$ rpki-client -vvf rpki-rsync.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa File: 3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa (raw, json) Hash identifier: 15VEyV5vwYqta5sxL2vCLL1yiCigjJr0WF9qJAONncE= Subject key identifier: D2:89:40:00:C5:7E:17:EC:9A:E7:D5:86:FB:74:C0:E0:AD:F4:1F:B9 Certificate issuer: /CN=7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377 Certificate serial: 6A81BB819F02FD535A5AF084B465F392B306B6CB Authority key identifier: 7F:0F:E5:1D:58:AD:F1:A5:1A:43:2D:CB:48:A0:CA:70:C5:D3:03:77 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa Signing time: Sun 03 May 2026 02:14:12 +0000 ROA not before: Sun 03 May 2026 02:09:12 +0000 ROA not after: Sun 02 May 2027 02:14:12 +0000 asID: 133831 IP address blocks: 103.154.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377.crl rsync://rpki-rsync.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:81:bb:81:9f:02:fd:53:5a:5a:f0:84:b4:65:f3:92:b3:06:b6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377 Validity Not Before: May 3 02:09:12 2026 GMT Not After : May 2 02:14:12 2027 GMT Subject: CN=D2894000C57E17EC9AE7D586FB74C0E0ADF41FB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d5:75:91:65:68:24:74:a0:f5:15:33:c3:e3: b1:f8:3d:f0:f1:6e:37:2d:4b:21:33:2d:91:28:d3: 01:31:3f:2d:6f:28:59:33:3e:b7:68:36:73:07:be: 1b:c0:57:8e:ef:7d:78:ad:5d:ed:3a:fb:38:bb:a8: fb:1c:90:b4:bd:ce:fb:21:c2:69:41:dc:ce:b8:ef: 12:ed:82:6a:64:5f:e1:6b:db:f0:dc:17:9f:18:0a: f9:53:28:1f:5c:b7:37:57:37:b6:74:63:b6:88:85: bb:7a:47:8e:20:a1:f9:74:9d:29:68:1f:6c:89:03: b1:f6:46:c2:f3:e2:60:ff:0e:7d:76:c7:50:fc:c1: 4d:f8:9c:c5:d6:46:3e:d1:05:49:2e:b7:6c:89:ea: 0f:ee:68:7b:b0:00:a7:db:74:36:d3:ba:84:35:b3: 05:41:d1:41:1b:ca:f2:e3:1b:3c:8f:ab:53:24:ee: 3c:84:dc:66:da:f9:61:24:db:87:70:c6:7d:4f:8d: 1c:ba:cb:72:d0:70:a0:05:5f:30:d7:b5:ca:4d:a2: a3:a1:fc:8c:7b:93:bd:0e:15:e9:fa:bd:f3:7e:92: 19:e6:67:22:4b:54:bf:62:e6:ad:a3:c4:ee:b2:35: dc:90:4a:77:77:0c:11:e4:02:5c:58:ee:e1:89:14: bd:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:89:40:00:C5:7E:17:EC:9A:E7:D5:86:FB:74:C0:E0:AD:F4:1F:B9 X509v3 Authority Key Identifier: keyid:7F:0F:E5:1D:58:AD:F1:A5:1A:43:2D:CB:48:A0:CA:70:C5:D3:03:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F0FE51D58ADF1A51A432DCB48A0CA70C5D30377.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.170.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:b0:0f:49:d2:af:39:79:05:8a:f2:a0:a7:fe:5f:8f:aa:88: 8d:b3:98:f8:bd:e3:2a:5f:fa:01:34:06:71:9e:a4:c6:d1:58: 59:ea:ee:ab:7f:75:c8:37:bd:cd:50:75:42:62:a1:78:bc:0b: ae:7a:bc:0c:ca:3f:9c:8b:04:ab:04:4d:e4:7c:dc:96:a3:bc: 20:ff:66:59:3a:be:36:89:64:13:1a:09:9c:c8:04:38:7a:a8: af:92:db:56:25:8d:78:0d:af:2c:9e:92:77:4d:3e:d9:97:4a: 7b:a4:c0:81:bf:47:22:4f:4a:8f:03:f8:e5:3a:c1:75:df:4c: 13:cd:11:31:9f:9c:b3:fe:97:26:6b:af:fd:88:69:0e:7e:2a: 31:56:f2:e5:85:1a:16:a7:12:f9:25:d4:ae:48:c2:d3:21:53: 15:20:50:db:8d:ff:a9:8d:d3:64:32:c7:37:3d:20:1d:c7:d0: 6d:7d:4d:8a:cf:0e:4a:79:2d:47:b4:2e:6e:3c:a0:df:e2:ab: 95:40:9e:eb:46:6f:8b:43:6f:76:c7:17:51:46:72:a1:2f:ed: de:38:5d:47:ff:70:84:ac:c6:b0:88:8e:61:8a:c3:fe:ff:dd: a8:9b:f0:cd:01:06:39:ea:0f:b2:c8:20:ff:73:26:93:a6:a2: d9:2f:59:81 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaoG7gZ8C/VNaWvCEtGXzkrMGtsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0YwRkU1MUQ1OEFERjFBNTFBNDMyRENCNDhBMENBNzBD NUQzMDM3NzAeFw0yNjA1MDMwMjA5MTJaFw0yNzA1MDIwMjE0MTJaMDMxMTAvBgNV BAMTKEQyODk0MDAwQzU3RTE3RUM5QUU3RDU4NkZCNzRDMEUwQURGNDFGQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo1XWRZWgkdKD1FTPD47H4PfDx bjctSyEzLZEo0wExPy1vKFkzPrdoNnMHvhvAV47vfXitXe06+zi7qPsckLS9zvsh wmlB3M647xLtgmpkX+Fr2/DcF58YCvlTKB9ctzdXN7Z0Y7aIhbt6R44gofl0nSlo H2yJA7H2RsLz4mD/Dn12x1D8wU34nMXWRj7RBUkut2yJ6g/uaHuwAKfbdDbTuoQ1 swVB0UEbyvLjGzyPq1Mk7jyE3Gba+WEk24dwxn1PjRy6y3LQcKAFXzDXtcpNoqOh /Ix7k70OFen6vfN+khnmZyJLVL9i5q2jxO6yNdyQSnd3DBHkAlxY7uGJFL19AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0olAAMV+F+ya59WG+3TA4K30H7kwHwYDVR0j BBgwFoAUfw/lHVit8aUaQy3LSKDKcMXTA3cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTI1MWQ2Y2YtYzdiMS00Njg3LTkyMDMtZDE2MWNjNDBiNmEyLzAvN0YwRkU1MUQ1 OEFERjFBNTFBNDMyRENCNDhBMENBNzBDNUQzMDM3Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RjBGRTUxRDU4QURGMUE1MUE0MzJEQ0I0OEEwQ0E3MEM1RDMw Mzc3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzEyNTFkNmNmLWM3YjEtNDY4Ny05 MjAzLWQxNjFjYzQwYjZhMi8wLzMxMzAzMzJlMzEzNTM0MmUzMTM3MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmqowDQYJ KoZIhvcNAQELBQADggEBADywD0nSrzl5BYryoKf+X4+qiI2zmPi94ypf+gE0BnGe pMbRWFnq7qt/dcg3vc1QdUJioXi8C656vAzKP5yLBKsETeR83JajvCD/Zlk6vjaJ ZBMaCZzIBDh6qK+S21YljXgNryyekndNPtmXSnukwIG/RyJPSo8D+OU6wXXfTBPN ETGfnLP+lyZrr/2IaQ5+KjFW8uWFGhanEvkl1K5IwtMhUxUgUNuN/6mN02Qyxzc9 IB3H0G19TYrPDkp5LUe0Lm48oN/iq5VAnutGb4tDb3bHF1FGcqEv7d44XUf/cISs xrCIjmGKw/7/3aib8M0BBjnqD7LIIP9zJpOmotkvWYE= -----END CERTIFICATE-----Generated at Wed May 13 12:51:50 2026 by rpki-client