$ rpki-client -vvf rpki-rsync.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa File: 3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa (raw, json) Hash identifier: rkWYYYj/vAK/TOK+jQF6QsvjFqSfb6NPiKItrVefpzo= Subject key identifier: FF:35:36:F2:06:C9:B5:E1:5D:7D:28:91:3D:77:E0:02:C4:D7:11:28 Certificate issuer: /CN=E096FEDBAFF2ADB73C73E7E098CE494B9C336817 Certificate serial: 1D3A72784B7BE5B4B5761A9960E3B764A35383EE Authority key identifier: E0:96:FE:DB:AF:F2:AD:B7:3C:73:E7:E0:98:CE:49:4B:9C:33:68:17 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E096FEDBAFF2ADB73C73E7E098CE494B9C336817.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa Signing time: Sun 03 May 2026 02:13:41 +0000 ROA not before: Sun 03 May 2026 02:08:41 +0000 ROA not after: Sun 02 May 2027 02:13:41 +0000 asID: 136054 IP address blocks: 103.80.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/E096FEDBAFF2ADB73C73E7E098CE494B9C336817.crl rsync://rpki-rsync.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/E096FEDBAFF2ADB73C73E7E098CE494B9C336817.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E096FEDBAFF2ADB73C73E7E098CE494B9C336817.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:3a:72:78:4b:7b:e5:b4:b5:76:1a:99:60:e3:b7:64:a3:53:83:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E096FEDBAFF2ADB73C73E7E098CE494B9C336817 Validity Not Before: May 3 02:08:41 2026 GMT Not After : May 2 02:13:41 2027 GMT Subject: CN=FF3536F206C9B5E15D7D28913D77E002C4D71128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:38:8f:7b:ef:32:26:80:c4:54:a8:d1:d5: 14:47:2a:31:fe:d5:0a:43:b0:f5:1a:09:c8:79:b4: 42:79:0d:7b:70:90:20:61:54:55:08:3c:8f:59:ad: 1a:71:7a:96:29:85:d0:36:0d:d3:14:91:37:22:a7: c6:ac:57:63:42:12:21:8a:7f:d8:01:79:f0:3b:6f: 77:50:86:c1:ff:1e:39:97:71:18:04:45:d3:a1:9d: 01:ba:af:8a:01:17:2f:7f:bb:a2:20:1f:88:43:64: ec:f3:e6:b8:a2:8e:b9:e3:3a:f1:6c:ff:fd:3c:09: 5c:e6:05:42:06:75:46:6e:51:ba:2a:61:1b:73:97: c6:da:83:44:a8:63:cd:3d:7c:3c:4c:fe:fd:9a:84: 2c:40:08:ed:42:ff:d6:a8:c9:6e:8e:85:70:87:6a: 28:9c:7a:10:20:72:f6:83:07:a2:5c:d6:7b:e0:df: 66:a7:12:e8:5e:a7:fc:13:9f:ab:ba:b0:dd:a4:68: 9a:98:05:c4:42:c8:b5:44:59:4e:8a:33:82:75:d7: 22:62:c6:f6:59:ba:14:e1:2b:4f:cf:d5:76:f1:bf: 29:6d:f8:d9:bf:77:3b:35:3e:69:cb:20:d7:44:45: ba:30:70:92:9d:53:f5:37:2b:bc:38:27:d3:6e:04: b3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:35:36:F2:06:C9:B5:E1:5D:7D:28:91:3D:77:E0:02:C4:D7:11:28 X509v3 Authority Key Identifier: keyid:E0:96:FE:DB:AF:F2:AD:B7:3C:73:E7:E0:98:CE:49:4B:9C:33:68:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/E096FEDBAFF2ADB73C73E7E098CE494B9C336817.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E096FEDBAFF2ADB73C73E7E098CE494B9C336817.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.240.0/22 Signature Algorithm: sha256WithRSAEncryption 40:23:45:71:8c:ef:75:3c:66:9b:05:13:b2:00:65:b8:ce:40: 42:6f:9c:3c:73:99:09:2d:16:76:c6:1e:03:b1:46:39:5a:cb: 90:cd:aa:cd:b2:de:84:34:50:db:fb:03:77:73:ac:01:c3:2f: ab:42:be:65:74:0d:61:5e:99:be:6b:31:b4:2d:01:55:7e:91: e4:15:0a:86:d5:b7:05:0f:44:51:6c:02:9e:b5:2e:9b:68:82: 81:eb:d6:10:b4:eb:75:a5:55:02:ed:d0:0a:e1:45:e9:26:3b: 41:1b:1c:24:e3:37:de:3a:c4:e9:95:c2:11:4f:81:e8:be:6c: 03:90:d4:fe:5c:5d:aa:9b:bc:72:22:09:a5:d4:55:a5:4f:7d: b4:da:38:b4:c8:41:b5:17:91:bc:fa:62:c2:ec:2d:ae:b3:1c: 71:34:58:c3:db:7f:8f:b6:29:bc:ff:e1:1b:70:1e:31:d8:16: 9e:df:39:2c:47:a6:88:92:05:aa:5d:26:2a:4f:68:24:eb:fc: 3b:0d:b1:3e:14:0b:b9:f0:0c:7e:44:df:a9:7f:e9:fc:07:2a: 12:a5:bb:55:6c:1a:ad:32:01:07:fd:80:74:9c:22:8a:5e:41: 11:05:73:22:ac:3e:89:37:a3:80:4a:eb:9a:01:fc:cc:fd:c8: 26:36:da:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHTpyeEt75bS1dhqZYOO3ZKNTg+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTA5NkZFREJBRkYyQURCNzNDNzNFN0UwOThDRTQ5NEI5 QzMzNjgxNzAeFw0yNjA1MDMwMjA4NDFaFw0yNzA1MDIwMjEzNDFaMDMxMTAvBgNV BAMTKEZGMzUzNkYyMDZDOUI1RTE1RDdEMjg5MTNENzdFMDAyQzRENzExMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzTiPe+8yJoDEVKjR1RRHKjH+ 1QpDsPUaCch5tEJ5DXtwkCBhVFUIPI9ZrRpxepYphdA2DdMUkTcip8asV2NCEiGK f9gBefA7b3dQhsH/HjmXcRgERdOhnQG6r4oBFy9/u6IgH4hDZOzz5riijrnjOvFs //08CVzmBUIGdUZuUboqYRtzl8bag0SoY809fDxM/v2ahCxACO1C/9aoyW6OhXCH aiicehAgcvaDB6Jc1nvg32anEuhep/wTn6u6sN2kaJqYBcRCyLVEWU6KM4J11yJi xvZZuhThK0/P1Xbxvylt+Nm/dzs1PmnLINdERbowcJKdU/U3K7w4J9NuBLPdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/zU28gbJteFdfSiRPXfgAsTXESgwHwYDVR0j BBgwFoAU4Jb+26/yrbc8c+fgmM5JS5wzaBcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGYwOWNiYjktMWFhZC00YjFhLWJkNGUtMDZmZDg0NDcyZmQ3LzAvRTA5NkZFREJB RkYyQURCNzNDNzNFN0UwOThDRTQ5NEI5QzMzNjgxNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FMDk2RkVEQkFGRjJBREI3M0M3M0U3RTA5OENFNDk0QjlDMzM2 ODE3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBmMDljYmI5LTFhYWQtNGIxYS1i ZDRlLTA2ZmQ4NDQ3MmZkNy8wLzMxMzAzMzJlMzgzMDJlMzIzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ1DwMA0GCSqG SIb3DQEBCwUAA4IBAQBAI0VxjO91PGabBROyAGW4zkBCb5w8c5kJLRZ2xh4DsUY5 WsuQzarNst6ENFDb+wN3c6wBwy+rQr5ldA1hXpm+azG0LQFVfpHkFQqG1bcFD0RR bAKetS6baIKB69YQtOt1pVUC7dAK4UXpJjtBGxwk4zfeOsTplcIRT4HovmwDkNT+ XF2qm7xyIgml1FWlT3202ji0yEG1F5G8+mLC7C2usxxxNFjD23+Ptim8/+EbcB4x 2Bae3zksR6aIkgWqXSYqT2gk6/w7DbE+FAu58Ax+RN+pf+n8ByoSpbtVbBqtMgEH /YB0nCKKXkERBXMirD6JN6OASuuaAfzM/cgmNtqg -----END CERTIFICATE-----Generated at Wed May 13 02:26:52 2026 by rpki-client