$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa File: 3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: DCKoKYnpwUxGTL6mTQPgNviVbzOSMo7Pt0/wG5p706Q= Subject key identifier: 4F:94:88:BA:19:06:B7:DD:9E:E8:97:8F:3D:C4:EA:80:0D:BA:37:11 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 1B2931CBFF425AFCA446950BBC6DE9A0AAA9CE98 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:55 +0000 ROA not before: Sun 03 May 2026 02:17:55 +0000 ROA not after: Sun 02 May 2027 02:22:55 +0000 asID: 58487 IP address blocks: 103.253.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:29:31:cb:ff:42:5a:fc:a4:46:95:0b:bc:6d:e9:a0:aa:a9:ce:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:55 2026 GMT Not After : May 2 02:22:55 2027 GMT Subject: CN=4F9488BA1906B7DD9EE8978F3DC4EA800DBA3711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ea:f1:00:68:ae:ea:c7:4d:28:4c:6a:05:99: b0:6c:19:45:e4:65:fb:30:df:bc:00:4c:0a:43:ef: dd:92:c4:08:d8:37:0f:a4:c8:58:a8:e2:26:a3:06: ad:23:26:38:34:e7:de:65:3f:38:33:2a:54:a0:25: 35:dd:53:aa:f4:78:94:b4:e3:54:2c:4d:e2:a1:96: a7:92:2b:20:ea:93:80:ad:04:c6:c6:d9:71:1d:76: 14:ed:74:9a:dd:68:31:d9:5a:eb:8d:f3:2e:a6:f6: 8e:f3:ad:bd:75:e2:c3:89:c5:2d:59:f0:7a:a8:39: c9:16:2c:df:33:1e:ae:f0:b5:5a:01:d8:3e:0f:7a: a0:a2:a9:5b:c7:85:61:9a:84:88:77:65:d8:f3:46: 9d:95:ed:36:dd:94:f6:e0:de:5f:c9:6e:71:af:27: f8:64:ce:a6:d5:71:25:81:82:45:0e:60:0d:f8:c8: d0:56:b7:a0:1e:dd:d7:39:21:ad:87:68:af:05:ad: 6c:95:75:9e:c2:87:c5:5a:ba:3e:49:7b:87:19:0f: a7:47:ee:77:af:5d:54:5a:b6:8a:02:06:f1:71:30: 5b:74:9f:57:ff:1d:d1:c1:9b:e5:e0:24:d0:c9:6d: 7c:d5:b0:fe:07:34:15:9b:7b:f6:5b:90:31:ee:80: 01:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:94:88:BA:19:06:B7:DD:9E:E8:97:8F:3D:C4:EA:80:0D:BA:37:11 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.212.0/23 Signature Algorithm: sha256WithRSAEncryption b1:db:60:30:2b:c1:70:c2:d3:7c:0b:71:fb:ae:7b:ff:80:50: 02:a0:bd:0f:b8:c7:6a:2a:05:9d:90:f9:af:af:12:88:8d:ff: 4d:37:41:e3:69:ae:65:d8:8f:fb:9b:5c:f5:0a:57:8e:ca:3b: 2f:73:e4:ff:82:31:74:8a:9c:2c:be:ba:ea:55:62:ef:7e:da: e2:89:da:71:86:b9:d6:3c:02:b5:52:9f:2d:40:f6:e0:05:fa: 26:5d:60:f9:81:a7:61:fe:33:7c:c6:33:db:44:bc:90:74:7c: 4e:b7:fe:f9:3f:ac:66:67:05:22:43:7c:fc:cd:f6:82:01:b2: ba:a2:fe:b6:d0:e9:42:df:0d:f8:fe:5d:9b:c6:59:00:10:37: 60:09:01:97:01:40:e1:85:10:82:13:f9:8e:d9:50:e4:8e:e4: 73:58:02:35:8f:3c:00:32:14:52:83:6e:c7:48:c4:e1:f2:90: 0a:b0:9a:02:5c:e6:51:b3:90:a4:68:0c:30:16:b2:a0:d9:9b: 98:f7:95:38:ba:80:8f:ce:f0:e4:6c:22:c9:01:75:74:55:ec: 04:a5:cc:06:eb:9f:d6:df:c4:73:2b:7d:59:7a:f6:e7:3a:1c: a8:d6:2a:64:ea:ee:f3:56:6e:82:97:8e:e0:97:85:96:76:35: 00:7d:17:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGykxy/9CWvykRpULvG3poKqpzpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTVaFw0yNzA1MDIwMjIyNTVaMDMxMTAvBgNV BAMTKDRGOTQ4OEJBMTkwNkI3REQ5RUU4OTc4RjNEQzRFQTgwMERCQTM3MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT6vEAaK7qx00oTGoFmbBsGUXk Zfsw37wATApD792SxAjYNw+kyFio4iajBq0jJjg0595lPzgzKlSgJTXdU6r0eJS0 41QsTeKhlqeSKyDqk4CtBMbG2XEddhTtdJrdaDHZWuuN8y6m9o7zrb114sOJxS1Z 8HqoOckWLN8zHq7wtVoB2D4PeqCiqVvHhWGahIh3ZdjzRp2V7TbdlPbg3l/JbnGv J/hkzqbVcSWBgkUOYA34yNBWt6Ae3dc5Ia2HaK8FrWyVdZ7Ch8Vauj5Je4cZD6dH 7nevXVRatooCBvFxMFt0n1f/HdHBm+XgJNDJbXzVsP4HNBWbe/ZbkDHugAF5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT5SIuhkGt92e6JePPcTqgA26NxEwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/3UMA0GCSqG SIb3DQEBCwUAA4IBAQCx22AwK8FwwtN8C3H7rnv/gFACoL0PuMdqKgWdkPmvrxKI jf9NN0Hjaa5l2I/7m1z1CleOyjsvc+T/gjF0ipwsvrrqVWLvftriidpxhrnWPAK1 Up8tQPbgBfomXWD5gadh/jN8xjPbRLyQdHxOt/75P6xmZwUiQ3z8zfaCAbK6ov62 0OlC3w34/l2bxlkAEDdgCQGXAUDhhRCCE/mO2VDkjuRzWAI1jzwAMhRSg27HSMTh 8pAKsJoCXOZRs5CkaAwwFrKg2ZuY95U4uoCPzvDkbCLJAXV0VewEpcwG65/W38Rz K31ZevbnOhyo1ipk6u7zVm6Cl47gl4WWdjUAfReN -----END CERTIFICATE-----Generated at Tue May 12 22:33:12 2026 by rpki-client