$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa File: 3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: lLp8Y/uyg9R/4Ak9RdIJf00LqFNskbQ2V+gJZBz02Jg= Subject key identifier: 24:09:6C:DA:F0:08:D0:21:F5:90:54:47:A8:FC:F7:66:8D:61:0D:21 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 669D829C99209D8CDF4DAA7A71621722DB641709 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:54 +0000 ROA not before: Sun 03 May 2026 02:17:54 +0000 ROA not after: Sun 02 May 2027 02:22:54 +0000 asID: 58487 IP address blocks: 103.253.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:9d:82:9c:99:20:9d:8c:df:4d:aa:7a:71:62:17:22:db:64:17:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:54 2026 GMT Not After : May 2 02:22:54 2027 GMT Subject: CN=24096CDAF008D021F5905447A8FCF7668D610D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:10:76:18:12:a4:86:8a:e9:94:be:66:04:36: 12:58:19:f5:ef:22:ac:91:5a:9a:64:9a:05:25:a5: 9c:92:72:82:37:ec:60:64:3c:b4:3c:e2:d2:29:2a: d2:b0:29:8d:92:4c:4d:a6:53:da:f2:4c:9e:b3:c4: aa:8a:64:23:1f:93:ea:79:20:33:c7:bd:ce:8a:0c: ad:c8:cf:38:97:72:24:0f:43:d8:6a:dc:9c:7a:7a: f9:63:61:5d:6c:b8:5d:81:5d:eb:1f:df:83:a2:7a: 03:ec:9e:7d:18:62:a0:dc:5f:a0:bb:13:c8:07:55: 0c:02:b3:14:9c:6e:07:84:7f:73:f8:54:6c:b6:45: 73:eb:6d:0e:b6:43:82:c1:09:6a:36:ce:b1:05:f9: 5f:b0:e1:71:4c:9a:8e:0c:c5:40:03:fb:c2:09:9f: 5f:58:96:24:ba:6c:c7:4e:cb:01:2e:62:06:39:a1: 04:13:c7:1f:ec:52:e3:d6:83:f6:8b:4c:18:e8:7a: 49:91:76:eb:f5:c6:d8:eb:8e:9d:25:87:4a:e3:0e: 34:b2:4a:7b:2c:6d:3b:70:03:43:63:8c:e9:0a:0b: 64:35:eb:5e:eb:4a:36:2d:55:c2:c7:f1:b2:1d:2c: 67:81:af:24:23:8d:50:61:55:78:d3:a6:d9:3e:f1: cf:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:09:6C:DA:F0:08:D0:21:F5:90:54:47:A8:FC:F7:66:8D:61:0D:21 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.214.0/23 Signature Algorithm: sha256WithRSAEncryption a4:8d:da:f2:ea:e5:62:e3:47:cb:fb:fb:5f:e5:1e:2c:06:b7: 7e:c4:12:70:3c:df:9f:69:d9:7b:a2:ca:bb:5e:a3:bf:36:62: bd:e6:94:37:62:4b:4a:f5:77:cd:67:2c:38:02:31:90:3f:cc: b8:10:47:de:b5:3a:9b:cb:39:ed:ca:e4:3a:8c:16:86:19:41: 13:32:af:26:a2:6d:00:a3:8e:35:f2:fc:08:63:8c:b5:67:85: fa:8b:bf:49:42:1d:66:1e:1c:1e:0b:24:48:b8:de:93:22:3a: 54:26:f5:02:2f:3b:68:9b:0b:22:6d:dc:46:fa:cf:1b:e2:47: ca:73:4a:0a:69:23:b4:85:a3:ae:b0:a7:e8:e2:d3:b6:c3:fe: ef:88:f5:83:e7:73:c2:c8:22:c9:f7:e0:bb:98:9b:e0:62:a1: 36:25:51:79:28:8a:5c:c1:17:60:3d:d2:a3:e6:c0:a8:24:96: 73:bb:62:a8:df:93:31:ef:10:93:91:ff:d1:54:9b:ce:40:3b: 5c:c6:9e:7a:b4:cf:78:9d:7e:ed:50:02:ca:ad:43:ec:27:51: 13:0b:10:e6:a5:7d:86:4e:14:a1:d6:95:c9:23:97:33:52:13: d7:8b:14:a5:55:c1:f3:d9:3e:d2:d6:0e:18:40:0b:35:ae:39: b9:21:cf:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZp2CnJkgnYzfTap6cWIXIttkFwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTRaFw0yNzA1MDIwMjIyNTRaMDMxMTAvBgNV BAMTKDI0MDk2Q0RBRjAwOEQwMjFGNTkwNTQ0N0E4RkNGNzY2OEQ2MTBEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVEHYYEqSGiumUvmYENhJYGfXv IqyRWppkmgUlpZyScoI37GBkPLQ84tIpKtKwKY2STE2mU9ryTJ6zxKqKZCMfk+p5 IDPHvc6KDK3IzziXciQPQ9hq3Jx6evljYV1suF2BXesf34OiegPsnn0YYqDcX6C7 E8gHVQwCsxScbgeEf3P4VGy2RXPrbQ62Q4LBCWo2zrEF+V+w4XFMmo4MxUAD+8IJ n19YliS6bMdOywEuYgY5oQQTxx/sUuPWg/aLTBjoekmRduv1xtjrjp0lh0rjDjSy SnssbTtwA0NjjOkKC2Q1617rSjYtVcLH8bIdLGeBryQjjVBhVXjTptk+8c/xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJAls2vAI0CH1kFRHqPz3Zo1hDSEwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/3WMA0GCSqG SIb3DQEBCwUAA4IBAQCkjdry6uVi40fL+/tf5R4sBrd+xBJwPN+fadl7osq7XqO/ NmK95pQ3YktK9XfNZyw4AjGQP8y4EEfetTqbyzntyuQ6jBaGGUETMq8mom0Ao441 8vwIY4y1Z4X6i79JQh1mHhweCyRIuN6TIjpUJvUCLztomwsibdxG+s8b4kfKc0oK aSO0haOusKfo4tO2w/7viPWD53PCyCLJ9+C7mJvgYqE2JVF5KIpcwRdgPdKj5sCo JJZzu2Ko35Mx7xCTkf/RVJvOQDtcxp56tM94nX7tUALKrUPsJ1ETCxDmpX2GThSh 1pXJI5czUhPXixSlVcHz2T7S1g4YQAs1rjm5Ic9y -----END CERTIFICATE-----Generated at Tue May 12 23:27:40 2026 by rpki-client