$ rpki-client -vvf rpki-rsync.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/3130332e39392e32322e302f32342d3234203d3e20313530343636.roa File: 3130332e39392e32322e302f32342d3234203d3e20313530343636.roa (raw, json) Hash identifier: vFYZUwPOZFg6qgBQGFtuePgvWZXO4yFUVyM6qrVOlT0= Subject key identifier: AE:79:83:2A:8F:7C:DD:18:C7:7D:0A:E4:8F:A2:DF:3D:8D:1F:5D:24 Certificate issuer: /CN=F2885A21E2158558AE8643A8FFD4838C2FF6F1E3 Certificate serial: 3B3B2BDBF67816F35605CF16ECE79BAF06F05199 Authority key identifier: F2:88:5A:21:E2:15:85:58:AE:86:43:A8:FF:D4:83:8C:2F:F6:F1:E3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2885A21E2158558AE8643A8FFD4838C2FF6F1E3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/3130332e39392e32322e302f32342d3234203d3e20313530343636.roa Signing time: Sun 03 May 2026 02:24:08 +0000 ROA not before: Sun 03 May 2026 02:19:08 +0000 ROA not after: Sun 02 May 2027 02:24:08 +0000 asID: 150466 IP address blocks: 103.99.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/F2885A21E2158558AE8643A8FFD4838C2FF6F1E3.crl rsync://rpki-rsync.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/F2885A21E2158558AE8643A8FFD4838C2FF6F1E3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2885A21E2158558AE8643A8FFD4838C2FF6F1E3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3b:2b:db:f6:78:16:f3:56:05:cf:16:ec:e7:9b:af:06:f0:51:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2885A21E2158558AE8643A8FFD4838C2FF6F1E3 Validity Not Before: May 3 02:19:08 2026 GMT Not After : May 2 02:24:08 2027 GMT Subject: CN=AE79832A8F7CDD18C77D0AE48FA2DF3D8D1F5D24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6b:2a:0d:98:b8:41:96:24:98:e6:33:b9:e9: ff:8b:cf:a0:e7:ea:eb:82:9e:6b:46:6b:c7:8b:8c: 4d:ea:e3:9c:56:b9:10:e4:2c:68:38:c6:88:81:60: 86:f7:ec:6d:14:9b:88:23:8d:b0:55:ef:66:c1:03: 86:dc:6f:fd:36:34:c3:bd:2b:6c:01:89:05:a4:ce: 2c:0b:e1:8a:a7:94:9b:c6:3f:eb:4d:11:02:42:f6: 72:2a:f4:cd:bf:ab:c0:8f:ca:05:db:8a:17:27:f1: 37:97:54:25:78:5f:8e:bd:5c:2d:ce:a2:03:c5:63: 9d:b4:2b:63:08:74:61:92:17:5f:ff:36:88:38:db: a9:81:f8:c2:c0:ee:58:7e:37:31:a1:fc:18:d2:bb: 24:65:8d:69:40:f1:81:25:95:80:63:50:20:72:5a: c0:ba:05:26:79:d3:fb:c9:65:9c:40:f4:19:0e:00: 40:78:03:c4:bc:90:21:22:8a:21:ad:9a:c9:f2:10: 9c:03:cf:47:9b:13:99:40:7c:59:8b:40:64:53:3b: 77:e2:db:c7:37:fb:6e:3e:23:10:a0:3b:7b:b0:a1: 74:9a:59:3f:05:6d:ea:c2:d1:d7:65:ed:0c:43:7d: 94:f2:99:5f:0f:25:49:04:87:b1:e3:99:33:3e:91: d1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:79:83:2A:8F:7C:DD:18:C7:7D:0A:E4:8F:A2:DF:3D:8D:1F:5D:24 X509v3 Authority Key Identifier: keyid:F2:88:5A:21:E2:15:85:58:AE:86:43:A8:FF:D4:83:8C:2F:F6:F1:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/F2885A21E2158558AE8643A8FFD4838C2FF6F1E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2885A21E2158558AE8643A8FFD4838C2FF6F1E3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/31f25634-f583-46bc-9e8c-32db4cca35b6/0/3130332e39392e32322e302f32342d3234203d3e20313530343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.22.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:f5:6c:37:f1:c5:07:59:e3:21:3c:d9:eb:cd:f7:2e:98:db: d6:ca:b0:40:3f:7b:87:fb:5f:2b:56:c2:ff:ca:a0:df:08:f2: 54:de:4d:ff:0e:e2:8d:a5:d3:d2:01:68:db:5a:af:e5:3d:00: 55:8b:4f:67:81:24:0b:3b:24:b5:bb:27:2b:9d:80:10:67:07: 6e:ba:61:c4:39:ea:c0:e0:18:a1:24:94:41:26:ad:12:46:78: a7:4c:a9:47:f4:ed:62:37:82:d1:aa:fd:5b:5a:71:4b:00:5b: 7e:c0:48:88:5f:08:b4:4d:75:f9:46:05:23:d2:51:40:b8:29: e5:16:0a:09:d0:4c:c0:03:ab:68:77:7f:a0:b4:5a:b1:9e:df: fa:08:95:0d:b3:41:0c:06:e7:ad:c7:ff:4a:21:c0:c9:da:8d: 50:6a:ec:e4:3e:c0:c8:0a:37:0a:40:49:d0:7a:96:5d:79:00: e7:70:c9:18:08:ae:34:44:ed:4b:16:01:ab:d2:7e:73:30:6f: 66:6e:86:cf:93:ef:ea:b3:0c:6c:cc:14:5f:dc:0f:22:bf:92: b0:b4:71:80:fd:e8:7b:fe:9a:f8:56:97:d1:f5:7d:33:31:23: 11:04:4e:aa:f9:31:75:b2:9e:68:6a:aa:b6:66:d1:9e:08:02: 51:de:fb:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOzsr2/Z4FvNWBc8W7OebrwbwUZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI4ODVBMjFFMjE1ODU1OEFFODY0M0E4RkZENDgzOEMy RkY2RjFFMzAeFw0yNjA1MDMwMjE5MDhaFw0yNzA1MDIwMjI0MDhaMDMxMTAvBgNV BAMTKEFFNzk4MzJBOEY3Q0REMThDNzdEMEFFNDhGQTJERjNEOEQxRjVEMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkayoNmLhBliSY5jO56f+Lz6Dn 6uuCnmtGa8eLjE3q45xWuRDkLGg4xoiBYIb37G0Um4gjjbBV72bBA4bcb/02NMO9 K2wBiQWkziwL4YqnlJvGP+tNEQJC9nIq9M2/q8CPygXbihcn8TeXVCV4X469XC3O ogPFY520K2MIdGGSF1//Nog426mB+MLA7lh+NzGh/BjSuyRljWlA8YEllYBjUCBy WsC6BSZ50/vJZZxA9BkOAEB4A8S8kCEiiiGtmsnyEJwDz0ebE5lAfFmLQGRTO3fi 28c3+24+IxCgO3uwoXSaWT8FberC0ddl7QxDfZTymV8PJUkEh7HjmTM+kdE9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrnmDKo983RjHfQrkj6LfPY0fXSQwHwYDVR0j BBgwFoAU8ohaIeIVhViuhkOo/9SDjC/28eMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzFmMjU2MzQtZjU4My00NmJjLTllOGMtMzJkYjRjY2EzNWI2LzAvRjI4ODVBMjFF MjE1ODU1OEFFODY0M0E4RkZENDgzOEMyRkY2RjFFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMjg4NUEyMUUyMTU4NTU4QUU4NjQzQThGRkQ0ODM4QzJGRjZG MUUzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMxZjI1NjM0LWY1ODMtNDZiYy05 ZThjLTMyZGI0Y2NhMzViNi8wLzMxMzAzMzJlMzkzOTJlMzIzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdjFjANBgkqhkiG 9w0BAQsFAAOCAQEAXfVsN/HFB1njITzZ6833Lpjb1sqwQD97h/tfK1bC/8qg3wjy VN5N/w7ijaXT0gFo21qv5T0AVYtPZ4EkCzsktbsnK52AEGcHbrphxDnqwOAYoSSU QSatEkZ4p0ypR/TtYjeC0ar9W1pxSwBbfsBIiF8ItE11+UYFI9JRQLgp5RYKCdBM wAOraHd/oLRasZ7f+giVDbNBDAbnrcf/SiHAydqNUGrs5D7AyAo3CkBJ0HqWXXkA 53DJGAiuNETtSxYBq9J+czBvZm6Gz5Pv6rMMbMwUX9wPIr+SsLRxgP3oe/6a+FaX 0fV9MzEjEQROqvkxdbKeaGqqtmbRnggCUd77AA== -----END CERTIFICATE-----Generated at Wed May 13 12:41:52 2026 by rpki-client