$ rpki-client -vvf rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa File: 3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: 3gBu5z4wg47/tNqaD7YsE1EFFZZ6JYTR0325QFX63A0= Subject key identifier: D4:E6:E8:AD:36:4F:C9:B5:A1:03:B5:EC:14:14:4D:EB:4E:5C:30:A1 Certificate issuer: /CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Certificate serial: 443972142C5E291DA03F99E006D2A2C792B73243 Authority key identifier: 8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa Signing time: Sun 03 May 2026 02:33:11 +0000 ROA not before: Sun 03 May 2026 02:28:11 +0000 ROA not after: Sun 02 May 2027 02:33:11 +0000 asID: 48465 IP address blocks: 103.186.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:39:72:14:2c:5e:29:1d:a0:3f:99:e0:06:d2:a2:c7:92:b7:32:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Validity Not Before: May 3 02:28:11 2026 GMT Not After : May 2 02:33:11 2027 GMT Subject: CN=D4E6E8AD364FC9B5A103B5EC14144DEB4E5C30A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:74:d7:10:ff:c2:56:8c:28:4b:36:aa:03:91: 0c:28:db:13:31:b0:22:d0:95:6d:05:26:ff:5f:21: 15:7c:56:55:5d:9e:84:b5:f1:c1:7a:76:7d:9b:6c: 64:b2:e6:ac:d5:68:cd:dc:9c:a9:af:a5:bb:a0:80: 4e:9d:17:e4:21:3f:a1:1a:4f:1f:56:f6:56:b9:71: 60:2c:7d:ac:97:d9:85:76:ef:a7:cd:7c:2c:25:76: 10:c8:8d:42:0b:20:da:d1:92:1d:62:fb:2c:33:6a: bb:8d:2f:59:fe:db:71:ee:5a:1b:10:1f:d8:a3:db: 45:1a:18:d4:a8:d6:d4:4d:d7:16:8a:cf:99:a9:95: 39:c8:fc:1e:17:28:ab:f1:27:98:4f:45:01:4e:60: 6d:dd:a1:dc:56:68:31:c3:f4:20:2d:b2:7e:7e:f3: 4d:41:9e:a4:90:02:e8:f0:37:cb:5f:30:37:fe:f5: 01:73:98:e8:d2:74:48:60:87:c7:fe:e4:cc:df:be: 49:32:52:71:a3:3e:63:ed:43:58:7f:aa:87:b0:f0: dd:ed:03:27:5d:e0:24:17:f9:87:0e:0f:76:9b:6c: d1:2f:76:0c:c5:b3:75:8b:9b:29:9e:a1:d7:8b:6f: 6e:d1:17:6d:10:3f:a3:52:69:0d:ac:57:da:6b:18: 5f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E6:E8:AD:36:4F:C9:B5:A1:03:B5:EC:14:14:4D:EB:4E:5C:30:A1 X509v3 Authority Key Identifier: keyid:8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.194.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:07:b1:e0:fd:6e:9a:85:fd:4f:ac:11:dc:cd:e5:6b:ee:03: 75:18:1d:ea:64:72:15:aa:70:d1:e5:f1:27:a6:5f:a1:0c:b8: a4:c8:31:1e:af:5b:8c:eb:cb:d9:db:f6:e7:04:02:f3:40:cf: 69:df:a8:a1:37:06:f0:66:e7:8c:77:a2:82:9e:56:8a:02:45: b6:31:cb:db:45:a7:e3:b0:49:9a:74:43:2b:d9:74:02:ed:2e: 5a:e9:f5:4d:74:32:e6:47:75:7a:95:db:0a:72:e2:f2:cf:a2: 43:14:35:c7:71:b2:26:6f:34:f1:5e:a1:13:ea:ce:bf:d3:51: ab:26:9a:d6:69:ef:3b:ef:f1:80:52:d7:4b:4e:a6:d1:1e:4c: 7a:70:e5:0b:e2:69:ce:23:83:bc:07:84:98:05:dd:01:f4:48: 8b:23:cf:21:d8:c5:e9:5a:e5:1a:5f:e9:f5:e1:04:4f:c2:10: 3d:c9:2c:16:fd:74:a1:fb:7e:66:3c:e3:d9:96:93:74:20:90: 6b:cb:91:c7:be:c3:85:7a:cf:8c:09:93:b5:57:38:80:b3:d2: 19:c5:65:06:bf:f9:d0:cd:7c:95:de:75:92:ea:e8:79:9e:f0: 53:1f:7a:90:2f:a8:21:bf:9c:91:23:60:31:3b:fb:2e:95:e9: a0:55:54:3d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURDlyFCxeKR2gP5ngBtKix5K3MkMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU3RDI5QjhCMkU2RjJGMDlCNTA3RkMzNkIzMTczMTYy QTQzMTZFOTAeFw0yNjA1MDMwMjI4MTFaFw0yNzA1MDIwMjMzMTFaMDMxMTAvBgNV BAMTKEQ0RTZFOEFEMzY0RkM5QjVBMTAzQjVFQzE0MTQ0REVCNEU1QzMwQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0dNcQ/8JWjChLNqoDkQwo2xMx sCLQlW0FJv9fIRV8VlVdnoS18cF6dn2bbGSy5qzVaM3cnKmvpbuggE6dF+QhP6Ea Tx9W9la5cWAsfayX2YV276fNfCwldhDIjUILINrRkh1i+ywzaruNL1n+23HuWhsQ H9ij20UaGNSo1tRN1xaKz5mplTnI/B4XKKvxJ5hPRQFOYG3dodxWaDHD9CAtsn5+ 801BnqSQAujwN8tfMDf+9QFzmOjSdEhgh8f+5MzfvkkyUnGjPmPtQ1h/qoew8N3t Aydd4CQX+YcOD3abbNEvdgzFs3WLmymeodeLb27RF20QP6NSaQ2sV9prGF/zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1OborTZPybWhA7XsFBRN605cMKEwHwYDVR0j BBgwFoAUjn0puLLm8vCbUH/DazFzFipDFukwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTI1MmVhZDMtZGM4Zi00ZDg2LWFmY2YtYTE0MGU1Yjg3NTMyLzAvOEU3RDI5QjhC MkU2RjJGMDlCNTA3RkMzNkIzMTczMTYyQTQzMTZFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RTdEMjlCOEIyRTZGMkYwOUI1MDdGQzM2QjMxNzMxNjJBNDMx NkU5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyNTJlYWQzLWRjOGYtNGQ4Ni1h ZmNmLWExNDBlNWI4NzUzMi8wLzMxMzAzMzJlMzEzODM2MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7rCMA0GCSqG SIb3DQEBCwUAA4IBAQCPB7Hg/W6ahf1PrBHczeVr7gN1GB3qZHIVqnDR5fEnpl+h DLikyDEer1uM68vZ2/bnBALzQM9p36ihNwbwZueMd6KCnlaKAkW2McvbRafjsEma dEMr2XQC7S5a6fVNdDLmR3V6ldsKcuLyz6JDFDXHcbImbzTxXqET6s6/01GrJprW ae877/GAUtdLTqbRHkx6cOUL4mnOI4O8B4SYBd0B9EiLI88h2MXpWuUaX+n14QRP whA9ySwW/XSh+35mPOPZlpN0IJBry5HHvsOFes+MCZO1VziAs9IZxWUGv/nQzXyV 3nWS6uh5nvBTH3qQL6ghv5yRI2AxO/sulemgVVQ9 -----END CERTIFICATE-----Generated at Tue May 5 16:56:50 2026 by rpki-client