$ rpki-client -vvf rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa File: 3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: APyKoi1ZG2HKYN+LmPQKEKUBYkJq8d16Zc9c2T01Unc= Subject key identifier: E0:FC:8F:B5:35:97:52:2F:B6:D7:4C:CC:70:23:68:81:F8:58:6E:8C Certificate issuer: /CN=D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3 Certificate serial: 4B4A28AB23C66DD6E0880E5073E9020DEE039F2C Authority key identifier: D0:CF:CA:6A:1F:D2:34:38:03:3F:81:7E:FD:3B:2A:18:0D:32:C0:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 May 2026 02:12:30 +0000 ROA not before: Sun 03 May 2026 02:07:30 +0000 ROA not after: Sun 02 May 2027 02:12:30 +0000 asID: 58369 IP address blocks: 103.140.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.crl rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:4a:28:ab:23:c6:6d:d6:e0:88:0e:50:73:e9:02:0d:ee:03:9f:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3 Validity Not Before: May 3 02:07:30 2026 GMT Not After : May 2 02:12:30 2027 GMT Subject: CN=E0FC8FB53597522FB6D74CCC70236881F8586E8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0c:e8:2d:d7:b4:a4:8c:df:5f:0d:c0:1b:75: eb:67:e2:a7:62:2b:05:71:a7:14:5d:fc:9e:11:95: b5:a4:ca:6d:8d:3e:a9:97:b0:e6:f6:71:f6:3e:bf: 2a:57:ba:1d:26:d3:38:49:69:74:e8:5e:2e:28:e3: 95:ec:21:90:3b:b9:1c:14:ef:5d:0e:3a:86:88:0e: 08:53:08:13:7e:29:65:55:7c:68:b6:6f:21:0d:ba: e0:50:18:2c:2c:b7:01:e0:bd:23:5b:dd:54:9c:a5: ef:ae:af:6d:3a:5a:b7:6c:af:2d:7f:7f:f5:b1:17: a9:6a:13:ce:c1:83:f7:85:0a:f4:d2:29:a7:01:01: c8:a1:81:a5:fb:0f:31:58:b8:f1:95:44:98:b6:21: 8c:10:c5:f6:14:58:5c:82:50:0b:9b:ad:f8:14:b3: ec:6e:bb:35:0b:99:51:8a:30:08:db:35:3f:d0:76: 50:13:d5:f5:a1:aa:98:fe:99:33:77:1f:fc:d1:16: d2:eb:6a:18:b6:65:6a:ef:42:4b:b3:e9:4d:11:09: fd:bb:11:2e:44:16:7f:37:3a:87:a6:9e:c1:22:93: 0a:15:b3:82:c4:18:05:87:db:0a:3f:13:ea:a4:7e: bd:00:4a:b5:33:14:6b:c6:5a:9b:9f:a3:ab:cd:a4: a9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FC:8F:B5:35:97:52:2F:B6:D7:4C:CC:70:23:68:81:F8:58:6E:8C X509v3 Authority Key Identifier: keyid:D0:CF:CA:6A:1F:D2:34:38:03:3F:81:7E:FD:3B:2A:18:0D:32:C0:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D0CFCA6A1FD23438033F817EFD3B2A180D32C0C3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.109.0/24 Signature Algorithm: sha256WithRSAEncryption 49:b1:11:d5:d8:31:bd:2b:5d:d7:c1:5c:11:62:f9:c2:6f:20: 8b:a3:08:19:a5:13:b6:6f:45:20:44:d9:e6:ff:f1:a5:8b:b1: cf:f8:b3:77:5b:73:a7:b7:17:43:7c:c4:ae:fb:e8:02:15:4d: 06:68:6d:6c:8a:b4:2d:e2:15:34:a8:f9:8c:ee:ba:40:13:05: 25:9e:87:39:b7:28:36:34:49:bb:94:4b:fc:75:f6:39:86:3f: c6:49:a4:2b:64:af:bb:b2:06:f9:c1:d8:74:0c:bb:55:07:f0: 38:de:ee:f9:03:b7:ce:a6:81:ce:3a:a8:b3:a8:2f:70:a1:b5: 72:bc:4a:2a:58:84:89:58:9a:0d:04:39:c1:ab:84:22:bc:65: 94:b1:c8:b0:f3:da:3a:ad:d3:db:7f:7a:d2:a6:aa:26:7a:85: 8e:4f:ee:22:5b:ee:04:28:01:70:2b:6d:ec:63:23:4e:e9:2a: 9a:8a:80:9b:6f:c6:fb:00:d6:12:c4:82:19:55:37:71:58:ee: f2:bb:97:41:8e:46:38:04:f8:09:a0:a0:6a:74:ce:8d:ab:5b: aa:7d:2a:62:96:e3:19:8b:7e:e0:00:c5:b5:1f:9f:93:70:ef: af:8e:55:74:42:d1:ce:66:7f:35:67:7e:9e:b2:dc:49:e6:6b: 2e:c9:ba:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS0ooqyPGbdbgiA5Qc+kCDe4DnywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDRkNBNkExRkQyMzQzODAzM0Y4MTdFRkQzQjJBMTgw RDMyQzBDMzAeFw0yNjA1MDMwMjA3MzBaFw0yNzA1MDIwMjEyMzBaMDMxMTAvBgNV BAMTKEUwRkM4RkI1MzU5NzUyMkZCNkQ3NENDQzcwMjM2ODgxRjg1ODZFOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcDOgt17SkjN9fDcAbdetn4qdi KwVxpxRd/J4RlbWkym2NPqmXsOb2cfY+vypXuh0m0zhJaXToXi4o45XsIZA7uRwU 710OOoaIDghTCBN+KWVVfGi2byENuuBQGCwstwHgvSNb3VScpe+ur206Wrdsry1/ f/WxF6lqE87Bg/eFCvTSKacBAcihgaX7DzFYuPGVRJi2IYwQxfYUWFyCUAubrfgU s+xuuzULmVGKMAjbNT/QdlAT1fWhqpj+mTN3H/zRFtLrahi2ZWrvQkuz6U0RCf27 ES5EFn83OoemnsEikwoVs4LEGAWH2wo/E+qkfr0ASrUzFGvGWpufo6vNpKl5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4PyPtTWXUi+210zMcCNogfhYbowwHwYDVR0j BBgwFoAU0M/Kah/SNDgDP4F+/TsqGA0ywMMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGE0YTIxYjktZjkxMi00MWYzLWI2MmMtMTIxNzU4MWM5NDhhLzAvRDBDRkNBNkEx RkQyMzQzODAzM0Y4MTdFRkQzQjJBMTgwRDMyQzBDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMENGQ0E2QTFGRDIzNDM4MDMzRjgxN0VGRDNCMkExODBEMzJD MEMzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4xtMA0GCSqG SIb3DQEBCwUAA4IBAQBJsRHV2DG9K13XwVwRYvnCbyCLowgZpRO2b0UgRNnm//Gl i7HP+LN3W3OntxdDfMSu++gCFU0GaG1sirQt4hU0qPmM7rpAEwUlnoc5tyg2NEm7 lEv8dfY5hj/GSaQrZK+7sgb5wdh0DLtVB/A43u75A7fOpoHOOqizqC9wobVyvEoq WISJWJoNBDnBq4QivGWUsciw89o6rdPbf3rSpqomeoWOT+4iW+4EKAFwK23sYyNO 6SqaioCbb8b7ANYSxIIZVTdxWO7yu5dBjkY4BPgJoKBqdM6Nq1uqfSpiluMZi37g AMW1H5+TcO+vjlV0QtHOZn81Z36estxJ5msuybr9 -----END CERTIFICATE-----Generated at Wed May 13 15:07:13 2026 by rpki-client