$ rpki-client -vvf rpki-rsync.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa File: 3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa (raw, json) Hash identifier: zMOWhJqH1J6fUN/OnJAxp19ayumIrg3uRIfyARwlsqI= Subject key identifier: F9:B8:D3:A1:8B:03:0B:1A:E3:F7:B8:28:54:A7:56:3A:7C:2F:C4:FE Certificate issuer: /CN=2677581645A49D82B36AA830484865F4B9D0FC43 Certificate serial: 58113C72E33408F785637020CC9891711356FD4B Authority key identifier: 26:77:58:16:45:A4:9D:82:B3:6A:A8:30:48:48:65:F4:B9:D0:FC:43 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2677581645A49D82B36AA830484865F4B9D0FC43.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa Signing time: Sun 03 May 2026 02:12:40 +0000 ROA not before: Sun 03 May 2026 02:07:40 +0000 ROA not after: Sun 02 May 2027 02:12:40 +0000 asID: 150932 IP address blocks: 103.107.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/2677581645A49D82B36AA830484865F4B9D0FC43.crl rsync://rpki-rsync.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/2677581645A49D82B36AA830484865F4B9D0FC43.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2677581645A49D82B36AA830484865F4B9D0FC43.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:11:3c:72:e3:34:08:f7:85:63:70:20:cc:98:91:71:13:56:fd:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2677581645A49D82B36AA830484865F4B9D0FC43 Validity Not Before: May 3 02:07:40 2026 GMT Not After : May 2 02:12:40 2027 GMT Subject: CN=F9B8D3A18B030B1AE3F7B82854A7563A7C2FC4FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:30:e9:fb:4c:72:7c:ee:3b:9b:2a:21:da:29: a0:09:f6:78:a1:e2:ec:2d:65:bd:6e:1d:88:a1:25: 4f:7e:05:a2:72:6d:60:fd:69:7e:c8:68:bb:da:d1: 92:47:fc:dc:88:87:68:2f:7d:70:fb:6a:10:9d:a8: 75:74:45:4a:dc:14:e5:37:4a:37:91:4f:b3:cd:5f: 60:48:6a:14:f7:b9:c1:39:75:f7:5f:45:39:a3:79: e9:ea:7b:b1:e7:28:68:f0:ec:95:ea:e6:2c:ee:91: ae:39:d4:08:cf:5e:f0:e3:d8:d3:e0:01:c5:58:77: 0c:61:94:65:df:9a:f5:1e:4c:49:6f:86:49:cb:e1: ed:e0:ad:dd:e7:ff:b9:f6:d3:b0:58:ba:09:0e:e1: 83:aa:df:0f:71:27:05:72:b6:e2:d8:47:9d:b9:e6: 4a:47:47:21:cb:d0:3d:cb:1e:f4:fe:df:d7:1c:35: 72:3e:07:31:58:59:e5:3a:9b:2e:7c:46:67:b8:da: c0:b6:cf:39:6b:9c:36:90:b1:74:81:fa:71:52:1c: d3:73:9f:b2:82:40:64:03:f6:5a:89:2e:57:c3:57: 55:7b:5a:f1:be:cc:66:df:55:53:86:9c:81:0d:a5: 5e:51:25:2a:cb:7f:9e:10:98:6e:3e:65:69:27:bd: f0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B8:D3:A1:8B:03:0B:1A:E3:F7:B8:28:54:A7:56:3A:7C:2F:C4:FE X509v3 Authority Key Identifier: keyid:26:77:58:16:45:A4:9D:82:B3:6A:A8:30:48:48:65:F4:B9:D0:FC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/2677581645A49D82B36AA830484865F4B9D0FC43.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2677581645A49D82B36AA830484865F4B9D0FC43.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.137.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:c8:ac:35:a2:c2:da:9e:0d:78:a5:e2:e1:66:40:c0:f5:4b: 60:ae:3a:5f:d4:e8:f0:70:fa:5b:92:4a:45:29:8b:26:9b:c8: f9:91:cf:e7:2a:47:f5:4a:ef:d5:b3:d9:4f:b8:b8:17:36:13: a8:33:a2:7b:ff:96:c7:af:90:15:44:d8:74:68:dd:c0:5d:53: d1:47:1a:99:9a:85:b9:31:57:3d:cf:f1:da:48:02:db:ac:4c: 01:26:e6:ab:1d:89:b7:f0:00:28:11:83:87:db:fb:a3:8b:c9: 6a:65:a0:a0:5d:e0:90:ee:94:2a:56:44:1e:35:b2:7e:59:54: 1e:0d:54:6f:72:53:10:b8:f1:b8:86:85:b7:be:21:bb:64:da: ef:7b:ce:18:7b:43:22:07:5e:63:e9:fc:01:fa:05:3f:38:58: 63:62:91:6e:ef:3e:ad:71:0d:66:0d:be:dd:f0:02:bc:b6:81: fa:4d:6e:df:f8:47:19:4b:7c:28:97:63:95:d6:85:1d:25:a8: 6e:e9:75:e6:f6:28:7d:b7:75:00:d9:a6:86:de:ba:df:5e:14: e1:ea:0b:ef:44:f7:a1:8c:ea:c3:68:30:7e:7d:e9:06:68:be: 27:ce:32:14:ac:16:bc:b9:38:39:e4:ba:b2:e7:42:70:24:71: 34:e0:88:3d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWBE8cuM0CPeFY3AgzJiRcRNW/UswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY3NzU4MTY0NUE0OUQ4MkIzNkFBODMwNDg0ODY1RjRC OUQwRkM0MzAeFw0yNjA1MDMwMjA3NDBaFw0yNzA1MDIwMjEyNDBaMDMxMTAvBgNV BAMTKEY5QjhEM0ExOEIwMzBCMUFFM0Y3QjgyODU0QTc1NjNBN0MyRkM0RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLMOn7THJ87jubKiHaKaAJ9nih 4uwtZb1uHYihJU9+BaJybWD9aX7IaLva0ZJH/NyIh2gvfXD7ahCdqHV0RUrcFOU3 SjeRT7PNX2BIahT3ucE5dfdfRTmjeenqe7HnKGjw7JXq5izuka451AjPXvDj2NPg AcVYdwxhlGXfmvUeTElvhknL4e3grd3n/7n207BYugkO4YOq3w9xJwVytuLYR525 5kpHRyHL0D3LHvT+39ccNXI+BzFYWeU6my58Rme42sC2zzlrnDaQsXSB+nFSHNNz n7KCQGQD9lqJLlfDV1V7WvG+zGbfVVOGnIENpV5RJSrLf54QmG4+ZWknvfDDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+bjToYsDCxrj97goVKdWOnwvxP4wHwYDVR0j BBgwFoAUJndYFkWknYKzaqgwSEhl9LnQ/EMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGFmMzE1OTktOGIwOC00ZmZkLWEwNTYtNzk1ZThhYTBhNTg2LzAvMjY3NzU4MTY0 NUE0OUQ4MkIzNkFBODMwNDg0ODY1RjRCOUQwRkM0My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNjc3NTgxNjQ1QTQ5RDgyQjM2QUE4MzA0ODQ4NjVGNEI5RDBG QzQzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBhZjMxNTk5LThiMDgtNGZmZC1h MDU2LTc5NWU4YWEwYTU4Ni8wLzMxMzAzMzJlMzEzMDM3MmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna4kwDQYJ KoZIhvcNAQELBQADggEBAH7IrDWiwtqeDXil4uFmQMD1S2CuOl/U6PBw+luSSkUp iyabyPmRz+cqR/VK79Wz2U+4uBc2E6gzonv/lsevkBVE2HRo3cBdU9FHGpmahbkx Vz3P8dpIAtusTAEm5qsdibfwACgRg4fb+6OLyWploKBd4JDulCpWRB41sn5ZVB4N VG9yUxC48biGhbe+Ibtk2u97zhh7QyIHXmPp/AH6BT84WGNikW7vPq1xDWYNvt3w Ary2gfpNbt/4RxlLfCiXY5XWhR0lqG7pdeb2KH23dQDZpobeut9eFOHqC+9E96GM 6sNoMH596QZovifOMhSsFry5ODnkurLnQnAkcTTgiD0= -----END CERTIFICATE-----Generated at Wed May 13 09:17:53 2026 by rpki-client