$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ae6cd41-2e4c-4cc2-881e-bab44a884fd4/0/3130332e3133372e38322e302f32332d3234203d3e20313338383238.roa File: 3130332e3133372e38322e302f32332d3234203d3e20313338383238.roa (raw, json) Hash identifier: lRUuWcUd02IZlpdvWX9KHM1+gKLrQM+l0jBHsP+smvs= Subject key identifier: 5B:F4:9A:26:DA:84:C6:07:67:C0:B8:42:BF:C9:AF:13:0A:AC:F9:5D Certificate issuer: /CN=B677F5476721449C1CB3D8F67673665A0A038595 Certificate serial: 1A1004A80B762626DEFE8CD2087AD4FF3EE08F12 Authority key identifier: B6:77:F5:47:67:21:44:9C:1C:B3:D8:F6:76:73:66:5A:0A:03:85:95 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B677F5476721449C1CB3D8F67673665A0A038595.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ae6cd41-2e4c-4cc2-881e-bab44a884fd4/0/3130332e3133372e38322e302f32332d3234203d3e20313338383238.roa Signing time: Sun 03 May 2026 02:21:56 +0000 ROA not before: Sun 03 May 2026 02:16:56 +0000 ROA not after: Sun 02 May 2027 02:21:56 +0000 asID: 138828 IP address blocks: 103.137.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ae6cd41-2e4c-4cc2-881e-bab44a884fd4/0/B677F5476721449C1CB3D8F67673665A0A038595.crl rsync://rpki-rsync.idnic.net/repo/2ae6cd41-2e4c-4cc2-881e-bab44a884fd4/0/B677F5476721449C1CB3D8F67673665A0A038595.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B677F5476721449C1CB3D8F67673665A0A038595.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:10:04:a8:0b:76:26:26:de:fe:8c:d2:08:7a:d4:ff:3e:e0:8f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B677F5476721449C1CB3D8F67673665A0A038595 Validity Not Before: May 3 02:16:56 2026 GMT Not After : May 2 02:21:56 2027 GMT Subject: CN=5BF49A26DA84C60767C0B842BFC9AF130AACF95D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f6:26:20:84:5f:76:b7:53:9c:e5:57:3c:bb: 73:f0:1f:9d:f2:9b:a4:0c:4b:76:ad:dc:9b:37:e9: 3a:5f:04:5e:8e:78:6c:fd:ee:84:24:79:7d:87:ae: 2a:90:b6:af:0c:95:0d:26:7e:01:b2:7f:aa:f9:82: c7:d6:44:0a:ad:f2:80:f8:24:eb:e3:13:75:31:56: 8d:92:25:51:f6:59:be:2e:20:16:72:20:3a:93:de: 41:8a:e6:42:e5:9f:62:92:7c:c0:26:66:e9:d9:2b: a1:c4:32:17:fa:71:71:d5:1d:1e:eb:de:d8:5a:dd: e9:dd:6d:97:d3:95:19:da:25:ca:ac:22:23:15:97: be:ce:4f:c7:b3:69:37:e9:91:14:1d:d5:19:12:77: 86:21:d2:53:2a:d2:dc:5b:1e:74:c1:9c:e2:0b:b4: 6d:63:c5:e0:51:c6:c5:4f:a2:c7:2d:58:62:fe:e8: 89:9b:30:a0:09:29:98:1b:87:04:ad:71:95:2e:e5: 8d:aa:f3:f7:93:42:10:05:32:7d:13:2f:68:c6:cc: d5:0c:67:38:8f:02:9b:13:3a:f0:db:c4:ec:63:fb: 54:04:7d:a0:20:68:0a:f7:cf:39:c5:9f:20:d8:c6: 78:74:43:ff:b8:36:fc:85:37:07:48:18:b6:25:f4: 92:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F4:9A:26:DA:84:C6:07:67:C0:B8:42:BF:C9:AF:13:0A:AC:F9:5D X509v3 Authority Key Identifier: keyid:B6:77:F5:47:67:21:44:9C:1C:B3:D8:F6:76:73:66:5A:0A:03:85:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ae6cd41-2e4c-4cc2-881e-bab44a884fd4/0/B677F5476721449C1CB3D8F67673665A0A038595.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B677F5476721449C1CB3D8F67673665A0A038595.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ae6cd41-2e4c-4cc2-881e-bab44a884fd4/0/3130332e3133372e38322e302f32332d3234203d3e20313338383238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.82.0/23 Signature Algorithm: sha256WithRSAEncryption 71:0f:30:60:9f:0f:99:f5:9f:24:14:c1:b5:85:0e:bc:eb:c4: 1f:54:45:57:68:21:cc:0b:1b:03:ab:4a:77:9e:5a:32:ce:8c: e5:4e:2b:94:ec:ed:21:70:c4:7b:8e:af:ff:4a:61:ca:f0:83: e6:b9:b1:d9:b0:38:95:0d:7a:11:62:35:0e:aa:75:1b:eb:c7: 8c:e2:97:57:be:0f:aa:96:a0:11:38:a7:a5:76:4f:c2:dc:e9: 32:b2:3b:43:c8:c2:a7:ff:c5:18:63:52:6f:0e:6c:f4:c3:84: c1:3e:7c:9b:37:f4:39:20:84:05:9a:16:07:1a:a2:50:7a:c5: 56:38:83:8e:f8:7e:29:95:05:c7:71:81:ce:ba:87:5a:ac:a8: ef:99:05:f2:7a:d4:76:45:ee:7e:66:fe:14:a8:f1:de:73:19: af:30:a9:1c:94:a4:38:8f:7f:fb:b8:57:90:a9:a5:86:63:26: c0:aa:d1:43:70:a2:8d:8b:6c:01:85:ec:83:1e:80:b9:a7:16: 6e:39:b6:ad:aa:20:d5:fa:19:86:53:25:8d:80:88:e7:16:b7: 5e:1c:c4:6b:1a:9f:a2:f4:c0:81:3a:47:52:3a:b1:26:4c:9b: 0d:30:6f:c4:ee:ff:c1:a5:fb:b4:2e:96:83:28:1d:2e:42:8c: 9c:89:0a:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGhAEqAt2Jibe/ozSCHrU/z7gjxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY3N0Y1NDc2NzIxNDQ5QzFDQjNEOEY2NzY3MzY2NUEw QTAzODU5NTAeFw0yNjA1MDMwMjE2NTZaFw0yNzA1MDIwMjIxNTZaMDMxMTAvBgNV BAMTKDVCRjQ5QTI2REE4NEM2MDc2N0MwQjg0MkJGQzlBRjEzMEFBQ0Y5NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq9iYghF92t1Oc5Vc8u3PwH53y m6QMS3at3Js36TpfBF6OeGz97oQkeX2HriqQtq8MlQ0mfgGyf6r5gsfWRAqt8oD4 JOvjE3UxVo2SJVH2Wb4uIBZyIDqT3kGK5kLln2KSfMAmZunZK6HEMhf6cXHVHR7r 3tha3endbZfTlRnaJcqsIiMVl77OT8ezaTfpkRQd1RkSd4Yh0lMq0txbHnTBnOIL tG1jxeBRxsVPosctWGL+6ImbMKAJKZgbhwStcZUu5Y2q8/eTQhAFMn0TL2jGzNUM ZziPApsTOvDbxOxj+1QEfaAgaAr3zznFnyDYxnh0Q/+4NvyFNwdIGLYl9JK1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW/SaJtqExgdnwLhCv8mvEwqs+V0wHwYDVR0j BBgwFoAUtnf1R2chRJwcs9j2dnNmWgoDhZUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmFlNmNkNDEtMmU0Yy00Y2MyLTg4MWUtYmFiNDRhODg0ZmQ0LzAvQjY3N0Y1NDc2 NzIxNDQ5QzFDQjNEOEY2NzY3MzY2NUEwQTAzODU5NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNjc3RjU0NzY3MjE0NDlDMUNCM0Q4RjY3NjczNjY1QTBBMDM4 NTk1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhZTZjZDQxLTJlNGMtNGNjMi04 ODFlLWJhYjQ0YTg4NGZkNC8wLzMxMzAzMzJlMzEzMzM3MmUzODMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4lSMA0GCSqG SIb3DQEBCwUAA4IBAQBxDzBgnw+Z9Z8kFMG1hQ6868QfVEVXaCHMCxsDq0p3nloy zozlTiuU7O0hcMR7jq//SmHK8IPmubHZsDiVDXoRYjUOqnUb68eM4pdXvg+qlqAR OKeldk/C3OkysjtDyMKn/8UYY1JvDmz0w4TBPnybN/Q5IIQFmhYHGqJQesVWOIOO +H4plQXHcYHOuodarKjvmQXyetR2Re5+Zv4UqPHecxmvMKkclKQ4j3/7uFeQqaWG YybAqtFDcKKNi2wBheyDHoC5pxZuObatqiDV+hmGUyWNgIjnFrdeHMRrGp+i9MCB OkdSOrEmTJsNMG/E7v/Bpfu0LpaDKB0uQoyciQqU -----END CERTIFICATE-----Generated at Wed May 13 02:36:42 2026 by rpki-client