$ rpki-client -vvf rpki-rsync.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa File: 3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa (raw, json) Hash identifier: RpKB88H1EeRDg7tfcTBSl+Zo5Y84iIg06W/eVC4GSFw= Subject key identifier: 98:F3:96:F0:29:E6:2E:97:D3:6E:A9:FE:C5:AD:E3:CD:F3:21:E6:43 Certificate issuer: /CN=C24BA8D7ABA9A0AEB81D20E6B551215E769828CA Certificate serial: 0B6B90B8E05DDF1E91B9612C6379E97087984D6E Authority key identifier: C2:4B:A8:D7:AB:A9:A0:AE:B8:1D:20:E6:B5:51:21:5E:76:98:28:CA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C24BA8D7ABA9A0AEB81D20E6B551215E769828CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa Signing time: Sun 03 May 2026 02:12:33 +0000 ROA not before: Sun 03 May 2026 02:07:33 +0000 ROA not after: Sun 02 May 2027 02:12:33 +0000 asID: 139367 IP address blocks: 103.141.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/C24BA8D7ABA9A0AEB81D20E6B551215E769828CA.crl rsync://rpki-rsync.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/C24BA8D7ABA9A0AEB81D20E6B551215E769828CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C24BA8D7ABA9A0AEB81D20E6B551215E769828CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6b:90:b8:e0:5d:df:1e:91:b9:61:2c:63:79:e9:70:87:98:4d:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24BA8D7ABA9A0AEB81D20E6B551215E769828CA Validity Not Before: May 3 02:07:33 2026 GMT Not After : May 2 02:12:33 2027 GMT Subject: CN=98F396F029E62E97D36EA9FEC5ADE3CDF321E643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:41:a3:ec:fd:17:95:55:4d:66:52:1e:6c:15: f0:48:a3:cc:9b:79:79:86:06:09:a1:96:57:e5:98: 84:f3:9f:dd:f9:d9:6a:1e:97:9a:8e:31:3a:41:c4: 8b:c9:7f:a4:3f:9e:28:17:32:7e:89:61:e1:11:63: 09:16:22:4b:4e:ce:8e:77:ea:ce:d5:9c:b2:9d:f4: f2:92:33:65:b0:60:f6:00:c4:47:7e:e9:06:fa:ab: 8f:b3:38:96:a6:6e:13:7a:37:32:65:0d:a7:b9:7d: c6:26:44:8e:2c:bd:d0:a9:89:bd:4d:62:86:03:a9: 9e:9f:e0:12:42:d9:88:ea:60:de:8a:bd:f3:2a:11: 80:ee:47:fb:59:85:d7:84:66:e3:a3:f7:dd:87:75: 81:7c:9a:d0:55:38:53:b9:44:5d:04:e0:2e:ce:19: d7:88:d4:bc:2b:23:65:f8:e2:0a:8a:44:d0:8a:e6: b2:48:e0:66:26:da:67:fc:52:70:9e:3d:95:fb:2e: df:d2:6b:47:0c:bc:ef:e6:d2:ba:d4:6a:61:2a:a9: 2f:ee:a7:82:fd:e5:78:fd:18:0c:4b:ee:8c:bc:89: 4d:6d:93:86:10:f4:7e:be:a4:24:39:aa:2f:cf:bc: c4:16:0c:b6:fe:d4:5c:62:5b:c8:14:f7:42:30:05: de:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F3:96:F0:29:E6:2E:97:D3:6E:A9:FE:C5:AD:E3:CD:F3:21:E6:43 X509v3 Authority Key Identifier: keyid:C2:4B:A8:D7:AB:A9:A0:AE:B8:1D:20:E6:B5:51:21:5E:76:98:28:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/C24BA8D7ABA9A0AEB81D20E6B551215E769828CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C24BA8D7ABA9A0AEB81D20E6B551215E769828CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.238.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:f3:01:b4:7c:3f:3e:3c:ba:99:77:a1:8c:47:95:73:24:56: aa:a6:cf:b6:68:93:c4:21:98:8e:04:b7:5b:57:73:71:dd:db: 16:72:0a:47:0f:1d:63:b6:43:37:66:d9:4c:ea:f7:fe:01:6c: b7:ea:17:73:71:cf:16:a2:1b:00:f4:a2:31:78:71:d6:7b:79: ff:61:c9:ce:8e:32:5a:fd:f6:3c:7d:a7:70:33:3b:c4:2e:f9: eb:a7:0d:6f:ac:be:7b:86:52:e7:f2:d3:27:20:7a:d9:e7:7d: aa:2a:0c:da:af:70:b6:fe:01:fe:b5:5e:94:7c:43:66:8e:8e: 0d:f6:af:d1:1a:69:ba:da:71:db:d3:51:89:c9:07:ed:b3:62: 00:19:68:c4:38:6a:18:96:77:ce:e6:e5:23:e8:0a:80:d1:1c: f5:fc:3f:a3:5a:ce:0e:14:36:03:0d:fa:33:32:2b:3e:4f:6b: 00:57:e6:e6:ac:84:0b:67:13:10:6f:7e:5a:95:2a:ae:9a:b3: 54:4a:28:2e:16:6e:42:ec:d5:7d:33:f7:94:5a:85:70:27:35: 25:43:ca:27:b5:7f:d0:16:ce:4b:32:1f:9b:5e:26:da:e6:42: eb:a5:c3:6f:65:b6:2c:09:d3:37:aa:09:52:5c:57:63:14:61: 57:08:64:87 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC2uQuOBd3x6RuWEsY3npcIeYTW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0QkE4RDdBQkE5QTBBRUI4MUQyMEU2QjU1MTIxNUU3 Njk4MjhDQTAeFw0yNjA1MDMwMjA3MzNaFw0yNzA1MDIwMjEyMzNaMDMxMTAvBgNV BAMTKDk4RjM5NkYwMjlFNjJFOTdEMzZFQTlGRUM1QURFM0NERjMyMUU2NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmQaPs/ReVVU1mUh5sFfBIo8yb eXmGBgmhllflmITzn9352Woel5qOMTpBxIvJf6Q/nigXMn6JYeERYwkWIktOzo53 6s7VnLKd9PKSM2WwYPYAxEd+6Qb6q4+zOJambhN6NzJlDae5fcYmRI4svdCpib1N YoYDqZ6f4BJC2YjqYN6KvfMqEYDuR/tZhdeEZuOj992HdYF8mtBVOFO5RF0E4C7O GdeI1LwrI2X44gqKRNCK5rJI4GYm2mf8UnCePZX7Lt/Sa0cMvO/m0rrUamEqqS/u p4L95Xj9GAxL7oy8iU1tk4YQ9H6+pCQ5qi/PvMQWDLb+1FxiW8gU90IwBd5LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmPOW8CnmLpfTbqn+xa3jzfMh5kMwHwYDVR0j BBgwFoAUwkuo16upoK64HSDmtVEhXnaYKMowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGE3MDgzYWItMjcwYS00YjBhLThlNTUtYTQ1ZTFjZjFhZmQ1LzAvQzI0QkE4RDdB QkE5QTBBRUI4MUQyMEU2QjU1MTIxNUU3Njk4MjhDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMjRCQThEN0FCQTlBMEFFQjgxRDIwRTZCNTUxMjE1RTc2OTgy OENBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBhNzA4M2FiLTI3MGEtNGIwYS04 ZTU1LWE0NWUxY2YxYWZkNS8wLzMxMzAzMzJlMzEzNDMxMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnje4wDQYJ KoZIhvcNAQELBQADggEBAC7zAbR8Pz48upl3oYxHlXMkVqqmz7Zok8QhmI4Et1tX c3Hd2xZyCkcPHWO2Qzdm2Uzq9/4BbLfqF3NxzxaiGwD0ojF4cdZ7ef9hyc6OMlr9 9jx9p3AzO8Qu+eunDW+svnuGUufy0ycgetnnfaoqDNqvcLb+Af61XpR8Q2aOjg32 r9EaabracdvTUYnJB+2zYgAZaMQ4ahiWd87m5SPoCoDRHPX8P6Nazg4UNgMN+jMy Kz5PawBX5uashAtnExBvflqVKq6as1RKKC4WbkLs1X0z95RahXAnNSVDyie1f9AW zksyH5teJtrmQuulw29ltiwJ0zeqCVJcV2MUYVcIZIc= -----END CERTIFICATE-----Generated at Wed May 13 04:51:43 2026 by rpki-client