$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa File: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (raw, json) Hash identifier: Nq+2Vf2Sjui286xvlwdV6qhYVII60AjIdtuhfdXAxbY= Subject key identifier: 9F:02:B9:19:DE:1E:F7:0A:74:28:34:1E:51:B4:42:A5:97:C5:90:4D Certificate issuer: /CN=EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479 Certificate serial: 25F00347B93209C2C7380F7D519CE2ECB532F33A Authority key identifier: EB:0B:E2:F2:F4:9F:0E:2E:D0:DC:A4:50:CC:7A:70:E3:7E:6C:44:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa Signing time: Sun 03 May 2026 02:21:44 +0000 ROA not before: Sun 03 May 2026 02:16:44 +0000 ROA not after: Sun 02 May 2027 02:21:44 +0000 asID: 133815 IP address blocks: 103.52.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.crl rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f0:03:47:b9:32:09:c2:c7:38:0f:7d:51:9c:e2:ec:b5:32:f3:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479 Validity Not Before: May 3 02:16:44 2026 GMT Not After : May 2 02:21:44 2027 GMT Subject: CN=9F02B919DE1EF70A7428341E51B442A597C5904D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:60:54:bb:34:0d:48:77:5c:fe:69:0c:da:70: a8:7c:74:fd:0f:da:a7:62:48:a2:82:f1:7f:3b:f3: 64:dc:dc:68:06:99:21:44:e0:93:0c:02:91:23:c2: 31:be:7a:af:0b:dd:39:71:da:6d:0e:d9:02:bd:16: b1:27:a9:67:ba:58:ec:97:57:37:75:14:46:ad:63: cf:7e:52:a0:d2:88:e8:31:f8:75:db:28:36:94:03: 06:1d:09:4b:e1:97:93:03:47:77:ba:fc:dd:2f:9f: 7f:9f:77:09:0d:7b:92:cb:70:8c:23:f2:d2:ff:aa: 51:76:9b:ad:6a:d2:3e:97:73:a3:6b:ba:97:08:c9: 71:a9:36:26:29:0f:69:02:c1:81:82:4f:73:f9:76: c7:f1:5a:1b:fb:6f:17:04:c9:be:84:fc:8a:93:00: 20:bc:ad:27:2b:79:e4:96:d3:aa:3c:bc:2f:e8:6e: 09:f0:9f:8f:5a:11:9b:51:d6:00:54:7f:f3:95:e7: 6a:22:52:63:ea:ba:30:7a:b1:25:ec:00:b9:89:a0: b0:9c:8f:84:7b:47:b3:03:00:86:0b:c9:d5:a4:7f: 28:44:01:34:a2:48:37:36:f9:3e:e4:b9:f2:e0:44: 5d:1f:d5:54:19:88:32:2b:d0:b3:21:95:9f:94:c2: 38:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:02:B9:19:DE:1E:F7:0A:74:28:34:1E:51:B4:42:A5:97:C5:90:4D X509v3 Authority Key Identifier: keyid:EB:0B:E2:F2:F4:9F:0E:2E:D0:DC:A4:50:CC:7A:70:E3:7E:6C:44:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.44.0/22 Signature Algorithm: sha256WithRSAEncryption a0:b3:59:30:cf:4d:c8:45:ae:bb:d7:9a:c1:d9:3f:79:3e:91: 1f:93:6a:28:fe:de:d7:52:cf:82:a1:8e:ef:39:95:88:fe:e9: 74:7a:e9:1f:ab:9a:da:96:12:cd:d4:e4:47:9d:f4:1c:e9:e3: da:8f:49:9f:1f:f2:df:8b:68:c7:a1:c4:c0:ff:7f:b6:8f:bc: 88:9e:0f:9f:a3:d3:7d:c5:10:dd:cc:a8:9c:e5:10:fd:03:36: 02:a7:41:e9:50:13:a5:75:91:e8:d8:68:07:41:8c:3d:52:e7: ae:54:ab:cb:89:18:0c:24:ee:33:ff:4b:fc:3c:1d:67:91:1e: 12:5f:a9:9d:56:90:59:e8:c3:b5:61:15:8c:12:80:05:bb:f6: e1:f7:38:0d:e7:d0:05:82:ce:6a:d6:88:83:14:b9:c5:81:fa: 12:81:3b:ff:70:a0:80:18:3f:4d:2f:01:1c:2f:28:19:48:19: ff:74:1c:d3:72:d8:e5:d5:4b:99:91:7d:70:8b:c8:a4:56:50: 6c:a8:2b:d4:ee:c3:99:3b:1d:3b:c3:62:4b:9a:54:89:89:c9: 30:ee:fe:bc:be:ea:21:fe:07:5d:5b:30:64:bb:71:dd:52:1c: 8e:4b:49:63:f5:a9:67:c1:6a:ea:40:dd:27:de:4f:9f:1a:7c: 8c:9b:bf:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJfADR7kyCcLHOA99UZzi7LUy8zowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUIwQkUyRjJGNDlGMEUyRUQwRENBNDUwQ0M3QTcwRTM3 RTZDNDQ3OTAeFw0yNjA1MDMwMjE2NDRaFw0yNzA1MDIwMjIxNDRaMDMxMTAvBgNV BAMTKDlGMDJCOTE5REUxRUY3MEE3NDI4MzQxRTUxQjQ0MkE1OTdDNTkwNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZYFS7NA1Id1z+aQzacKh8dP0P 2qdiSKKC8X8782Tc3GgGmSFE4JMMApEjwjG+eq8L3Tlx2m0O2QK9FrEnqWe6WOyX Vzd1FEatY89+UqDSiOgx+HXbKDaUAwYdCUvhl5MDR3e6/N0vn3+fdwkNe5LLcIwj 8tL/qlF2m61q0j6Xc6NrupcIyXGpNiYpD2kCwYGCT3P5dsfxWhv7bxcEyb6E/IqT ACC8rScreeSW06o8vC/obgnwn49aEZtR1gBUf/OV52oiUmPqujB6sSXsALmJoLCc j4R7R7MDAIYLydWkfyhEATSiSDc2+T7kufLgRF0f1VQZiDIr0LMhlZ+UwjhdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnwK5Gd4e9wp0KDQeUbRCpZfFkE0wHwYDVR0j BBgwFoAU6wvi8vSfDi7Q3KRQzHpw435sRHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmEzYWU0ODUtYTY1OC00YzVjLWFiZTItMWU3ZmQ4YjAzOGEwLzAvRUIwQkUyRjJG NDlGMEUyRUQwRENBNDUwQ0M3QTcwRTM3RTZDNDQ3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQjBCRTJGMkY0OUYwRTJFRDBEQ0E0NTBDQzdBNzBFMzdFNkM0 NDc5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMxMzAzMzJlMzUzMjJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc0LDANBgkqhkiG 9w0BAQsFAAOCAQEAoLNZMM9NyEWuu9eawdk/eT6RH5NqKP7e11LPgqGO7zmViP7p dHrpH6ua2pYSzdTkR530HOnj2o9Jnx/y34tox6HEwP9/to+8iJ4Pn6PTfcUQ3cyo nOUQ/QM2AqdB6VATpXWR6NhoB0GMPVLnrlSry4kYDCTuM/9L/DwdZ5EeEl+pnVaQ WejDtWEVjBKABbv24fc4DefQBYLOataIgxS5xYH6EoE7/3CggBg/TS8BHC8oGUgZ /3Qc03LY5dVLmZF9cIvIpFZQbKgr1O7DmTsdO8NiS5pUiYnJMO7+vL7qIf4HXVsw ZLtx3VIcjktJY/WpZ8Fq6kDdJ95Pnxp8jJu/kA== -----END CERTIFICATE-----Generated at Wed May 13 11:04:02 2026 by rpki-client