$ rpki-client -vvf rpki-rsync.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/3130332e3138372e38362e302f32332d3234203d3e20313439373138.roa File: 3130332e3138372e38362e302f32332d3234203d3e20313439373138.roa (raw, json) Hash identifier: j1q7Tjwd0n3nZPl8Mige83XpdVNq8A8OBRmyY8xB6w0= Subject key identifier: 88:61:EE:50:3D:D2:EA:33:1A:B0:F5:DB:7C:82:1D:E5:A3:F6:9B:CE Certificate issuer: /CN=8BE5D6878B464D9FA654023C63F4762E67599164 Certificate serial: 5DD338858470626BD6371B2162F73BD18B89291F Authority key identifier: 8B:E5:D6:87:8B:46:4D:9F:A6:54:02:3C:63:F4:76:2E:67:59:91:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BE5D6878B464D9FA654023C63F4762E67599164.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/3130332e3138372e38362e302f32332d3234203d3e20313439373138.roa Signing time: Sun 03 May 2026 02:45:10 +0000 ROA not before: Sun 03 May 2026 02:40:10 +0000 ROA not after: Sun 02 May 2027 02:45:10 +0000 asID: 149718 IP address blocks: 103.187.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/8BE5D6878B464D9FA654023C63F4762E67599164.crl rsync://rpki-rsync.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/8BE5D6878B464D9FA654023C63F4762E67599164.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BE5D6878B464D9FA654023C63F4762E67599164.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:d3:38:85:84:70:62:6b:d6:37:1b:21:62:f7:3b:d1:8b:89:29:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BE5D6878B464D9FA654023C63F4762E67599164 Validity Not Before: May 3 02:40:10 2026 GMT Not After : May 2 02:45:10 2027 GMT Subject: CN=8861EE503DD2EA331AB0F5DB7C821DE5A3F69BCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e3:61:ca:3d:4c:f5:b9:23:7e:bb:63:97:b4: 58:20:4e:8f:aa:7d:8f:b5:6e:a0:ce:85:bf:d7:8f: c6:5a:52:cf:1e:d4:66:f2:e4:78:23:6e:3d:ee:04: 1e:d7:e1:89:f0:6d:fa:32:ee:2d:a6:0f:03:e0:0f: 9a:e0:cd:3b:0e:72:5d:96:6d:08:95:4d:5e:9e:8f: 50:f5:ba:e4:89:04:fe:b4:41:31:a9:f8:d1:bf:b4: 78:16:cb:18:b0:b4:f5:a4:10:8b:3e:26:e8:c5:0a: ae:75:eb:84:b2:56:e6:de:94:91:43:95:26:4e:27: 72:81:74:6a:18:b9:bb:76:5e:8e:c8:59:af:28:65: 5c:cf:c9:08:d2:90:2a:42:2d:c7:05:2f:94:13:56: 58:b4:00:98:0a:08:b5:35:15:a4:40:76:f6:78:f0: a5:b5:c6:3b:34:4c:a3:59:f2:d0:07:7a:a2:98:37: bf:c6:c9:7a:5e:d1:d8:7f:5b:cf:35:1f:78:66:c5: 0b:ee:e8:a7:31:e0:35:67:36:29:34:58:88:50:05: a1:4c:43:67:2e:8b:a0:73:60:f5:ea:36:18:89:5d: 41:8e:df:e2:9c:cc:20:eb:77:0b:96:87:c6:b1:fa: ae:ce:5f:fe:09:3e:97:f7:0d:ac:cd:6b:c8:64:0a: 2d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:61:EE:50:3D:D2:EA:33:1A:B0:F5:DB:7C:82:1D:E5:A3:F6:9B:CE X509v3 Authority Key Identifier: keyid:8B:E5:D6:87:8B:46:4D:9F:A6:54:02:3C:63:F4:76:2E:67:59:91:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/8BE5D6878B464D9FA654023C63F4762E67599164.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BE5D6878B464D9FA654023C63F4762E67599164.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/3130332e3138372e38362e302f32332d3234203d3e20313439373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.86.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:e6:38:4b:97:a0:53:1f:86:04:24:b5:15:42:52:7c:a8:b2: 2f:92:f2:0b:f4:d7:0a:2a:37:e9:6f:35:67:d6:60:6a:2f:90: 71:43:f8:e0:9c:eb:4b:45:db:55:f0:d6:d3:46:3b:0d:18:c6: 4f:1c:ab:1c:d0:09:04:4f:9c:9c:14:52:5d:db:a2:c1:e3:44: ea:70:b6:3b:02:61:4c:dc:81:b2:ac:e3:47:70:52:89:96:01: ea:12:26:2d:7d:71:28:09:95:38:e7:ca:5e:da:9f:77:81:c4: dc:d5:3e:1d:91:67:b4:c2:e9:b6:48:5a:c1:e4:9e:9a:d3:ad: 63:98:3d:9f:7a:0d:ba:23:d1:08:54:f9:6a:13:80:64:ce:63: ad:c8:81:46:44:a6:e2:c9:41:95:0f:a5:8a:4b:96:68:e7:08: 0e:95:fb:e0:37:d5:c8:09:cf:39:09:12:59:b9:6b:7b:cf:dc: 01:f0:fb:f1:a7:21:01:ae:b9:ca:0c:b7:0f:7e:74:c1:4b:61: 4b:7d:a0:19:9f:f9:ba:81:9f:24:02:b2:64:07:d5:cc:ae:d6: 42:7e:ab:77:fd:33:50:d7:7d:6a:db:26:f6:4c:29:b4:b8:bc: 49:37:3c:81:44:9b:97:2b:58:51:9c:24:68:ea:4d:56:47:cc: e3:70:f8:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXdM4hYRwYmvWNxshYvc70YuJKR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJFNUQ2ODc4QjQ2NEQ5RkE2NTQwMjNDNjNGNDc2MkU2 NzU5OTE2NDAeFw0yNjA1MDMwMjQwMTBaFw0yNzA1MDIwMjQ1MTBaMDMxMTAvBgNV BAMTKDg4NjFFRTUwM0REMkVBMzMxQUIwRjVEQjdDODIxREU1QTNGNjlCQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX42HKPUz1uSN+u2OXtFggTo+q fY+1bqDOhb/Xj8ZaUs8e1Gby5Hgjbj3uBB7X4Ynwbfoy7i2mDwPgD5rgzTsOcl2W bQiVTV6ej1D1uuSJBP60QTGp+NG/tHgWyxiwtPWkEIs+JujFCq5164SyVubelJFD lSZOJ3KBdGoYubt2Xo7IWa8oZVzPyQjSkCpCLccFL5QTVli0AJgKCLU1FaRAdvZ4 8KW1xjs0TKNZ8tAHeqKYN7/GyXpe0dh/W881H3hmxQvu6Kcx4DVnNik0WIhQBaFM Q2cui6BzYPXqNhiJXUGO3+KczCDrdwuWh8ax+q7OX/4JPpf3DazNa8hkCi1nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiGHuUD3S6jMasPXbfIId5aP2m84wHwYDVR0j BBgwFoAUi+XWh4tGTZ+mVAI8Y/R2LmdZkWQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2I3ZWY1MTUtODU2NC00MWU4LTlkMjAtMmQzM2Q0NWNjYmQ2LzAvOEJFNUQ2ODc4 QjQ2NEQ5RkE2NTQwMjNDNjNGNDc2MkU2NzU5OTE2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QkU1RDY4NzhCNDY0RDlGQTY1NDAyM0M2M0Y0NzYyRTY3NTk5 MTY0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdiN2VmNTE1LTg1NjQtNDFlOC05 ZDIwLTJkMzNkNDVjY2JkNi8wLzMxMzAzMzJlMzEzODM3MmUzODM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7tWMA0GCSqG SIb3DQEBCwUAA4IBAQCc5jhLl6BTH4YEJLUVQlJ8qLIvkvIL9NcKKjfpbzVn1mBq L5BxQ/jgnOtLRdtV8NbTRjsNGMZPHKsc0AkET5ycFFJd26LB40TqcLY7AmFM3IGy rONHcFKJlgHqEiYtfXEoCZU458pe2p93gcTc1T4dkWe0wum2SFrB5J6a061jmD2f eg26I9EIVPlqE4BkzmOtyIFGRKbiyUGVD6WKS5Zo5wgOlfvgN9XICc85CRJZuWt7 z9wB8PvxpyEBrrnKDLcPfnTBS2FLfaAZn/m6gZ8kArJkB9XMrtZCfqt3/TNQ131q 2yb2TCm0uLxJNzyBRJuXK1hRnCRo6k1WR8zjcPiD -----END CERTIFICATE-----Generated at Tue May 5 13:26:37 2026 by rpki-client