$ rpki-client -vvf rpki-rsync.idnic.net/repo/3589f643-37bc-4ffb-9529-401e4b6ef675/0/3130332e37302e39322e302f32332d3234203d3e20313338303634.roa File: 3130332e37302e39322e302f32332d3234203d3e20313338303634.roa (raw, json) Hash identifier: nTkoyc0s6mnt2tkKBJEFQNLgWGbaxLyUZAhyR5bx0jE= Subject key identifier: 88:02:26:78:74:2C:96:66:98:F5:B9:F3:9C:C8:D6:50:A3:53:19:D9 Certificate issuer: /CN=D900F1990F324E8BFF8E6AB4F6AF00662EF4A181 Certificate serial: 1A7F468F4E2FB0DDAE6CCE9E32C94E421571D311 Authority key identifier: D9:00:F1:99:0F:32:4E:8B:FF:8E:6A:B4:F6:AF:00:66:2E:F4:A1:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D900F1990F324E8BFF8E6AB4F6AF00662EF4A181.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3589f643-37bc-4ffb-9529-401e4b6ef675/0/3130332e37302e39322e302f32332d3234203d3e20313338303634.roa Signing time: Sun 03 May 2026 02:25:22 +0000 ROA not before: Sun 03 May 2026 02:20:22 +0000 ROA not after: Sun 02 May 2027 02:25:22 +0000 asID: 138064 IP address blocks: 103.70.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3589f643-37bc-4ffb-9529-401e4b6ef675/0/D900F1990F324E8BFF8E6AB4F6AF00662EF4A181.crl rsync://rpki-rsync.idnic.net/repo/3589f643-37bc-4ffb-9529-401e4b6ef675/0/D900F1990F324E8BFF8E6AB4F6AF00662EF4A181.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D900F1990F324E8BFF8E6AB4F6AF00662EF4A181.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:7f:46:8f:4e:2f:b0:dd:ae:6c:ce:9e:32:c9:4e:42:15:71:d3:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D900F1990F324E8BFF8E6AB4F6AF00662EF4A181 Validity Not Before: May 3 02:20:22 2026 GMT Not After : May 2 02:25:22 2027 GMT Subject: CN=88022678742C966698F5B9F39CC8D650A35319D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c8:2f:1c:8d:d1:df:67:52:01:66:15:66:39: 56:56:23:07:fe:45:c0:50:ab:e8:e1:7d:c0:69:f4: 23:6b:90:a6:83:46:32:e9:0f:33:6b:ac:8c:fb:bd: 3a:d3:f5:14:a3:e2:85:54:7f:e7:e3:be:ad:72:50: 34:f8:b3:2f:30:2f:d5:93:5f:ef:a9:f6:48:df:72: d1:9e:46:6e:e1:51:3c:1d:20:1b:58:b0:13:1a:d5: 91:d3:31:68:21:bd:3f:7e:08:d1:99:1b:d5:34:d8: 6f:90:c4:dc:49:bb:ab:79:52:1a:52:8b:b9:7c:31: e9:7c:3e:ac:10:29:33:68:dc:25:db:e7:c0:b9:32: c8:2f:fb:fb:90:b2:9a:bb:b1:1a:70:da:8e:0a:f8: 25:02:0b:a3:81:f7:4e:21:cf:11:ed:84:6e:e9:2c: 0f:57:27:40:72:ec:fb:7a:55:c8:91:c4:a6:2d:ac: 50:b6:63:94:68:f3:c7:11:fe:f2:63:d6:e2:73:2b: e7:ba:e9:07:63:48:9c:dd:55:3c:a7:01:d5:c4:92: 72:c8:06:5f:f7:37:45:ed:24:cd:51:5e:af:24:ee: e3:cc:7c:70:0b:c0:25:6e:c3:99:ac:2c:78:af:b1: b1:c4:41:2f:80:5d:17:fe:af:bc:bf:a0:03:6a:f2: 6a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:02:26:78:74:2C:96:66:98:F5:B9:F3:9C:C8:D6:50:A3:53:19:D9 X509v3 Authority Key Identifier: keyid:D9:00:F1:99:0F:32:4E:8B:FF:8E:6A:B4:F6:AF:00:66:2E:F4:A1:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3589f643-37bc-4ffb-9529-401e4b6ef675/0/D900F1990F324E8BFF8E6AB4F6AF00662EF4A181.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D900F1990F324E8BFF8E6AB4F6AF00662EF4A181.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3589f643-37bc-4ffb-9529-401e4b6ef675/0/3130332e37302e39322e302f32332d3234203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.92.0/23 Signature Algorithm: sha256WithRSAEncryption 91:9f:ae:13:f9:ea:7e:80:1a:ab:ba:4d:60:ee:54:9c:45:01: 97:93:b3:76:7c:cc:65:a7:f9:87:ac:5f:33:cb:7b:0c:f7:d5: 7b:74:a9:ce:a5:bb:9b:e0:3a:b5:08:55:3e:50:ce:45:10:c7: 74:ce:5a:20:75:5e:d2:b3:a4:53:df:28:a0:56:e6:58:47:92: 63:0d:fa:73:3c:fe:b1:77:cb:5e:1b:b1:75:ad:8f:8b:5e:80: c9:ae:e8:85:b7:2c:8c:1e:df:c9:07:85:05:2d:ba:af:b5:70: 1a:75:03:b8:eb:67:a5:8b:cb:08:13:ef:17:6b:fc:c5:98:5e: f4:e8:2a:a1:cb:57:d0:4a:dc:bc:1e:a6:04:68:af:b0:35:de: 5c:1e:c3:2d:0f:9a:a9:c1:3c:cc:81:31:4a:c1:58:90:16:ed: 77:1d:8f:a7:7a:51:cf:e4:05:da:5b:a5:8f:53:04:f2:80:23: 4f:4e:73:6c:e5:93:2c:88:58:f2:39:f4:ad:2f:1f:c6:26:2f: 0a:19:b2:8a:8c:6e:8a:da:f2:b9:e8:5d:8b:39:80:af:a9:06: dd:0b:82:45:32:ee:00:9b:50:c5:ac:f8:d8:e9:1a:e6:92:d6: bf:c2:55:3e:49:81:f5:92:62:0d:52:57:59:0b:6f:9e:33:06: f1:7a:8b:52 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGn9Gj04vsN2ubM6eMslOQhVx0xEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDkwMEYxOTkwRjMyNEU4QkZGOEU2QUI0RjZBRjAwNjYy RUY0QTE4MTAeFw0yNjA1MDMwMjIwMjJaFw0yNzA1MDIwMjI1MjJaMDMxMTAvBgNV BAMTKDg4MDIyNjc4NzQyQzk2NjY5OEY1QjlGMzlDQzhENjUwQTM1MzE5RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAyC8cjdHfZ1IBZhVmOVZWIwf+ RcBQq+jhfcBp9CNrkKaDRjLpDzNrrIz7vTrT9RSj4oVUf+fjvq1yUDT4sy8wL9WT X++p9kjfctGeRm7hUTwdIBtYsBMa1ZHTMWghvT9+CNGZG9U02G+QxNxJu6t5UhpS i7l8Mel8PqwQKTNo3CXb58C5Msgv+/uQspq7sRpw2o4K+CUCC6OB904hzxHthG7p LA9XJ0By7Pt6VciRxKYtrFC2Y5Ro88cR/vJj1uJzK+e66QdjSJzdVTynAdXEknLI Bl/3N0XtJM1RXq8k7uPMfHALwCVuw5msLHivsbHEQS+AXRf+r7y/oANq8mq5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiAImeHQslmaY9bnznMjWUKNTGdkwHwYDVR0j BBgwFoAU2QDxmQ8yTov/jmq09q8AZi70oYEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU4OWY2NDMtMzdiYy00ZmZiLTk1MjktNDAxZTRiNmVmNjc1LzAvRDkwMEYxOTkw RjMyNEU4QkZGOEU2QUI0RjZBRjAwNjYyRUY0QTE4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EOTAwRjE5OTBGMzI0RThCRkY4RTZBQjRGNkFGMDA2NjJFRjRB MTgxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1ODlmNjQzLTM3YmMtNGZmYi05 NTI5LTQwMWU0YjZlZjY3NS8wLzMxMzAzMzJlMzczMDJlMzkzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzODMwMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdGXDANBgkqhkiG 9w0BAQsFAAOCAQEAkZ+uE/nqfoAaq7pNYO5UnEUBl5OzdnzMZaf5h6xfM8t7DPfV e3SpzqW7m+A6tQhVPlDORRDHdM5aIHVe0rOkU98ooFbmWEeSYw36czz+sXfLXhux da2Pi16Aya7ohbcsjB7fyQeFBS26r7VwGnUDuOtnpYvLCBPvF2v8xZhe9OgqoctX 0ErcvB6mBGivsDXeXB7DLQ+aqcE8zIExSsFYkBbtdx2Pp3pRz+QF2lulj1ME8oAj T05zbOWTLIhY8jn0rS8fxiYvChmyioxuitryuehdizmAr6kG3QuCRTLuAJtQxaz4 2Oka5pLWv8JVPkmB9ZJiDVJXWQtvnjMG8XqLUg== -----END CERTIFICATE-----Generated at Wed May 13 05:35:58 2026 by rpki-client