$ rpki-client -vvf rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231352e302f32342d3234203d3e20313332363439.roa File: 3130332e32342e3231352e302f32342d3234203d3e20313332363439.roa (raw, json) Hash identifier: 42yHJRCL2UkIYvPUKITyhrxYXg51+0nJdl91wdx0sEk= Subject key identifier: DF:50:67:B1:CE:EB:A5:44:31:99:2A:84:EC:32:D0:4C:96:1F:83:92 Certificate issuer: /CN=AAB4671D9735066964F008C9DDFC52C3A710E040 Certificate serial: 09967EED8A14D006F5B85D519EC1237B11152FBC Authority key identifier: AA:B4:67:1D:97:35:06:69:64:F0:08:C9:DD:FC:52:C3:A7:10:E0:40 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231352e302f32342d3234203d3e20313332363439.roa Signing time: Sun 03 May 2026 02:13:21 +0000 ROA not before: Sun 03 May 2026 02:08:21 +0000 ROA not after: Sun 02 May 2027 02:13:21 +0000 asID: 132649 IP address blocks: 103.24.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.crl rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:96:7e:ed:8a:14:d0:06:f5:b8:5d:51:9e:c1:23:7b:11:15:2f:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AAB4671D9735066964F008C9DDFC52C3A710E040 Validity Not Before: May 3 02:08:21 2026 GMT Not After : May 2 02:13:21 2027 GMT Subject: CN=DF5067B1CEEBA54431992A84EC32D04C961F8392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:50:c8:ed:2e:dc:1f:af:6f:9f:b3:44:70:94: 0b:85:ec:11:af:ff:5d:d9:94:7c:22:30:e8:3d:47: 89:5d:b8:f9:9c:44:72:d7:15:ce:fb:9f:51:7f:2f: 28:80:10:22:5b:5a:89:8c:e1:24:9c:64:45:33:ba: c4:5e:30:a1:7c:43:9a:8b:64:46:53:86:da:33:24: fe:ce:bd:13:70:87:d7:2d:8b:93:79:13:c2:49:6e: 24:a5:93:3a:3e:ab:91:32:e1:37:4b:96:18:18:36: f1:ba:09:64:98:6d:67:2a:d5:1f:8e:91:d0:b7:97: 66:db:ce:cb:0a:ce:fc:09:ce:d1:b6:66:fa:24:f7: 9d:a5:84:c9:15:88:bf:29:86:dc:09:3e:52:ad:22: 6b:58:ff:46:62:98:b3:02:57:b4:fa:96:a3:c4:f4: ee:10:51:c8:9e:35:d0:7d:bd:7a:c4:c6:16:ac:03: 7c:d1:8f:e9:63:93:86:54:a4:d1:e8:82:6c:e4:28: 4f:f9:0d:b5:3e:34:02:90:62:ce:ec:fc:98:e2:1f: 9c:c0:fb:dc:f9:09:98:e6:56:fa:1f:bc:7b:89:7b: 72:46:4b:78:ef:2b:1e:18:4c:f6:06:a7:7f:fd:62: e0:1c:66:d1:eb:ac:a8:fa:75:1d:47:cd:b0:83:36: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:50:67:B1:CE:EB:A5:44:31:99:2A:84:EC:32:D0:4C:96:1F:83:92 X509v3 Authority Key Identifier: keyid:AA:B4:67:1D:97:35:06:69:64:F0:08:C9:DD:FC:52:C3:A7:10:E0:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231352e302f32342d3234203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.215.0/24 Signature Algorithm: sha256WithRSAEncryption 18:90:cb:63:64:a1:18:71:cf:ca:22:e7:de:ef:98:6b:35:68: e3:2f:aa:d0:24:94:b5:48:84:68:41:a5:60:58:1a:b1:c0:13: 0f:8e:f4:50:3d:fc:a6:1f:11:56:cf:cd:2b:57:65:29:f7:a1: d2:d3:41:3c:40:5d:05:a6:d4:66:3c:dd:e9:c4:e9:ea:b9:98: 8a:b5:dc:5b:e1:cf:06:d7:eb:8d:78:9f:98:f2:3c:3b:cb:5e: 40:e1:99:da:21:37:a7:f5:e8:f3:19:d8:cd:7a:3c:33:ba:39: f7:8b:6d:4e:f4:63:1d:46:94:10:a9:af:c7:42:34:1a:44:e7: a6:e9:11:d9:62:01:29:fe:53:d3:51:fd:20:85:4d:42:5a:66: d4:c0:d3:7e:09:8a:76:7a:5d:c5:25:25:77:91:a0:0c:58:ea: 3e:86:a5:55:12:16:03:97:41:8f:32:2d:75:b0:d4:04:80:32: 9d:28:38:1e:7e:65:17:30:c0:67:c2:95:da:92:ce:46:46:7a: 75:4b:6e:89:b1:1f:f9:0b:1c:1f:24:a5:b1:9d:ee:65:ea:43: 61:f1:b0:9e:97:01:81:40:8b:1f:7a:5c:70:65:ae:45:c4:16: fa:a8:77:40:f8:70:26:0d:f0:97:81:88:3d:5f:24:ca:bf:b3: 0e:84:b8:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCZZ+7YoU0Ab1uF1RnsEjexEVL7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUFCNDY3MUQ5NzM1MDY2OTY0RjAwOEM5RERGQzUyQzNB NzEwRTA0MDAeFw0yNjA1MDMwMjA4MjFaFw0yNzA1MDIwMjEzMjFaMDMxMTAvBgNV BAMTKERGNTA2N0IxQ0VFQkE1NDQzMTk5MkE4NEVDMzJEMDRDOTYxRjgzOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDUMjtLtwfr2+fs0RwlAuF7BGv /13ZlHwiMOg9R4lduPmcRHLXFc77n1F/LyiAECJbWomM4SScZEUzusReMKF8Q5qL ZEZThtozJP7OvRNwh9cti5N5E8JJbiSlkzo+q5Ey4TdLlhgYNvG6CWSYbWcq1R+O kdC3l2bbzssKzvwJztG2Zvok952lhMkViL8phtwJPlKtImtY/0ZimLMCV7T6lqPE 9O4QUcieNdB9vXrExhasA3zRj+ljk4ZUpNHogmzkKE/5DbU+NAKQYs7s/JjiH5zA +9z5CZjmVvofvHuJe3JGS3jvKx4YTPYGp3/9YuAcZtHrrKj6dR1HzbCDNobxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU31Bnsc7rpUQxmSqE7DLQTJYfg5IwHwYDVR0j BBgwFoAUqrRnHZc1Bmlk8AjJ3fxSw6cQ4EAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGU0NmEzMDUtZGY3Ny00NTg3LTg3MDMtYTkwNWM1Mzc3OWFjLzAvQUFCNDY3MUQ5 NzM1MDY2OTY0RjAwOEM5RERGQzUyQzNBNzEwRTA0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQUI0NjcxRDk3MzUwNjY5NjRGMDA4QzlEREZDNTJDM0E3MTBF MDQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMxMzAzMzJlMzIzNDJlMzIzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxjXMA0GCSqG SIb3DQEBCwUAA4IBAQAYkMtjZKEYcc/KIufe75hrNWjjL6rQJJS1SIRoQaVgWBqx wBMPjvRQPfymHxFWz80rV2Up96HS00E8QF0FptRmPN3pxOnquZiKtdxb4c8G1+uN eJ+Y8jw7y15A4ZnaITen9ejzGdjNejwzujn3i21O9GMdRpQQqa/HQjQaROem6RHZ YgEp/lPTUf0ghU1CWmbUwNN+CYp2el3FJSV3kaAMWOo+hqVVEhYDl0GPMi11sNQE gDKdKDgefmUXMMBnwpXaks5GRnp1S26JsR/5CxwfJKWxne5l6kNh8bCelwGBQIsf elxwZa5FxBb6qHdA+HAmDfCXgYg9XyTKv7MOhLhI -----END CERTIFICATE-----Generated at Wed May 13 04:47:55 2026 by rpki-client