$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa File: 3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa (raw, json) Hash identifier: 20fCkguAbqvRTSySsq+/45gChYsBUHF6oH8avUHMm98= Subject key identifier: 98:18:0D:5A:10:1D:21:AE:60:BF:AA:1A:16:73:7E:A7:6B:39:F1:E6 Certificate issuer: /CN=297248FCECD7534E50147B8F048420E637A10C3B Certificate serial: 7032824D6969F0AD6C96B4DC0CBB0FBECABE6042 Authority key identifier: 29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa Signing time: Sun 03 May 2026 02:22:41 +0000 ROA not before: Sun 03 May 2026 02:17:41 +0000 ROA not after: Sun 02 May 2027 02:22:41 +0000 asID: 134658 IP address blocks: 103.210.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:32:82:4d:69:69:f0:ad:6c:96:b4:dc:0c:bb:0f:be:ca:be:60:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297248FCECD7534E50147B8F048420E637A10C3B Validity Not Before: May 3 02:17:41 2026 GMT Not After : May 2 02:22:41 2027 GMT Subject: CN=98180D5A101D21AE60BFAA1A16737EA76B39F1E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d4:aa:2d:c0:1b:93:77:5b:a6:1a:e0:b3:2f: ee:61:84:9f:a0:ae:13:cc:c7:96:ec:dd:23:7a:59: ad:6b:55:93:38:99:e7:c8:6f:37:db:ca:e5:9a:3c: b2:ba:10:5b:c3:0c:29:e4:65:a7:b5:07:a2:32:9a: 3e:6f:da:64:c3:e7:5a:d1:50:3e:6d:95:e2:8b:4a: 34:e1:1b:66:8d:1a:bc:54:f6:d2:7d:4a:c7:a1:3f: 26:65:c3:d5:a0:40:5e:7d:21:62:a1:8f:76:34:d6: f3:77:70:f1:c6:db:23:43:b1:b4:0f:bf:42:85:ee: d0:56:45:98:f3:0e:fc:88:0f:42:8c:ab:27:5c:80: 6d:76:06:7f:79:a6:de:1b:62:45:aa:1e:27:a5:39: 8b:bd:26:d3:bd:ef:3b:c6:84:25:74:0b:4b:22:44: cc:ce:59:90:bb:99:60:f9:83:24:9a:c8:e6:9e:76: 38:ac:04:69:79:bc:67:ca:7b:0f:72:d5:9e:0d:ee: c4:7d:86:f8:3b:ba:eb:66:a1:ea:87:be:65:43:7c: 4f:d7:32:db:bc:0b:05:46:45:7b:21:1d:9d:d1:c7: 57:55:00:91:e2:aa:3a:af:18:4a:4b:e1:d3:22:d7: 9e:3a:90:a8:ed:38:03:ef:ce:36:69:d6:8f:8b:5b: 8b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:18:0D:5A:10:1D:21:AE:60:BF:AA:1A:16:73:7E:A7:6B:39:F1:E6 X509v3 Authority Key Identifier: keyid:29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.120.0/22 Signature Algorithm: sha256WithRSAEncryption 28:0a:9f:51:82:55:75:e6:88:32:ca:8e:b0:3f:89:bf:f5:95: e3:ff:56:47:7a:93:8e:e4:45:83:aa:b5:8a:14:c7:b3:4a:37: a0:36:f5:81:04:49:48:3c:67:be:fb:4a:0d:95:70:0c:c1:65: a7:86:c7:3e:b8:af:7e:c8:e2:71:69:3f:b2:c5:cb:ca:5f:d2: c2:29:9a:f1:40:75:46:15:2c:4a:d6:13:3c:07:51:6e:04:e1: 0d:ae:f3:7c:2a:15:a4:a3:ff:47:68:76:14:a0:6f:bd:74:b3: 23:0a:4e:ae:b9:fc:c9:7c:05:57:0f:f2:5e:00:e4:19:8c:af: 5d:98:d0:e7:bb:68:de:bd:18:0f:bf:10:de:36:03:cd:5f:5a: 03:30:29:1e:a0:c9:80:32:c5:ce:77:2b:00:52:09:30:fe:40: 93:95:62:41:fe:68:1e:8b:1d:ef:ca:97:cf:79:12:8b:82:33: fa:e6:c1:95:57:6c:be:c9:be:90:ee:d9:ac:5a:15:60:95:77: 70:93:cd:6e:c4:45:ad:f9:3f:f9:80:89:10:bf:e5:3f:3c:b1: 69:84:e3:75:8b:05:eb:c1:71:00:c6:70:81:f6:9d:05:85:e4: 47:3d:df:8a:34:cd:b5:9b:14:90:cf:a9:69:ca:a4:e3:f5:f0: c5:4d:6b:30 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcDKCTWlp8K1slrTcDLsPvsq+YEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3MjQ4RkNFQ0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYz N0ExMEMzQjAeFw0yNjA1MDMwMjE3NDFaFw0yNzA1MDIwMjIyNDFaMDMxMTAvBgNV BAMTKDk4MTgwRDVBMTAxRDIxQUU2MEJGQUExQTE2NzM3RUE3NkIzOUYxRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU1KotwBuTd1umGuCzL+5hhJ+g rhPMx5bs3SN6Wa1rVZM4mefIbzfbyuWaPLK6EFvDDCnkZae1B6Iymj5v2mTD51rR UD5tleKLSjThG2aNGrxU9tJ9SsehPyZlw9WgQF59IWKhj3Y01vN3cPHG2yNDsbQP v0KF7tBWRZjzDvyID0KMqydcgG12Bn95pt4bYkWqHielOYu9JtO97zvGhCV0C0si RMzOWZC7mWD5gySayOaedjisBGl5vGfKew9y1Z4N7sR9hvg7uutmoeqHvmVDfE/X Mtu8CwVGRXshHZ3Rx1dVAJHiqjqvGEpL4dMi1546kKjtOAPvzjZp1o+LW4u/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmBgNWhAdIa5gv6oaFnN+p2s58eYwHwYDVR0j BBgwFoAUKXJI/OzXU05QFHuPBIQg5jehDDswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ0ODczNjAtODczNS00MWQ3LTk3YTgtZGJiMzRkNzllZmY0LzAvMjk3MjQ4RkNF Q0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYzN0ExMEMzQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOTcyNDhGQ0VDRDc1MzRFNTAxNDdCOEYwNDg0MjBFNjM3QTEw QzNCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0ngwDQYJ KoZIhvcNAQELBQADggEBACgKn1GCVXXmiDLKjrA/ib/1leP/Vkd6k47kRYOqtYoU x7NKN6A29YEESUg8Z777Sg2VcAzBZaeGxz64r37I4nFpP7LFy8pf0sIpmvFAdUYV LErWEzwHUW4E4Q2u83wqFaSj/0dodhSgb710syMKTq65/Ml8BVcP8l4A5BmMr12Y 0Oe7aN69GA+/EN42A81fWgMwKR6gyYAyxc53KwBSCTD+QJOVYkH+aB6LHe/Kl895 EouCM/rmwZVXbL7JvpDu2axaFWCVd3CTzW7ERa35P/mAiRC/5T88sWmE43WLBevB cQDGcIH2nQWF5Ec934o0zbWbFJDPqWnKpOP18MVNazA= -----END CERTIFICATE-----Generated at Wed May 13 04:03:30 2026 by rpki-client