$ rpki-client -vvf rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa File: 3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa (raw, json) Hash identifier: vEKBFb87szZHK58hOoWh27DXWyqF6KjiEygYywKcCcA= Subject key identifier: D4:A8:3B:95:3D:06:A7:49:21:AC:60:7F:B4:9A:41:6D:5A:F5:54:4C Certificate issuer: /CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Certificate serial: 212955CBBC8B122DC674ED6B3C4622DC74D8638D Authority key identifier: 8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa Signing time: Sun 03 May 2026 02:33:10 +0000 ROA not before: Sun 03 May 2026 02:28:10 +0000 ROA not after: Sun 02 May 2027 02:33:10 +0000 asID: 149712 IP address blocks: 103.186.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:29:55:cb:bc:8b:12:2d:c6:74:ed:6b:3c:46:22:dc:74:d8:63:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Validity Not Before: May 3 02:28:10 2026 GMT Not After : May 2 02:33:10 2027 GMT Subject: CN=D4A83B953D06A74921AC607FB49A416D5AF5544C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8a:f9:c3:d8:b3:ca:33:b6:58:df:93:cb:cf: 11:71:68:3f:30:f2:c8:5f:16:dd:eb:c0:11:3f:31: c9:68:12:01:01:36:a0:28:1d:36:1b:98:29:a5:29: 58:22:b1:9f:98:70:35:b3:e0:94:48:89:d2:86:86: 74:55:af:5a:90:24:97:34:21:d9:b3:d2:52:9d:86: 2b:9c:2f:d2:20:d4:0c:04:57:ab:23:ea:32:bb:95: 91:a7:be:d6:d8:32:3c:ed:1f:da:54:f5:31:54:d3: f1:9b:f6:ab:f8:be:c1:0b:e0:6a:de:f7:40:16:3b: 7e:3f:05:00:65:bf:a9:69:1f:9e:f7:6c:c7:23:c6: 6e:91:3a:2a:c0:a0:83:3e:d0:b6:a2:1d:f5:46:c2: 94:e9:b0:1e:0b:f2:98:1b:e9:60:a2:74:03:e9:bc: 62:f7:18:0e:75:d1:d4:f1:5e:43:17:04:49:d2:11: a8:77:f4:47:47:de:60:af:5e:b4:7b:de:2f:53:5d: 08:c5:d2:67:d3:5d:2b:88:9a:fc:de:43:9d:bf:68: 23:01:18:cd:1a:99:d1:c0:04:1e:0f:16:7e:72:59: b7:ce:11:81:ff:5c:75:07:73:59:c1:0f:03:d5:03: e1:30:26:68:eb:ed:14:bf:60:29:2c:6b:7e:02:93: 6b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A8:3B:95:3D:06:A7:49:21:AC:60:7F:B4:9A:41:6D:5A:F5:54:4C X509v3 Authority Key Identifier: keyid:8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.194.0/23 Signature Algorithm: sha256WithRSAEncryption 62:c1:c9:18:59:3e:27:72:1b:a6:a0:38:a8:46:96:a7:98:78: 6a:7a:d6:a0:01:7d:70:8b:28:f5:84:d3:a3:8b:29:f8:35:3f: 4c:1f:65:0c:0c:6f:22:fa:05:35:4e:de:8e:51:a3:fc:40:85: cc:3e:fc:c8:95:a1:71:a7:6e:d6:42:97:b9:86:2a:50:31:db: 94:1f:1d:8a:b3:4d:c6:7e:57:6a:15:3f:cf:51:07:76:6d:64: e1:31:7a:b5:2a:18:a9:96:17:37:a9:e8:9d:96:7e:6f:eb:a5: 7d:bf:1b:1e:b4:12:1f:a6:bc:ce:75:a8:c5:32:93:fe:55:ba: 10:e7:0f:8f:70:12:f2:42:fe:2e:f4:40:90:00:37:71:cb:bc: 92:4d:98:da:b2:e1:82:de:50:87:75:e2:d1:9e:47:c1:11:98: a4:35:bc:32:97:8c:e3:96:df:44:96:93:ba:33:93:e6:c5:ea: 49:95:b1:e6:2e:49:15:be:89:05:c7:c0:4c:3f:19:03:2b:93: 81:3e:ee:96:5d:e0:ed:b8:8a:17:1a:79:ca:84:dc:da:3d:46: 96:f1:e4:7f:26:f7:4e:9e:d2:ad:1a:26:dc:be:8b:90:e0:87: 27:35:10:81:6c:f8:03:7b:a9:42:18:5a:b6:78:d2:c7:5b:30: 09:05:1e:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUISlVy7yLEi3GdO1rPEYi3HTYY40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU3RDI5QjhCMkU2RjJGMDlCNTA3RkMzNkIzMTczMTYy QTQzMTZFOTAeFw0yNjA1MDMwMjI4MTBaFw0yNzA1MDIwMjMzMTBaMDMxMTAvBgNV BAMTKEQ0QTgzQjk1M0QwNkE3NDkyMUFDNjA3RkI0OUE0MTZENUFGNTU0NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjivnD2LPKM7ZY35PLzxFxaD8w 8shfFt3rwBE/McloEgEBNqAoHTYbmCmlKVgisZ+YcDWz4JRIidKGhnRVr1qQJJc0 Idmz0lKdhiucL9Ig1AwEV6sj6jK7lZGnvtbYMjztH9pU9TFU0/Gb9qv4vsEL4Gre 90AWO34/BQBlv6lpH573bMcjxm6ROirAoIM+0LaiHfVGwpTpsB4L8pgb6WCidAPp vGL3GA510dTxXkMXBEnSEah39EdH3mCvXrR73i9TXQjF0mfTXSuImvzeQ52/aCMB GM0amdHABB4PFn5yWbfOEYH/XHUHc1nBDwPVA+EwJmjr7RS/YCksa34Ck2vFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1Kg7lT0Gp0khrGB/tJpBbVr1VEwwHwYDVR0j BBgwFoAUjn0puLLm8vCbUH/DazFzFipDFukwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTI1MmVhZDMtZGM4Zi00ZDg2LWFmY2YtYTE0MGU1Yjg3NTMyLzAvOEU3RDI5QjhC MkU2RjJGMDlCNTA3RkMzNkIzMTczMTYyQTQzMTZFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RTdEMjlCOEIyRTZGMkYwOUI1MDdGQzM2QjMxNzMxNjJBNDMx NkU5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyNTJlYWQzLWRjOGYtNGQ4Ni1h ZmNmLWExNDBlNWI4NzUzMi8wLzMxMzAzMzJlMzEzODM2MmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnusIwDQYJ KoZIhvcNAQELBQADggEBAGLByRhZPidyG6agOKhGlqeYeGp61qABfXCLKPWE06OL Kfg1P0wfZQwMbyL6BTVO3o5Ro/xAhcw+/MiVoXGnbtZCl7mGKlAx25QfHYqzTcZ+ V2oVP89RB3ZtZOExerUqGKmWFzep6J2Wfm/rpX2/Gx60Eh+mvM51qMUyk/5VuhDn D49wEvJC/i70QJAAN3HLvJJNmNqy4YLeUId14tGeR8ERmKQ1vDKXjOOW30SWk7oz k+bF6kmVseYuSRW+iQXHwEw/GQMrk4E+7pZd4O24ihcaecqE3No9Rpbx5H8m906e 0q0aJty+i5Dghyc1EIFs+AN7qUIYWrZ40sdbMAkFHiI= -----END CERTIFICATE-----Generated at Tue May 5 19:12:57 2026 by rpki-client