$ rpki-client -vvf rpki-rsync.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131382e302f32342d3234203d3e20313530323234.roa File: 3130332e31362e3131382e302f32342d3234203d3e20313530323234.roa (raw, json) Hash identifier: DmsqvgbVPNfcNdfJtucN0xsEHJ0/UNUr4pV2Ej4ylVY= Subject key identifier: D3:5D:05:27:37:94:0A:47:5C:33:7B:07:59:DA:AA:99:C6:94:28:A0 Certificate issuer: /CN=2A3B7113CD87302B2B15C036DABB55A1C61A4BC7 Certificate serial: 058DD35D09037A003CA6A51556AD83078797775F Authority key identifier: 2A:3B:71:13:CD:87:30:2B:2B:15:C0:36:DA:BB:55:A1:C6:1A:4B:C7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3B7113CD87302B2B15C036DABB55A1C61A4BC7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131382e302f32342d3234203d3e20313530323234.roa Signing time: Sun 03 May 2026 02:16:34 +0000 ROA not before: Sun 03 May 2026 02:11:34 +0000 ROA not after: Sun 02 May 2027 02:16:34 +0000 asID: 150224 IP address blocks: 103.16.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/2A3B7113CD87302B2B15C036DABB55A1C61A4BC7.crl rsync://rpki-rsync.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/2A3B7113CD87302B2B15C036DABB55A1C61A4BC7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3B7113CD87302B2B15C036DABB55A1C61A4BC7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:8d:d3:5d:09:03:7a:00:3c:a6:a5:15:56:ad:83:07:87:97:77:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A3B7113CD87302B2B15C036DABB55A1C61A4BC7 Validity Not Before: May 3 02:11:34 2026 GMT Not After : May 2 02:16:34 2027 GMT Subject: CN=D35D052737940A475C337B0759DAAA99C69428A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:48:10:3a:50:d8:02:8c:53:1b:44:25:3e:9e: 51:6c:fb:2b:fc:65:73:3c:27:d9:4d:78:3f:2c:40: 1b:35:5c:38:46:16:f1:72:e3:2a:e7:6f:fb:6a:ed: a3:d8:0d:f3:d7:ef:c0:08:74:1b:57:e7:e4:7c:96: c2:62:f3:04:30:26:b3:ba:95:4e:c0:6e:f4:9e:df: dd:51:5a:ab:4a:53:04:b2:6f:ff:da:d5:53:66:d5: 35:ea:8a:7f:28:9c:31:96:25:4b:20:49:79:c8:37: 28:ec:ff:14:a7:30:64:bf:5c:82:29:46:5e:38:bf: a1:40:49:df:a1:af:ef:24:ed:39:31:51:52:7c:f6: 3b:b7:84:01:0e:be:cc:1d:2e:a2:94:b2:e4:d1:f1: bf:6d:cc:47:f5:76:97:04:c7:9f:b7:df:3b:80:f9: 2d:bc:2a:41:a0:80:3b:5e:71:b3:1c:fa:5d:d7:2f: 47:b5:50:6b:a7:e5:69:f6:f5:4d:f0:03:8e:c4:92: a8:2b:32:48:d6:b2:fd:47:46:f1:0a:10:8f:9e:58: 62:fe:6e:08:e9:cc:28:0c:79:15:4c:ba:fe:1e:b9: b4:4c:ec:95:3c:bb:ce:9d:23:08:83:dd:3d:59:18: 46:f4:81:0c:0f:f4:9b:c6:1a:e1:81:3f:aa:f8:c6: 5b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5D:05:27:37:94:0A:47:5C:33:7B:07:59:DA:AA:99:C6:94:28:A0 X509v3 Authority Key Identifier: keyid:2A:3B:71:13:CD:87:30:2B:2B:15:C0:36:DA:BB:55:A1:C6:1A:4B:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/2A3B7113CD87302B2B15C036DABB55A1C61A4BC7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3B7113CD87302B2B15C036DABB55A1C61A4BC7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131382e302f32342d3234203d3e20313530323234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.118.0/24 Signature Algorithm: sha256WithRSAEncryption c7:dd:46:13:41:b4:45:1f:36:e0:f6:8e:77:8d:d1:36:49:03: b4:36:9a:89:2f:18:9a:88:ff:06:fb:37:f4:5a:ee:39:c1:51: e3:5a:ea:8c:0f:43:72:40:af:5f:45:d4:25:be:8f:f0:91:ac: b4:86:c3:1b:4f:ed:39:8a:bb:16:d7:34:f7:d7:c5:2e:8d:29: 2f:4a:45:19:2f:21:aa:20:67:6b:d1:ba:75:75:89:bb:09:68: df:20:de:0a:ed:51:0b:36:fd:43:fb:86:2d:0e:00:c6:73:4e: 44:5f:6a:b7:ef:c4:36:99:01:23:61:15:6b:95:ab:72:82:2e: 18:6c:e4:a2:20:25:98:82:8d:ab:d4:0a:e6:96:cb:7c:e1:fd: 83:17:f8:c7:cf:f2:00:62:a2:7f:bb:c2:2e:7d:4f:f1:2b:b4: f6:87:62:d1:70:d9:72:b9:3c:9e:63:ce:bb:52:97:a7:7c:64: c9:11:cf:5d:d5:3b:31:52:3c:2b:e0:44:9b:68:a7:fc:79:a2: 2e:38:86:c9:0b:77:29:4b:46:a9:46:e0:f9:9d:6f:0e:c6:50: a3:63:66:37:ca:4f:f7:17:a3:cc:04:a9:f9:0c:fa:42:d1:ce: de:f5:63:aa:5e:8a:55:73:7c:8a:79:f9:34:c7:63:77:46:93: 14:37:2e:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBY3TXQkDegA8pqUVVq2DB4eXd18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEzQjcxMTNDRDg3MzAyQjJCMTVDMDM2REFCQjU1QTFD NjFBNEJDNzAeFw0yNjA1MDMwMjExMzRaFw0yNzA1MDIwMjE2MzRaMDMxMTAvBgNV BAMTKEQzNUQwNTI3Mzc5NDBBNDc1QzMzN0IwNzU5REFBQTk5QzY5NDI4QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTSBA6UNgCjFMbRCU+nlFs+yv8 ZXM8J9lNeD8sQBs1XDhGFvFy4yrnb/tq7aPYDfPX78AIdBtX5+R8lsJi8wQwJrO6 lU7AbvSe391RWqtKUwSyb//a1VNm1TXqin8onDGWJUsgSXnINyjs/xSnMGS/XIIp Rl44v6FASd+hr+8k7TkxUVJ89ju3hAEOvswdLqKUsuTR8b9tzEf1dpcEx5+33zuA +S28KkGggDtecbMc+l3XL0e1UGun5Wn29U3wA47EkqgrMkjWsv1HRvEKEI+eWGL+ bgjpzCgMeRVMuv4eubRM7JU8u86dIwiD3T1ZGEb0gQwP9JvGGuGBP6r4xlslAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU010FJzeUCkdcM3sHWdqqmcaUKKAwHwYDVR0j BBgwFoAUKjtxE82HMCsrFcA22rtVocYaS8cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTk4Nzk3NDQtYjgxOC00NmRjLThkOWYtOWMzNTc5M2Y0Y2JiLzAvMkEzQjcxMTND RDg3MzAyQjJCMTVDMDM2REFCQjU1QTFDNjFBNEJDNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQTNCNzExM0NEODczMDJCMkIxNUMwMzZEQUJCNTVBMUM2MUE0 QkM3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5ODc5NzQ0LWI4MTgtNDZkYy04 ZDlmLTljMzU3OTNmNGNiYi8wLzMxMzAzMzJlMzEzNjJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxB2MA0GCSqG SIb3DQEBCwUAA4IBAQDH3UYTQbRFHzbg9o53jdE2SQO0NpqJLxiaiP8G+zf0Wu45 wVHjWuqMD0NyQK9fRdQlvo/wkay0hsMbT+05irsW1zT318UujSkvSkUZLyGqIGdr 0bp1dYm7CWjfIN4K7VELNv1D+4YtDgDGc05EX2q378Q2mQEjYRVrlatygi4YbOSi ICWYgo2r1Armlst84f2DF/jHz/IAYqJ/u8IufU/xK7T2h2LRcNlyuTyeY867Upen fGTJEc9d1TsxUjwr4ESbaKf8eaIuOIbJC3cpS0apRuD5nW8OxlCjY2Y3yk/3F6PM BKn5DPpC0c7e9WOqXopVc3yKefk0x2N3RpMUNy71 -----END CERTIFICATE-----Generated at Wed May 13 11:59:22 2026 by rpki-client