$ rpki-client -vvf rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3130332e31382e37362e302f32322d3234203d3e203535373031.roa File: 3130332e31382e37362e302f32322d3234203d3e203535373031.roa (raw, json) Hash identifier: ZIatr5akU/o2NWBe3N+oXda5TMJkC+DkwhEJDyTCXOU= Subject key identifier: 35:E8:FA:3B:D6:2D:91:2B:24:B2:50:A4:FA:F0:E4:4B:BD:F8:14:4F Certificate issuer: /CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Certificate serial: 2C39865A126A980C272D6C8AF36FB8DB8659AAC0 Authority key identifier: 9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3130332e31382e37362e302f32322d3234203d3e203535373031.roa Signing time: Sun 03 May 2026 02:21:08 +0000 ROA not before: Sun 03 May 2026 02:16:08 +0000 ROA not after: Sun 02 May 2027 02:21:08 +0000 asID: 55701 IP address blocks: 103.18.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:39:86:5a:12:6a:98:0c:27:2d:6c:8a:f3:6f:b8:db:86:59:aa:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Validity Not Before: May 3 02:16:08 2026 GMT Not After : May 2 02:21:08 2027 GMT Subject: CN=35E8FA3BD62D912B24B250A4FAF0E44BBDF8144F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:39:56:ca:f3:74:25:53:ed:d6:5e:0d:dd:b9: b2:1a:00:8b:5e:06:06:74:56:0b:88:b2:ce:05:95: 60:ee:94:ac:da:f3:f9:ba:de:00:74:c6:23:ad:00: 7d:8a:d2:0f:1b:50:e5:cc:fa:74:c9:d9:77:16:e4: 5c:87:60:3a:bd:49:09:29:45:06:81:65:ec:66:89: 95:d5:e5:c5:a1:35:36:28:07:15:06:dd:19:51:14: ab:73:6e:29:ec:c2:dc:fa:a7:d0:78:38:21:21:cf: 92:99:7e:91:a0:ac:1a:a1:e8:f0:9a:89:eb:68:91: 03:64:1e:9e:40:82:4e:a2:f8:54:46:c0:33:d6:bd: 44:2a:f6:e2:01:17:77:d5:b5:f2:47:46:df:2c:f1: a0:89:80:b6:fe:cd:67:bf:09:f1:45:6d:da:1b:f5: bb:d3:6c:dd:e1:bc:0c:b9:64:d6:64:70:4c:23:24: fd:e4:4d:50:97:ee:57:87:fe:07:b4:c1:1b:ad:33: 10:cb:69:16:93:98:af:ea:17:7a:ef:c4:b9:8b:10: 23:3c:f6:ed:f8:44:d9:be:ed:39:59:9d:1e:2d:be: e0:34:2a:15:1a:a5:ec:8d:62:32:95:b3:a9:7a:39: e7:43:7c:0f:bd:ba:d2:6e:dc:07:d3:f2:4d:36:1e: 51:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E8:FA:3B:D6:2D:91:2B:24:B2:50:A4:FA:F0:E4:4B:BD:F8:14:4F X509v3 Authority Key Identifier: keyid:9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3130332e31382e37362e302f32322d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.76.0/22 Signature Algorithm: sha256WithRSAEncryption 21:85:cb:a1:c7:7c:e0:b7:0e:e7:1d:bc:f2:c7:d8:f0:87:e9: 91:83:9e:bd:cb:94:da:07:44:81:77:0d:cc:38:6d:d4:fa:e1: 92:ea:f2:b4:06:a8:97:51:7d:de:4a:3f:75:13:9b:7d:16:7e: 43:78:70:e2:5a:84:8c:e3:7f:ff:cd:29:da:c2:1f:6d:dc:8c: c4:b2:da:7d:b2:02:89:0a:cd:f8:f2:f1:7d:58:7e:e4:1e:03: 2d:9d:70:41:f3:4d:86:df:e9:76:cb:d7:de:de:48:7d:82:13: 3d:35:b9:5d:9d:64:d6:7c:4a:bb:2d:df:b4:02:77:44:37:1b: 65:fa:1b:a3:27:4b:81:47:d1:eb:2f:1e:76:6d:bf:25:9c:0e: 5b:96:a6:bc:9f:38:fa:54:7b:27:63:d7:bf:d5:b5:4d:a2:16: 4e:c6:10:e5:0f:94:be:2b:82:cd:6a:a8:13:43:29:76:66:3d: a2:ee:6e:23:81:a0:a9:b4:2d:1f:c1:fd:6f:43:dd:10:c2:7a: 8b:e7:a6:02:3c:b7:dd:cc:31:2e:04:ec:65:e5:ab:d8:a8:d9: 55:d9:a8:ef:25:33:53:91:a2:cf:89:bc:ea:1b:84:45:58:e3: e2:b5:75:95:53:cd:42:22:ae:c0:5c:54:e5:70:13:f6:51:3f: 25:6c:7e:97 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULDmGWhJqmAwnLWyK82+424ZZqsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZEN0ZGNEQzRkIzNzM0MEZBQThDN0VFNzFEMUNCOUVB RjA4NTlDMTAeFw0yNjA1MDMwMjE2MDhaFw0yNzA1MDIwMjIxMDhaMDMxMTAvBgNV BAMTKDM1RThGQTNCRDYyRDkxMkIyNEIyNTBBNEZBRjBFNDRCQkRGODE0NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHOVbK83QlU+3WXg3dubIaAIte BgZ0VguIss4FlWDulKza8/m63gB0xiOtAH2K0g8bUOXM+nTJ2XcW5FyHYDq9SQkp RQaBZexmiZXV5cWhNTYoBxUG3RlRFKtzbinswtz6p9B4OCEhz5KZfpGgrBqh6PCa ietokQNkHp5Agk6i+FRGwDPWvUQq9uIBF3fVtfJHRt8s8aCJgLb+zWe/CfFFbdob 9bvTbN3hvAy5ZNZkcEwjJP3kTVCX7leH/ge0wRutMxDLaRaTmK/qF3rvxLmLECM8 9u34RNm+7TlZnR4tvuA0KhUapeyNYjKVs6l6OedDfA+9utJu3AfT8k02HlFxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNej6O9YtkSskslCk+vDkS734FE8wHwYDVR0j BBgwFoAUn9f/TT+zc0D6qMfucdHLnq8IWcEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjdkOWY4NTEtN2U3My00Mzg0LTk1MGUtOGJlOGUxNWZkM2VlLzAvOUZEN0ZGNEQz RkIzNzM0MEZBQThDN0VFNzFEMUNCOUVBRjA4NTlDMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RkQ3RkY0RDNGQjM3MzQwRkFBOEM3RUU3MUQxQ0I5RUFGMDg1 OUMxLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMxMzAzMzJlMzEzODJlMzczNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnEkwwDQYJKoZIhvcN AQELBQADggEBACGFy6HHfOC3DucdvPLH2PCH6ZGDnr3LlNoHRIF3Dcw4bdT64ZLq 8rQGqJdRfd5KP3UTm30WfkN4cOJahIzjf//NKdrCH23cjMSy2n2yAokKzfjy8X1Y fuQeAy2dcEHzTYbf6XbL197eSH2CEz01uV2dZNZ8Srst37QCd0Q3G2X6G6MnS4FH 0esvHnZtvyWcDluWpryfOPpUeydj17/VtU2iFk7GEOUPlL4rgs1qqBNDKXZmPaLu biOBoKm0LR/B/W9D3RDCeovnpgI8t93MMS4E7GXlq9io2VXZqO8lM1ORos+JvOob hEVY4+K1dZVTzUIirsBcVOVwE/ZRPyVsfpc= -----END CERTIFICATE-----Generated at Wed May 13 03:55:06 2026 by rpki-client