$ rpki-client -vvf rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: AqK7gho3oaBdn6U0bSz26oZHpcnwMKNpGmX9XBUu4+k= Subject key identifier: 32:15:73:12:15:C9:8F:B6:F8:CC:08:A3:1C:44:4F:08:47:5A:D7:C8 Certificate issuer: /CN=62531E8BF877F9190055D7D857C21ECBDCFAC237 Certificate serial: 355054DBDE95E6127F50D3A9A6E0A05E90FC1DA0 Authority key identifier: 62:53:1E:8B:F8:77:F9:19:00:55:D7:D8:57:C2:1E:CB:DC:FA:C2:37 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62531E8BF877F9190055D7D857C21ECBDCFAC237.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa Signing time: Sun 03 May 2026 02:16:52 +0000 ROA not before: Sun 03 May 2026 02:11:52 +0000 ROA not after: Sun 02 May 2027 02:16:52 +0000 asID: 140456 IP address blocks: 103.153.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/62531E8BF877F9190055D7D857C21ECBDCFAC237.crl rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/62531E8BF877F9190055D7D857C21ECBDCFAC237.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62531E8BF877F9190055D7D857C21ECBDCFAC237.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:50:54:db:de:95:e6:12:7f:50:d3:a9:a6:e0:a0:5e:90:fc:1d:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62531E8BF877F9190055D7D857C21ECBDCFAC237 Validity Not Before: May 3 02:11:52 2026 GMT Not After : May 2 02:16:52 2027 GMT Subject: CN=3215731215C98FB6F8CC08A31C444F08475AD7C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5f:de:c2:1e:20:8d:b1:59:11:24:bb:02:33: 04:c0:99:1d:23:cb:7d:55:4e:6f:92:c0:12:99:c5: 25:da:2b:c6:8f:d0:93:5a:9a:12:b0:6e:16:d1:e1: 43:4b:fb:ef:db:7f:cb:39:bf:dd:50:11:46:c0:d6: 62:2e:bb:2c:6d:98:2b:67:59:dc:42:78:fb:f5:ad: 32:d9:f8:a7:1a:af:d8:36:b4:b5:09:07:16:44:16: e7:16:5d:89:b3:68:8a:cb:dd:7a:54:f1:a5:89:5b: f7:01:97:87:bf:24:53:a0:f7:43:2d:21:c7:57:79: 9c:c2:ad:86:58:41:4c:85:44:20:38:a9:03:f9:0a: f8:45:8c:4f:b3:28:dd:c8:17:62:f8:ed:77:86:8a: ae:26:47:e9:15:2d:95:79:66:17:f0:1c:f0:b6:6e: 2c:0d:cb:c1:1c:c8:61:6a:d8:6d:08:bd:e7:a9:a6: 1e:df:75:39:70:17:6b:88:8d:fe:30:16:bb:90:21: 6e:33:43:92:86:d8:20:41:0f:33:94:92:a7:02:0a: ac:ae:ca:e1:e6:7e:35:52:7b:c4:7c:b3:40:cc:ec: a6:b2:c1:e0:6a:8e:97:73:0d:02:46:f1:d9:28:11: 00:c3:c3:28:41:ce:98:eb:39:6a:99:73:7f:d3:f6: 82:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:15:73:12:15:C9:8F:B6:F8:CC:08:A3:1C:44:4F:08:47:5A:D7:C8 X509v3 Authority Key Identifier: keyid:62:53:1E:8B:F8:77:F9:19:00:55:D7:D8:57:C2:1E:CB:DC:FA:C2:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/62531E8BF877F9190055D7D857C21ECBDCFAC237.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62531E8BF877F9190055D7D857C21ECBDCFAC237.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.61.0/24 Signature Algorithm: sha256WithRSAEncryption 69:98:91:b3:f2:58:38:1e:8c:27:2e:13:2c:80:8d:f2:bb:08: e9:2d:d7:1b:fb:b5:a6:59:64:b4:5e:2a:90:ba:f4:59:d4:a0: 5c:ce:24:5c:4d:ba:90:17:ee:b3:6c:af:db:0e:a6:5f:14:28: 16:e9:4f:23:dd:74:7b:98:1f:2a:2b:1d:f8:ea:fb:5a:a5:4a: c0:33:ca:fb:06:d0:2b:02:86:ef:4b:1d:d0:50:76:db:a0:39: f5:4a:a3:ff:aa:39:03:74:5e:91:71:15:5c:75:09:bb:55:c5: a6:61:3a:d9:8f:e1:53:67:7e:08:f0:bc:74:4d:59:f9:02:88: d0:cf:26:24:bc:fa:7b:a2:6a:09:7d:4a:2b:6e:d1:71:ec:6f: 90:85:14:bd:17:62:9a:af:4b:c0:0f:4f:e3:56:1a:3f:52:77: 0d:a2:ee:f3:cf:56:76:05:49:c4:0f:d6:ee:5e:8e:f4:ce:1d: 28:f9:a2:5c:44:c9:5b:a4:d6:17:e5:8b:56:26:bf:ac:ad:00: 79:81:90:f2:a4:5d:ff:8b:02:c6:52:de:41:f5:f7:5a:65:a1: 35:c9:8b:76:7b:49:76:94:61:4e:88:4c:26:c7:02:e5:3b:0e: 9d:7d:d1:84:a2:e9:cb:7d:e0:91:d7:ab:d6:fb:2a:d8:de:02: eb:7c:f8:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNVBU296V5hJ/UNOppuCgXpD8HaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI1MzFFOEJGODc3RjkxOTAwNTVEN0Q4NTdDMjFFQ0JE Q0ZBQzIzNzAeFw0yNjA1MDMwMjExNTJaFw0yNzA1MDIwMjE2NTJaMDMxMTAvBgNV BAMTKDMyMTU3MzEyMTVDOThGQjZGOENDMDhBMzFDNDQ0RjA4NDc1QUQ3QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnX97CHiCNsVkRJLsCMwTAmR0j y31VTm+SwBKZxSXaK8aP0JNamhKwbhbR4UNL++/bf8s5v91QEUbA1mIuuyxtmCtn WdxCePv1rTLZ+Kcar9g2tLUJBxZEFucWXYmzaIrL3XpU8aWJW/cBl4e/JFOg90Mt IcdXeZzCrYZYQUyFRCA4qQP5CvhFjE+zKN3IF2L47XeGiq4mR+kVLZV5ZhfwHPC2 biwNy8EcyGFq2G0Iveepph7fdTlwF2uIjf4wFruQIW4zQ5KG2CBBDzOUkqcCCqyu yuHmfjVSe8R8s0DM7KayweBqjpdzDQJG8dkoEQDDwyhBzpjrOWqZc3/T9oJJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMhVzEhXJj7b4zAijHERPCEda18gwHwYDVR0j BBgwFoAUYlMei/h3+RkAVdfYV8Iey9z6wjcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWE5NTIwZmQtOGRlNS00YTY5LTg1ZjEtYzQ0ODk3YWU2MTIxLzAvNjI1MzFFOEJG ODc3RjkxOTAwNTVEN0Q4NTdDMjFFQ0JEQ0ZBQzIzNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjUzMUU4QkY4NzdGOTE5MDA1NUQ3RDg1N0MyMUVDQkRDRkFD MjM3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k9MA0GCSqG SIb3DQEBCwUAA4IBAQBpmJGz8lg4HownLhMsgI3yuwjpLdcb+7WmWWS0XiqQuvRZ 1KBcziRcTbqQF+6zbK/bDqZfFCgW6U8j3XR7mB8qKx346vtapUrAM8r7BtArAobv Sx3QUHbboDn1SqP/qjkDdF6RcRVcdQm7VcWmYTrZj+FTZ34I8Lx0TVn5AojQzyYk vPp7omoJfUorbtFx7G+QhRS9F2Kar0vAD0/jVho/UncNou7zz1Z2BUnED9buXo70 zh0o+aJcRMlbpNYX5YtWJr+srQB5gZDypF3/iwLGUt5B9fdaZaE1yYt2e0l2lGFO iEwmxwLlOw6dfdGEounLfeCR16vW+yrY3gLrfPjI -----END CERTIFICATE-----Generated at Wed May 13 10:40:00 2026 by rpki-client