$ rpki-client -vvf rpki-rsync.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32322e302f32342d3234203d3e20313336383635.roa File: 3130332e3233392e32322e302f32342d3234203d3e20313336383635.roa (raw, json) Hash identifier: 0JVt6Zu0M/Ga29cquq7tcggAAo9qmUWZlK+5RkmIrXg= Subject key identifier: 5C:FB:59:E7:5E:0B:93:EE:BD:C8:77:F2:5E:FF:DD:FA:FF:88:B6:92 Certificate issuer: /CN=A7EC36E89BE7B48874142363CBDE6AF22273C559 Certificate serial: 40FD691FE48A56B8B2C3BEE2FAC792F4CA4CA83E Authority key identifier: A7:EC:36:E8:9B:E7:B4:88:74:14:23:63:CB:DE:6A:F2:22:73:C5:59 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7EC36E89BE7B48874142363CBDE6AF22273C559.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32322e302f32342d3234203d3e20313336383635.roa Signing time: Sun 03 May 2026 03:17:30 +0000 ROA not before: Sun 03 May 2026 03:12:30 +0000 ROA not after: Sun 02 May 2027 03:17:30 +0000 asID: 136865 IP address blocks: 103.239.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/A7EC36E89BE7B48874142363CBDE6AF22273C559.crl rsync://rpki-rsync.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/A7EC36E89BE7B48874142363CBDE6AF22273C559.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7EC36E89BE7B48874142363CBDE6AF22273C559.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 07:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:fd:69:1f:e4:8a:56:b8:b2:c3:be:e2:fa:c7:92:f4:ca:4c:a8:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7EC36E89BE7B48874142363CBDE6AF22273C559 Validity Not Before: May 3 03:12:30 2026 GMT Not After : May 2 03:17:30 2027 GMT Subject: CN=5CFB59E75E0B93EEBDC877F25EFFDDFAFF88B692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:05:cd:a1:19:c7:ee:c1:80:a9:49:b7:cc:9e: b3:e3:f5:eb:c6:e4:59:6f:53:07:a6:49:d1:b3:99: 7f:f2:dc:d7:af:85:33:f1:a5:cb:f5:38:74:1a:cf: 52:dc:03:f6:b8:a8:c2:7d:f3:fa:79:a9:36:26:29: a3:ee:66:7b:d3:6a:fc:d1:31:90:cb:55:8e:30:a9: 66:88:81:b6:b7:1b:84:71:e9:f5:02:5f:e2:cc:d9: 3c:15:86:c8:e2:5d:72:0a:8a:82:d1:8b:43:ef:54: 5b:f7:2d:3d:f2:36:05:22:6f:f3:60:7f:15:06:e4: 44:15:29:29:e9:9d:87:fc:f9:86:ee:12:d9:ec:ae: da:03:98:6e:c7:dd:70:f8:4f:4b:da:05:22:20:9f: bd:2d:7b:0d:ce:85:19:94:33:c3:4e:17:cc:6e:16: 88:d1:80:57:b7:0d:b1:60:8d:b7:fd:f3:bf:dc:33: 6e:3f:27:48:bb:47:b3:b7:cd:00:2f:7d:4a:c1:7a: 6d:ce:31:f6:56:91:a9:43:5d:74:13:39:6b:8f:f2: b7:ef:ab:03:7a:71:c6:32:a3:a8:a5:46:83:ff:99: 55:09:b4:3b:47:1f:1f:9b:34:d5:d5:bb:d7:70:66: 3a:e6:db:b0:fc:72:e5:36:96:24:ad:fc:be:a7:40: fe:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:FB:59:E7:5E:0B:93:EE:BD:C8:77:F2:5E:FF:DD:FA:FF:88:B6:92 X509v3 Authority Key Identifier: keyid:A7:EC:36:E8:9B:E7:B4:88:74:14:23:63:CB:DE:6A:F2:22:73:C5:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/A7EC36E89BE7B48874142363CBDE6AF22273C559.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7EC36E89BE7B48874142363CBDE6AF22273C559.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32322e302f32342d3234203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.22.0/24 Signature Algorithm: sha256WithRSAEncryption 01:6a:3e:87:41:0c:7b:81:3d:38:ce:11:23:85:b9:40:72:db: 56:33:2c:8c:5c:6e:db:70:dd:24:ed:6e:ee:7d:e0:91:d7:51: 1d:9f:42:5a:fd:00:88:f9:84:dd:80:9f:a7:d4:66:27:6f:c8: 05:6f:25:5f:aa:59:1e:87:be:eb:60:6a:91:14:e4:b6:df:1c: b2:1b:38:4b:d5:51:f8:42:3a:bc:d6:5e:c8:30:90:a7:75:56: 17:a4:a5:0f:9e:09:e1:b8:c8:9a:b1:28:13:59:07:6b:8a:0a: bf:78:41:c2:ab:50:3d:27:8e:0e:0c:54:3b:3e:f5:4d:b7:49: f8:f1:fa:89:bf:44:2a:68:e5:e9:03:0f:2a:34:15:5c:0f:71: 5e:a1:30:2a:4b:e9:a5:cf:b5:e1:4b:95:e0:e7:39:a4:0b:c7: c1:61:5f:14:b8:fc:72:51:7c:ff:c4:61:fa:66:d2:3e:19:d9: e2:62:f8:1f:a8:a0:8c:71:77:bc:fc:12:1b:0b:0c:03:b9:fb: a3:f0:3b:d8:62:78:d2:2e:50:5b:48:ce:d8:39:17:b0:4c:c3: ab:cd:63:fc:6d:fa:0d:96:4e:df:a5:4d:50:3e:39:3a:26:e8: 42:f7:ba:52:c3:d1:33:28:96:d6:99:90:be:d7:e2:de:6a:da: 49:59:d7:2b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQP1pH+SKVriyw77i+seS9MpMqD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdFQzM2RTg5QkU3QjQ4ODc0MTQyMzYzQ0JERTZBRjIy MjczQzU1OTAeFw0yNjA1MDMwMzEyMzBaFw0yNzA1MDIwMzE3MzBaMDMxMTAvBgNV BAMTKDVDRkI1OUU3NUUwQjkzRUVCREM4NzdGMjVFRkZEREZBRkY4OEI2OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVBc2hGcfuwYCpSbfMnrPj9evG 5FlvUwemSdGzmX/y3NevhTPxpcv1OHQaz1LcA/a4qMJ98/p5qTYmKaPuZnvTavzR MZDLVY4wqWaIgba3G4Rx6fUCX+LM2TwVhsjiXXIKioLRi0PvVFv3LT3yNgUib/Ng fxUG5EQVKSnpnYf8+YbuEtnsrtoDmG7H3XD4T0vaBSIgn70tew3OhRmUM8NOF8xu FojRgFe3DbFgjbf987/cM24/J0i7R7O3zQAvfUrBem3OMfZWkalDXXQTOWuP8rfv qwN6ccYyo6ilRoP/mVUJtDtHHx+bNNXVu9dwZjrm27D8cuU2liSt/L6nQP4ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXPtZ514Lk+69yHfyXv/d+v+ItpIwHwYDVR0j BBgwFoAUp+w26JvntIh0FCNjy95q8iJzxVkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM5ODA2M2UtNTdhMS00MGYyLTg1MjctNGQwYTY5YzVkNjQ3LzAvQTdFQzM2RTg5 QkU3QjQ4ODc0MTQyMzYzQ0JERTZBRjIyMjczQzU1OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BN0VDMzZFODlCRTdCNDg4NzQxNDIzNjNDQkRFNkFGMjIyNzND NTU5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzOTgwNjNlLTU3YTEtNDBmMi04 NTI3LTRkMGE2OWM1ZDY0Ny8wLzMxMzAzMzJlMzIzMzM5MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8WMA0GCSqG SIb3DQEBCwUAA4IBAQABaj6HQQx7gT04zhEjhblActtWMyyMXG7bcN0k7W7ufeCR 11Edn0Ja/QCI+YTdgJ+n1GYnb8gFbyVfqlkeh77rYGqRFOS23xyyGzhL1VH4Qjq8 1l7IMJCndVYXpKUPngnhuMiasSgTWQdrigq/eEHCq1A9J44ODFQ7PvVNt0n48fqJ v0QqaOXpAw8qNBVcD3FeoTAqS+mlz7XhS5Xg5zmkC8fBYV8UuPxyUXz/xGH6ZtI+ GdniYvgfqKCMcXe8/BIbCwwDufuj8DvYYnjSLlBbSM7YORewTMOrzWP8bfoNlk7f pU1QPjk6JuhC97pSw9EzKJbWmZC+1+LeatpJWdcr -----END CERTIFICATE-----Generated at Tue May 5 21:17:41 2026 by rpki-client