$ rpki-client -vvf rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/3130332e3134312e3130382e302f32332d3234203d3e20313338383836.roa File: 3130332e3134312e3130382e302f32332d3234203d3e20313338383836.roa (raw, json) Hash identifier: HdNzGHLZKPYzFVkh/tdlOMNe0NE8KbyBRcBVr8tLORE= Subject key identifier: 8D:85:E7:0E:E5:86:B4:EA:2E:10:FB:D3:70:F9:98:99:BA:3D:FA:75 Certificate issuer: /CN=AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A Certificate serial: 5D28DE3FAF9882C4F0E24065B849F9F56A2ACA7F Authority key identifier: AD:6B:0A:2D:06:A8:57:71:D2:A2:F1:AF:69:B2:9A:53:51:A6:FE:2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/3130332e3134312e3130382e302f32332d3234203d3e20313338383836.roa Signing time: Sun 03 May 2026 03:12:06 +0000 ROA not before: Sun 03 May 2026 03:07:06 +0000 ROA not after: Sun 02 May 2027 03:12:06 +0000 asID: 138886 IP address blocks: 103.141.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.crl rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:28:de:3f:af:98:82:c4:f0:e2:40:65:b8:49:f9:f5:6a:2a:ca:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A Validity Not Before: May 3 03:07:06 2026 GMT Not After : May 2 03:12:06 2027 GMT Subject: CN=8D85E70EE586B4EA2E10FBD370F99899BA3DFA75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1e:14:0c:73:6c:c8:ba:ea:0f:fb:72:24:0e: b8:e7:eb:83:4c:63:33:77:4e:b3:33:fa:0c:e7:78: 75:b0:18:ef:88:ea:de:26:10:c7:8e:b6:21:2e:44: 6c:64:2f:e2:de:07:d3:67:3d:39:de:aa:88:ed:e0: a8:2f:bd:74:ed:e6:16:26:e7:d2:e9:91:09:d5:bc: a1:a5:99:c8:2b:02:24:b2:bb:fa:d7:81:bb:be:17: 29:fa:aa:b4:08:04:e1:ae:f8:7b:17:74:45:fd:9d: e2:ae:d4:15:f6:0b:b2:36:f9:ba:b0:11:ac:f5:e9: cf:94:b9:e4:0e:25:ec:14:dd:6d:b4:29:9f:c8:43: 7e:a9:89:63:f1:d6:3e:0d:98:c3:6d:5a:b6:25:19: 56:e2:7b:4b:1c:c7:43:b3:98:5e:4b:a0:91:6e:72: 2e:1f:b3:ae:50:35:36:82:8f:12:0e:63:b1:00:cc: 28:5d:61:91:10:0d:d3:d2:40:04:f4:e9:b6:16:d0: e4:cf:6b:3c:e9:c0:13:d3:50:4f:16:49:64:33:01: 56:bf:70:99:42:03:9d:3b:1f:e0:de:4a:ab:b1:ba: c5:7e:8e:d5:c7:3e:2a:ca:b9:4c:83:a0:5d:33:cb: dd:f9:2d:ba:5a:a6:3d:e2:c8:03:7c:b3:ae:55:cd: af:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:85:E7:0E:E5:86:B4:EA:2E:10:FB:D3:70:F9:98:99:BA:3D:FA:75 X509v3 Authority Key Identifier: keyid:AD:6B:0A:2D:06:A8:57:71:D2:A2:F1:AF:69:B2:9A:53:51:A6:FE:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/3130332e3134312e3130382e302f32332d3234203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.108.0/23 Signature Algorithm: sha256WithRSAEncryption 00:da:08:a0:9e:96:a5:2d:d5:19:fc:fe:11:4c:12:9b:4a:b6: 23:e4:cd:fc:e4:80:72:86:40:31:81:40:63:31:e0:a5:b8:ce: 0c:70:87:e3:c0:d1:0e:34:e4:f3:a3:20:a8:98:68:8e:1b:46: 66:85:04:d9:21:18:29:33:a0:47:bf:72:07:7d:1e:a3:fa:d0: d1:97:cc:20:23:97:79:a3:c8:c1:f5:90:63:5b:90:c9:bf:00: 99:76:7b:8b:de:2f:61:d4:34:9c:3f:05:4d:9a:51:b2:d0:40: 6e:17:ad:da:f1:50:21:7e:8c:f5:47:78:aa:f6:09:c7:09:da: 90:77:3a:f5:a5:d9:f2:69:b7:6b:ef:f6:21:54:fc:07:ca:66: 77:66:07:63:ef:02:5d:e3:2e:f1:d6:b9:06:67:01:1b:2d:bf: dc:5c:b4:80:4a:c3:01:fd:8a:ef:ca:47:d8:59:a6:40:01:2c: d2:ce:05:72:ec:5b:cf:68:65:44:27:4c:49:cd:2c:f1:38:70: 29:d2:30:a5:88:98:05:55:a0:73:7a:d5:4d:9d:99:ea:ca:8b: 33:2d:60:52:5b:ef:87:2d:48:d0:f0:85:6a:08:8e:b2:ce:9f: a4:6f:92:fc:bc:da:d0:98:eb:ea:b2:81:06:e8:26:4c:8f:cf: 88:68:52:33 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXSjeP6+YgsTw4kBluEn59Woqyn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ2QjBBMkQwNkE4NTc3MUQyQTJGMUFGNjlCMjlBNTM1 MUE2RkUyQTAeFw0yNjA1MDMwMzA3MDZaFw0yNzA1MDIwMzEyMDZaMDMxMTAvBgNV BAMTKDhEODVFNzBFRTU4NkI0RUEyRTEwRkJEMzcwRjk5ODk5QkEzREZBNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiHhQMc2zIuuoP+3IkDrjn64NM YzN3TrMz+gzneHWwGO+I6t4mEMeOtiEuRGxkL+LeB9NnPTneqojt4KgvvXTt5hYm 59LpkQnVvKGlmcgrAiSyu/rXgbu+Fyn6qrQIBOGu+HsXdEX9neKu1BX2C7I2+bqw Eaz16c+UueQOJewU3W20KZ/IQ36piWPx1j4NmMNtWrYlGVbie0scx0OzmF5LoJFu ci4fs65QNTaCjxIOY7EAzChdYZEQDdPSQAT06bYW0OTPazzpwBPTUE8WSWQzAVa/ cJlCA507H+DeSquxusV+jtXHPirKuUyDoF0zy935Lbpapj3iyAN8s65Vza+LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjYXnDuWGtOouEPvTcPmYmbo9+nUwHwYDVR0j BBgwFoAUrWsKLQaoV3HSovGvabKaU1Gm/iowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGY1NTFhYjktODA0MS00YTlhLTliNTAtYzdjNmRlYzIxNjZmLzAvQUQ2QjBBMkQw NkE4NTc3MUQyQTJGMUFGNjlCMjlBNTM1MUE2RkUyQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRDZCMEEyRDA2QTg1NzcxRDJBMkYxQUY2OUIyOUE1MzUxQTZG RTJBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmNTUxYWI5LTgwNDEtNGE5YS05 YjUwLWM3YzZkZWMyMTY2Zi8wLzMxMzAzMzJlMzEzNDMxMmUzMTMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjWwwDQYJ KoZIhvcNAQELBQADggEBAADaCKCelqUt1Rn8/hFMEptKtiPkzfzkgHKGQDGBQGMx 4KW4zgxwh+PA0Q405POjIKiYaI4bRmaFBNkhGCkzoEe/cgd9HqP60NGXzCAjl3mj yMH1kGNbkMm/AJl2e4veL2HUNJw/BU2aUbLQQG4XrdrxUCF+jPVHeKr2CccJ2pB3 OvWl2fJpt2vv9iFU/AfKZndmB2PvAl3jLvHWuQZnARstv9xctIBKwwH9iu/KR9hZ pkABLNLOBXLsW89oZUQnTEnNLPE4cCnSMKWImAVVoHN61U2dmerKizMtYFJb74ct SNDwhWoIjrLOn6Rvkvy82tCY6+qygQboJkyPz4hoUjM= -----END CERTIFICATE-----Generated at Tue May 5 16:50:51 2026 by rpki-client