$ rpki-client -vvf rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa File: 3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: Q5OWZuOjXammbPGdiQX0OH3xtPw9qN8aeQNvsFX0Ohg= Subject key identifier: 13:67:C2:15:81:26:33:FA:2B:D2:1B:F2:59:93:FE:55:D6:EB:97:F1 Certificate issuer: /CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Certificate serial: 3CD559A5C4F5D603BCA1AB5FECAF166922DC33A6 Authority key identifier: D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa Signing time: Sun 03 May 2026 02:20:21 +0000 ROA not before: Sun 03 May 2026 02:15:21 +0000 ROA not after: Sun 02 May 2027 02:20:21 +0000 asID: 139456 IP address blocks: 103.152.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:d5:59:a5:c4:f5:d6:03:bc:a1:ab:5f:ec:af:16:69:22:dc:33:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Validity Not Before: May 3 02:15:21 2026 GMT Not After : May 2 02:20:21 2027 GMT Subject: CN=1367C215812633FA2BD21BF25993FE55D6EB97F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:34:07:ba:c4:db:9a:19:d6:f7:8f:1a:93: e1:fd:95:78:c2:8b:65:b1:c8:db:78:68:66:f7:24: e1:a1:56:f2:01:f1:0a:4d:1b:65:c9:a0:79:34:42: 42:69:7b:e0:96:af:f0:29:4a:b1:07:34:41:31:57: 2a:85:f9:6b:55:e5:a6:dd:6c:cf:cb:97:4b:14:22: e6:e9:37:e8:e8:fa:a6:fc:db:dd:60:63:2a:9e:62: a0:03:c2:c8:93:fa:17:1a:d4:9e:f6:74:8e:a1:e4: 19:ee:d2:68:72:e6:58:da:5b:49:42:f0:de:71:41: d2:6b:0b:0f:13:bd:17:ee:df:24:4d:73:2e:db:ae: 06:a2:6a:5c:e5:2d:54:d9:2e:ff:fb:b9:94:54:83: d9:f3:0c:a8:da:34:83:9a:6c:43:89:63:1e:28:2b: 85:72:06:e4:79:a1:77:51:04:95:b8:ec:f9:0d:41: fa:c6:c3:1a:8c:aa:46:e6:37:e9:02:6f:c9:7f:90: 00:34:df:c4:d8:d0:d7:ec:3d:c2:99:74:50:ca:46: 2c:8e:b7:47:64:8c:50:73:94:ca:6c:87:ea:af:9c: 63:f6:88:b3:69:a7:28:98:f4:08:7a:03:3c:fc:1c: 32:c3:8f:64:21:68:87:ec:5f:5f:00:a3:41:3c:44: f0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:67:C2:15:81:26:33:FA:2B:D2:1B:F2:59:93:FE:55:D6:EB:97:F1 X509v3 Authority Key Identifier: keyid:D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.242.0/23 Signature Algorithm: sha256WithRSAEncryption 08:a4:2c:b3:a1:87:17:3f:e3:be:6c:bb:7c:b2:28:5f:18:61: c8:bd:cb:5e:fd:02:3b:a6:8b:77:8a:4f:2f:7f:fa:3c:54:72: 17:24:14:93:6d:8d:ef:58:68:9e:84:f2:b8:72:5b:15:c8:18: 71:66:f3:83:ae:7e:58:13:1d:01:a7:f5:d9:23:76:93:73:59: 77:9e:eb:88:65:aa:ad:8d:33:39:41:9b:42:3f:e5:a1:38:dd: dd:03:56:e8:7c:5b:66:31:00:6b:67:ab:17:f4:da:d6:71:88: 87:91:6f:20:4b:fa:e0:cc:17:50:ff:84:f2:5d:15:16:17:2c: 82:d8:6c:24:0e:ce:d7:82:6b:a2:68:2f:15:45:a4:c3:c7:ca: 0d:bf:d8:27:e4:f5:c9:7a:04:da:20:6f:fc:ff:53:73:c5:44: 6b:e1:6f:3d:4f:b8:ed:f2:30:3d:05:21:d8:6d:57:7e:90:4d: c2:c5:27:ee:c7:b2:cf:b5:d8:de:65:84:97:76:bd:b9:22:17: 42:34:3b:61:c4:a4:75:e5:f8:11:45:ce:4b:1f:01:fa:58:7f: 5a:81:25:c1:09:81:bb:13:bb:c7:1b:b8:85:75:fa:19:b7:55: e6:66:e2:72:ba:2c:c4:ac:da:b1:b4:d9:80:10:36:0d:27:af: c9:20:21:61 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPNVZpcT11gO8oatf7K8WaSLcM6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdCM0QyOUExQzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4 NTIzRTE0QjAeFw0yNjA1MDMwMjE1MjFaFw0yNzA1MDIwMjIwMjFaMDMxMTAvBgNV BAMTKDEzNjdDMjE1ODEyNjMzRkEyQkQyMUJGMjU5OTNGRTU1RDZFQjk3RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN5DQHusTbmhnW948ak+H9lXjC i2WxyNt4aGb3JOGhVvIB8QpNG2XJoHk0QkJpe+CWr/ApSrEHNEExVyqF+WtV5abd bM/Ll0sUIubpN+jo+qb8291gYyqeYqADwsiT+hca1J72dI6h5Bnu0mhy5ljaW0lC 8N5xQdJrCw8TvRfu3yRNcy7brgaialzlLVTZLv/7uZRUg9nzDKjaNIOabEOJYx4o K4VyBuR5oXdRBJW47PkNQfrGwxqMqkbmN+kCb8l/kAA038TY0NfsPcKZdFDKRiyO t0dkjFBzlMpsh+qvnGP2iLNppyiY9Ah6Azz8HDLDj2QhaIfsX18Ao0E8RPDDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUE2fCFYEmM/or0hvyWZP+Vdbrl/EwHwYDVR0j BBgwFoAU17PSmhxY8qdk73HZDus0oIUj4UswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjRiYTY3NzgtYjE2ZC00YmE4LTk4NGYtMzRlNDE5ZmM5YzQ5LzAvRDdCM0QyOUEx QzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4NTIzRTE0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EN0IzRDI5QTFDNThGMkE3NjRFRjcxRDkwRUVCMzRBMDg1MjNF MTRCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI0YmE2Nzc4LWIxNmQtNGJhOC05 ODRmLTM0ZTQxOWZjOWM0OS8wLzMxMzAzMzJlMzEzNTMyMmUzMjM0MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmPIwDQYJ KoZIhvcNAQELBQADggEBAAikLLOhhxc/475su3yyKF8YYci9y179Ajumi3eKTy9/ +jxUchckFJNtje9YaJ6E8rhyWxXIGHFm84OuflgTHQGn9dkjdpNzWXee64hlqq2N MzlBm0I/5aE43d0DVuh8W2YxAGtnqxf02tZxiIeRbyBL+uDMF1D/hPJdFRYXLILY bCQOzteCa6JoLxVFpMPHyg2/2Cfk9cl6BNogb/z/U3PFRGvhbz1PuO3yMD0FIdht V36QTcLFJ+7Hss+12N5lhJd2vbkiF0I0O2HEpHXl+BFFzksfAfpYf1qBJcEJgbsT u8cbuIV1+hm3VeZm4nK6LMSs2rG02YAQNg0nr8kgIWE= -----END CERTIFICATE-----Generated at Wed May 13 01:14:13 2026 by rpki-client