$ rpki-client -vvf rpki-rsync.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa File: 3130332e33392e36382e302f32332d3233203d3e20313530323730.roa (raw, json) Hash identifier: SMrMHroRrnR9209rBvRZEueHMTUoBXgkpdWBsenWKng= Subject key identifier: A0:3F:1A:1C:A9:0E:41:D6:22:FD:9A:5D:93:6B:B8:50:BF:FA:ED:59 Certificate issuer: /CN=F8F6686532E7BB704E802B6D3B48B33DD061D9A4 Certificate serial: 1636AED36BC953A689613A27DE2E39AF00226D10 Authority key identifier: F8:F6:68:65:32:E7:BB:70:4E:80:2B:6D:3B:48:B3:3D:D0:61:D9:A4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8F6686532E7BB704E802B6D3B48B33DD061D9A4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa Signing time: Sun 03 May 2026 02:19:45 +0000 ROA not before: Sun 03 May 2026 02:14:45 +0000 ROA not after: Sun 02 May 2027 02:19:45 +0000 asID: 150270 IP address blocks: 103.39.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/F8F6686532E7BB704E802B6D3B48B33DD061D9A4.crl rsync://rpki-rsync.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/F8F6686532E7BB704E802B6D3B48B33DD061D9A4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8F6686532E7BB704E802B6D3B48B33DD061D9A4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:36:ae:d3:6b:c9:53:a6:89:61:3a:27:de:2e:39:af:00:22:6d:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8F6686532E7BB704E802B6D3B48B33DD061D9A4 Validity Not Before: May 3 02:14:45 2026 GMT Not After : May 2 02:19:45 2027 GMT Subject: CN=A03F1A1CA90E41D622FD9A5D936BB850BFFAED59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:1c:1b:69:de:70:53:72:aa:d6:15:9c:a1: 19:f9:43:b0:c6:c2:a4:2c:62:6e:d2:e9:23:aa:40: 4c:3a:cd:e3:3b:82:4f:96:46:fa:9a:6a:4a:9e:85: 4c:45:6d:a0:38:2d:05:bf:9c:7b:23:9b:f4:8e:7f: 60:11:15:fe:c3:14:4e:6e:0c:a9:0c:64:ef:b0:6c: 7e:24:7e:e7:fd:a6:13:4c:72:0c:31:0b:bf:46:8b: 15:3c:7e:bf:1d:b9:d3:16:42:61:11:8c:43:d3:fc: 15:a2:5f:c6:ba:d3:32:7d:56:c6:c6:64:20:dc:a4: f7:b9:20:e4:eb:a7:b0:e5:5d:ce:ea:35:34:df:3a: c5:99:99:a1:d1:f4:40:17:c0:22:a8:d2:58:fe:c8: b1:ac:ec:c7:1a:e8:79:c7:8b:30:2b:2d:dc:ef:ae: 72:6c:9f:a5:52:a1:f8:39:97:68:ea:ce:74:bb:c4: d5:b8:0d:1f:e4:2f:d4:7d:fe:63:b2:4f:6c:ff:25: 3f:15:a7:aa:2f:fd:38:38:62:2f:d9:ee:3f:d7:e9: 6a:30:73:48:48:2a:56:28:0c:38:e8:63:f8:9d:d5: 23:0f:91:ba:fd:be:54:c8:16:58:42:bc:d4:89:75: b7:8e:e3:87:c0:13:52:07:ce:e9:50:a4:a8:43:e5: d5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3F:1A:1C:A9:0E:41:D6:22:FD:9A:5D:93:6B:B8:50:BF:FA:ED:59 X509v3 Authority Key Identifier: keyid:F8:F6:68:65:32:E7:BB:70:4E:80:2B:6D:3B:48:B3:3D:D0:61:D9:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/F8F6686532E7BB704E802B6D3B48B33DD061D9A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8F6686532E7BB704E802B6D3B48B33DD061D9A4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.68.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:93:aa:9d:18:b8:f5:d4:e7:f2:03:1a:bf:bf:15:be:0e:20: 24:53:f6:e5:46:42:45:0a:34:93:6d:ad:38:65:a9:da:f3:e0: b3:e5:51:ee:04:b7:c9:5b:10:7c:a4:72:49:4d:05:1a:ae:6b: c4:80:4a:05:ca:a2:dd:13:2a:48:7d:91:d1:69:aa:63:c4:eb: 49:1c:52:7b:9f:d2:5e:72:d3:7f:0d:51:1c:f9:f1:89:e1:79: 64:e5:e6:7c:2b:0b:86:8c:be:1c:e1:7d:6b:a6:ad:d0:fd:10: b4:7a:39:62:f4:8a:e6:50:c2:2d:16:49:98:01:fe:9d:ab:2a: d8:ce:d5:25:b7:57:07:c6:93:95:c9:df:3d:d1:62:a7:7c:ec: 45:66:63:35:d1:86:16:84:42:8d:37:27:1e:97:31:4d:3c:06: c8:71:0b:1e:dc:38:c6:1e:c5:9c:e7:58:94:c6:60:29:c4:4f: b3:3a:8c:1e:f7:9c:6d:d9:99:bd:62:f9:3f:81:e0:b8:64:9f: c2:08:e4:d4:02:8e:5f:62:1d:d7:6e:ce:11:9e:b2:71:3e:a4: e7:a5:7b:14:47:58:5a:10:4f:23:7f:c3:e5:8a:f0:6b:ea:e7: 23:a0:60:37:55:80:27:86:67:db:2f:6b:8f:25:f1:a5:9f:c9: a7:b2:25:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFjau02vJU6aJYTon3i45rwAibRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhGNjY4NjUzMkU3QkI3MDRFODAyQjZEM0I0OEIzM0RE MDYxRDlBNDAeFw0yNjA1MDMwMjE0NDVaFw0yNzA1MDIwMjE5NDVaMDMxMTAvBgNV BAMTKEEwM0YxQTFDQTkwRTQxRDYyMkZEOUE1RDkzNkJCODUwQkZGQUVENTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtpRwbad5wU3Kq1hWcoRn5Q7DG wqQsYm7S6SOqQEw6zeM7gk+WRvqaakqehUxFbaA4LQW/nHsjm/SOf2ARFf7DFE5u DKkMZO+wbH4kfuf9phNMcgwxC79GixU8fr8dudMWQmERjEPT/BWiX8a60zJ9VsbG ZCDcpPe5IOTrp7DlXc7qNTTfOsWZmaHR9EAXwCKo0lj+yLGs7Mca6HnHizArLdzv rnJsn6VSofg5l2jqznS7xNW4DR/kL9R9/mOyT2z/JT8Vp6ov/Tg4Yi/Z7j/X6Wow c0hIKlYoDDjoY/id1SMPkbr9vlTIFlhCvNSJdbeO44fAE1IHzulQpKhD5dULAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoD8aHKkOQdYi/Zpdk2u4UL/67VkwHwYDVR0j BBgwFoAU+PZoZTLnu3BOgCttO0izPdBh2aQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjIyNmJlN2ItMmUyOC00OTUwLWFhNGMtMjE4NWU2NDdkYjNmLzAvRjhGNjY4NjUz MkU3QkI3MDRFODAyQjZEM0I0OEIzM0REMDYxRDlBNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOEY2Njg2NTMyRTdCQjcwNEU4MDJCNkQzQjQ4QjMzREQwNjFE OUE0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyMjZiZTdiLTJlMjgtNDk1MC1h YTRjLTIxODVlNjQ3ZGIzZi8wLzMxMzAzMzJlMzMzOTJlMzYzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDMyMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcnRDANBgkqhkiG 9w0BAQsFAAOCAQEAnZOqnRi49dTn8gMav78Vvg4gJFP25UZCRQo0k22tOGWp2vPg s+VR7gS3yVsQfKRySU0FGq5rxIBKBcqi3RMqSH2R0WmqY8TrSRxSe5/SXnLTfw1R HPnxieF5ZOXmfCsLhoy+HOF9a6at0P0QtHo5YvSK5lDCLRZJmAH+nasq2M7VJbdX B8aTlcnfPdFip3zsRWZjNdGGFoRCjTcnHpcxTTwGyHELHtw4xh7FnOdYlMZgKcRP szqMHvecbdmZvWL5P4HguGSfwgjk1AKOX2Id127OEZ6ycT6k56V7FEdYWhBPI3/D 5Yrwa+rnI6BgN1WAJ4Zn2y9rjyXxpZ/Jp7IlQw== -----END CERTIFICATE-----Generated at Wed May 13 02:27:28 2026 by rpki-client