$ rpki-client -vvf rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa File: 3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa (raw, json) Hash identifier: sVkX/3BAqlUnIX3vPMQ13bPbeRbhUsec2KXwzV7qXyg= Subject key identifier: C2:EF:29:E4:A7:83:92:C0:56:57:0D:67:98:A2:55:D8:99:92:17:A1 Certificate issuer: /CN=202D68B92C393694107A2F9B59DF1822383F0A40 Certificate serial: 3447366C52059BAF1FA3AEE7844D9966593A46F9 Authority key identifier: 20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa Signing time: Sun 03 May 2026 02:39:26 +0000 ROA not before: Sun 03 May 2026 02:34:26 +0000 ROA not after: Sun 02 May 2027 02:39:26 +0000 asID: 150199 IP address blocks: 103.220.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 09:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:47:36:6c:52:05:9b:af:1f:a3:ae:e7:84:4d:99:66:59:3a:46:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202D68B92C393694107A2F9B59DF1822383F0A40 Validity Not Before: May 3 02:34:26 2026 GMT Not After : May 2 02:39:26 2027 GMT Subject: CN=C2EF29E4A78392C056570D6798A255D8999217A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1f:f1:9e:0e:0b:db:12:7b:3c:05:c2:cf:3a: 6b:3f:c8:a5:2a:6e:c0:4b:dd:1b:3c:f1:c6:36:fa: cd:32:aa:f2:f1:a7:51:c5:19:b5:9a:5a:90:97:0d: 64:0c:29:f7:b8:de:61:e4:29:53:68:b6:ab:52:4e: 5e:6d:ed:d9:29:df:ef:30:4e:12:c3:d4:22:4d:aa: b3:65:4e:8e:0b:89:21:a7:eb:e1:6f:b3:35:02:b4: 49:a0:a8:64:87:4d:79:9c:c1:5a:60:5d:78:8e:5f: a0:32:b1:e7:68:27:9f:9a:41:42:39:ee:cd:31:a9: 09:ec:a9:6c:7f:1a:19:e4:18:26:3b:fc:60:d4:9e: f0:15:2d:af:66:d7:bd:d5:49:30:91:88:57:8e:2b: 0b:d0:62:b7:7f:d3:56:fe:55:39:b4:73:35:5b:8b: 79:89:c3:2c:19:8c:ca:6c:f6:f2:0b:e3:f1:58:e6: 47:fd:46:91:33:01:32:ed:24:4e:e4:de:be:e2:3e: e0:46:de:d1:ae:e1:6a:3f:e4:cf:89:1c:65:e9:84: 39:db:95:e5:ff:9c:4f:56:97:ad:f5:9c:7c:93:ea: 0a:a2:20:a9:fe:a4:8f:e0:e6:19:b8:93:4d:7e:2b: e4:ff:0d:45:2d:fb:6e:93:db:ac:0b:a7:67:f3:3d: 38:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EF:29:E4:A7:83:92:C0:56:57:0D:67:98:A2:55:D8:99:92:17:A1 X509v3 Authority Key Identifier: keyid:20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.45.0/24 Signature Algorithm: sha256WithRSAEncryption 85:62:d4:07:29:af:76:8d:fd:95:d8:14:9d:9e:75:ab:b3:b8: 7c:db:c6:96:54:d0:20:ac:63:41:97:e4:00:4f:2d:6d:47:5e: 77:8d:fc:da:74:75:13:86:07:78:f5:58:c7:f3:3e:fb:2e:64: f3:a2:36:9c:0c:88:b7:16:7f:5b:16:38:a7:d0:41:7d:b2:5a: 42:1f:62:09:8c:91:3d:65:95:08:d1:59:41:4a:01:55:7c:6d: 40:41:82:23:94:4f:0b:74:fc:8f:55:d7:b1:fb:05:21:ee:ee: 05:0d:01:25:e4:ed:40:42:43:d0:b9:9b:bc:36:76:2c:6b:8b: ca:34:b0:4a:25:88:a0:16:e4:0b:83:7c:01:a5:0a:e0:61:ea: dc:50:79:91:bd:80:90:7f:c6:ab:1a:0c:db:15:e5:fd:b5:f7: d6:0f:99:bd:64:27:a9:3b:ca:ae:51:90:bf:b8:aa:78:eb:69: 2e:e9:23:f6:94:26:94:b8:6c:66:4e:30:eb:8b:60:2b:8c:39: 0e:08:47:f8:15:d8:0c:43:ce:1f:1e:17:3b:c3:23:3e:95:2f: 0b:c9:ae:50:c3:3d:80:28:ae:28:23:6e:aa:26:d1:23:a4:c6: 31:af:cc:ba:43:ab:29:32:04:3b:87:15:3f:69:e4:65:16:7f: 41:c1:3c:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNEc2bFIFm68fo67nhE2ZZlk6RvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyRDY4QjkyQzM5MzY5NDEwN0EyRjlCNTlERjE4MjIz ODNGMEE0MDAeFw0yNjA1MDMwMjM0MjZaFw0yNzA1MDIwMjM5MjZaMDMxMTAvBgNV BAMTKEMyRUYyOUU0QTc4MzkyQzA1NjU3MEQ2Nzk4QTI1NUQ4OTk5MjE3QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSH/GeDgvbEns8BcLPOms/yKUq bsBL3Rs88cY2+s0yqvLxp1HFGbWaWpCXDWQMKfe43mHkKVNotqtSTl5t7dkp3+8w ThLD1CJNqrNlTo4LiSGn6+FvszUCtEmgqGSHTXmcwVpgXXiOX6AysedoJ5+aQUI5 7s0xqQnsqWx/GhnkGCY7/GDUnvAVLa9m173VSTCRiFeOKwvQYrd/01b+VTm0czVb i3mJwywZjMps9vIL4/FY5kf9RpEzATLtJE7k3r7iPuBG3tGu4Wo/5M+JHGXphDnb leX/nE9Wl631nHyT6gqiIKn+pI/g5hm4k01+K+T/DUUt+26T26wLp2fzPThBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwu8p5KeDksBWVw1nmKJV2JmSF6EwHwYDVR0j BBgwFoAUIC1ouSw5NpQQei+bWd8YIjg/CkAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjU3MjkyOTEtYTFhNy00YjE5LTkzZjYtMWQ4NDU3NGE2N2FlLzAvMjAyRDY4Qjky QzM5MzY5NDEwN0EyRjlCNTlERjE4MjIzODNGMEE0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDJENjhCOTJDMzkzNjk0MTA3QTJGOUI1OURGMTgyMjM4M0Yw QTQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY1NzI5MjkxLWExYTctNGIxOS05 M2Y2LTFkODQ1NzRhNjdhZS8wLzMxMzAzMzJlMzIzMjMwMmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wtMA0GCSqG SIb3DQEBCwUAA4IBAQCFYtQHKa92jf2V2BSdnnWrs7h828aWVNAgrGNBl+QATy1t R153jfzadHUThgd49VjH8z77LmTzojacDIi3Fn9bFjin0EF9slpCH2IJjJE9ZZUI 0VlBSgFVfG1AQYIjlE8LdPyPVdex+wUh7u4FDQEl5O1AQkPQuZu8NnYsa4vKNLBK JYigFuQLg3wBpQrgYercUHmRvYCQf8arGgzbFeX9tffWD5m9ZCepO8quUZC/uKp4 62ku6SP2lCaUuGxmTjDri2ArjDkOCEf4FdgMQ84fHhc7wyM+lS8Lya5Qwz2AKK4o I26qJtEjpMYxr8y6Q6spMgQ7hxU/aeRlFn9BwTzl -----END CERTIFICATE-----Generated at Tue May 5 19:32:28 2026 by rpki-client