$ rpki-client -vvf rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e203438343635.roa File: 3130332e3232302e34352e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: s1JJ4qxqnX+/x2wRLTL/vn6XvEiBu3g0RUuaHJFKCfY= Subject key identifier: 8F:F0:8A:9E:B8:C1:E0:57:BE:48:7D:38:FD:5A:CB:EE:74:D8:BA:CA Certificate issuer: /CN=202D68B92C393694107A2F9B59DF1822383F0A40 Certificate serial: 7E953E6F9A2E27CA2F021C18E0623A7119821792 Authority key identifier: 20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e203438343635.roa Signing time: Sun 03 May 2026 02:39:27 +0000 ROA not before: Sun 03 May 2026 02:34:27 +0000 ROA not after: Sun 02 May 2027 02:39:27 +0000 asID: 48465 IP address blocks: 103.220.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 09:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:95:3e:6f:9a:2e:27:ca:2f:02:1c:18:e0:62:3a:71:19:82:17:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202D68B92C393694107A2F9B59DF1822383F0A40 Validity Not Before: May 3 02:34:27 2026 GMT Not After : May 2 02:39:27 2027 GMT Subject: CN=8FF08A9EB8C1E057BE487D38FD5ACBEE74D8BACA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:76:69:8a:b5:eb:a1:d9:49:9d:8f:4c:a9:ef: ec:81:1a:ab:f5:7d:56:44:a2:fa:7b:9e:3a:c1:f0: 9c:2a:b0:aa:fa:90:34:4a:e0:6e:5b:7e:8a:08:57: 0c:6e:35:30:fe:4d:26:f9:5c:91:cc:a3:31:25:b6: 98:25:7e:54:d2:c6:1b:42:6a:95:5b:1f:fe:6e:71: c5:e7:34:0f:2e:1f:21:e1:af:17:dd:6e:a6:cd:7a: 52:82:fa:56:90:5e:95:b8:3f:e2:98:98:37:12:06: 1f:04:a4:e7:51:e9:7e:50:38:49:f1:e5:18:b6:9a: af:cf:a5:2c:df:63:6a:50:d8:c0:e8:07:4f:9d:85: 0d:82:a8:ac:79:fe:20:0c:2d:ea:df:4f:38:02:ef: 74:02:fc:d9:3a:f7:33:9f:98:1b:3a:88:e4:90:f2: 42:b9:44:23:55:64:3b:49:c9:a7:36:3e:b9:d0:a4: 5d:1e:80:e3:17:ae:54:63:96:56:cd:ff:72:bf:ac: 2c:2b:e2:7b:2d:75:cd:5b:01:aa:2a:17:9d:f8:62: f0:15:1d:3c:0b:42:38:ae:f7:c5:ab:66:61:1a:b6: 0f:de:10:be:b1:b8:ae:c0:52:b9:e0:39:6e:56:4b: 32:17:13:0a:81:ea:dc:9a:06:df:ec:8a:8f:9f:4c: 06:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F0:8A:9E:B8:C1:E0:57:BE:48:7D:38:FD:5A:CB:EE:74:D8:BA:CA X509v3 Authority Key Identifier: keyid:20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.45.0/24 Signature Algorithm: sha256WithRSAEncryption a2:69:2c:d1:9d:42:c2:60:c4:5d:40:aa:45:5c:3e:a8:ea:e2: 25:c6:e6:a9:04:97:50:c0:f0:c5:b9:fc:c8:6e:ec:e2:d6:89: b4:06:0a:fb:c2:da:a0:3c:5d:62:60:c2:a5:bd:24:f7:42:a9: 48:c5:d3:be:e7:3b:41:8a:75:b1:9e:c0:96:d2:04:b4:7c:b2: 92:0b:55:f5:61:6b:32:95:96:d5:88:9e:73:64:e1:e9:7a:62: 1a:5e:dd:da:a0:0a:97:2b:27:71:0f:8e:97:53:c8:9a:a3:7b: ec:ce:27:4d:a5:63:f6:fb:1f:2a:81:5c:86:d7:98:4e:4a:7f: 63:a5:d1:25:55:02:8d:c6:f3:99:5b:2b:e2:8c:74:45:57:b5: 5e:eb:3c:9a:a8:aa:34:92:d9:1a:a6:f2:b8:73:14:06:c5:3d: 78:9e:3d:ad:7a:6f:d0:7a:a7:90:62:15:d6:36:c2:07:dc:df: 48:1f:da:b1:0b:d7:80:13:d0:73:45:27:4e:6e:6f:6f:5d:bc: 20:09:41:ce:0e:8e:78:f3:e0:64:39:f5:6d:cd:bd:60:05:d5: 82:48:c4:43:b1:95:d8:67:79:1c:88:94:fe:a0:c5:8d:45:fb: 86:32:d6:12:fd:db:b7:a4:2c:83:ec:a1:4f:89:ef:cd:42:53: 9e:bc:d1:07 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfpU+b5ouJ8ovAhwY4GI6cRmCF5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyRDY4QjkyQzM5MzY5NDEwN0EyRjlCNTlERjE4MjIz ODNGMEE0MDAeFw0yNjA1MDMwMjM0MjdaFw0yNzA1MDIwMjM5MjdaMDMxMTAvBgNV BAMTKDhGRjA4QTlFQjhDMUUwNTdCRTQ4N0QzOEZENUFDQkVFNzREOEJBQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2dmmKteuh2Umdj0yp7+yBGqv1 fVZEovp7njrB8JwqsKr6kDRK4G5bfooIVwxuNTD+TSb5XJHMozEltpglflTSxhtC apVbH/5uccXnNA8uHyHhrxfdbqbNelKC+laQXpW4P+KYmDcSBh8EpOdR6X5QOEnx 5Ri2mq/PpSzfY2pQ2MDoB0+dhQ2CqKx5/iAMLerfTzgC73QC/Nk69zOfmBs6iOSQ 8kK5RCNVZDtJyac2PrnQpF0egOMXrlRjllbN/3K/rCwr4nstdc1bAaoqF534YvAV HTwLQjiu98WrZmEatg/eEL6xuK7AUrngOW5WSzIXEwqB6tyaBt/sio+fTAY5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj/CKnrjB4Fe+SH04/VrL7nTYusowHwYDVR0j BBgwFoAUIC1ouSw5NpQQei+bWd8YIjg/CkAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjU3MjkyOTEtYTFhNy00YjE5LTkzZjYtMWQ4NDU3NGE2N2FlLzAvMjAyRDY4Qjky QzM5MzY5NDEwN0EyRjlCNTlERjE4MjIzODNGMEE0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDJENjhCOTJDMzkzNjk0MTA3QTJGOUI1OURGMTgyMjM4M0Yw QTQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY1NzI5MjkxLWExYTctNGIxOS05 M2Y2LTFkODQ1NzRhNjdhZS8wLzMxMzAzMzJlMzIzMjMwMmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfcLTANBgkqhkiG 9w0BAQsFAAOCAQEAomks0Z1CwmDEXUCqRVw+qOriJcbmqQSXUMDwxbn8yG7s4taJ tAYK+8LaoDxdYmDCpb0k90KpSMXTvuc7QYp1sZ7AltIEtHyykgtV9WFrMpWW1Yie c2Th6XpiGl7d2qAKlysncQ+Ol1PImqN77M4nTaVj9vsfKoFchteYTkp/Y6XRJVUC jcbzmVsr4ox0RVe1Xus8mqiqNJLZGqbyuHMUBsU9eJ49rXpv0HqnkGIV1jbCB9zf SB/asQvXgBPQc0UnTm5vb128IAlBzg6OePPgZDn1bc29YAXVgkjEQ7GV2Gd5HIiU /qDFjUX7hjLWEv3bt6Qsg+yhT4nvzUJTnrzRBw== -----END CERTIFICATE-----Generated at Tue May 5 16:55:52 2026 by rpki-client