$ rpki-client -vvf rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3130332e382e35362e302f32322d3234203d3e203435373037.roa File: 3130332e382e35362e302f32322d3234203d3e203435373037.roa (raw, json) Hash identifier: 7VYgmOP0YO7cH1VxALvRRKcOoHBx5YAjdZr3/vH5WcY= Subject key identifier: 16:8B:0A:F3:94:79:4B:B8:CC:64:98:27:46:A0:E8:57:7F:95:E9:84 Certificate issuer: /CN=E5E46B40DA4B39812590F66F8D9A48EB7BF80663 Certificate serial: 1B6B3AE8CD7F94CD1FDB4EA741D9E3C3979FA22A Authority key identifier: E5:E4:6B:40:DA:4B:39:81:25:90:F6:6F:8D:9A:48:EB:7B:F8:06:63 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3130332e382e35362e302f32322d3234203d3e203435373037.roa Signing time: Sun 03 May 2026 02:19:20 +0000 ROA not before: Sun 03 May 2026 02:14:20 +0000 ROA not after: Sun 02 May 2027 02:19:20 +0000 asID: 45707 IP address blocks: 103.8.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.crl rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:6b:3a:e8:cd:7f:94:cd:1f:db:4e:a7:41:d9:e3:c3:97:9f:a2:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5E46B40DA4B39812590F66F8D9A48EB7BF80663 Validity Not Before: May 3 02:14:20 2026 GMT Not After : May 2 02:19:20 2027 GMT Subject: CN=168B0AF394794BB8CC64982746A0E8577F95E984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:6d:9a:91:22:78:86:fd:61:1a:a7:35:fb: a5:f7:f5:79:e0:8f:34:cd:08:0c:21:79:fc:3e:f1: 67:d8:e1:63:a5:d7:b9:d6:73:6f:0d:84:2b:42:ea: fb:ae:d5:1e:39:cc:db:ef:bd:74:12:db:3f:f0:4c: 92:05:37:ff:88:0e:53:da:6d:fc:6a:f2:63:54:c1: e0:c7:91:36:65:16:ac:1b:39:22:2f:6f:b8:18:00: c5:e4:b9:ea:a0:67:fc:84:d8:10:29:cb:b0:a7:e3: 3a:60:8a:14:a5:0c:90:44:ae:c7:76:dc:18:1f:50: 46:e2:b3:78:27:83:85:31:cf:1c:69:43:7e:f1:fc: f8:14:8c:1d:7b:38:58:a3:1a:5d:25:4d:5d:25:8b: 64:d7:06:46:b3:0c:5a:04:7b:17:d4:86:cd:b7:75: a3:80:63:b8:4b:aa:2b:55:5f:0a:2c:25:61:2f:7e: 3c:0a:37:08:42:e9:90:ba:85:0b:e4:0f:23:eb:a1: 8c:4c:5d:77:24:3e:9b:20:76:4e:8c:62:41:a9:b7: 02:a4:5d:42:37:73:3f:25:dd:b4:f7:ae:f3:96:5c: da:1a:4a:69:7c:4e:53:d1:0e:be:20:eb:6d:a1:3a: a1:01:81:0d:05:b3:5f:34:7b:b1:c7:36:40:b4:ce: 3a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8B:0A:F3:94:79:4B:B8:CC:64:98:27:46:A0:E8:57:7F:95:E9:84 X509v3 Authority Key Identifier: keyid:E5:E4:6B:40:DA:4B:39:81:25:90:F6:6F:8D:9A:48:EB:7B:F8:06:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3130332e382e35362e302f32322d3234203d3e203435373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.56.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:cd:cc:95:46:18:07:69:00:29:d7:a8:b9:1a:ff:dd:e7:47: 6b:5c:08:11:8e:f0:a2:88:0e:44:7b:71:01:b7:c0:a6:16:89: 52:8b:1d:70:77:a5:b5:5d:b9:2e:ac:34:d1:04:bb:fe:82:1a: 32:fc:1a:52:48:1c:8f:66:f0:e9:24:fe:d3:f1:c4:c0:d6:1d: 90:fd:7e:21:6d:c2:30:28:c4:b0:d6:7d:a3:fd:ed:23:39:ad: 85:e1:34:c3:05:47:fc:d0:42:f8:1d:03:37:42:f4:2a:ad:0a: b1:b5:c4:3e:00:c9:3f:3f:22:74:aa:ff:c8:b4:31:45:f6:12: ca:5d:d9:25:e3:c0:80:32:d5:97:87:83:95:ce:f5:a3:00:f0: 5e:c7:79:70:35:81:98:bb:52:9b:e0:48:13:6e:45:e3:4e:d7: ff:f4:13:d9:71:37:91:65:5e:63:8e:60:9e:89:bc:ce:c9:23: 7b:ef:87:88:d8:09:bc:f9:e8:f1:55:4f:46:c0:73:86:cb:3e: 97:c6:8f:af:90:3c:49:26:d9:46:28:9c:bc:59:5c:14:a6:25: 7e:4b:0e:03:ce:ca:5e:73:b8:a4:8a:f3:20:0c:18:c0:73:3f: 1c:ad:a7:09:7a:00:d4:fb:b2:e7:dd:4c:60:86:d3:4f:6b:1f: bf:b7:dc:0b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUG2s66M1/lM0f206nQdnjw5efoiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVFNDZCNDBEQTRCMzk4MTI1OTBGNjZGOEQ5QTQ4RUI3 QkY4MDY2MzAeFw0yNjA1MDMwMjE0MjBaFw0yNzA1MDIwMjE5MjBaMDMxMTAvBgNV BAMTKDE2OEIwQUYzOTQ3OTRCQjhDQzY0OTgyNzQ2QTBFODU3N0Y5NUU5ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS9G2akSJ4hv1hGqc1+6X39Xng jzTNCAwhefw+8WfY4WOl17nWc28NhCtC6vuu1R45zNvvvXQS2z/wTJIFN/+IDlPa bfxq8mNUweDHkTZlFqwbOSIvb7gYAMXkueqgZ/yE2BApy7Cn4zpgihSlDJBErsd2 3BgfUEbis3gng4UxzxxpQ37x/PgUjB17OFijGl0lTV0li2TXBkazDFoEexfUhs23 daOAY7hLqitVXwosJWEvfjwKNwhC6ZC6hQvkDyProYxMXXckPpsgdk6MYkGptwKk XUI3cz8l3bT3rvOWXNoaSml8TlPRDr4g622hOqEBgQ0Fs180e7HHNkC0zjoxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUFosK85R5S7jMZJgnRqDoV3+V6YQwHwYDVR0j BBgwFoAU5eRrQNpLOYElkPZvjZpI63v4BmMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjBkMmJkZTQtMDU2Yi00NWM2LTgwYmYtZjVkNGQyNzczMzZiLzAvRTVFNDZCNDBE QTRCMzk4MTI1OTBGNjZGOEQ5QTQ4RUI3QkY4MDY2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNUU0NkI0MERBNEIzOTgxMjU5MEY2NkY4RDlBNDhFQjdCRjgw NjYzLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjBkMmJkZTQtMDU2Yi00NWM2LTgw YmYtZjVkNGQyNzczMzZiLzAvMzEzMDMzMmUzODJlMzUzNjJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM0MzUzNzMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCDgwDQYJKoZIhvcNAQEL BQADggEBAB3NzJVGGAdpACnXqLka/93nR2tcCBGO8KKIDkR7cQG3wKYWiVKLHXB3 pbVduS6sNNEEu/6CGjL8GlJIHI9m8Okk/tPxxMDWHZD9fiFtwjAoxLDWfaP97SM5 rYXhNMMFR/zQQvgdAzdC9CqtCrG1xD4AyT8/InSq/8i0MUX2Espd2SXjwIAy1ZeH g5XO9aMA8F7HeXA1gZi7UpvgSBNuReNO1//0E9lxN5FlXmOOYJ6JvM7JI3vvh4jY Cbz56PFVT0bAc4bLPpfGj6+QPEkm2UYonLxZXBSmJX5LDgPOyl5zuKSK8yAMGMBz Pxytpwl6ANT7sufdTGCG009rH7+33As= -----END CERTIFICATE-----Generated at Wed May 13 13:43:00 2026 by rpki-client