$ rpki-client -vvf rpki-rsync.idnic.net/repo/3320556d-cc21-4e57-a5ba-a2111e059b7a/0/3130332e3231342e3232392e302f32342d3234203d3e203634303330.roa File: 3130332e3231342e3232392e302f32342d3234203d3e203634303330.roa (raw, json) Hash identifier: V8Sm4MJLCeArZFqOXIIvvpIosd8jOLT+tH/fFf0pEo4= Subject key identifier: 12:F6:60:D0:04:C7:26:D1:50:37:3C:6D:45:99:45:A2:4E:12:9F:CF Certificate issuer: /CN=20E9C0C818AE4F546A542A6A72EFADA600A4C6E0 Certificate serial: 642AA0C3AF8CF80600707B1A07F23F2918306B3F Authority key identifier: 20:E9:C0:C8:18:AE:4F:54:6A:54:2A:6A:72:EF:AD:A6:00:A4:C6:E0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20E9C0C818AE4F546A542A6A72EFADA600A4C6E0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3320556d-cc21-4e57-a5ba-a2111e059b7a/0/3130332e3231342e3232392e302f32342d3234203d3e203634303330.roa Signing time: Sun 03 May 2026 02:24:26 +0000 ROA not before: Sun 03 May 2026 02:19:26 +0000 ROA not after: Sun 02 May 2027 02:24:26 +0000 asID: 64030 IP address blocks: 103.214.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3320556d-cc21-4e57-a5ba-a2111e059b7a/0/20E9C0C818AE4F546A542A6A72EFADA600A4C6E0.crl rsync://rpki-rsync.idnic.net/repo/3320556d-cc21-4e57-a5ba-a2111e059b7a/0/20E9C0C818AE4F546A542A6A72EFADA600A4C6E0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20E9C0C818AE4F546A542A6A72EFADA600A4C6E0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:2a:a0:c3:af:8c:f8:06:00:70:7b:1a:07:f2:3f:29:18:30:6b:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20E9C0C818AE4F546A542A6A72EFADA600A4C6E0 Validity Not Before: May 3 02:19:26 2026 GMT Not After : May 2 02:24:26 2027 GMT Subject: CN=12F660D004C726D150373C6D459945A24E129FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2e:11:2d:22:0c:a9:1f:65:b9:94:68:a2:d6: a8:a5:9a:bb:a7:3b:17:41:20:2a:10:52:50:f5:a4: 20:e9:c7:07:43:17:4a:8e:fa:0c:af:a5:e6:44:55: 22:c7:71:4f:92:77:7a:19:60:27:ce:c7:de:d7:76: 2a:78:db:cb:24:94:6d:6e:5b:0f:52:0d:5b:1e:64: ca:d4:6e:9e:bb:9e:f9:92:5a:5e:7f:88:4e:97:dc: 8c:08:22:b9:b4:c0:54:bf:71:60:1f:53:cb:7d:1d: c7:29:0f:c7:40:94:55:94:7f:6e:22:b3:6f:fa:94: 67:3b:b7:0e:10:f2:5b:9a:4f:53:f8:9a:12:f0:84: 0a:d2:7a:24:db:ed:26:c1:12:a6:45:14:48:e1:2e: 5f:d2:3a:8d:24:50:00:c6:7a:9c:b5:3e:a9:91:99: f1:18:6a:fa:c1:27:00:3f:8d:a1:56:5d:0b:90:97: b2:b4:71:59:3c:1b:02:ee:53:73:b3:34:13:80:4d: b5:f8:e8:33:28:03:9e:3a:60:f5:f4:b0:69:7d:57: 24:38:a4:ed:b9:6f:ee:c5:37:49:3b:4b:70:b9:b8: 4c:17:cf:4b:9d:a2:71:7b:21:54:e1:2c:a0:d6:28: ee:00:31:bb:d1:f6:21:e4:3b:ff:49:1f:27:12:0c: 5d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F6:60:D0:04:C7:26:D1:50:37:3C:6D:45:99:45:A2:4E:12:9F:CF X509v3 Authority Key Identifier: keyid:20:E9:C0:C8:18:AE:4F:54:6A:54:2A:6A:72:EF:AD:A6:00:A4:C6:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3320556d-cc21-4e57-a5ba-a2111e059b7a/0/20E9C0C818AE4F546A542A6A72EFADA600A4C6E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20E9C0C818AE4F546A542A6A72EFADA600A4C6E0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3320556d-cc21-4e57-a5ba-a2111e059b7a/0/3130332e3231342e3232392e302f32342d3234203d3e203634303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.229.0/24 Signature Algorithm: sha256WithRSAEncryption 94:b2:c6:27:d1:0c:76:5d:6f:a4:24:a8:18:ec:dd:18:4f:09: f3:bb:9c:c2:74:a8:2e:3c:a1:a9:d2:21:35:b9:d0:12:06:9f: 30:cc:9e:0f:1e:91:fa:97:f3:36:8e:24:85:72:a3:e7:27:fa: 6a:d5:66:0c:13:90:b0:f5:83:4b:ca:72:b6:d3:38:68:b6:5e: b8:0e:dd:2c:65:f3:72:3e:6a:d4:36:77:72:c3:20:6e:72:55: 39:b6:3c:6f:6f:a0:cb:da:5a:c6:39:59:4f:b3:c3:60:6a:2d: c7:30:aa:71:dd:0f:17:62:94:4f:e5:37:6e:d4:20:92:5b:e8: 68:67:0d:f6:9d:f4:5e:0b:93:60:ae:f3:91:d2:d0:50:1f:35: 06:2e:32:6a:57:10:3a:10:fe:3c:d3:ac:f4:52:18:13:1a:29: 47:81:01:99:2f:16:19:71:c7:fd:79:a4:3d:37:3b:be:5e:f7: d1:7f:bf:ed:e0:a4:ef:88:ae:3b:46:e1:94:ed:33:eb:9b:6b: 01:1c:0e:2d:a6:9b:b7:76:8b:30:af:52:f9:f0:ad:07:c3:63: fd:49:07:e4:e0:b8:9d:6b:f9:15:c4:3c:1d:61:4f:df:5f:32: c6:fd:09:98:bb:ce:6e:64:00:d7:5a:0c:ba:1b:61:92:c5:69: fa:a1:57:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZCqgw6+M+AYAcHsaB/I/KRgwaz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBFOUMwQzgxOEFFNEY1NDZBNTQyQTZBNzJFRkFEQTYw MEE0QzZFMDAeFw0yNjA1MDMwMjE5MjZaFw0yNzA1MDIwMjI0MjZaMDMxMTAvBgNV BAMTKDEyRjY2MEQwMDRDNzI2RDE1MDM3M0M2RDQ1OTk0NUEyNEUxMjlGQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDELhEtIgypH2W5lGii1qilmrun OxdBICoQUlD1pCDpxwdDF0qO+gyvpeZEVSLHcU+Sd3oZYCfOx97Xdip428sklG1u Ww9SDVseZMrUbp67nvmSWl5/iE6X3IwIIrm0wFS/cWAfU8t9HccpD8dAlFWUf24i s2/6lGc7tw4Q8luaT1P4mhLwhArSeiTb7SbBEqZFFEjhLl/SOo0kUADGepy1PqmR mfEYavrBJwA/jaFWXQuQl7K0cVk8GwLuU3OzNBOATbX46DMoA546YPX0sGl9VyQ4 pO25b+7FN0k7S3C5uEwXz0udonF7IVThLKDWKO4AMbvR9iHkO/9JHycSDF2HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEvZg0ATHJtFQNzxtRZlFok4Sn88wHwYDVR0j BBgwFoAUIOnAyBiuT1RqVCpqcu+tpgCkxuAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzMyMDU1NmQtY2MyMS00ZTU3LWE1YmEtYTIxMTFlMDU5YjdhLzAvMjBFOUMwQzgx OEFFNEY1NDZBNTQyQTZBNzJFRkFEQTYwMEE0QzZFMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMEU5QzBDODE4QUU0RjU0NkE1NDJBNkE3MkVGQURBNjAwQTRD NkUwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzMjA1NTZkLWNjMjEtNGU1Ny1h NWJhLWEyMTExZTA1OWI3YS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9blMA0GCSqG SIb3DQEBCwUAA4IBAQCUssYn0Qx2XW+kJKgY7N0YTwnzu5zCdKguPKGp0iE1udAS Bp8wzJ4PHpH6l/M2jiSFcqPnJ/pq1WYME5Cw9YNLynK20zhotl64Dt0sZfNyPmrU NndywyBuclU5tjxvb6DL2lrGOVlPs8Ngai3HMKpx3Q8XYpRP5Tdu1CCSW+hoZw32 nfReC5NgrvOR0tBQHzUGLjJqVxA6EP4806z0UhgTGilHgQGZLxYZccf9eaQ9Nzu+ XvfRf7/t4KTviK47RuGU7TPrm2sBHA4tppu3doswr1L58K0Hw2P9SQfk4Lida/kV xDwdYU/fXzLG/QmYu85uZADXWgy6G2GSxWn6oVcS -----END CERTIFICATE-----Generated at Wed May 13 02:33:49 2026 by rpki-client