$ rpki-client -vvf rpki-rsync.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa File: 3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa (raw, json) Hash identifier: ax7Tz8igVzZFs/ShEmAUC7L5azN7xDE8dfSTDwz0nik= Subject key identifier: 53:55:38:BB:81:1F:D2:F9:71:BA:27:4B:19:AD:1E:4F:AF:47:9E:82 Certificate issuer: /CN=C3DFB49CD70E52E4450CF2FE5E7212A855B99F25 Certificate serial: 18A432D3F78D132F29B1A9E13735788520FA1455 Authority key identifier: C3:DF:B4:9C:D7:0E:52:E4:45:0C:F2:FE:5E:72:12:A8:55:B9:9F:25 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3DFB49CD70E52E4450CF2FE5E7212A855B99F25.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa Signing time: Sun 03 May 2026 02:20:35 +0000 ROA not before: Sun 03 May 2026 02:15:35 +0000 ROA not after: Sun 02 May 2027 02:20:35 +0000 asID: 139951 IP address blocks: 103.147.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/C3DFB49CD70E52E4450CF2FE5E7212A855B99F25.crl rsync://rpki-rsync.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/C3DFB49CD70E52E4450CF2FE5E7212A855B99F25.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3DFB49CD70E52E4450CF2FE5E7212A855B99F25.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a4:32:d3:f7:8d:13:2f:29:b1:a9:e1:37:35:78:85:20:fa:14:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3DFB49CD70E52E4450CF2FE5E7212A855B99F25 Validity Not Before: May 3 02:15:35 2026 GMT Not After : May 2 02:20:35 2027 GMT Subject: CN=535538BB811FD2F971BA274B19AD1E4FAF479E82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:f9:2b:7f:58:80:f2:b0:22:ff:ca:ff:8e:2e: a9:7b:d7:34:d3:96:97:2b:ed:9a:df:50:59:ef:13: 6f:30:75:54:e2:fd:77:5b:f3:ac:95:04:0f:f3:19: e0:cf:e9:34:fa:d1:33:e0:a0:0b:08:fc:09:e4:12: 0f:5d:c4:c6:b2:9a:0f:83:2c:65:4d:96:a9:10:de: 6d:8f:45:05:b6:07:8b:af:1a:a0:55:06:17:21:82: d9:66:0b:3c:43:34:32:e2:46:4c:be:f9:5e:d2:d4: 44:89:eb:a2:66:57:94:58:ed:11:a8:79:e5:36:f1: 23:fa:49:ee:15:08:a0:02:b1:10:de:11:b3:d9:a1: 6e:49:56:ce:d2:f1:bb:31:0b:fb:24:6a:fe:33:46: 28:f1:6d:9e:96:dd:f8:4a:bb:40:4a:3e:ad:09:c3: c0:33:0e:23:3e:4a:d8:d4:e3:cf:54:f7:31:96:03: d1:76:71:43:08:cc:5d:ac:61:94:c9:3c:be:a4:49: 92:6b:63:44:5e:1b:61:fd:66:ca:3a:67:74:31:09: 3b:78:87:9a:4e:64:46:4f:f7:74:b7:e5:1d:38:d8: f8:27:35:8d:54:9b:49:4b:7b:2e:60:b7:d2:8f:4e: 5a:35:10:ec:47:a3:dc:46:5c:17:2e:85:ab:c9:35: 27:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:55:38:BB:81:1F:D2:F9:71:BA:27:4B:19:AD:1E:4F:AF:47:9E:82 X509v3 Authority Key Identifier: keyid:C3:DF:B4:9C:D7:0E:52:E4:45:0C:F2:FE:5E:72:12:A8:55:B9:9F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/C3DFB49CD70E52E4450CF2FE5E7212A855B99F25.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C3DFB49CD70E52E4450CF2FE5E7212A855B99F25.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.72.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:b9:20:2a:bd:a5:4b:1c:cc:d7:2c:e8:d7:0e:22:17:74:eb: 27:e9:85:a1:a2:c6:41:30:3f:1d:c6:44:25:f4:70:f5:cb:ba: 80:fa:dd:a5:9b:7c:02:5a:be:75:b4:a9:e6:32:c6:e6:8a:52: 9c:15:de:b1:18:de:45:f3:2c:81:93:fd:fa:54:16:51:7c:63: 65:43:d6:e6:cd:02:9b:2a:f5:7f:dc:6a:39:c5:3b:32:47:65: d1:b8:31:25:c9:68:08:b8:92:e4:59:39:2c:25:19:ff:88:05: 9c:c1:78:6a:87:9f:16:92:61:e3:62:67:51:e1:23:50:f8:e1: 11:ba:12:6e:01:11:7b:b2:2a:8c:3a:ff:aa:3b:03:c9:3e:fe: c5:bc:ed:5b:85:26:d7:9c:22:20:d9:32:2f:69:23:a5:55:9e: de:d7:23:2e:86:19:4c:1c:19:7e:74:01:5f:56:6f:56:dc:99: 11:3b:57:68:0e:e7:19:4b:60:b2:96:57:27:04:c3:cd:9f:bf: ac:ff:57:79:a8:89:c9:fb:be:14:78:6a:52:4c:c4:bc:ce:a4: 06:b3:07:5a:4d:6f:4b:50:f3:85:06:52:d0:3f:d1:53:ed:c0: 5b:96:e1:7a:4b:16:ee:19:af:6e:eb:b4:10:69:39:db:f1:9c: ce:8d:be:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGKQy0/eNEy8psanhNzV4hSD6FFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNERkI0OUNENzBFNTJFNDQ1MENGMkZFNUU3MjEyQTg1 NUI5OUYyNTAeFw0yNjA1MDMwMjE1MzVaFw0yNzA1MDIwMjIwMzVaMDMxMTAvBgNV BAMTKDUzNTUzOEJCODExRkQyRjk3MUJBMjc0QjE5QUQxRTRGQUY0NzlFODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCN+St/WIDysCL/yv+OLql71zTT lpcr7ZrfUFnvE28wdVTi/Xdb86yVBA/zGeDP6TT60TPgoAsI/AnkEg9dxMaymg+D LGVNlqkQ3m2PRQW2B4uvGqBVBhchgtlmCzxDNDLiRky++V7S1ESJ66JmV5RY7RGo eeU28SP6Se4VCKACsRDeEbPZoW5JVs7S8bsxC/skav4zRijxbZ6W3fhKu0BKPq0J w8AzDiM+StjU489U9zGWA9F2cUMIzF2sYZTJPL6kSZJrY0ReG2H9Zso6Z3QxCTt4 h5pOZEZP93S35R042PgnNY1Um0lLey5gt9KPTlo1EOxHo9xGXBcuhavJNScjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU1U4u4Ef0vlxuidLGa0eT69HnoIwHwYDVR0j BBgwFoAUw9+0nNcOUuRFDPL+XnISqFW5nyUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjY2NTIwMDAtMWYyYy00NzkxLTgxYjQtZDQ0NTdjZWYxMjcwLzAvQzNERkI0OUNE NzBFNTJFNDQ1MENGMkZFNUU3MjEyQTg1NUI5OUYyNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DM0RGQjQ5Q0Q3MEU1MkU0NDUwQ0YyRkU1RTcyMTJBODU1Qjk5 RjI1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI2NjUyMDAwLTFmMmMtNDc5MS04 MWI0LWQ0NDU3Y2VmMTI3MC8wLzMxMzAzMzJlMzEzNDM3MmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5NIMA0GCSqG SIb3DQEBCwUAA4IBAQAquSAqvaVLHMzXLOjXDiIXdOsn6YWhosZBMD8dxkQl9HD1 y7qA+t2lm3wCWr51tKnmMsbmilKcFd6xGN5F8yyBk/36VBZRfGNlQ9bmzQKbKvV/ 3Go5xTsyR2XRuDElyWgIuJLkWTksJRn/iAWcwXhqh58WkmHjYmdR4SNQ+OERuhJu ARF7siqMOv+qOwPJPv7FvO1bhSbXnCIg2TIvaSOlVZ7e1yMuhhlMHBl+dAFfVm9W 3JkRO1doDucZS2CyllcnBMPNn7+s/1d5qInJ+74UeGpSTMS8zqQGswdaTW9LUPOF BlLQP9FT7cBbluF6SxbuGa9u67QQaTnb8ZzOjb71 -----END CERTIFICATE-----Generated at Wed May 13 07:01:08 2026 by rpki-client