d9:9a:55:aa: d8:80:b1:0d:99:08:0c:d3:83:be:d8:78:e1:52:1c: d5:ed:c5:6a:5a:25:d9:34:d9:48:f5:3b:ef:27:0c: ab:12:69:11:8e:e8:9e:ed:9c:77:d9:d5:7d:bc:83: 63:7e:be:ca:2f:7b:4a:3d:1d:d7:88:69:bd:6b:c2: 6f:36:af:e0:6c:03:1a:7e:6c:c7:d7:08:b6:c7:5b: 1c:90:66:96:95:55:71:e0:2c:f5:41:a8:e8:be:62: e7:50:d4:09:95:f7:fb:df:9c:c1:e3:15:cc:27:76: a8:9c:cc:38:69:5c:72:71:19:6a:51:ff:0c:b2:a4: dc:14:b9:df:bd:cd:d0:08:a9:04:dc:d4:c0:7a:e5: eb:20:91:11:e6:1c:ce:5f:3b:7b:cc:09:34:2e:6b: a2:b2:86:57:6a:2f:f1:94:c2:b1:41:47:e2:f8:b7: d5:77:15:d2:d5:b3:d2:0f:e3:7b:71:46:19:b2:e0: 65:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:97:D9:4C:57:37:BB:BF:E3:7E:A0:D6:F4:DC:F8:26:34:93:AD:1E X509v3 Authority Key Identifier: keyid:27:B0:A2:FA:02:82:70:40:E4:DF:65:06:7C:7A:0D:50:DA:51:54:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/27B0A2FA02827040E4DF65067C7A0D50DA5154E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/27B0A2FA02827040E4DF65067C7A0D50DA5154E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.170.0/24 Signature Algorithm: sha256WithRSAEncryption 13:d2:48:dd:1c:52:41:59:96:7e:60:ce:70:d5:8b:2e:cd:bf: f3:1f:dc:bb:6f:85:69:65:55:2c:31:a1:f3:99:71:52:23:11: 23:ab:dc:a4:4f:f4:a8:b5:7c:20:ee:fa:87:0e:ba:19:cd:5e: f7:06:64:09:aa:81:1a:7e:ee:a7:a9:3d:43:ef:bc:91:cf:88: 4e:56:d3:33:96:ea:70:cb:8b:99:09:1c:8c:0d:8c:1b:c4:2d: fe:66:21:b0:10:c6:0c:58:c4:8d:21:d9:ed:6e:87:2e:51:89: eb:eb:a8:4c:41:50:04:5d:bd:99:b9:bf:58:77:87:06:bb:f5: 05:01:f5:ac:55:d4:bb:e3:16:57:fb:fb:00:fb:ea:5a:eb:5b: 63:ae:96:86:0b:03:ad:5c:49:0c:43:3f:08:57:9f:e3:d1:c6: c3:e8:c2:45:b2:8f:7c:57:f2:0b:1f:9f:4f:78:48:a4:17:ab: 31:a9:c3:5a:3e:38:98:c3:6a:6f:f5:02:c5:35:b0:a7:45:e9: 4d:63:c7:d1:24:a2:27:49:c3:6a:52:63:e8:10:72:f1:ab:ee: b1:3d:f5:ec:2c:9b:12:d8:8c:ed:d9:87:33:0b:55:6e:0d:4d: 75:90:db:57:52:b2:44:15:4f:83:90:01:15:50:5b:08:ec:97: 3e:ec:25:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMZjhMiKAtALtEPP+K9i0Q/mVDYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCMEEyRkEwMjgyNzA0MEU0REY2NTA2N0M3QTBENTBE QTUxNTRFNjAeFw0yNjA1MDMwMjIyNDJaFw0yNzA1MDIwMjI3NDJaMDMxMTAvBgNV BAMTKDBEOTdEOTRDNTczN0JCQkZFMzdFQTBENkY0RENGODI2MzQ5M0FEMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5T1OTDRMku5tNF8sWSuxdDxYj 5C4kEy6eQSxMYiTBiNTmqNxDZ/RazzsaeWQkpLwFBigMVetw/rJcErcuNbmuMfMV uMXF2ZpVqtiAsQ2ZCAzTg77YeOFSHNXtxWpaJdk02Uj1O+8nDKsSaRGO6J7tnHfZ 1X28g2N+vsove0o9HdeIab1rwm82r+BsAxp+bMfXCLbHWxyQZpaVVXHgLPVBqOi+ YudQ1AmV9/vfnMHjFcwndqiczDhpXHJxGWpR/wyypNwUud+9zdAIqQTc1MB65esg kRHmHM5fO3vMCTQua6KyhldqL/GUwrFBR+L4t9V3FdLVs9IP43txRhmy4GWDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDZfZTFc3u7/jfqDW9Nz4JjSTrR4wHwYDVR0j BBgwFoAUJ7Ci+gKCcEDk32UGfHoNUNpRVOYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2M2ZjhjMGEtZTAzZi00MTQwLWJhMTYtODMzYWMyMjQxYWZiLzAvMjdCMEEyRkEw MjgyNzA0MEU0REY2NTA2N0M3QTBENTBEQTUxNTRFNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yN0IwQTJGQTAyODI3MDQwRTRERjY1MDY3QzdBMEQ1MERBNTE1 NEU2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjNmY4YzBhLWUwM2YtNDE0MC1i YTE2LTgzM2FjMjI0MWFmYi8wLzMxMzAzMzJlMzEzNDMxMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjaowDQYJ KoZIhvcNAQELBQADggEBABPSSN0cUkFZln5gznDViy7Nv/Mf3LtvhWllVSwxofOZ cVIjESOr3KRP9Ki1fCDu+ocOuhnNXvcGZAmqgRp+7qepPUPvvJHPiE5W0zOW6nDL i5kJHIwNjBvELf5mIbAQxgxYxI0h2e1uhy5RievrqExBUARdvZm5v1h3hwa79QUB 9axV1LvjFlf7+wD76lrrW2OuloYLA61cSQxDPwhXn+PRxsPowkWyj3xX8gsfn094 SKQXqzGpw1o+OJjDam/1AsU1sKdF6U1jx9EkoidJw2pSY+gQcvGr7rE99ewsmxLY jO3ZhzMLVW4NTXWQ21dSskQVT4OQARVQWwjslz7sJeI= -----END CERTIFICATE-----Generated at Wed May 13 10:42:29 2026 by rpki-client