$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35372e302f32342d3234203d3e20313332363337.roa File: 3130332e31392e35372e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: Qy2f1Th+IuSFin6EsJuwgkXChR1+TY6gnLgDe+ouGOE= Subject key identifier: 40:2D:8F:DD:6F:39:24:B8:46:2E:86:78:4F:4C:A7:60:DD:86:B7:1F Certificate issuer: /CN=2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835 Certificate serial: 516071093BD6C89C261A3160161F67CFD95F1B64 Authority key identifier: 2D:4E:F7:6F:F5:F1:DE:08:B9:FB:7C:AE:D4:9A:F7:AD:4C:60:18:35 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35372e302f32342d3234203d3e20313332363337.roa Signing time: Sun 03 May 2026 02:22:34 +0000 ROA not before: Sun 03 May 2026 02:17:34 +0000 ROA not after: Sun 02 May 2027 02:22:34 +0000 asID: 132637 IP address blocks: 103.19.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.crl rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:60:71:09:3b:d6:c8:9c:26:1a:31:60:16:1f:67:cf:d9:5f:1b:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835 Validity Not Before: May 3 02:17:34 2026 GMT Not After : May 2 02:22:34 2027 GMT Subject: CN=402D8FDD6F3924B8462E86784F4CA760DD86B71F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e3:e4:be:7a:15:36:d5:64:b4:5c:48:70:23: ad:0c:4b:b8:f4:55:56:ff:69:d9:03:4e:d0:9d:7c: 97:d7:7a:65:81:bc:da:44:b5:09:44:01:35:75:19: 44:09:0b:f9:96:5b:31:d1:f6:99:7b:9d:b8:eb:ab: 6d:fa:b0:50:54:ef:91:34:ea:5e:d9:18:2e:22:f0: 23:8b:b4:03:c7:69:e3:7f:6a:96:91:29:35:e9:9c: f2:94:40:e8:35:4b:8f:d2:13:53:e2:43:3a:99:b9: 56:bb:05:fa:8e:65:ba:ff:f4:df:d2:23:03:38:e1: d1:08:85:52:34:61:35:2d:0b:02:aa:e3:1d:21:0e: 22:37:e9:d7:76:1b:2e:88:fd:27:82:77:8a:c4:66: b2:49:01:34:6b:0c:40:da:8e:c2:24:a3:48:58:77: ea:3b:9d:cf:51:28:c1:77:a4:05:c4:39:6e:2c:52: 71:70:05:e6:23:df:8b:87:a7:46:2f:8e:d8:24:11: 46:c6:0a:f3:13:1c:82:91:62:1c:49:08:8c:d3:bc: 21:7c:2c:60:33:2b:55:88:d9:c5:b0:74:3b:32:44: 1f:7e:30:42:d2:62:aa:85:14:2f:4b:3a:ef:fe:45: f2:05:31:67:4d:e9:00:6b:a9:27:45:0e:27:a4:ce: c8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2D:8F:DD:6F:39:24:B8:46:2E:86:78:4F:4C:A7:60:DD:86:B7:1F X509v3 Authority Key Identifier: keyid:2D:4E:F7:6F:F5:F1:DE:08:B9:FB:7C:AE:D4:9A:F7:AD:4C:60:18:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35372e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.57.0/24 Signature Algorithm: sha256WithRSAEncryption 38:45:1a:aa:25:2b:42:45:2c:00:9e:b4:dc:ac:9d:0a:95:fd: d5:fa:e7:8e:bf:e5:4e:98:fe:91:90:63:f7:6d:68:97:5b:bc: 9e:33:cf:ff:25:ce:dd:4f:b2:cb:37:ab:97:55:82:ba:a8:c7: f3:7e:fa:69:b9:f4:b0:c7:02:67:4f:5f:60:48:51:fc:f1:69: db:6a:d8:dc:c8:67:69:45:48:b4:7e:5f:d3:d8:9f:51:e8:dc: 48:80:43:a4:a7:f4:5c:1d:1c:36:0f:be:83:9f:b4:67:4b:a2: aa:d6:87:49:41:fd:06:19:67:f5:1b:5b:d0:af:41:77:15:07: d9:06:58:67:f5:00:a9:48:0b:eb:79:c5:fd:5b:0f:26:38:c1: 32:e1:53:95:bc:a4:ea:37:16:87:90:f3:4d:a4:5e:f0:ba:0f: 6c:72:8b:b2:f6:88:1f:ce:f7:ee:b7:b9:e3:c2:e9:ed:ed:d7: 2a:da:12:4e:49:38:90:1d:3c:7b:e5:65:65:58:4b:8e:6c:b2: 9f:41:4e:9f:4c:bf:01:38:de:69:f3:e5:72:f0:56:18:08:77: ad:23:7a:0b:17:ba:3f:c2:9b:77:d8:fc:e0:5b:ff:c3:7e:14: f2:e8:ac:85:ec:34:27:31:c8:bf:d1:13:3a:a3:78:83:9f:fe: 44:99:11:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUWBxCTvWyJwmGjFgFh9nz9lfG2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ0RUY3NkZGNUYxREUwOEI5RkI3Q0FFRDQ5QUY3QUQ0 QzYwMTgzNTAeFw0yNjA1MDMwMjE3MzRaFw0yNzA1MDIwMjIyMzRaMDMxMTAvBgNV BAMTKDQwMkQ4RkRENkYzOTI0Qjg0NjJFODY3ODRGNENBNzYwREQ4NkI3MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ4+S+ehU21WS0XEhwI60MS7j0 VVb/adkDTtCdfJfXemWBvNpEtQlEATV1GUQJC/mWWzHR9pl7nbjrq236sFBU75E0 6l7ZGC4i8COLtAPHaeN/apaRKTXpnPKUQOg1S4/SE1PiQzqZuVa7BfqOZbr/9N/S IwM44dEIhVI0YTUtCwKq4x0hDiI36dd2Gy6I/SeCd4rEZrJJATRrDEDajsIko0hY d+o7nc9RKMF3pAXEOW4sUnFwBeYj34uHp0YvjtgkEUbGCvMTHIKRYhxJCIzTvCF8 LGAzK1WI2cWwdDsyRB9+MELSYqqFFC9LOu/+RfIFMWdN6QBrqSdFDiekzsjXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQC2P3W85JLhGLoZ4T0ynYN2Gtx8wHwYDVR0j BBgwFoAULU73b/Xx3gi5+3yu1Jr3rUxgGDUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQwOTI3ZTYtOGEwYS00ZmE3LTg5NjktOWZiOWQ2OTQzOTdjLzAvMkQ0RUY3NkZG NUYxREUwOEI5RkI3Q0FFRDQ5QUY3QUQ0QzYwMTgzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRDRFRjc2RkY1RjFERTA4QjlGQjdDQUVENDlBRjdBRDRDNjAx ODM1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04 OTY5LTlmYjlkNjk0Mzk3Yy8wLzMxMzAzMzJlMzEzOTJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTOTANBgkqhkiG 9w0BAQsFAAOCAQEAOEUaqiUrQkUsAJ603KydCpX91frnjr/lTpj+kZBj921ol1u8 njPP/yXO3U+yyzerl1WCuqjH8376abn0sMcCZ09fYEhR/PFp22rY3MhnaUVItH5f 09ifUejcSIBDpKf0XB0cNg++g5+0Z0uiqtaHSUH9Bhln9Rtb0K9BdxUH2QZYZ/UA qUgL63nF/VsPJjjBMuFTlbyk6jcWh5DzTaRe8LoPbHKLsvaIH8737re548Lp7e3X KtoSTkk4kB08e+VlZVhLjmyyn0FOn0y/ATjeafPlcvBWGAh3rSN6Cxe6P8Kbd9j8 4Fv/w34U8uishew0JzHIv9ETOqN4g5/+RJkRSw== -----END CERTIFICATE-----Generated at Wed May 13 02:19:55 2026 by rpki-client