$ rpki-client -vvf rpki-rsync.idnic.net/repo/dfee82b7-c182-4e83-897c-e00f3ce1b0d2/0/3130332e3232392e3138352e302f32342d3234203d3e2039333431.roa File: 3130332e3232392e3138352e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: mtrDV4mqgTGdX3FIVkCoXVE0ERKQErVYoLX9nuzS4rw= Subject key identifier: C5:9C:11:95:66:F1:33:6B:46:69:27:66:A2:73:23:FE:55:F5:82:93 Certificate issuer: /CN=D3982143FCBA4420C07AA5CEEB50EDB28487CF2C Certificate serial: 6335A46D85C8C3A3EB2BE8CEBCCDE489DD976703 Authority key identifier: D3:98:21:43:FC:BA:44:20:C0:7A:A5:CE:EB:50:ED:B2:84:87:CF:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D3982143FCBA4420C07AA5CEEB50EDB28487CF2C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dfee82b7-c182-4e83-897c-e00f3ce1b0d2/0/3130332e3232392e3138352e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 03:12:19 +0000 ROA not before: Sun 03 May 2026 03:07:19 +0000 ROA not after: Sun 02 May 2027 03:12:19 +0000 asID: 9341 IP address blocks: 103.229.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dfee82b7-c182-4e83-897c-e00f3ce1b0d2/0/D3982143FCBA4420C07AA5CEEB50EDB28487CF2C.crl rsync://rpki-rsync.idnic.net/repo/dfee82b7-c182-4e83-897c-e00f3ce1b0d2/0/D3982143FCBA4420C07AA5CEEB50EDB28487CF2C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D3982143FCBA4420C07AA5CEEB50EDB28487CF2C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:35:a4:6d:85:c8:c3:a3:eb:2b:e8:ce:bc:cd:e4:89:dd:97:67:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3982143FCBA4420C07AA5CEEB50EDB28487CF2C Validity Not Before: May 3 03:07:19 2026 GMT Not After : May 2 03:12:19 2027 GMT Subject: CN=C59C119566F1336B46692766A27323FE55F58293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ac:20:c9:df:40:6f:fa:25:7d:a0:0c:cf:29: b2:46:24:e6:db:60:d5:99:1d:cc:b8:d9:90:cc:59: f4:c9:20:6f:c1:03:2b:4d:4b:75:67:22:e3:96:ac: 80:29:f8:17:1d:6e:bb:fb:76:c5:05:9d:de:08:5f: 54:f9:1a:cf:8d:b0:8c:87:27:4e:1c:00:81:5d:cf: c8:dc:f4:86:7c:79:cf:57:13:3f:43:18:84:ad:80: 61:03:95:23:70:5c:a7:5a:05:3d:ec:89:0c:f1:dd: 0a:ee:50:84:4f:e7:c4:ec:60:2d:48:b4:bb:5a:9d: 6d:dd:b0:76:5f:0c:45:8b:4a:eb:85:92:2a:48:82: 5e:ec:6c:47:11:7e:0e:3b:b2:64:23:b6:fc:2a:e2: ce:f1:a7:c9:48:af:e5:25:5e:fe:2b:ba:68:79:17: 44:cd:aa:bd:1b:31:db:b9:ba:c7:15:88:a1:06:13: 4a:22:0c:74:f3:fd:7c:4d:10:fd:30:30:dc:db:0c: 83:15:71:5f:7f:10:99:ee:e2:d0:e1:aa:3f:ea:bf: 29:00:36:ce:ee:47:0e:d4:d2:ac:18:da:a7:3c:4c: cf:3c:06:16:6d:b5:f8:5c:04:61:b7:1e:83:96:2c: d4:a2:43:95:1a:71:cb:93:7d:ad:6d:c8:4a:4d:f0: 16:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9C:11:95:66:F1:33:6B:46:69:27:66:A2:73:23:FE:55:F5:82:93 X509v3 Authority Key Identifier: keyid:D3:98:21:43:FC:BA:44:20:C0:7A:A5:CE:EB:50:ED:B2:84:87:CF:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dfee82b7-c182-4e83-897c-e00f3ce1b0d2/0/D3982143FCBA4420C07AA5CEEB50EDB28487CF2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D3982143FCBA4420C07AA5CEEB50EDB28487CF2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dfee82b7-c182-4e83-897c-e00f3ce1b0d2/0/3130332e3232392e3138352e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.185.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:fe:13:5a:d4:99:68:69:8f:5f:0f:8c:7e:c8:2c:f5:e4:11: 31:1a:cf:06:d9:ec:8e:87:c6:2f:8c:12:3b:6d:e1:38:9c:e1: 6b:07:1f:cf:e0:9a:fe:bb:0e:27:ae:a8:33:7f:c6:dc:7a:66: f9:10:a1:e3:2a:56:21:74:12:c0:31:ea:c7:2f:be:38:f8:e3: 5e:f0:ab:fa:65:40:86:87:36:dc:88:97:25:b4:87:5d:27:b6: cd:a5:ff:6d:57:ee:75:75:57:ac:ab:b1:00:98:4b:f1:0a:bf: 0d:4e:63:95:93:af:35:e6:40:34:ba:40:a2:d7:ad:7a:02:11: 05:15:42:af:ab:3e:89:f1:78:34:8e:68:c1:67:b8:e9:c5:83: 32:33:f2:86:a1:5c:1a:9e:36:ab:0b:5f:c1:f7:67:f7:4c:4e: 42:f4:91:1a:df:f9:59:a3:64:b5:51:6b:63:0f:10:18:10:5b: 6f:af:1c:e9:03:e1:06:6f:17:61:8e:78:19:3f:11:d0:66:d8: 0e:c3:70:c7:b4:85:03:df:70:fa:b9:6b:54:ae:7f:7b:5b:ba: ab:58:e1:25:60:8b:c2:82:cc:fd:00:70:e3:0d:5d:93:75:6c: 44:87:4d:62:af:86:71:10:59:5d:9a:60:7a:f7:4d:d4:99:5e: 0c:ef:9b:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYzWkbYXIw6PrK+jOvM3kid2XZwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM5ODIxNDNGQ0JBNDQyMEMwN0FBNUNFRUI1MEVEQjI4 NDg3Q0YyQzAeFw0yNjA1MDMwMzA3MTlaFw0yNzA1MDIwMzEyMTlaMDMxMTAvBgNV BAMTKEM1OUMxMTk1NjZGMTMzNkI0NjY5Mjc2NkEyNzMyM0ZFNTVGNTgyOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCirCDJ30Bv+iV9oAzPKbJGJObb YNWZHcy42ZDMWfTJIG/BAytNS3VnIuOWrIAp+Bcdbrv7dsUFnd4IX1T5Gs+NsIyH J04cAIFdz8jc9IZ8ec9XEz9DGIStgGEDlSNwXKdaBT3siQzx3QruUIRP58TsYC1I tLtanW3dsHZfDEWLSuuFkipIgl7sbEcRfg47smQjtvwq4s7xp8lIr+UlXv4rumh5 F0TNqr0bMdu5uscViKEGE0oiDHTz/XxNEP0wMNzbDIMVcV9/EJnu4tDhqj/qvykA Ns7uRw7U0qwY2qc8TM88BhZttfhcBGG3HoOWLNSiQ5UaccuTfa1tyEpN8Ba3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxZwRlWbxM2tGaSdmonMj/lX1gpMwHwYDVR0j BBgwFoAU05ghQ/y6RCDAeqXO61DtsoSHzywwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGZlZTgyYjctYzE4Mi00ZTgzLTg5N2MtZTAwZjNjZTFiMGQyLzAvRDM5ODIxNDNG Q0JBNDQyMEMwN0FBNUNFRUI1MEVEQjI4NDg3Q0YyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzk4MjE0M0ZDQkE0NDIwQzA3QUE1Q0VFQjUwRURCMjg0ODdD RjJDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmZWU4MmI3LWMxODItNGU4My04 OTdjLWUwMGYzY2UxYjBkMi8wLzMxMzAzMzJlMzIzMjM5MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfluTANBgkqhkiG 9w0BAQsFAAOCAQEAfP4TWtSZaGmPXw+Mfsgs9eQRMRrPBtnsjofGL4wSO23hOJzh awcfz+Ca/rsOJ66oM3/G3Hpm+RCh4ypWIXQSwDHqxy++OPjjXvCr+mVAhoc23IiX JbSHXSe2zaX/bVfudXVXrKuxAJhL8Qq/DU5jlZOvNeZANLpAotetegIRBRVCr6s+ ifF4NI5owWe46cWDMjPyhqFcGp42qwtfwfdn90xOQvSRGt/5WaNktVFrYw8QGBBb b68c6QPhBm8XYY54GT8R0GbYDsNwx7SFA99w+rlrVK5/e1u6q1jhJWCLwoLM/QBw 4w1dk3VsRIdNYq+GcRBZXZpgevdN1JleDO+bTQ== -----END CERTIFICATE-----Generated at Tue May 5 13:26:30 2026 by rpki-client