$ rpki-client -vvf rpki-rsync.idnic.net/repo/11c1d56e-15c6-4b65-a9a8-f90ad6fba090/0/3130332e39362e3131382e302f32332d3234203d3e20313335343531.roa File: 3130332e39362e3131382e302f32332d3234203d3e20313335343531.roa (raw, json) Hash identifier: kEo9J9YDEfycsSJU6o/UUiHq399l3gpS8mmcj4dD7Es= Subject key identifier: ED:86:F0:D9:1E:F5:E4:C1:CB:34:E5:F8:B4:05:E3:4B:5A:1C:23:3E Certificate issuer: /CN=143B0FF235C900164875105AD0C37F3C7DB28151 Certificate serial: 4F7451B034E3A515A43CAD806A8F0C6104C6C388 Authority key identifier: 14:3B:0F:F2:35:C9:00:16:48:75:10:5A:D0:C3:7F:3C:7D:B2:81:51 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/143B0FF235C900164875105AD0C37F3C7DB28151.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/11c1d56e-15c6-4b65-a9a8-f90ad6fba090/0/3130332e39362e3131382e302f32332d3234203d3e20313335343531.roa Signing time: Sun 03 May 2026 02:14:06 +0000 ROA not before: Sun 03 May 2026 02:09:06 +0000 ROA not after: Sun 02 May 2027 02:14:06 +0000 asID: 135451 IP address blocks: 103.96.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/11c1d56e-15c6-4b65-a9a8-f90ad6fba090/0/143B0FF235C900164875105AD0C37F3C7DB28151.crl rsync://rpki-rsync.idnic.net/repo/11c1d56e-15c6-4b65-a9a8-f90ad6fba090/0/143B0FF235C900164875105AD0C37F3C7DB28151.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/143B0FF235C900164875105AD0C37F3C7DB28151.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:74:51:b0:34:e3:a5:15:a4:3c:ad:80:6a:8f:0c:61:04:c6:c3:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=143B0FF235C900164875105AD0C37F3C7DB28151 Validity Not Before: May 3 02:09:06 2026 GMT Not After : May 2 02:14:06 2027 GMT Subject: CN=ED86F0D91EF5E4C1CB34E5F8B405E34B5A1C233E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b6:d2:1e:ac:dd:9e:7e:e6:31:0d:f6:97:e8: f8:8b:9a:e5:c9:fb:38:bd:23:4c:e4:e8:ba:d2:1b: c4:73:3a:9d:48:fb:99:c6:39:b3:60:dc:64:55:b3: 59:05:c6:da:93:d4:a1:e6:10:62:23:3f:f6:89:78: 25:42:72:40:b1:77:1f:5d:e4:2a:b0:9d:df:20:55: f0:c8:fb:fa:03:83:eb:06:88:1f:c0:85:9d:30:4c: 69:e4:f7:70:7b:c9:fc:2b:44:6b:71:42:eb:6c:2a: 6b:84:c9:02:08:57:b8:88:68:66:67:72:3e:5e:30: 4c:1d:97:bb:82:92:80:91:21:05:ab:b6:bc:e9:e3: 55:28:ed:a9:58:f0:dc:65:85:2c:70:1a:5a:ab:f8: ac:3b:b8:ad:24:5e:eb:b0:66:a5:dd:b6:36:d8:51: 8d:1d:30:db:f0:61:1f:cd:39:c9:a3:05:1f:49:e1: 20:0a:83:13:fe:4d:3c:69:32:da:13:f8:cf:e7:e1: ff:cf:d6:2e:d2:94:ce:10:00:16:b2:aa:76:43:31: 36:af:c1:bc:23:2d:b2:0b:68:2d:5e:8e:ba:3b:5b: 0f:d7:6a:cb:84:bb:5c:28:f5:63:0a:69:b9:81:a9: 76:ad:85:8d:0c:da:31:f5:46:f8:84:d4:8d:e8:6b: cf:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:86:F0:D9:1E:F5:E4:C1:CB:34:E5:F8:B4:05:E3:4B:5A:1C:23:3E X509v3 Authority Key Identifier: keyid:14:3B:0F:F2:35:C9:00:16:48:75:10:5A:D0:C3:7F:3C:7D:B2:81:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/11c1d56e-15c6-4b65-a9a8-f90ad6fba090/0/143B0FF235C900164875105AD0C37F3C7DB28151.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/143B0FF235C900164875105AD0C37F3C7DB28151.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/11c1d56e-15c6-4b65-a9a8-f90ad6fba090/0/3130332e39362e3131382e302f32332d3234203d3e20313335343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.118.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:1c:bf:4b:30:df:5b:c9:b1:79:7d:7d:95:d0:b0:a7:d7:77: e1:e4:d4:c6:c4:ed:88:40:1f:0d:ba:3b:f8:15:c8:d3:a2:d0: 75:2d:17:df:34:8f:3f:f7:f4:c8:1b:e3:e1:e4:ad:87:af:6f: 03:a7:0d:56:2a:4c:53:9a:15:9f:b0:ab:6e:37:0a:06:cc:81: c2:9e:50:3a:97:e2:da:1c:4b:63:d2:c7:9e:dc:3d:ba:7e:5b: 94:76:6f:fa:20:b1:53:54:65:9d:3f:62:06:58:37:b5:59:8c: c6:76:4a:8a:c2:62:48:5f:5b:75:4a:70:63:77:ff:4e:ce:2e: 28:be:64:77:a9:be:c7:6c:17:4f:4b:f1:d6:77:ec:6b:ae:f0: 47:76:67:55:a9:4f:a2:6c:fd:f0:7e:c3:c8:e0:d6:9a:c8:b4: 4e:b4:ff:40:bb:d4:73:dc:57:ad:85:e5:ed:22:df:35:12:a6: b9:6e:bf:08:4d:b3:7e:4d:8e:16:bb:67:45:90:9b:91:70:53: 5d:3c:26:af:6f:e3:d3:17:b1:97:55:b8:ce:5b:a7:dd:c3:08: 94:ef:6a:b4:a1:06:05:df:1e:b7:49:64:4f:cf:fa:5d:90:03: ef:0a:bb:3d:c9:86:99:30:53:a7:99:9e:49:52:81:93:5c:8c: 39:16:4a:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT3RRsDTjpRWkPK2Aao8MYQTGw4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQzQjBGRjIzNUM5MDAxNjQ4NzUxMDVBRDBDMzdGM0M3 REIyODE1MTAeFw0yNjA1MDMwMjA5MDZaFw0yNzA1MDIwMjE0MDZaMDMxMTAvBgNV BAMTKEVEODZGMEQ5MUVGNUU0QzFDQjM0RTVGOEI0MDVFMzRCNUExQzIzM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjttIerN2efuYxDfaX6PiLmuXJ +zi9I0zk6LrSG8RzOp1I+5nGObNg3GRVs1kFxtqT1KHmEGIjP/aJeCVCckCxdx9d 5Cqwnd8gVfDI+/oDg+sGiB/AhZ0wTGnk93B7yfwrRGtxQutsKmuEyQIIV7iIaGZn cj5eMEwdl7uCkoCRIQWrtrzp41Uo7alY8NxlhSxwGlqr+Kw7uK0kXuuwZqXdtjbY UY0dMNvwYR/NOcmjBR9J4SAKgxP+TTxpMtoT+M/n4f/P1i7SlM4QABayqnZDMTav wbwjLbILaC1ejro7Ww/XasuEu1wo9WMKabmBqXathY0M2jH1RviE1I3oa8/3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7Ybw2R715MHLNOX4tAXjS1ocIz4wHwYDVR0j BBgwFoAUFDsP8jXJABZIdRBa0MN/PH2ygVEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTFjMWQ1NmUtMTVjNi00YjY1LWE5YTgtZjkwYWQ2ZmJhMDkwLzAvMTQzQjBGRjIz NUM5MDAxNjQ4NzUxMDVBRDBDMzdGM0M3REIyODE1MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNDNCMEZGMjM1QzkwMDE2NDg3NTEwNUFEMEMzN0YzQzdEQjI4 MTUxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzExYzFkNTZlLTE1YzYtNGI2NS1h OWE4LWY5MGFkNmZiYTA5MC8wLzMxMzAzMzJlMzkzNjJlMzEzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2B2MA0GCSqG SIb3DQEBCwUAA4IBAQBuHL9LMN9bybF5fX2V0LCn13fh5NTGxO2IQB8Nujv4FcjT otB1LRffNI8/9/TIG+Ph5K2Hr28Dpw1WKkxTmhWfsKtuNwoGzIHCnlA6l+LaHEtj 0see3D26fluUdm/6ILFTVGWdP2IGWDe1WYzGdkqKwmJIX1t1SnBjd/9Ozi4ovmR3 qb7HbBdPS/HWd+xrrvBHdmdVqU+ibP3wfsPI4NaayLROtP9Au9Rz3FetheXtIt81 Eqa5br8ITbN+TY4Wu2dFkJuRcFNdPCavb+PTF7GXVbjOW6fdwwiU72q0oQYF3x63 SWRPz/pdkAPvCrs9yYaZMFOnmZ5JUoGTXIw5FkoI -----END CERTIFICATE-----Generated at Wed May 13 14:13:55 2026 by rpki-client