$ rpki-client -vvf rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa File: 3130332e32302e38362e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: QGPTzA7izmVWKWGQGI0Tmi8hRyZZX/Yh7zilSro+/Yc= Subject key identifier: 7A:D0:C0:87:DF:63:7F:0F:57:A2:90:F0:11:CA:4E:C9:48:72:C5:BC Certificate issuer: /CN=50341EA17A6CEE939B2CDFA832DC0324F6C64D51 Certificate serial: 3779B63FFE738E95D94BE5F328AF69E342984894 Authority key identifier: 50:34:1E:A1:7A:6C:EE:93:9B:2C:DF:A8:32:DC:03:24:F6:C6:4D:51 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa Signing time: Sun 03 May 2026 02:58:18 +0000 ROA not before: Sun 03 May 2026 02:53:18 +0000 ROA not after: Sun 02 May 2027 02:58:18 +0000 asID: 9341 IP address blocks: 103.20.86.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.crl rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:79:b6:3f:fe:73:8e:95:d9:4b:e5:f3:28:af:69:e3:42:98:48:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50341EA17A6CEE939B2CDFA832DC0324F6C64D51 Validity Not Before: May 3 02:53:18 2026 GMT Not After : May 2 02:58:18 2027 GMT Subject: CN=7AD0C087DF637F0F57A290F011CA4EC94872C5BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:5d:bc:c2:09:f7:9b:bf:38:39:8f:d1:92:bf: ca:f5:ef:09:da:df:c5:e7:ff:31:85:0b:75:1d:c4: d6:af:19:b7:4a:2e:a9:b8:f5:c8:88:42:ce:88:f1: 19:00:d3:7f:af:f3:53:1c:7e:76:ce:21:9b:6d:4c: f0:45:e0:74:72:70:e5:2c:a2:ce:5c:01:17:7f:e9: 05:15:61:12:a6:ef:d4:5e:7c:3a:8f:4c:7b:2f:12: fa:fa:da:ea:42:d2:30:89:60:40:0c:7c:ab:7b:1c: 6b:af:69:8b:44:36:59:ad:6b:06:d1:d3:4f:a6:fd: a1:93:0b:5a:87:28:ea:62:4e:b9:ec:43:13:9f:84: 4c:71:27:22:70:a7:41:44:d8:95:c5:ab:c6:74:4a: fd:90:e9:65:20:a4:c3:b0:23:1b:e0:a4:00:3f:76: 86:b2:20:48:d0:c2:e4:98:78:a6:d8:19:d2:f3:dd: 55:c4:22:60:17:d7:43:5e:98:fa:69:f7:cc:45:b9: ec:b9:9a:a6:be:9d:f0:f9:06:89:cc:5c:9b:0c:bd: 37:57:cf:70:31:ef:fb:76:f0:ad:1e:0b:bf:50:39: 28:5d:00:9d:54:12:8c:7a:32:03:4e:b0:4f:44:99: 5c:cf:4a:c6:05:f0:51:c5:da:1d:f9:ca:75:5d:1b: 9d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D0:C0:87:DF:63:7F:0F:57:A2:90:F0:11:CA:4E:C9:48:72:C5:BC X509v3 Authority Key Identifier: keyid:50:34:1E:A1:7A:6C:EE:93:9B:2C:DF:A8:32:DC:03:24:F6:C6:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/50341EA17A6CEE939B2CDFA832DC0324F6C64D51.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.86.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:37:8a:15:8a:54:5c:e7:dc:f4:9e:59:3d:14:bd:18:68:50: f1:c5:cb:b5:e6:f3:7b:12:39:25:89:23:47:ad:43:06:c0:cf: 6c:84:17:01:ef:e7:a3:20:1a:8f:6f:49:28:3a:e3:df:63:be: 36:68:d3:ae:20:61:0a:cd:f6:26:8d:26:3c:21:a7:ad:22:c0: 6b:dc:bb:1c:64:b6:53:72:7f:c7:1e:0b:91:b0:a7:c7:ec:0a: 7f:33:4e:ae:4e:77:76:d4:84:81:e0:a8:62:ed:9a:7d:19:84: 28:98:b8:a4:5c:44:99:25:95:90:24:6c:2f:da:4c:4c:d9:8e: 9e:a6:36:06:ee:a0:d7:36:0b:c0:2d:6e:38:5f:d3:ae:28:3d: 91:0a:88:31:19:4e:47:76:fe:c3:2d:45:30:b8:3e:d9:e3:7e: d6:13:43:35:c3:32:6b:31:ba:37:18:9c:76:42:02:c6:08:90: e2:90:cb:57:90:50:53:4d:da:1c:93:7d:5e:1b:d3:b5:9a:96: fd:cd:68:b0:9f:f6:61:91:f3:07:fb:c5:46:23:fb:ca:c8:ed: 12:b7:ef:5a:04:b6:48:2a:66:06:cd:d8:a0:28:dc:1b:03:db: 86:20:fb:cb:e6:06:99:18:10:43:bd:58:72:ea:0d:5b:d8:c0: 25:60:54:d9 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUN3m2P/5zjpXZS+XzKK9p40KYSJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTAzNDFFQTE3QTZDRUU5MzlCMkNERkE4MzJEQzAzMjRG NkM2NEQ1MTAeFw0yNjA1MDMwMjUzMThaFw0yNzA1MDIwMjU4MThaMDMxMTAvBgNV BAMTKDdBRDBDMDg3REY2MzdGMEY1N0EyOTBGMDExQ0E0RUM5NDg3MkM1QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPXbzCCfebvzg5j9GSv8r17wna 38Xn/zGFC3UdxNavGbdKLqm49ciIQs6I8RkA03+v81McfnbOIZttTPBF4HRycOUs os5cARd/6QUVYRKm79RefDqPTHsvEvr62upC0jCJYEAMfKt7HGuvaYtENlmtawbR 00+m/aGTC1qHKOpiTrnsQxOfhExxJyJwp0FE2JXFq8Z0Sv2Q6WUgpMOwIxvgpAA/ doayIEjQwuSYeKbYGdLz3VXEImAX10NemPpp98xFuey5mqa+nfD5BonMXJsMvTdX z3Ax7/t28K0eC79QOShdAJ1UEox6MgNOsE9EmVzPSsYF8FHF2h35ynVdG51HAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUetDAh99jfw9XopDwEcpOyUhyxbwwHwYDVR0j BBgwFoAUUDQeoXps7pObLN+oMtwDJPbGTVEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWFhNDg5YTYtNTQ4NS00ODdmLWI1ZGQtOGY0ZWRlYjQ2YmNiLzAvNTAzNDFFQTE3 QTZDRUU5MzlCMkNERkE4MzJEQzAzMjRGNkM2NEQ1MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MDM0MUVBMTdBNkNFRTkzOUIyQ0RGQTgzMkRDMDMyNEY2QzY0 RDUxLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWFhNDg5YTYtNTQ4NS00ODdmLWI1 ZGQtOGY0ZWRlYjQ2YmNiLzAvMzEzMDMzMmUzMjMwMmUzODM2MmUzMDJmMzIzMzJk MzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnFFYwDQYJKoZIhvcNAQEL BQADggEBAGw3ihWKVFzn3PSeWT0UvRhoUPHFy7Xm83sSOSWJI0etQwbAz2yEFwHv 56MgGo9vSSg6499jvjZo064gYQrN9iaNJjwhp60iwGvcuxxktlNyf8ceC5Gwp8fs Cn8zTq5Od3bUhIHgqGLtmn0ZhCiYuKRcRJkllZAkbC/aTEzZjp6mNgbuoNc2C8At bjhf064oPZEKiDEZTkd2/sMtRTC4PtnjftYTQzXDMmsxujcYnHZCAsYIkOKQy1eQ UFNN2hyTfV4b07Walv3NaLCf9mGR8wf7xUYj+8rI7RK371oEtkgqZgbN2KAo3BsD 24Yg+8vmBpkYEEO9WHLqDVvYwCVgVNk= -----END CERTIFICATE-----Generated at Tue May 5 13:26:36 2026 by rpki-client