$ rpki-client -vvf rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa File: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (raw, json) Hash identifier: MxOD/5AuASqElHlVy5TYYuw3oWmINBBbMOjEzQsGf+o= Subject key identifier: DF:5A:1A:41:81:45:B0:50:C8:38:AE:5F:02:D0:8D:A2:5A:63:1D:1C Certificate issuer: /CN=387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8 Certificate serial: 78432DD8975F2F936D9856203830C586B8931159 Authority key identifier: 38:7D:A9:5F:F9:9D:3F:CB:2B:BB:D2:F3:B2:29:D9:F3:37:2D:D3:B8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa Signing time: Sun 03 May 2026 02:22:14 +0000 ROA not before: Sun 03 May 2026 02:17:14 +0000 ROA not after: Sun 02 May 2027 02:22:14 +0000 asID: 151575 IP address blocks: 103.99.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.crl rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:43:2d:d8:97:5f:2f:93:6d:98:56:20:38:30:c5:86:b8:93:11:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8 Validity Not Before: May 3 02:17:14 2026 GMT Not After : May 2 02:22:14 2027 GMT Subject: CN=DF5A1A418145B050C838AE5F02D08DA25A631D1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8d:b0:b1:c6:08:f3:37:d9:66:ec:70:09:5e: a3:51:57:7b:b0:66:96:f7:ed:cf:9c:ab:61:9d:ff: 2e:ab:a7:68:51:d4:2d:48:63:5e:bd:c7:29:8e:cd: c9:5f:fb:56:43:57:04:61:72:3a:1d:a6:94:01:da: ad:08:8f:07:ce:24:a4:4b:da:4f:be:42:0c:8e:d6: 2f:12:59:08:bf:98:e4:ff:be:a8:bf:d2:a5:98:6c: 30:2f:c6:fd:a1:d5:89:13:df:75:2f:05:49:24:ba: ae:72:85:8b:54:70:37:8e:93:2a:ac:29:06:09:b6: 7b:9e:88:55:4e:48:e7:92:89:54:de:e0:0a:80:66: 90:b1:07:9a:e9:c2:cf:a3:a2:0d:b4:3a:e8:31:53: 47:0b:b5:1d:9a:a3:11:d9:0b:e3:bc:ae:53:ed:b6: 63:04:5d:7a:94:f9:47:28:7b:1a:cb:25:b9:04:49: 61:76:02:4e:b8:5c:c2:85:45:18:c8:1b:5c:c2:20: 78:ed:ef:d4:e0:c6:e1:15:2e:50:86:e8:88:c4:05: 06:4c:a4:c6:b8:76:45:3f:72:2d:7e:3a:70:67:0a: 46:7e:29:0f:7e:34:ea:ea:75:a4:98:05:7b:f3:44: eb:94:fe:4d:3b:a4:df:b7:ad:6f:03:65:0c:d4:0d: 52:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:5A:1A:41:81:45:B0:50:C8:38:AE:5F:02:D0:8D:A2:5A:63:1D:1C X509v3 Authority Key Identifier: keyid:38:7D:A9:5F:F9:9D:3F:CB:2B:BB:D2:F3:B2:29:D9:F3:37:2D:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/387DA95FF99D3FCB2BBBD2F3B229D9F3372DD3B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.136.0/23 Signature Algorithm: sha256WithRSAEncryption 41:72:1f:5d:30:20:6e:1e:41:d8:a1:a9:79:0c:07:84:e5:3c: 6a:f9:5d:e7:47:52:75:27:bb:2e:7b:0e:65:fe:78:d7:61:d1: dd:4a:a6:87:5d:c5:1b:53:90:3f:94:35:06:6e:2f:7e:28:12: 0a:45:ff:43:14:f6:15:d1:08:3a:9e:4b:a5:53:70:85:e1:30: 0e:10:eb:8f:32:6a:b0:fa:ef:85:0e:ad:a6:9f:ea:7d:06:0b: 9a:70:d6:32:39:92:ae:5b:43:1a:2c:a0:c1:8f:70:9c:08:ca: 57:b8:ef:bf:b8:3c:52:d7:e5:08:c5:e8:c1:37:20:3c:10:5b: 84:35:c5:30:f2:2e:97:88:f3:79:4a:9b:0a:3e:d3:cf:21:74: ae:8b:42:6a:07:a2:1c:9d:62:0d:d3:7d:63:9c:84:e6:1e:2a: b2:fb:32:57:5a:2e:62:98:04:8e:78:73:e9:ea:b8:9f:87:6f: 7c:03:80:02:49:a2:cf:84:a0:99:1d:83:58:ba:54:3b:b3:71: ef:74:7a:03:d3:b0:98:62:23:50:df:64:5e:02:7a:1e:f0:61: 76:b6:16:60:cb:4a:ed:4e:5a:08:58:c0:ea:69:2b:d2:62:3d: 0c:12:a7:c3:52:31:5a:bc:f0:88:ab:7e:e3:bc:6e:d8:2c:42: 66:eb:3a:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeEMt2JdfL5NtmFYgODDFhriTEVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg3REE5NUZGOTlEM0ZDQjJCQkJEMkYzQjIyOUQ5RjMz NzJERDNCODAeFw0yNjA1MDMwMjE3MTRaFw0yNzA1MDIwMjIyMTRaMDMxMTAvBgNV BAMTKERGNUExQTQxODE0NUIwNTBDODM4QUU1RjAyRDA4REEyNUE2MzFEMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUjbCxxgjzN9lm7HAJXqNRV3uw Zpb37c+cq2Gd/y6rp2hR1C1IY169xymOzclf+1ZDVwRhcjodppQB2q0IjwfOJKRL 2k++QgyO1i8SWQi/mOT/vqi/0qWYbDAvxv2h1YkT33UvBUkkuq5yhYtUcDeOkyqs KQYJtnueiFVOSOeSiVTe4AqAZpCxB5rpws+jog20OugxU0cLtR2aoxHZC+O8rlPt tmMEXXqU+UcoexrLJbkESWF2Ak64XMKFRRjIG1zCIHjt79TgxuEVLlCG6IjEBQZM pMa4dkU/ci1+OnBnCkZ+KQ9+NOrqdaSYBXvzROuU/k07pN+3rW8DZQzUDVIvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU31oaQYFFsFDIOK5fAtCNolpjHRwwHwYDVR0j BBgwFoAUOH2pX/mdP8sru9LzsinZ8zct07gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmMyODBhZjMtYWExZC00MjcxLThjMDYtYTNmYTI4ODk4NDI2LzAvMzg3REE5NUZG OTlEM0ZDQjJCQkJEMkYzQjIyOUQ5RjMzNzJERDNCOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zODdEQTk1RkY5OUQzRkNCMkJCQkQyRjNCMjI5RDlGMzM3MkRE M0I4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMxMzAzMzJlMzkzOTJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2OIMA0GCSqG SIb3DQEBCwUAA4IBAQBBch9dMCBuHkHYoal5DAeE5Txq+V3nR1J1J7suew5l/njX YdHdSqaHXcUbU5A/lDUGbi9+KBIKRf9DFPYV0Qg6nkulU3CF4TAOEOuPMmqw+u+F Dq2mn+p9BguacNYyOZKuW0MaLKDBj3CcCMpXuO+/uDxS1+UIxejBNyA8EFuENcUw 8i6XiPN5SpsKPtPPIXSui0JqB6IcnWIN031jnITmHiqy+zJXWi5imASOeHPp6rif h298A4ACSaLPhKCZHYNYulQ7s3HvdHoD07CYYiNQ32ReAnoe8GF2thZgy0rtTloI WMDqaSvSYj0MEqfDUjFavPCIq37jvG7YLEJm6zph -----END CERTIFICATE-----Generated at Wed May 13 04:26:35 2026 by rpki-client