$ rpki-client -vvf rpki-rsync.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa File: 3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa (raw, json) Hash identifier: GOyX50Et8Qvmvw3OrW1kybZj8h3GWxGKHm0I6XFUZNA= Subject key identifier: 33:93:02:B5:3C:72:1B:59:43:D2:75:D7:37:EC:2F:28:DF:8D:36:86 Certificate issuer: /CN=BE717704648D71B9BD1EA88B56DC788F45F7861A Certificate serial: 0DE38CEDC9B2B91D8FE31CA4B6C4DD869211F1A6 Authority key identifier: BE:71:77:04:64:8D:71:B9:BD:1E:A8:8B:56:DC:78:8F:45:F7:86:1A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BE717704648D71B9BD1EA88B56DC788F45F7861A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa Signing time: Sun 03 May 2026 02:24:56 +0000 ROA not before: Sun 03 May 2026 02:19:56 +0000 ROA not after: Sun 02 May 2027 02:24:56 +0000 asID: 139423 IP address blocks: 103.144.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/BE717704648D71B9BD1EA88B56DC788F45F7861A.crl rsync://rpki-rsync.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/BE717704648D71B9BD1EA88B56DC788F45F7861A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BE717704648D71B9BD1EA88B56DC788F45F7861A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:e3:8c:ed:c9:b2:b9:1d:8f:e3:1c:a4:b6:c4:dd:86:92:11:f1:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE717704648D71B9BD1EA88B56DC788F45F7861A Validity Not Before: May 3 02:19:56 2026 GMT Not After : May 2 02:24:56 2027 GMT Subject: CN=339302B53C721B5943D275D737EC2F28DF8D3686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a9:3a:4b:43:da:29:a4:78:82:a8:cf:d5:0d: 41:dc:35:98:c8:89:e5:67:97:f5:38:51:f3:b0:0a: 57:37:e9:c9:22:ee:a2:ab:d8:8a:b5:fd:80:ad:de: f8:1f:b1:21:f3:55:8f:bf:ac:99:cf:69:24:00:fd: 26:35:a6:1a:76:66:73:7c:f0:95:ef:d6:fb:21:a2: 08:8b:17:4b:ef:b1:5a:4b:47:7e:8c:ed:72:7c:a2: 32:1c:12:82:21:a3:0b:74:1e:86:eb:15:1f:1e:dc: 64:1f:d0:ef:c3:7e:bf:97:d9:b8:75:cd:05:27:68: 9e:83:17:38:9c:b8:03:ec:9c:a6:5b:28:2c:4e:d6: 8c:de:13:1f:e1:97:d1:05:ee:1f:4e:d5:af:e6:52: d4:03:9d:70:f9:de:ba:20:ce:9e:73:b8:2e:c4:0f: aa:df:00:1e:4a:a7:51:d8:d5:3e:5b:b3:b5:24:80: f3:89:42:96:8f:78:cf:a2:8b:50:f9:90:93:94:84: 4f:65:4d:19:0e:e5:95:80:47:51:51:3d:05:41:27: 2e:97:3a:3c:cc:b8:89:00:95:04:57:c5:34:c2:6d: b8:d7:3f:11:d0:3f:a0:46:ff:b5:1e:08:5d:ee:61: 31:f4:bb:cd:a6:f1:55:f9:3a:54:f9:91:d0:9f:53: a1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:93:02:B5:3C:72:1B:59:43:D2:75:D7:37:EC:2F:28:DF:8D:36:86 X509v3 Authority Key Identifier: keyid:BE:71:77:04:64:8D:71:B9:BD:1E:A8:8B:56:DC:78:8F:45:F7:86:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/BE717704648D71B9BD1EA88B56DC788F45F7861A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BE717704648D71B9BD1EA88B56DC788F45F7861A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.21.0/24 Signature Algorithm: sha256WithRSAEncryption 35:93:69:da:d1:02:8e:c3:aa:cd:79:30:c5:8d:8f:ad:d3:90: 93:5e:7a:19:b3:00:05:80:9b:a5:04:56:89:e4:19:11:94:5d: db:56:33:51:83:30:df:01:15:ad:6b:3c:7c:87:3a:9f:79:d3: c3:de:c7:b2:77:ab:24:85:d6:38:36:a3:8c:87:b2:93:f8:9c: 4a:5c:52:3a:6a:13:c4:d9:99:7a:5f:a9:35:50:1c:9f:94:9f: 27:2f:8a:bf:ae:e8:1c:57:ad:89:1c:10:35:05:cd:08:62:11: 32:75:d6:a4:58:ed:48:bf:be:59:98:e9:b5:1b:bf:5c:7c:4a: e4:b9:ef:80:98:84:ec:1f:aa:69:22:96:41:fb:d1:81:be:89: 1a:eb:55:54:c1:24:53:5c:04:3f:12:8e:21:5c:c4:5b:fb:a2: 13:a4:d6:8f:61:6f:4e:0b:60:eb:cf:ef:33:65:55:79:08:ef: 96:f1:b6:f7:6c:c4:32:76:0d:94:b0:ff:64:6c:af:94:80:14: 33:64:c4:b3:40:b4:17:87:15:f7:a6:55:ac:d6:b5:c4:59:68: b1:ef:55:a5:4c:1f:3d:35:53:ce:9f:43:fb:7a:54:eb:1b:f9: 28:60:58:bf:7b:db:3e:aa:e9:1d:0e:38:2c:08:da:f0:73:0c: ae:83:14:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDeOM7cmyuR2P4xyktsTdhpIR8aYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3MTc3MDQ2NDhENzFCOUJEMUVBODhCNTZEQzc4OEY0 NUY3ODYxQTAeFw0yNjA1MDMwMjE5NTZaFw0yNzA1MDIwMjI0NTZaMDMxMTAvBgNV BAMTKDMzOTMwMkI1M0M3MjFCNTk0M0QyNzVENzM3RUMyRjI4REY4RDM2ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdqTpLQ9oppHiCqM/VDUHcNZjI ieVnl/U4UfOwClc36cki7qKr2Iq1/YCt3vgfsSHzVY+/rJnPaSQA/SY1php2ZnN8 8JXv1vshogiLF0vvsVpLR36M7XJ8ojIcEoIhowt0HobrFR8e3GQf0O/Dfr+X2bh1 zQUnaJ6DFzicuAPsnKZbKCxO1ozeEx/hl9EF7h9O1a/mUtQDnXD53rogzp5zuC7E D6rfAB5Kp1HY1T5bs7UkgPOJQpaPeM+ii1D5kJOUhE9lTRkO5ZWAR1FRPQVBJy6X OjzMuIkAlQRXxTTCbbjXPxHQP6BG/7UeCF3uYTH0u82m8VX5OlT5kdCfU6G7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUM5MCtTxyG1lD0nXXN+wvKN+NNoYwHwYDVR0j BBgwFoAUvnF3BGSNcbm9HqiLVtx4j0X3hhowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzQxZmYzZTItNzZiNi00ODMzLTg2YjUtODJmM2ZhNGViY2I3LzAvQkU3MTc3MDQ2 NDhENzFCOUJEMUVBODhCNTZEQzc4OEY0NUY3ODYxQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRTcxNzcwNDY0OEQ3MUI5QkQxRUE4OEI1NkRDNzg4RjQ1Rjc4 NjFBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM0MWZmM2UyLTc2YjYtNDgzMy04 NmI1LTgyZjNmYTRlYmNiNy8wLzMxMzAzMzJlMzEzNDM0MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AVMA0GCSqG SIb3DQEBCwUAA4IBAQA1k2na0QKOw6rNeTDFjY+t05CTXnoZswAFgJulBFaJ5BkR lF3bVjNRgzDfARWtazx8hzqfedPD3seyd6skhdY4NqOMh7KT+JxKXFI6ahPE2Zl6 X6k1UByflJ8nL4q/rugcV62JHBA1Bc0IYhEyddakWO1Iv75ZmOm1G79cfErkue+A mITsH6ppIpZB+9GBvoka61VUwSRTXAQ/Eo4hXMRb+6ITpNaPYW9OC2Drz+8zZVV5 CO+W8bb3bMQydg2UsP9kbK+UgBQzZMSzQLQXhxX3plWs1rXEWWix71WlTB89NVPO n0P7elTrG/koYFi/e9s+qukdDjgsCNrwcwyugxTC -----END CERTIFICATE-----Generated at Wed May 13 02:49:28 2026 by rpki-client