$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32322d3232203d3e203538343837.roa File: 3130332e3235332e3231322e302f32322d3232203d3e203538343837.roa (raw, json) Hash identifier: 1jCC2C8CSqcWHluuI8h5rB9IAj4BjYVy3yCbZsU32bo= Subject key identifier: 90:31:B7:D2:6F:B1:39:69:1D:18:ED:A3:8E:76:83:C9:9C:F3:3F:1C Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 48BC5E077252671B13DDF2C629FA3804F962A8A6 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32322d3232203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:50 +0000 ROA not before: Sun 03 May 2026 02:17:50 +0000 ROA not after: Sun 02 May 2027 02:22:50 +0000 asID: 58487 IP address blocks: 103.253.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:bc:5e:07:72:52:67:1b:13:dd:f2:c6:29:fa:38:04:f9:62:a8:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:50 2026 GMT Not After : May 2 02:22:50 2027 GMT Subject: CN=9031B7D26FB139691D18EDA38E7683C99CF33F1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d3:72:23:81:c3:59:4c:cf:24:d3:fc:61:e7: ae:75:7e:90:ad:83:a6:70:b3:82:52:a0:be:96:96: 0b:6f:17:17:13:cc:cc:73:09:0f:21:2d:a7:f3:de: f0:d5:c8:eb:28:4d:18:59:08:fc:f1:63:1c:8a:7d: fc:18:d7:7e:6f:a8:b9:21:91:e2:05:97:e7:41:38: 94:64:12:0e:25:a6:af:68:60:e1:41:48:67:72:c4: 33:96:ca:8c:0c:ca:bc:81:04:ea:5e:5e:98:55:18: ed:03:c4:26:c1:c2:bf:84:16:35:73:d6:74:b5:d7: 88:bf:22:f7:91:a3:db:06:6d:f5:04:ad:2d:3c:0d: 87:07:45:8d:8c:cc:4e:ec:26:0f:3b:12:79:a8:04: 15:61:0d:8f:c6:38:49:ae:3d:56:f5:21:04:c9:59: 82:a1:5c:b0:45:7b:78:77:b5:a8:88:05:33:3a:9a: c6:d8:c2:3d:e6:32:95:f1:f6:cb:56:1f:ad:4f:d1: 8b:91:4d:7d:33:ce:94:f1:4e:ec:61:ca:3d:59:6a: 0b:9d:c3:e1:49:27:dc:51:b8:4d:47:6b:19:eb:88: 24:3a:61:ca:0c:f9:85:7d:00:df:f0:bd:4f:25:d4: 2d:80:a7:68:b2:cf:e5:e8:80:6d:6b:38:93:bd:76: ea:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:31:B7:D2:6F:B1:39:69:1D:18:ED:A3:8E:76:83:C9:9C:F3:3F:1C X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32322d3232203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.212.0/22 Signature Algorithm: sha256WithRSAEncryption 40:17:6a:fe:b5:e4:ff:bf:44:76:ee:d6:6a:b4:24:b2:c6:72: d4:0c:e1:b3:de:6f:7d:51:10:8a:fb:97:26:79:44:cc:3b:db: 7e:4d:60:33:58:17:ad:f7:2d:e2:51:51:de:0a:bf:8f:7d:0e: 53:00:ca:98:dd:d1:9f:45:ea:27:bd:d9:ca:8a:5b:9d:fa:f7: 04:92:df:3f:2e:0a:62:77:a7:e9:5d:ba:c5:02:5b:5f:1f:02: 43:26:fc:c2:af:f9:da:7f:2b:dc:09:42:46:a5:26:7b:b8:50: fc:81:13:40:ac:a7:43:a1:c2:26:71:62:4f:7f:e1:a0:32:5a: 64:9a:3e:7d:4d:b4:46:27:9f:b0:b2:31:ba:8d:c5:8e:39:68: a8:91:20:0d:07:97:c3:76:74:fa:18:8a:49:83:ad:39:c3:5e: f7:a4:1d:48:e7:be:8d:d4:27:53:59:b4:a7:8e:dd:76:d8:13: 39:52:27:03:5b:3a:04:20:44:e9:03:86:52:6c:dd:46:3b:39: 08:4f:9f:a9:2c:14:8b:f3:48:6c:fc:bc:23:74:77:1e:93:b7: e1:5d:46:65:55:57:06:e0:07:eb:13:93:a4:f1:5d:5e:d5:4d: 25:10:68:13:a8:73:22:47:47:6d:12:52:cf:1f:07:b5:f0:07: 09:ac:42:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSLxeB3JSZxsT3fLGKfo4BPliqKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTBaFw0yNzA1MDIwMjIyNTBaMDMxMTAvBgNV BAMTKDkwMzFCN0QyNkZCMTM5NjkxRDE4RURBMzhFNzY4M0M5OUNGMzNGMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+03IjgcNZTM8k0/xh5651fpCt g6Zws4JSoL6WlgtvFxcTzMxzCQ8hLafz3vDVyOsoTRhZCPzxYxyKffwY135vqLkh keIFl+dBOJRkEg4lpq9oYOFBSGdyxDOWyowMyryBBOpeXphVGO0DxCbBwr+EFjVz 1nS114i/IveRo9sGbfUErS08DYcHRY2MzE7sJg87EnmoBBVhDY/GOEmuPVb1IQTJ WYKhXLBFe3h3taiIBTM6msbYwj3mMpXx9stWH61P0YuRTX0zzpTxTuxhyj1Zagud w+FJJ9xRuE1HaxnriCQ6YcoM+YV9AN/wvU8l1C2Ap2iyz+XogG1rOJO9duqDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkDG30m+xOWkdGO2jjnaDyZzzPxwwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/3UMA0GCSqG SIb3DQEBCwUAA4IBAQBAF2r+teT/v0R27tZqtCSyxnLUDOGz3m99URCK+5cmeUTM O9t+TWAzWBet9y3iUVHeCr+PfQ5TAMqY3dGfReonvdnKilud+vcEkt8/Lgpid6fp XbrFAltfHwJDJvzCr/nafyvcCUJGpSZ7uFD8gRNArKdDocImcWJPf+GgMlpkmj59 TbRGJ5+wsjG6jcWOOWiokSANB5fDdnT6GIpJg605w173pB1I576N1CdTWbSnjt12 2BM5UicDWzoEIETpA4ZSbN1GOzkIT5+pLBSL80hs/LwjdHcek7fhXUZlVVcG4Afr E5Ok8V1e1U0lEGgTqHMiR0dtElLPHwe18AcJrEKP -----END CERTIFICATE-----Generated at Tue May 12 22:31:56 2026 by rpki-client