$ rpki-client -vvf rpki-rsync.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa File: 3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa (raw, json) Hash identifier: GkQ8eVgQ8r/gDw/x4qIJQCYsnJYsQySSoX0lOgA5GAk= Subject key identifier: F1:23:4B:EE:69:10:2B:59:38:51:0B:53:8C:ED:F2:2B:DF:BA:21:62 Certificate issuer: /CN=A7F257AB233C8B2F1C6388FCB94F34206063ACA7 Certificate serial: 1CA79AF7643C8882C951A4A458D1CF6742E548E6 Authority key identifier: A7:F2:57:AB:23:3C:8B:2F:1C:63:88:FC:B9:4F:34:20:60:63:AC:A7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7F257AB233C8B2F1C6388FCB94F34206063ACA7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa Signing time: Sun 03 May 2026 02:18:19 +0000 ROA not before: Sun 03 May 2026 02:13:19 +0000 ROA not after: Sun 02 May 2027 02:18:19 +0000 asID: 140482 IP address blocks: 103.152.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/A7F257AB233C8B2F1C6388FCB94F34206063ACA7.crl rsync://rpki-rsync.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/A7F257AB233C8B2F1C6388FCB94F34206063ACA7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7F257AB233C8B2F1C6388FCB94F34206063ACA7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a7:9a:f7:64:3c:88:82:c9:51:a4:a4:58:d1:cf:67:42:e5:48:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7F257AB233C8B2F1C6388FCB94F34206063ACA7 Validity Not Before: May 3 02:13:19 2026 GMT Not After : May 2 02:18:19 2027 GMT Subject: CN=F1234BEE69102B5938510B538CEDF22BDFBA2162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8d:d1:1d:5f:20:fd:d0:76:94:2a:31:b6:5f: 04:b7:ca:22:d7:3a:d7:db:dc:29:7e:cb:38:57:05: 21:95:15:2e:4e:d7:2a:2a:a8:a0:55:ad:4c:6a:75: 33:54:c2:13:66:a2:69:0c:02:45:2c:19:79:99:4d: 06:28:ec:91:a2:d2:2b:ae:0f:da:2e:e9:04:19:b1: 97:41:b5:fe:0e:c8:eb:5e:3d:b9:35:a6:ac:87:7f: a8:1e:18:f6:ac:8f:8b:9a:37:fe:fa:3e:46:e9:73: 89:e7:7c:96:35:9b:2c:da:d5:18:0d:d6:3d:b6:63: 51:cc:93:6e:16:43:d5:3f:42:92:63:4d:01:0f:37: 66:17:7b:15:69:2c:19:76:4e:7f:fe:6e:69:82:95: b7:ef:c7:65:cd:df:6c:4b:f1:df:bc:bd:cf:9e:56: 7c:64:46:eb:a9:4c:2d:1d:04:14:78:2d:68:22:2d: 4d:a6:47:bc:72:81:62:6d:50:a1:bf:c3:83:92:c1: 15:e8:28:57:df:c1:9b:c6:2a:c1:e5:c7:2d:a4:36: 97:13:a3:69:be:7d:41:9d:d0:fa:c9:09:ad:15:0b: 95:53:83:45:56:4b:00:a7:5f:75:c6:e4:59:18:ae: 38:7c:9e:20:7b:ea:54:df:c6:b5:6d:1f:80:e5:69: ff:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:23:4B:EE:69:10:2B:59:38:51:0B:53:8C:ED:F2:2B:DF:BA:21:62 X509v3 Authority Key Identifier: keyid:A7:F2:57:AB:23:3C:8B:2F:1C:63:88:FC:B9:4F:34:20:60:63:AC:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/A7F257AB233C8B2F1C6388FCB94F34206063ACA7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A7F257AB233C8B2F1C6388FCB94F34206063ACA7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.140.0/23 Signature Algorithm: sha256WithRSAEncryption ac:cb:34:a6:70:03:5b:13:e4:1f:77:21:60:b1:1e:7d:45:71: ec:9d:b9:32:c9:d2:54:7c:6c:09:45:04:54:15:fc:3b:14:bc: 2a:3b:33:5e:f0:73:2b:f8:21:e8:ce:0c:f8:a5:fa:fc:1f:4a: ff:b8:f7:51:73:6d:26:9f:6a:6c:86:90:3c:bc:76:50:c8:1e: c0:11:44:31:a8:cd:94:c9:0e:c9:c3:9e:7d:39:67:81:31:9c: 4e:13:36:40:70:d9:c6:ff:97:51:2a:27:9d:8e:05:75:10:43: cb:fb:6c:36:8c:8d:dc:3e:d5:31:8b:89:0d:3d:1b:f8:c1:ce: bf:1e:54:bc:cc:76:b8:54:b1:79:0f:0b:a4:a5:9e:0e:70:ec: 09:af:4d:ce:0d:83:7a:6e:17:e3:1f:88:68:f4:3d:fd:35:cb: 96:18:1f:02:64:d4:76:d6:42:85:a8:bf:54:b3:f5:65:5b:25: 2c:b4:1c:6d:fd:57:3a:ba:18:cc:02:4c:25:df:ba:10:f6:b8: 5d:0f:42:c5:73:6b:1a:78:17:23:2b:96:6a:9c:48:5f:a8:f0: ce:94:97:75:26:a5:2d:c8:22:c1:96:48:89:84:ed:9f:21:2f: e2:c1:af:f2:7c:c2:9b:95:8b:cf:a1:d4:23:d7:78:c3:33:b6: f3:e1:75:08 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHKea92Q8iILJUaSkWNHPZ0LlSOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdGMjU3QUIyMzNDOEIyRjFDNjM4OEZDQjk0RjM0MjA2 MDYzQUNBNzAeFw0yNjA1MDMwMjEzMTlaFw0yNzA1MDIwMjE4MTlaMDMxMTAvBgNV BAMTKEYxMjM0QkVFNjkxMDJCNTkzODUxMEI1MzhDRURGMjJCREZCQTIxNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpjdEdXyD90HaUKjG2XwS3yiLX Otfb3Cl+yzhXBSGVFS5O1yoqqKBVrUxqdTNUwhNmomkMAkUsGXmZTQYo7JGi0iuu D9ou6QQZsZdBtf4OyOtePbk1pqyHf6geGPasj4uaN/76Pkbpc4nnfJY1myza1RgN 1j22Y1HMk24WQ9U/QpJjTQEPN2YXexVpLBl2Tn/+bmmClbfvx2XN32xL8d+8vc+e VnxkRuupTC0dBBR4LWgiLU2mR7xygWJtUKG/w4OSwRXoKFffwZvGKsHlxy2kNpcT o2m+fUGd0PrJCa0VC5VTg0VWSwCnX3XG5FkYrjh8niB76lTfxrVtH4Dlaf+NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8SNL7mkQK1k4UQtTjO3yK9+6IWIwHwYDVR0j BBgwFoAUp/JXqyM8iy8cY4j8uU80IGBjrKcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWU2ZmYzOGQtZTU0Ny00ZjczLWJiMzAtMmIxNGMwOGM4OWZiLzAvQTdGMjU3QUIy MzNDOEIyRjFDNjM4OEZDQjk0RjM0MjA2MDYzQUNBNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BN0YyNTdBQjIzM0M4QjJGMUM2Mzg4RkNCOTRGMzQyMDYwNjNB Q0E3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMxMzAzMzJlMzEzNTMyMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmIwwDQYJ KoZIhvcNAQELBQADggEBAKzLNKZwA1sT5B93IWCxHn1FceyduTLJ0lR8bAlFBFQV /DsUvCo7M17wcyv4IejODPil+vwfSv+491FzbSafamyGkDy8dlDIHsARRDGozZTJ DsnDnn05Z4ExnE4TNkBw2cb/l1EqJ52OBXUQQ8v7bDaMjdw+1TGLiQ09G/jBzr8e VLzMdrhUsXkPC6Slng5w7AmvTc4Ng3puF+MfiGj0Pf01y5YYHwJk1HbWQoWov1Sz 9WVbJSy0HG39Vzq6GMwCTCXfuhD2uF0PQsVzaxp4FyMrlmqcSF+o8M6Ul3UmpS3I IsGWSImE7Z8hL+LBr/J8wpuVi8+h1CPXeMMztvPhdQg= -----END CERTIFICATE-----Generated at Wed May 13 02:27:06 2026 by rpki-client