$ rpki-client -vvf rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa File: 3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: W9kmi6fSD3hfpz6c4ipA4kZ2ayaTmTarwmo8qVkL32c= Subject key identifier: 68:23:01:5F:DF:56:77:5F:43:34:AE:BD:31:A7:84:1F:5D:B2:19:30 Certificate issuer: /CN=D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3 Certificate serial: 30B6F26A0D62ED5C422AEA2C3C0DB076518102A6 Authority key identifier: D0:CF:CA:6A:1F:D2:34:38:03:3F:81:7E:FD:3B:2A:18:0D:32:C0:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 May 2026 02:12:31 +0000 ROA not before: Sun 03 May 2026 02:07:31 +0000 ROA not after: Sun 02 May 2027 02:12:31 +0000 asID: 58369 IP address blocks: 103.140.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.crl rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:b6:f2:6a:0d:62:ed:5c:42:2a:ea:2c:3c:0d:b0:76:51:81:02:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3 Validity Not Before: May 3 02:07:31 2026 GMT Not After : May 2 02:12:31 2027 GMT Subject: CN=6823015FDF56775F4334AEBD31A7841F5DB21930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:40:fc:59:72:19:78:6d:fe:e9:29:44:0d:fd: 17:ec:7f:0c:00:69:1d:c3:05:35:0f:dd:d9:1b:21: 60:7a:41:6b:cc:ba:1c:ad:64:60:6d:fb:0b:de:72: 49:03:22:59:f4:e5:69:a9:5b:5c:1d:f0:3e:76:cb: 70:a5:07:4b:25:4f:41:b9:81:ca:d5:d0:c9:0f:ae: bb:03:a0:2d:58:00:a6:57:1c:4e:7f:8a:79:ac:db: 71:6c:e5:47:16:4b:6a:a3:30:5b:38:8c:ba:5d:cb: a6:ad:39:bd:81:00:7f:19:ad:2d:02:06:83:35:ef: e0:a0:7f:1e:76:0e:fe:0c:fc:e1:ef:d4:b9:30:76: 19:24:7f:28:e2:29:85:91:e4:01:98:b6:ff:e4:61: 5d:74:e3:09:ec:e4:f8:f2:02:d8:fc:ba:5b:19:9e: e2:42:07:e3:38:1d:e5:f5:4a:ea:2a:68:6d:fe:39: 82:66:6a:50:0f:03:41:fc:88:70:8f:9a:51:e0:8b: 4c:f7:b2:47:6f:eb:0b:16:28:4f:6a:21:81:36:1d: 0c:e8:94:a6:a0:7a:c9:4a:33:c5:b3:1f:95:f5:e2: a4:1e:2a:ea:57:2d:ce:fc:82:3e:0b:13:43:6d:b4: 70:cb:03:f8:7c:68:21:f9:41:11:7a:47:79:5a:e4: 62:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:23:01:5F:DF:56:77:5F:43:34:AE:BD:31:A7:84:1F:5D:B2:19:30 X509v3 Authority Key Identifier: keyid:D0:CF:CA:6A:1F:D2:34:38:03:3F:81:7E:FD:3B:2A:18:0D:32:C0:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.108.0/24 Signature Algorithm: sha256WithRSAEncryption a7:07:6b:67:bb:f1:1b:20:ba:ae:c2:c4:1c:e0:cf:c7:d7:e4: 79:d3:d1:08:ef:a8:0f:5b:b9:81:f1:e5:29:98:e9:36:cf:bd: fd:e1:98:14:e4:29:13:46:c2:0d:3b:e1:b5:ed:4f:a6:8a:b9: e5:2f:2b:f5:e9:66:57:69:99:38:ba:f2:ea:09:d3:a5:39:c6: 40:fe:58:a1:cf:6f:4c:85:7d:6b:9e:d9:5a:bf:f5:74:c8:66: 73:58:4f:cd:9c:15:5b:d6:99:0c:3c:7b:dc:2c:d3:0b:8a:95: 3a:ac:ce:99:11:81:e4:aa:19:c4:5e:61:33:e2:e7:d5:e9:67: 40:3c:47:13:8a:17:d0:4d:a8:d1:0d:8e:ba:18:0f:e8:12:97: 69:a6:2f:4f:39:d8:4e:55:d2:11:c0:6b:ca:0c:d5:7d:7d:53: c7:db:82:96:98:9e:26:65:a6:35:68:44:87:02:00:35:69:4d: 57:46:e7:8b:a6:88:70:c9:c3:c0:08:59:3d:a0:13:d6:58:b2: 80:45:c3:21:bf:05:2b:da:d0:02:b4:69:12:1d:ac:29:6a:ff: d2:70:f3:cf:e7:91:76:58:59:62:26:a9:b0:3a:21:dc:de:9e: 87:d8:93:6b:f7:69:a6:8b:99:54:eb:09:2b:7b:5b:de:ad:93: b4:18:a3:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMLbyag1i7VxCKuosPA2wdlGBAqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDRkNBNkExRkQyMzQzODAzM0Y4MTdFRkQzQjJBMTgw RDMyQzBDMzAeFw0yNjA1MDMwMjA3MzFaFw0yNzA1MDIwMjEyMzFaMDMxMTAvBgNV BAMTKDY4MjMwMTVGREY1Njc3NUY0MzM0QUVCRDMxQTc4NDFGNURCMjE5MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIQPxZchl4bf7pKUQN/RfsfwwA aR3DBTUP3dkbIWB6QWvMuhytZGBt+wveckkDIln05WmpW1wd8D52y3ClB0slT0G5 gcrV0MkPrrsDoC1YAKZXHE5/inms23Fs5UcWS2qjMFs4jLpdy6atOb2BAH8ZrS0C BoM17+Cgfx52Dv4M/OHv1LkwdhkkfyjiKYWR5AGYtv/kYV104wns5PjyAtj8ulsZ nuJCB+M4HeX1SuoqaG3+OYJmalAPA0H8iHCPmlHgi0z3skdv6wsWKE9qIYE2HQzo lKageslKM8WzH5X14qQeKupXLc78gj4LE0NttHDLA/h8aCH5QRF6R3la5GKzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaCMBX99Wd19DNK69MaeEH12yGTAwHwYDVR0j BBgwFoAU0M/Kah/SNDgDP4F+/TsqGA0ywMMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGE0YTIxYjktZjkxMi00MWYzLWI2MmMtMTIxNzU4MWM5NDhhLzAvRDBDRkNBNkEx RkQyMzQzODAzM0Y4MTdFRkQzQjJBMTgwRDMyQzBDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMENGQ0E2QTFGRDIzNDM4MDMzRjgxN0VGRDNCMkExODBEMzJD MEMzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4xsMA0GCSqG SIb3DQEBCwUAA4IBAQCnB2tnu/EbILquwsQc4M/H1+R509EI76gPW7mB8eUpmOk2 z7394ZgU5CkTRsINO+G17U+mirnlLyv16WZXaZk4uvLqCdOlOcZA/lihz29MhX1r ntlav/V0yGZzWE/NnBVb1pkMPHvcLNMLipU6rM6ZEYHkqhnEXmEz4ufV6WdAPEcT ihfQTajRDY66GA/oEpdppi9POdhOVdIRwGvKDNV9fVPH24KWmJ4mZaY1aESHAgA1 aU1XRueLpohwycPACFk9oBPWWLKARcMhvwUr2tACtGkSHawpav/ScPPP55F2WFli JqmwOiHc3p6H2JNr92mmi5lU6wkre1verZO0GKNh -----END CERTIFICATE-----Generated at Wed May 13 14:03:07 2026 by rpki-client