$ rpki-client -vvf rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa File: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: 2ukK53+fe7S5M2zaDBH1WtDgIsIsj4+Dshs68GBh99o= Subject key identifier: 7D:61:C3:06:A4:52:37:ED:8F:F0:BE:43:A1:93:A3:A9:63:09:0F:EF Certificate issuer: /CN=4DA11D5AF5F17AE716519F84A263E1A5E57D5244 Certificate serial: 2A0D457BA10920D547DE293BB4BA17724A26EA79 Authority key identifier: 4D:A1:1D:5A:F5:F1:7A:E7:16:51:9F:84:A2:63:E1:A5:E5:7D:52:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa Signing time: Sun 03 May 2026 02:12:05 +0000 ROA not before: Sun 03 May 2026 02:07:05 +0000 ROA not after: Sun 02 May 2027 02:12:05 +0000 asID: 136841 IP address blocks: 103.100.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.crl rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:0d:45:7b:a1:09:20:d5:47:de:29:3b:b4:ba:17:72:4a:26:ea:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DA11D5AF5F17AE716519F84A263E1A5E57D5244 Validity Not Before: May 3 02:07:05 2026 GMT Not After : May 2 02:12:05 2027 GMT Subject: CN=7D61C306A45237ED8FF0BE43A193A3A963090FEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5e:5b:2f:c2:59:af:53:e6:40:2f:ab:dc:55: 5e:3e:a7:c3:ba:bd:7c:cf:9b:56:bf:1f:b8:10:d0: 03:40:47:24:8d:02:0f:4a:dc:73:85:2b:08:05:35: db:d3:e3:d1:a7:c5:19:bb:d4:59:d8:f4:f3:5b:0e: f3:6e:b6:a0:d8:de:f0:2b:f0:a9:a7:0c:34:03:d6: f5:7e:80:f4:70:6d:6a:e8:b0:9c:d3:25:8c:07:3c: 8c:f8:53:3d:e2:90:33:28:52:01:5c:43:fd:4e:e5: e5:d5:6f:17:55:7b:26:41:47:6d:c1:30:77:11:58: 70:80:6b:8d:97:c0:42:3f:a2:d8:2e:cb:a4:85:6b: 6d:d7:4c:38:df:a2:f6:73:62:40:6d:69:bc:9f:d9: 0f:8d:fd:9c:f0:ad:fb:82:4a:56:a5:7f:be:e9:cf: f0:15:a4:62:f9:76:9b:3b:99:ba:ec:12:eb:85:fc: 0f:11:97:fd:4a:da:19:65:52:65:5d:18:93:fc:03: ca:47:e1:16:2f:a1:da:8f:64:a1:89:1f:45:16:a6: 9a:b5:98:ff:6f:54:40:ff:9d:5c:b7:04:a2:81:e4: 27:80:00:a1:b2:d2:da:d4:1d:b8:11:74:95:e3:a6: 5b:5f:1d:ae:e6:84:6e:b3:13:81:03:65:43:0e:b1: fd:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:61:C3:06:A4:52:37:ED:8F:F0:BE:43:A1:93:A3:A9:63:09:0F:EF X509v3 Authority Key Identifier: keyid:4D:A1:1D:5A:F5:F1:7A:E7:16:51:9F:84:A2:63:E1:A5:E5:7D:52:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.172.0/24 Signature Algorithm: sha256WithRSAEncryption b5:1e:9b:3d:5e:f3:e0:d7:03:ab:76:c2:f8:87:4f:27:62:06: 22:b5:9d:e1:6d:6a:33:34:15:7c:70:42:57:c1:23:0b:f3:1f: 65:32:5a:cb:b1:3f:93:35:04:74:37:95:6d:36:8e:cf:f8:19: ae:71:37:a5:a1:5c:4e:24:df:b6:33:d6:40:0a:1e:a1:0f:24: 58:51:a2:9f:fe:bd:8d:99:c4:b6:42:04:4a:98:f3:44:56:4c: b0:23:83:a2:2b:98:ac:47:f8:41:5e:52:4f:b7:72:50:e1:24: 94:c6:57:14:4e:4b:8e:45:98:5c:2d:52:33:cc:9f:ae:87:79: cd:a6:3f:df:f5:66:7f:76:af:b5:f2:46:2d:d9:63:c2:74:cf: c9:31:36:c4:b4:03:d6:b5:50:e7:bc:fa:9b:68:10:8c:3b:9a: 37:76:36:85:53:e4:70:46:bc:13:ef:0b:00:2e:4a:55:81:8d: 8d:bb:4e:44:a9:ba:54:ac:2c:00:d5:91:de:47:a3:cf:ea:00: c9:56:6b:2d:a7:22:ec:c5:47:5e:70:6e:c0:b3:2d:0e:64:1d: 87:19:cd:9b:a4:73:f6:23:3a:b8:13:e8:c5:ec:08:ed:6e:a3: 08:41:82:51:dd:8e:03:e8:ef:20:b9:72:f7:19:8c:b8:6a:e5: 6d:c7:71:67 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKg1Fe6EJINVH3ik7tLoXckom6nkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERBMTFENUFGNUYxN0FFNzE2NTE5Rjg0QTI2M0UxQTVF NTdENTI0NDAeFw0yNjA1MDMwMjA3MDVaFw0yNzA1MDIwMjEyMDVaMDMxMTAvBgNV BAMTKDdENjFDMzA2QTQ1MjM3RUQ4RkYwQkU0M0ExOTNBM0E5NjMwOTBGRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmXlsvwlmvU+ZAL6vcVV4+p8O6 vXzPm1a/H7gQ0ANARySNAg9K3HOFKwgFNdvT49GnxRm71FnY9PNbDvNutqDY3vAr 8KmnDDQD1vV+gPRwbWrosJzTJYwHPIz4Uz3ikDMoUgFcQ/1O5eXVbxdVeyZBR23B MHcRWHCAa42XwEI/otguy6SFa23XTDjfovZzYkBtabyf2Q+N/ZzwrfuCSlalf77p z/AVpGL5dps7mbrsEuuF/A8Rl/1K2hllUmVdGJP8A8pH4RYvodqPZKGJH0UWppq1 mP9vVED/nVy3BKKB5CeAAKGy0trUHbgRdJXjpltfHa7mhG6zE4EDZUMOsf0xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfWHDBqRSN+2P8L5DoZOjqWMJD+8wHwYDVR0j BBgwFoAUTaEdWvXxeucWUZ+EomPhpeV9UkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDczMDRiODMtMzBhYS00YmJmLTlmZDctMmZjZWFkYmYwMDMwLzAvNERBMTFENUFG NUYxN0FFNzE2NTE5Rjg0QTI2M0UxQTVFNTdENTI0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80REExMUQ1QUY1RjE3QUU3MTY1MTlGODRBMjYzRTFBNUU1N0Q1 MjQ0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA3MzA0YjgzLTMwYWEtNGJiZi05 ZmQ3LTJmY2VhZGJmMDAzMC8wLzMxMzAzMzJlMzEzMDMwMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZKwwDQYJ KoZIhvcNAQELBQADggEBALUemz1e8+DXA6t2wviHTydiBiK1neFtajM0FXxwQlfB IwvzH2UyWsuxP5M1BHQ3lW02js/4Ga5xN6WhXE4k37Yz1kAKHqEPJFhRop/+vY2Z xLZCBEqY80RWTLAjg6IrmKxH+EFeUk+3clDhJJTGVxROS45FmFwtUjPMn66Hec2m P9/1Zn92r7XyRi3ZY8J0z8kxNsS0A9a1UOe8+ptoEIw7mjd2NoVT5HBGvBPvCwAu SlWBjY27TkSpulSsLADVkd5Ho8/qAMlWay2nIuzFR15wbsCzLQ5kHYcZzZukc/Yj OrgT6MXsCO1uowhBglHdjgPo7yC5cvcZjLhq5W3HcWc= -----END CERTIFICATE-----Generated at Wed May 13 02:49:27 2026 by rpki-client