$ rpki-client -vvf rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa File: 3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa (raw, json) Hash identifier: 4x7d4CbAIzm/F6oW0bYK3R10sGQPrNbSrYyem2DdQNw= Subject key identifier: E5:3A:8A:4A:48:72:61:8D:17:93:72:B6:C0:31:6F:71:DC:58:2F:E6 Certificate issuer: /CN=148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E Certificate serial: 24B653F0015974D46A19B565DE638D026DA78E9E Authority key identifier: 14:8C:3A:87:20:C5:CD:8A:B7:FB:CE:7B:83:5B:9D:20:0B:CF:6B:6E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa Signing time: Sun 03 May 2026 02:16:28 +0000 ROA not before: Sun 03 May 2026 02:11:28 +0000 ROA not after: Sun 02 May 2027 02:16:28 +0000 asID: 149881 IP address blocks: 103.189.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.crl rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b6:53:f0:01:59:74:d4:6a:19:b5:65:de:63:8d:02:6d:a7:8e:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E Validity Not Before: May 3 02:11:28 2026 GMT Not After : May 2 02:16:28 2027 GMT Subject: CN=E53A8A4A4872618D179372B6C0316F71DC582FE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:f0:72:2e:a5:ed:6b:d2:af:70:41:32:47: f8:22:76:34:12:23:d6:c2:f8:fe:d4:f5:81:92:cd: 1f:5a:fb:90:da:5b:9f:7d:00:f1:6a:dd:e4:54:c6: 33:83:b7:f0:78:44:db:59:22:9e:ca:de:9d:3a:28: 8f:84:d0:c4:45:e9:86:a0:dd:7a:36:a6:8a:f1:14: 6a:fe:65:c7:d3:7e:db:37:40:ee:ec:cc:15:86:01: 3a:2f:aa:b8:c3:c2:95:f0:4d:26:c5:6c:57:41:b5: 4d:bf:0b:8f:13:5b:59:d9:e4:80:4b:62:f5:05:36: 74:e0:2f:98:a9:84:2f:f2:7b:e7:57:99:59:59:10: 49:2b:bd:fc:79:9d:08:e1:8b:27:b0:0e:df:5f:d3: 19:97:37:3c:99:a1:a2:3c:31:5f:d7:1b:e9:89:ca: 18:63:0a:66:79:e8:f0:f1:96:78:f3:f3:b1:90:37: f4:28:27:5d:96:3e:bc:39:40:50:b5:25:9b:68:41: e4:b9:06:ff:d1:ea:eb:d8:56:a9:4a:1c:65:28:1d: a9:29:7a:55:e2:4a:9b:d8:db:50:d3:10:ef:89:45: 48:94:b4:d4:88:2d:af:30:5a:01:b2:10:3e:bc:04: bf:62:c4:24:e9:2e:35:35:96:8a:b6:5b:a2:2e:ed: c1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3A:8A:4A:48:72:61:8D:17:93:72:B6:C0:31:6F:71:DC:58:2F:E6 X509v3 Authority Key Identifier: keyid:14:8C:3A:87:20:C5:CD:8A:B7:FB:CE:7B:83:5B:9D:20:0B:CF:6B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.223.0/24 Signature Algorithm: sha256WithRSAEncryption 20:d9:80:2f:88:ce:2b:19:6e:c3:d1:15:e2:d5:7f:7b:82:40: 0c:28:58:b3:f0:bd:78:c5:d6:2a:cb:f8:d9:7a:d7:fa:65:c6: 7a:85:ec:5e:8c:1c:f5:60:9d:40:f6:2b:95:18:06:ce:95:77: f9:50:47:21:23:66:a7:46:d0:c1:32:7e:13:2b:77:e4:ad:28: fa:82:61:48:b4:e6:24:7e:bf:2f:72:74:c1:a1:cf:f9:15:c7: a7:c0:79:06:76:c3:b8:1e:46:99:c4:65:c6:57:81:8f:bd:62: 43:9f:7f:87:31:9c:81:2c:45:14:1a:d6:28:1f:4b:ff:fb:7e: 14:95:1d:2d:29:7a:9d:b6:70:bc:48:30:dc:e5:a9:12:e9:79: f3:94:36:4a:e3:93:e6:ac:84:c0:b0:00:1c:99:7e:d9:b6:9f: 48:30:55:00:2f:d4:c2:85:42:a6:9d:32:89:50:64:64:0e:47: 08:1f:8d:59:4a:e2:55:87:f0:5c:54:1f:d7:0f:0b:8f:67:c1: e2:b8:24:60:c8:4d:aa:cf:d1:58:88:5b:e6:93:ec:01:f6:d8: 47:43:32:ef:ea:ca:6e:28:3d:8a:91:89:81:38:ba:01:2c:f3: 71:2a:09:85:75:ca:f1:bf:43:6b:7f:3b:ed:8b:0a:20:d2:68: f9:27:94:d0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJLZT8AFZdNRqGbVl3mONAm2njp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ4QzNBODcyMEM1Q0Q4QUI3RkJDRTdCODM1QjlEMjAw QkNGNkI2RTAeFw0yNjA1MDMwMjExMjhaFw0yNzA1MDIwMjE2MjhaMDMxMTAvBgNV BAMTKEU1M0E4QTRBNDg3MjYxOEQxNzkzNzJCNkMwMzE2RjcxREM1ODJGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGuPByLqXta9KvcEEyR/gidjQS I9bC+P7U9YGSzR9a+5DaW599APFq3eRUxjODt/B4RNtZIp7K3p06KI+E0MRF6Yag 3Xo2porxFGr+ZcfTfts3QO7szBWGATovqrjDwpXwTSbFbFdBtU2/C48TW1nZ5IBL YvUFNnTgL5iphC/ye+dXmVlZEEkrvfx5nQjhiyewDt9f0xmXNzyZoaI8MV/XG+mJ yhhjCmZ56PDxlnjz87GQN/QoJ12WPrw5QFC1JZtoQeS5Bv/R6uvYVqlKHGUoHakp elXiSpvY21DTEO+JRUiUtNSILa8wWgGyED68BL9ixCTpLjU1loq2W6Iu7cFPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5TqKSkhyYY0Xk3K2wDFvcdxYL+YwHwYDVR0j BBgwFoAUFIw6hyDFzYq3+857g1udIAvPa24wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg4ZTNhMTctMWM5MS00NzkzLTgzYzQtMjExZDQyMTBhZWE4LzAvMTQ4QzNBODcy MEM1Q0Q4QUI3RkJDRTdCODM1QjlEMjAwQkNGNkI2RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNDhDM0E4NzIwQzVDRDhBQjdGQkNFN0I4MzVCOUQyMDBCQ0Y2 QjZFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4OGUzYTE3LTFjOTEtNDc5My04 M2M0LTIxMWQ0MjEwYWVhOC8wLzMxMzAzMzJlMzEzODM5MmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvd8wDQYJ KoZIhvcNAQELBQADggEBACDZgC+IzisZbsPRFeLVf3uCQAwoWLPwvXjF1irL+Nl6 1/plxnqF7F6MHPVgnUD2K5UYBs6Vd/lQRyEjZqdG0MEyfhMrd+StKPqCYUi05iR+ vy9ydMGhz/kVx6fAeQZ2w7geRpnEZcZXgY+9YkOff4cxnIEsRRQa1igfS//7fhSV HS0pep22cLxIMNzlqRLpefOUNkrjk+ashMCwAByZftm2n0gwVQAv1MKFQqadMolQ ZGQORwgfjVlK4lWH8FxUH9cPC49nweK4JGDITarP0ViIW+aT7AH22EdDMu/qym4o PYqRiYE4ugEs83EqCYV1yvG/Q2t/O+2LCiDSaPknlNA= -----END CERTIFICATE-----Generated at Wed May 13 17:25:15 2026 by rpki-client