$ rpki-client -vvf rpki-rsync.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa File: 3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa (raw, json) Hash identifier: qH/qEHKxDsf1G4yiC7ToZneWwEmX69L2twWeNOsZ4DQ= Subject key identifier: AE:D1:25:F9:31:84:85:65:35:ED:5E:FE:78:75:04:60:19:80:1B:2E Certificate issuer: /CN=BA188A25E9FDBB93241A28F2C8B99417EC7D919B Certificate serial: 1947CE40DC9ED557ECAFB509C243B71781623533 Authority key identifier: BA:18:8A:25:E9:FD:BB:93:24:1A:28:F2:C8:B9:94:17:EC:7D:91:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA188A25E9FDBB93241A28F2C8B99417EC7D919B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa Signing time: Sun 03 May 2026 02:24:53 +0000 ROA not before: Sun 03 May 2026 02:19:53 +0000 ROA not after: Sun 02 May 2027 02:24:53 +0000 asID: 138882 IP address blocks: 103.140.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/BA188A25E9FDBB93241A28F2C8B99417EC7D919B.crl rsync://rpki-rsync.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/BA188A25E9FDBB93241A28F2C8B99417EC7D919B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA188A25E9FDBB93241A28F2C8B99417EC7D919B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:47:ce:40:dc:9e:d5:57:ec:af:b5:09:c2:43:b7:17:81:62:35:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA188A25E9FDBB93241A28F2C8B99417EC7D919B Validity Not Before: May 3 02:19:53 2026 GMT Not After : May 2 02:24:53 2027 GMT Subject: CN=AED125F93184856535ED5EFE7875046019801B2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:40:d7:91:38:9a:48:b4:25:42:e7:a3:20:12: 2c:7d:a5:d0:a3:e8:36:15:8e:5c:38:66:5a:7a:c9: f9:1c:3d:fa:81:65:ac:9a:9a:72:f7:58:25:c0:ad: 94:40:2d:b1:70:6d:f4:fb:4f:1c:20:f6:f9:a1:fb: ff:e3:a7:cb:ea:98:6b:d9:9f:c7:eb:c5:85:6e:3a: 3d:ec:fb:d2:b9:b7:8e:41:de:db:63:7a:d3:6c:25: f0:35:f1:13:0d:56:bf:28:91:e4:6a:e0:1f:bc:fb: 91:dc:43:7a:63:74:35:a3:a2:49:32:d7:56:fd:ed: 6a:33:60:74:e3:97:95:30:35:23:7d:34:28:90:a5: a8:96:bb:1d:23:36:22:32:6e:e2:b7:96:ad:71:70: 04:cc:db:20:84:bc:d1:e9:41:2d:be:1f:af:56:04: f0:0b:27:b0:1f:b2:3e:61:05:cb:4b:dc:a4:37:87: 2f:de:bc:80:db:66:c7:d1:bd:29:fe:46:cc:9b:c3: 73:d8:f0:14:42:a8:b1:c4:02:21:97:01:ea:c9:29: 30:78:98:48:25:6a:f8:9c:55:da:13:60:41:cf:89: e7:5e:fd:fd:59:81:8e:83:9b:9b:fb:26:91:e6:ce: 4a:0f:f0:ee:f0:8a:e3:f0:42:ac:21:37:8d:09:82: 05:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D1:25:F9:31:84:85:65:35:ED:5E:FE:78:75:04:60:19:80:1B:2E X509v3 Authority Key Identifier: keyid:BA:18:8A:25:E9:FD:BB:93:24:1A:28:F2:C8:B9:94:17:EC:7D:91:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/BA188A25E9FDBB93241A28F2C8B99417EC7D919B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA188A25E9FDBB93241A28F2C8B99417EC7D919B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.36.0/24 Signature Algorithm: sha256WithRSAEncryption 18:65:49:71:e5:8a:38:d1:6b:dc:9f:1a:e5:8a:c2:10:1f:f7: e8:5e:96:0c:23:60:74:ae:45:3a:00:6b:b2:82:41:26:a1:38: e8:e6:74:1a:d9:0b:7a:4d:ff:7b:71:b0:8a:ca:e8:ef:67:82: bf:27:99:ca:14:30:41:a9:e4:6b:cd:26:33:68:cc:a4:20:ef: 32:cd:19:3a:d2:9f:6c:b1:04:e2:5a:a1:c9:2d:99:cc:de:25: c7:1d:4c:65:81:8b:67:fc:15:14:63:6e:0b:56:b8:df:75:54: 36:aa:c9:fe:6b:15:c8:2b:50:c4:1f:2e:7e:5f:0d:f6:d1:87: 6a:d4:d2:68:8b:93:5d:93:5e:da:8e:15:bf:ce:29:9e:54:0a: ec:52:cb:79:a4:6a:14:35:9a:57:76:a5:4f:e0:9c:ea:42:ca: 37:bf:c0:25:ac:98:ff:54:b0:2c:7b:e3:58:12:3b:8c:21:93: b5:9c:eb:83:8b:fb:78:4b:b1:fd:37:87:0c:ce:77:a4:bc:8f: d0:a2:f7:a1:e9:59:35:eb:21:66:d6:a3:d8:23:62:ab:ac:5e: 94:3a:ce:0e:3a:f8:51:04:35:1e:c2:bc:98:73:5d:07:eb:47: ff:72:2f:7a:d0:cd:84:b6:dc:00:23:99:e4:d3:2e:6b:06:55: 6a:6b:fa:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGUfOQNye1Vfsr7UJwkO3F4FiNTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkExODhBMjVFOUZEQkI5MzI0MUEyOEYyQzhCOTk0MTdF QzdEOTE5QjAeFw0yNjA1MDMwMjE5NTNaFw0yNzA1MDIwMjI0NTNaMDMxMTAvBgNV BAMTKEFFRDEyNUY5MzE4NDg1NjUzNUVENUVGRTc4NzUwNDYwMTk4MDFCMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9QNeROJpItCVC56MgEix9pdCj 6DYVjlw4Zlp6yfkcPfqBZayamnL3WCXArZRALbFwbfT7Txwg9vmh+//jp8vqmGvZ n8frxYVuOj3s+9K5t45B3ttjetNsJfA18RMNVr8okeRq4B+8+5HcQ3pjdDWjokky 11b97WozYHTjl5UwNSN9NCiQpaiWux0jNiIybuK3lq1xcATM2yCEvNHpQS2+H69W BPALJ7Afsj5hBctL3KQ3hy/evIDbZsfRvSn+Rsybw3PY8BRCqLHEAiGXAerJKTB4 mEglavicVdoTYEHPiede/f1ZgY6Dm5v7JpHmzkoP8O7wiuPwQqwhN40JggU5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrtEl+TGEhWU17V7+eHUEYBmAGy4wHwYDVR0j BBgwFoAUuhiKJen9u5MkGijyyLmUF+x9kZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzQwNGJhZDEtMmIzZS00MTQxLTlmYzUtZGY5OWIyYmQwYTIyLzAvQkExODhBMjVF OUZEQkI5MzI0MUEyOEYyQzhCOTk0MTdFQzdEOTE5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTE4OEEyNUU5RkRCQjkzMjQxQTI4RjJDOEI5OTQxN0VDN0Q5 MTlCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM0MDRiYWQxLTJiM2UtNDE0MS05 ZmM1LWRmOTliMmJkMGEyMi8wLzMxMzAzMzJlMzEzNDMwMmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4wkMA0GCSqG SIb3DQEBCwUAA4IBAQAYZUlx5Yo40WvcnxrlisIQH/foXpYMI2B0rkU6AGuygkEm oTjo5nQa2Qt6Tf97cbCKyujvZ4K/J5nKFDBBqeRrzSYzaMykIO8yzRk60p9ssQTi WqHJLZnM3iXHHUxlgYtn/BUUY24LVrjfdVQ2qsn+axXIK1DEHy5+Xw320Ydq1NJo i5Ndk17ajhW/zimeVArsUst5pGoUNZpXdqVP4JzqQso3v8AlrJj/VLAse+NYEjuM IZO1nOuDi/t4S7H9N4cMznekvI/Qoveh6Vk16yFm1qPYI2KrrF6UOs4OOvhRBDUe wryYc10H60f/ci960M2EttwAI5nk0y5rBlVqa/p2 -----END CERTIFICATE-----Generated at Wed May 13 03:56:16 2026 by rpki-client