$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: qXViQe0IG/eTHkD0fbY5SDfFmHb+Xoz2ICUsMklVTgs= Subject key identifier: 04:D3:EC:02:53:B1:4B:CA:D3:E6:A6:1A:C9:0B:96:CD:D3:FC:0A:21 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 5E320ECB5F15AB4477FC330DF2D0E94552100DE0 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:53 +0000 ROA not before: Sun 03 May 2026 02:17:53 +0000 ROA not after: Sun 02 May 2027 02:22:53 +0000 asID: 58487 IP address blocks: 103.253.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:32:0e:cb:5f:15:ab:44:77:fc:33:0d:f2:d0:e9:45:52:10:0d:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:53 2026 GMT Not After : May 2 02:22:53 2027 GMT Subject: CN=04D3EC0253B14BCAD3E6A61AC90B96CDD3FC0A21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ad:a3:a9:1b:83:82:d0:db:57:8d:ea:97:22: 05:9f:b0:cd:54:4e:c8:05:56:b0:61:4b:6b:2f:55: 81:47:df:01:05:7b:e5:1d:2f:7e:0e:07:8d:d2:e1: 68:07:9f:8d:50:1c:47:42:35:c4:ec:50:63:9e:f2: 00:72:a9:54:d2:ce:45:e0:2b:99:01:e0:53:ee:b4: b3:89:9c:2f:4c:dd:1a:3c:be:8e:f1:f0:dc:1f:f6: 28:08:9b:c5:ab:44:8d:a9:6c:eb:8d:b6:95:ea:f8: 46:c1:d8:87:d9:69:43:0e:48:91:62:4e:76:69:5b: 4f:ec:c9:6a:c1:b7:ac:42:48:08:de:26:30:1f:85: 4b:ec:82:b4:93:15:36:dc:c5:f0:d8:9a:7a:b8:28: e5:a2:b7:31:18:0b:a7:a9:38:84:dc:ad:eb:93:a6: 1b:89:56:12:b6:ac:df:af:85:c9:94:1a:8f:f6:52: fe:82:fd:44:30:6e:42:3b:40:51:c3:b8:8f:65:b6: e7:ae:3c:74:45:25:c4:28:37:40:91:2b:c3:01:06: b1:ed:ea:7d:e4:12:d1:a0:f5:54:fa:01:8b:0a:5b: 7f:14:b2:a4:29:4c:8d:58:f2:5d:a5:e2:34:68:54: 53:1d:b7:8c:66:31:54:1d:dc:82:84:7a:67:01:08: 08:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D3:EC:02:53:B1:4B:CA:D3:E6:A6:1A:C9:0B:96:CD:D3:FC:0A:21 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.214.0/24 Signature Algorithm: sha256WithRSAEncryption 06:c1:fd:75:0c:77:7b:07:6a:5a:a3:30:42:4c:71:04:d4:2b: a9:c2:fa:9c:05:f3:75:97:de:71:1e:55:e5:5d:aa:23:01:b4: 1c:bf:5f:61:85:3b:1b:22:a5:b5:17:dd:d2:f2:f1:17:f7:da: 83:26:18:21:05:22:9d:93:27:fd:37:4d:e3:6a:18:96:75:85: f8:35:17:b9:33:c9:bf:6b:0f:42:96:f9:df:15:10:d3:cb:69: 5c:72:6a:fe:cf:03:8e:3b:d0:4f:cf:5d:8c:f6:97:e5:4c:af: f3:a0:70:d3:6f:ab:28:15:c6:8b:2a:cf:e4:28:c6:97:97:1f: 12:76:b9:d6:1c:c8:8c:c1:d9:62:b4:77:f6:d4:01:74:51:22: 0e:58:bb:cd:b7:8f:2e:2f:84:7b:a6:b4:d0:fc:6c:01:b1:1d: 10:0f:c8:13:2f:c0:34:ee:6d:ba:5b:61:be:77:d1:e2:30:50: f1:4a:3a:f2:7d:51:32:23:19:fd:fd:5b:07:6f:a9:ca:75:c5: 37:9f:6b:8c:6b:0b:43:bf:74:bd:3b:09:7e:d3:75:6a:f7:4d: 78:b5:1b:bb:51:22:2d:87:80:88:ca:66:8e:0a:96:87:9e:48: 0a:50:b3:81:f6:21:06:a8:7a:00:b1:63:d3:f9:20:92:10:5a: 16:d7:02:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXjIOy18Vq0R3/DMN8tDpRVIQDeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTNaFw0yNzA1MDIwMjIyNTNaMDMxMTAvBgNV BAMTKDA0RDNFQzAyNTNCMTRCQ0FEM0U2QTYxQUM5MEI5NkNERDNGQzBBMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXraOpG4OC0NtXjeqXIgWfsM1U TsgFVrBhS2svVYFH3wEFe+UdL34OB43S4WgHn41QHEdCNcTsUGOe8gByqVTSzkXg K5kB4FPutLOJnC9M3Ro8vo7x8Nwf9igIm8WrRI2pbOuNtpXq+EbB2IfZaUMOSJFi TnZpW0/syWrBt6xCSAjeJjAfhUvsgrSTFTbcxfDYmnq4KOWitzEYC6epOITcreuT phuJVhK2rN+vhcmUGo/2Uv6C/UQwbkI7QFHDuI9ltueuPHRFJcQoN0CRK8MBBrHt 6n3kEtGg9VT6AYsKW38UsqQpTI1Y8l2l4jRoVFMdt4xmMVQd3IKEemcBCAjJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBNPsAlOxS8rT5qYayQuWzdP8CiEwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3WMA0GCSqG SIb3DQEBCwUAA4IBAQAGwf11DHd7B2paozBCTHEE1CupwvqcBfN1l95xHlXlXaoj AbQcv19hhTsbIqW1F93S8vEX99qDJhghBSKdkyf9N03jahiWdYX4NRe5M8m/aw9C lvnfFRDTy2lccmr+zwOOO9BPz12M9pflTK/zoHDTb6soFcaLKs/kKMaXlx8SdrnW HMiMwdlitHf21AF0USIOWLvNt48uL4R7prTQ/GwBsR0QD8gTL8A07m26W2G+d9Hi MFDxSjryfVEyIxn9/VsHb6nKdcU3n2uMawtDv3S9Owl+03Vq9014tRu7USIth4CI ymaOCpaHnkgKULOB9iEGqHoAsWPT+SCSEFoW1wKV -----END CERTIFICATE-----Generated at Wed May 13 00:31:03 2026 by rpki-client