$ rpki-client -vvf rpki-rsync.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa File: 3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa (raw, json) Hash identifier: MWYhiIEDGx9DoNFz51QvtMWf3c6h+IW6waBKdCBpOXk= Subject key identifier: 47:46:43:F6:73:81:BC:05:AF:68:ED:A6:45:F6:1B:98:1E:57:50:33 Certificate issuer: /CN=485C95EAB969D6A48B4E079F7EAF2F1A43D576E5 Certificate serial: 19D33D6F0BFF1EEF42684687AACF82757D0355A4 Authority key identifier: 48:5C:95:EA:B9:69:D6:A4:8B:4E:07:9F:7E:AF:2F:1A:43:D5:76:E5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/485C95EAB969D6A48B4E079F7EAF2F1A43D576E5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa Signing time: Sun 03 May 2026 02:20:07 +0000 ROA not before: Sun 03 May 2026 02:15:07 +0000 ROA not after: Sun 02 May 2027 02:20:07 +0000 asID: 141655 IP address blocks: 103.162.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/485C95EAB969D6A48B4E079F7EAF2F1A43D576E5.crl rsync://rpki-rsync.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/485C95EAB969D6A48B4E079F7EAF2F1A43D576E5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/485C95EAB969D6A48B4E079F7EAF2F1A43D576E5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d3:3d:6f:0b:ff:1e:ef:42:68:46:87:aa:cf:82:75:7d:03:55:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=485C95EAB969D6A48B4E079F7EAF2F1A43D576E5 Validity Not Before: May 3 02:15:07 2026 GMT Not After : May 2 02:20:07 2027 GMT Subject: CN=474643F67381BC05AF68EDA645F61B981E575033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d7:c7:96:e7:83:d8:8c:ad:26:eb:4c:0d:e5: 45:e8:4e:8c:65:a7:1f:3d:75:51:b8:1e:db:f7:df: 46:b1:a9:d0:a8:bd:0c:67:8b:47:ff:50:d8:d5:9c: b1:b8:7f:d9:7f:84:b5:b5:70:92:1e:9b:70:1e:b0: 1f:4a:37:c0:a8:62:2d:01:bc:1b:7f:61:4e:b8:94: cd:bf:db:2f:0b:7b:5c:d5:6f:99:b3:0e:c4:84:81: c4:a8:95:af:36:eb:0b:1e:96:af:b1:de:13:20:fd: f0:3b:9c:10:92:4e:68:f6:be:3c:b8:35:a4:d8:03: 38:0d:26:d6:97:db:42:76:88:db:23:21:5a:78:62: 05:df:c9:f4:52:9b:bc:15:61:a8:5d:da:45:6c:a2: 5e:05:3f:09:c8:de:1d:43:7b:76:49:c6:4f:a4:6b: 4d:f9:9c:43:51:96:b3:37:d6:96:aa:ff:60:5e:cc: 1a:da:64:e5:ee:ea:e2:c5:b3:50:57:30:23:da:0d: 09:ed:b3:66:91:7f:f4:3e:62:51:ef:36:af:c3:6d: 3f:c6:68:45:dc:73:ea:48:92:7d:5a:8f:85:bd:39: 22:a9:ff:8e:f7:bc:91:95:5e:0c:44:5b:6c:90:53: b2:c6:84:38:19:13:be:31:6d:78:d6:7a:0b:af:5a: b2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:46:43:F6:73:81:BC:05:AF:68:ED:A6:45:F6:1B:98:1E:57:50:33 X509v3 Authority Key Identifier: keyid:48:5C:95:EA:B9:69:D6:A4:8B:4E:07:9F:7E:AF:2F:1A:43:D5:76:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/485C95EAB969D6A48B4E079F7EAF2F1A43D576E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/485C95EAB969D6A48B4E079F7EAF2F1A43D576E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.35.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:dd:59:ce:68:fb:89:fc:06:70:0c:1f:5b:29:55:9a:aa:f5: b0:98:58:20:b9:4f:1b:62:ce:76:13:01:8e:64:6e:21:95:8b: 02:09:64:3a:0d:8c:68:50:ae:89:fd:eb:99:1f:67:0e:b9:66: b6:dd:e5:49:0e:4a:7d:3c:05:4e:fa:4b:d2:9d:42:7d:f4:90: f8:38:5f:95:6c:07:5e:de:9d:d9:7b:15:f1:76:3e:c9:c5:8c: b1:09:ec:73:21:df:a6:77:4a:7b:33:1c:79:cc:34:9a:dd:d6: bf:64:89:9d:fe:ac:90:9e:ce:c2:7a:94:30:4f:99:d7:ac:36: 88:b0:8f:d5:0b:a3:0a:71:b2:b7:32:76:a5:64:0e:c5:92:a2: 41:df:01:7a:90:1b:1d:da:00:1c:bd:0f:f4:d0:6c:49:73:6a: 86:f1:03:bd:0a:b1:a8:9e:82:c8:37:bf:9a:dd:f8:3f:4c:78: fc:ac:56:78:44:a5:71:65:d5:25:fc:84:fc:31:a0:d3:7e:24: e1:73:bb:1f:af:72:1a:5d:ec:86:7e:5a:9f:73:a7:5a:01:4f: 62:b5:60:fa:0a:13:b4:31:3a:ae:45:d7:c4:45:c9:4f:1a:34: 4c:11:1f:49:5e:13:0f:59:82:6f:1a:e5:89:ef:df:82:df:71: 16:f9:d2:f3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGdM9bwv/Hu9CaEaHqs+CdX0DVaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg1Qzk1RUFCOTY5RDZBNDhCNEUwNzlGN0VBRjJGMUE0 M0Q1NzZFNTAeFw0yNjA1MDMwMjE1MDdaFw0yNzA1MDIwMjIwMDdaMDMxMTAvBgNV BAMTKDQ3NDY0M0Y2NzM4MUJDMDVBRjY4RURBNjQ1RjYxQjk4MUU1NzUwMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ18eW54PYjK0m60wN5UXoToxl px89dVG4Htv330axqdCovQxni0f/UNjVnLG4f9l/hLW1cJIem3AesB9KN8CoYi0B vBt/YU64lM2/2y8Le1zVb5mzDsSEgcSola826wselq+x3hMg/fA7nBCSTmj2vjy4 NaTYAzgNJtaX20J2iNsjIVp4YgXfyfRSm7wVYahd2kVsol4FPwnI3h1De3ZJxk+k a035nENRlrM31paq/2BezBraZOXu6uLFs1BXMCPaDQnts2aRf/Q+YlHvNq/DbT/G aEXcc+pIkn1aj4W9OSKp/473vJGVXgxEW2yQU7LGhDgZE74xbXjWeguvWrIjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR0ZD9nOBvAWvaO2mRfYbmB5XUDMwHwYDVR0j BBgwFoAUSFyV6rlp1qSLTgeffq8vGkPVduUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjNiYTAyNGItODdmMi00ZWRkLTg5ZmYtYTRmY2E3MDA4YzM2LzAvNDg1Qzk1RUFC OTY5RDZBNDhCNEUwNzlGN0VBRjJGMUE0M0Q1NzZFNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODVDOTVFQUI5NjlENkE0OEI0RTA3OUY3RUFGMkYxQTQzRDU3 NkU1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIzYmEwMjRiLTg3ZjItNGVkZC04 OWZmLWE0ZmNhNzAwOGMzNi8wLzMxMzAzMzJlMzEzNjMyMmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6IjMA0GCSqG SIb3DQEBCwUAA4IBAQCf3VnOaPuJ/AZwDB9bKVWaqvWwmFgguU8bYs52EwGOZG4h lYsCCWQ6DYxoUK6J/euZH2cOuWa23eVJDkp9PAVO+kvSnUJ99JD4OF+VbAde3p3Z exXxdj7JxYyxCexzId+md0p7Mxx5zDSa3da/ZImd/qyQns7CepQwT5nXrDaIsI/V C6MKcbK3MnalZA7FkqJB3wF6kBsd2gAcvQ/00GxJc2qG8QO9CrGonoLIN7+a3fg/ THj8rFZ4RKVxZdUl/IT8MaDTfiThc7sfr3IaXeyGflqfc6daAU9itWD6ChO0MTqu RdfERclPGjRMER9JXhMPWYJvGuWJ79+C33EW+dLz -----END CERTIFICATE-----Generated at Wed May 13 02:12:31 2026 by rpki-client