$ rpki-client -vvf rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231322e302f32342d3234203d3e20313332363439.roa File: 3130332e32342e3231322e302f32342d3234203d3e20313332363439.roa (raw, json) Hash identifier: unzh605AgxMrS8kL6fN+yePqm6X/AD3ox4pCc7I8/VY= Subject key identifier: 43:68:1A:C0:D5:49:F1:91:56:D6:43:BF:56:D5:97:CF:FC:ED:26:B3 Certificate issuer: /CN=AAB4671D9735066964F008C9DDFC52C3A710E040 Certificate serial: 0D3AE2004047E7CC92E334C5C95DDF017EFDF20C Authority key identifier: AA:B4:67:1D:97:35:06:69:64:F0:08:C9:DD:FC:52:C3:A7:10:E0:40 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231322e302f32342d3234203d3e20313332363439.roa Signing time: Sun 03 May 2026 02:13:19 +0000 ROA not before: Sun 03 May 2026 02:08:19 +0000 ROA not after: Sun 02 May 2027 02:13:19 +0000 asID: 132649 IP address blocks: 103.24.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.crl rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:3a:e2:00:40:47:e7:cc:92:e3:34:c5:c9:5d:df:01:7e:fd:f2:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AAB4671D9735066964F008C9DDFC52C3A710E040 Validity Not Before: May 3 02:08:19 2026 GMT Not After : May 2 02:13:19 2027 GMT Subject: CN=43681AC0D549F19156D643BF56D597CFFCED26B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ea:dd:35:3e:5e:df:0e:cc:da:a8:ff:a3:70: 86:8a:4b:81:1a:0a:8c:84:82:3d:f4:0b:f3:66:74: 36:b8:b4:60:c3:55:e0:63:80:f4:e6:0d:24:7e:07: 2e:98:86:aa:19:47:17:3f:b6:08:d2:66:64:5b:ee: ac:f8:56:bf:93:18:c9:11:0f:43:8b:7e:49:02:e0: a1:18:8e:45:c2:de:da:22:8f:10:00:97:ba:dc:af: bb:d2:b8:40:02:c5:2d:9a:f3:df:69:eb:eb:83:3e: 3a:43:c5:16:9c:eb:08:e5:c0:24:2f:d8:f2:b9:e9: 1e:e2:57:9a:a4:df:5d:55:0d:00:f7:83:ab:05:e7: f8:af:8f:45:5d:db:d8:73:c8:da:a3:0f:bc:b2:93: b4:29:d9:01:53:53:41:14:c5:db:cd:2d:11:28:7a: 00:c2:f2:da:a3:65:18:a8:a5:16:18:17:a8:31:ce: 96:be:9a:cf:c4:14:97:96:09:41:6e:6a:e3:e3:90: 9c:f6:de:e3:9d:7c:63:68:4c:6c:3b:ee:c4:c2:8e: 04:cd:c6:85:7a:3e:b9:30:a4:f3:03:9a:ad:2c:05: 9f:51:c7:da:a7:1f:fc:3d:2b:df:80:4e:d3:cd:1b: cf:34:1e:b2:06:4d:2d:7e:11:78:45:8f:4c:03:fc: ec:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:68:1A:C0:D5:49:F1:91:56:D6:43:BF:56:D5:97:CF:FC:ED:26:B3 X509v3 Authority Key Identifier: keyid:AA:B4:67:1D:97:35:06:69:64:F0:08:C9:DD:FC:52:C3:A7:10:E0:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231322e302f32342d3234203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.212.0/24 Signature Algorithm: sha256WithRSAEncryption 37:61:e1:fb:7d:18:05:33:19:a5:f2:4c:c4:a3:23:da:3e:97: 14:87:da:c2:cf:b1:c2:0d:18:7c:4c:6b:c7:45:5d:b5:70:39: 69:70:5b:3e:ea:ba:9e:60:92:68:4e:ac:15:e1:c0:8a:bb:94: 57:7a:03:63:36:4f:d2:f4:82:6e:e8:15:80:dc:1b:78:84:5a: 80:00:ae:72:00:d8:85:b3:e0:58:58:70:c0:89:4a:60:81:85: d5:e0:d1:01:85:87:c8:db:9b:83:a9:de:6e:cd:5c:1f:12:e6: 86:4d:f5:01:f1:aa:09:24:67:90:b0:38:70:03:f2:25:5f:5d: eb:ab:19:8c:35:80:fe:e1:f7:13:37:71:a4:32:e9:a5:d6:4a: 57:84:17:f9:70:39:6f:6e:d6:90:94:29:5c:bc:be:ac:94:da: f7:b4:31:37:f4:d2:7e:7c:fb:31:79:9c:68:58:f1:23:c3:18: 42:4e:e7:5a:52:b4:0a:09:b0:8f:71:f2:6f:4a:9c:20:9f:d4: f2:b5:fa:37:0d:2b:a8:3a:e5:69:fc:00:c7:df:a2:5d:b1:33: 82:8f:0f:3e:7c:ff:90:66:27:ab:18:cd:0b:66:86:0a:14:d2: 81:4a:c5:f5:29:79:9a:19:07:77:47:23:45:48:4c:c2:62:7a: 4c:6f:db:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDTriAEBH58yS4zTFyV3fAX798gwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUFCNDY3MUQ5NzM1MDY2OTY0RjAwOEM5RERGQzUyQzNB NzEwRTA0MDAeFw0yNjA1MDMwMjA4MTlaFw0yNzA1MDIwMjEzMTlaMDMxMTAvBgNV BAMTKDQzNjgxQUMwRDU0OUYxOTE1NkQ2NDNCRjU2RDU5N0NGRkNFRDI2QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw6t01Pl7fDszaqP+jcIaKS4Ea CoyEgj30C/NmdDa4tGDDVeBjgPTmDSR+By6YhqoZRxc/tgjSZmRb7qz4Vr+TGMkR D0OLfkkC4KEYjkXC3toijxAAl7rcr7vSuEACxS2a899p6+uDPjpDxRac6wjlwCQv 2PK56R7iV5qk311VDQD3g6sF5/ivj0Vd29hzyNqjD7yyk7Qp2QFTU0EUxdvNLREo egDC8tqjZRiopRYYF6gxzpa+ms/EFJeWCUFuauPjkJz23uOdfGNoTGw77sTCjgTN xoV6PrkwpPMDmq0sBZ9Rx9qnH/w9K9+ATtPNG880HrIGTS1+EXhFj0wD/OwJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ2gawNVJ8ZFW1kO/VtWXz/ztJrMwHwYDVR0j BBgwFoAUqrRnHZc1Bmlk8AjJ3fxSw6cQ4EAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGU0NmEzMDUtZGY3Ny00NTg3LTg3MDMtYTkwNWM1Mzc3OWFjLzAvQUFCNDY3MUQ5 NzM1MDY2OTY0RjAwOEM5RERGQzUyQzNBNzEwRTA0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQUI0NjcxRDk3MzUwNjY5NjRGMDA4QzlEREZDNTJDM0E3MTBF MDQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMxMzAzMzJlMzIzNDJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxjUMA0GCSqG SIb3DQEBCwUAA4IBAQA3YeH7fRgFMxml8kzEoyPaPpcUh9rCz7HCDRh8TGvHRV21 cDlpcFs+6rqeYJJoTqwV4cCKu5RXegNjNk/S9IJu6BWA3Bt4hFqAAK5yANiFs+BY WHDAiUpggYXV4NEBhYfI25uDqd5uzVwfEuaGTfUB8aoJJGeQsDhwA/IlX13rqxmM NYD+4fcTN3GkMuml1kpXhBf5cDlvbtaQlClcvL6slNr3tDE39NJ+fPsxeZxoWPEj wxhCTudaUrQKCbCPcfJvSpwgn9Tytfo3DSuoOuVp/ADH36JdsTOCjw8+fP+QZier GM0LZoYKFNKBSsX1KXmaGQd3RyNFSEzCYnpMb9vw -----END CERTIFICATE-----Generated at Wed May 13 05:25:03 2026 by rpki-client