$ rpki-client -vvf rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa File: 3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa (raw, json) Hash identifier: lsZJ+/dkSenhsqGfebfOtSdM0lXp316Uwu+8bQgCJfE= Subject key identifier: 70:5B:30:56:E2:D3:26:73:71:19:DA:07:69:75:C5:FA:B7:3A:44:D5 Certificate issuer: /CN=19101281C951DCE434F1B713AE570F59EE413A09 Certificate serial: 6880AB0A0E01AEAE081ED990ED3C9D3482065852 Authority key identifier: 19:10:12:81:C9:51:DC:E4:34:F1:B7:13:AE:57:0F:59:EE:41:3A:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19101281C951DCE434F1B713AE570F59EE413A09.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa Signing time: Sun 03 May 2026 02:19:57 +0000 ROA not before: Sun 03 May 2026 02:14:57 +0000 ROA not after: Sun 02 May 2027 02:19:57 +0000 asID: 134648 IP address blocks: 103.208.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/19101281C951DCE434F1B713AE570F59EE413A09.crl rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/19101281C951DCE434F1B713AE570F59EE413A09.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19101281C951DCE434F1B713AE570F59EE413A09.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:80:ab:0a:0e:01:ae:ae:08:1e:d9:90:ed:3c:9d:34:82:06:58:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19101281C951DCE434F1B713AE570F59EE413A09 Validity Not Before: May 3 02:14:57 2026 GMT Not After : May 2 02:19:57 2027 GMT Subject: CN=705B3056E2D326737119DA076975C5FAB73A44D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:a6:81:14:34:e0:58:3a:0a:df:f6:81:e8: 89:92:7a:57:56:e7:01:0d:f3:40:f2:36:71:d6:f5: 03:7a:cb:9d:4c:e4:67:12:58:09:1a:08:5b:8f:8a: 88:ad:c1:ce:64:75:a6:04:a5:d2:35:fd:38:bd:fc: 69:9e:13:42:3a:9b:f6:c4:f0:23:48:d1:f8:79:7d: 93:96:71:0d:30:ed:7c:aa:bc:88:97:f6:3f:57:cb: ca:9a:b2:69:fb:37:87:64:bf:73:11:d6:20:67:be: d7:ff:d5:26:d5:26:cc:56:27:76:9b:88:ca:e0:e4: 70:9e:bd:37:4f:1f:b2:e6:1d:ad:e4:ed:42:98:d6: 90:f4:97:de:1b:73:1f:9f:69:78:2f:c9:76:7d:65: 01:fe:fc:dd:f6:0f:0f:c3:08:6d:1b:07:b7:02:b0: d8:ac:7b:64:15:f2:0d:e7:82:30:c5:c1:ae:45:7c: 14:b0:31:94:31:3c:c3:51:e0:15:81:e9:aa:65:12: a3:a8:48:95:1d:03:84:f9:95:ed:55:80:b2:bc:55: ca:f6:e6:32:25:72:d2:1e:19:e7:ad:a8:2d:cb:6e: 2b:72:25:73:a2:fd:13:80:56:20:69:21:f3:31:ba: d4:f7:7a:6f:25:28:0b:04:36:a8:9d:2c:e5:82:39: f2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5B:30:56:E2:D3:26:73:71:19:DA:07:69:75:C5:FA:B7:3A:44:D5 X509v3 Authority Key Identifier: keyid:19:10:12:81:C9:51:DC:E4:34:F1:B7:13:AE:57:0F:59:EE:41:3A:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/19101281C951DCE434F1B713AE570F59EE413A09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19101281C951DCE434F1B713AE570F59EE413A09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.103.0/24 Signature Algorithm: sha256WithRSAEncryption 97:c3:d7:46:b6:6c:3d:5b:b3:69:0c:e1:6f:5b:30:7e:f2:f0: 03:44:fd:e4:37:c2:50:9e:50:be:d2:09:88:95:42:3f:f9:29: 55:2f:d5:31:80:62:01:8a:85:85:48:f0:75:57:72:bd:fc:b2: 0e:65:bd:17:d6:34:4b:f9:c9:54:06:59:77:59:14:f4:36:db: a9:f8:19:cb:f7:48:9a:17:d6:21:f0:ca:07:b2:26:c7:2b:1e: 50:41:88:76:4a:7a:52:c4:c4:db:6d:c6:d7:ec:af:06:00:05: ca:51:b7:c5:db:71:56:ce:d1:f6:ed:1b:05:2d:96:a0:41:66: 2e:8a:dd:ee:d3:c2:9a:04:89:03:e0:07:d4:4a:14:22:e8:bf: 35:ab:12:5d:e7:5b:46:43:3e:8d:8c:45:63:69:e3:27:05:1c: ed:31:96:19:3a:3e:d7:eb:7b:2f:ff:2b:07:da:dd:36:bb:72: d8:6c:65:ef:09:44:99:06:5b:33:5f:24:34:3a:78:eb:47:3c: 4d:a3:00:23:18:52:81:92:3d:01:28:fd:3c:ca:27:b5:9b:5b: 04:c2:19:2a:63:c0:47:1e:d6:70:d5:f4:bc:e9:24:4e:27:c1: 0d:be:ed:0c:f0:5b:13:f5:31:6d:06:91:91:66:00:16:d9:f8: 52:b5:9c:49 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaICrCg4Brq4IHtmQ7TydNIIGWFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkxMDEyODFDOTUxRENFNDM0RjFCNzEzQUU1NzBGNTlF RTQxM0EwOTAeFw0yNjA1MDMwMjE0NTdaFw0yNzA1MDIwMjE5NTdaMDMxMTAvBgNV BAMTKDcwNUIzMDU2RTJEMzI2NzM3MTE5REEwNzY5NzVDNUZBQjczQTQ0RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCAKaBFDTgWDoK3/aB6ImSeldW 5wEN80DyNnHW9QN6y51M5GcSWAkaCFuPioitwc5kdaYEpdI1/Ti9/GmeE0I6m/bE 8CNI0fh5fZOWcQ0w7XyqvIiX9j9Xy8qasmn7N4dkv3MR1iBnvtf/1SbVJsxWJ3ab iMrg5HCevTdPH7LmHa3k7UKY1pD0l94bcx+faXgvyXZ9ZQH+/N32Dw/DCG0bB7cC sNise2QV8g3ngjDFwa5FfBSwMZQxPMNR4BWB6aplEqOoSJUdA4T5le1VgLK8Vcr2 5jIlctIeGeetqC3LbityJXOi/ROAViBpIfMxutT3em8lKAsENqidLOWCOfIfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcFswVuLTJnNxGdoHaXXF+rc6RNUwHwYDVR0j BBgwFoAUGRASgclR3OQ08bcTrlcPWe5BOgkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjJjNjk0NDAtOGIxNy00YTY4LWEwZmEtNjYxNTllMjE2MmUwLzAvMTkxMDEyODFD OTUxRENFNDM0RjFCNzEzQUU1NzBGNTlFRTQxM0EwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xOTEwMTI4MUM5NTFEQ0U0MzRGMUI3MTNBRTU3MEY1OUVFNDEz QTA5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyYzY5NDQwLThiMTctNGE2OC1h MGZhLTY2MTU5ZTIxNjJlMC8wLzMxMzAzMzJlMzIzMDM4MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0GcwDQYJ KoZIhvcNAQELBQADggEBAJfD10a2bD1bs2kM4W9bMH7y8ANE/eQ3wlCeUL7SCYiV Qj/5KVUv1TGAYgGKhYVI8HVXcr38sg5lvRfWNEv5yVQGWXdZFPQ226n4Gcv3SJoX 1iHwygeyJscrHlBBiHZKelLExNttxtfsrwYABcpRt8XbcVbO0fbtGwUtlqBBZi6K 3e7TwpoEiQPgB9RKFCLovzWrEl3nW0ZDPo2MRWNp4ycFHO0xlhk6Ptfrey//Kwfa 3Ta7cthsZe8JRJkGWzNfJDQ6eOtHPE2jACMYUoGSPQEo/TzKJ7WbWwTCGSpjwEce 1nDV9LzpJE4nwQ2+7QzwWxP1MW0GkZFmABbZ+FK1nEk= -----END CERTIFICATE-----Generated at Wed May 13 10:20:28 2026 by rpki-client