$ rpki-client -vvf rpki-rsync.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa File: 3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa (raw, json) Hash identifier: x+7pzkIkAAYum6CK13j4jNfXi0Fn68V8sWzEUq8++EQ= Subject key identifier: 24:DA:3C:0F:1B:4F:02:1A:7F:C5:FE:1D:35:81:20:7E:8D:27:3E:BA Certificate issuer: /CN=D14C74B06D9A4D3A47662DA76625CD3537D00471 Certificate serial: 1A73DD93D04398292ECAE9986CA70B5D245E89D3 Authority key identifier: D1:4C:74:B0:6D:9A:4D:3A:47:66:2D:A7:66:25:CD:35:37:D0:04:71 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D14C74B06D9A4D3A47662DA76625CD3537D00471.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa Signing time: Sun 03 May 2026 02:25:27 +0000 ROA not before: Sun 03 May 2026 02:20:27 +0000 ROA not after: Sun 02 May 2027 02:25:27 +0000 asID: 150284 IP address blocks: 103.43.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/D14C74B06D9A4D3A47662DA76625CD3537D00471.crl rsync://rpki-rsync.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/D14C74B06D9A4D3A47662DA76625CD3537D00471.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D14C74B06D9A4D3A47662DA76625CD3537D00471.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:73:dd:93:d0:43:98:29:2e:ca:e9:98:6c:a7:0b:5d:24:5e:89:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D14C74B06D9A4D3A47662DA76625CD3537D00471 Validity Not Before: May 3 02:20:27 2026 GMT Not After : May 2 02:25:27 2027 GMT Subject: CN=24DA3C0F1B4F021A7FC5FE1D3581207E8D273EBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e7:c3:46:04:02:d7:1d:37:eb:9f:4e:ad:e3: 29:6b:c1:a4:11:44:d9:3b:3d:e3:a2:f4:44:01:0f: 0a:58:fb:9d:b1:08:0e:99:55:a2:97:5f:16:5b:3e: aa:f2:56:a4:57:7a:18:d1:a2:b4:ae:5f:67:6e:71: c5:da:b6:a6:b2:20:12:4a:5a:98:bf:8d:91:a9:0c: ea:94:81:ec:b9:d4:78:6a:13:07:8c:1a:0d:dc:0f: 2d:00:88:93:6e:17:23:05:91:ac:ec:83:0e:c6:92: d4:24:44:3a:da:06:0d:5c:b4:e3:88:df:66:d2:47: 59:4a:e1:a2:b8:94:51:a2:d5:9d:fb:da:fe:a8:85: a7:98:ff:65:cb:c7:2d:a1:7c:52:d4:14:30:6a:3d: de:3e:40:58:41:23:bd:53:99:f3:bd:e3:12:a0:99: af:90:76:51:49:0e:c3:2c:aa:65:19:13:22:9a:33: 9e:bc:04:32:a9:57:04:09:16:d6:05:74:90:a1:82: 3e:43:19:19:32:87:63:5b:2f:24:4a:dc:09:a4:6d: 66:ab:22:60:32:ec:13:70:76:3a:82:55:46:7d:be: 97:70:d1:86:c6:d9:f7:2f:66:e3:3a:bf:f8:87:3d: 09:06:95:b3:95:5a:3e:cb:92:b8:8a:7a:de:6d:7c: b6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DA:3C:0F:1B:4F:02:1A:7F:C5:FE:1D:35:81:20:7E:8D:27:3E:BA X509v3 Authority Key Identifier: keyid:D1:4C:74:B0:6D:9A:4D:3A:47:66:2D:A7:66:25:CD:35:37:D0:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/D14C74B06D9A4D3A47662DA76625CD3537D00471.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D14C74B06D9A4D3A47662DA76625CD3537D00471.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.164.0/24 Signature Algorithm: sha256WithRSAEncryption 99:4e:9d:ae:93:ba:f6:f6:11:ee:40:65:1e:4c:2f:79:88:97: a0:eb:22:e4:c9:5d:71:fc:55:27:2b:4c:98:06:86:08:a2:20: 7f:78:76:59:5c:99:7c:ae:03:13:2b:66:36:ed:df:d2:b1:5f: 68:7d:02:48:9a:60:de:04:e6:c4:79:df:ad:f5:65:11:7e:48: 8b:5e:aa:a8:be:4e:f1:aa:78:25:ba:6d:de:1e:69:ec:20:be: 74:a6:f6:8e:37:43:0f:9a:30:27:46:f2:99:53:c6:57:ac:0b: 7e:74:ff:eb:9b:0c:d1:00:e6:bc:7f:38:2d:d1:12:2a:aa:2c: 48:00:46:35:9e:09:80:ac:57:54:a8:af:65:f2:9b:4d:4c:ed: 95:dc:5e:72:81:e8:e8:53:bb:fe:db:67:66:b0:42:09:d0:96: c4:28:75:f3:8b:58:ef:eb:4a:cd:e4:d5:a6:b0:75:70:93:dd: 77:0d:31:32:fc:7b:55:56:74:2f:c6:65:07:b7:d9:22:e2:6a: 98:d8:7e:37:6b:65:7b:a1:7a:ab:7c:43:c8:f1:51:a8:8b:e5: ec:b9:9a:60:24:0c:19:72:62:ce:e3:eb:a0:b9:a0:ea:69:33: 46:35:33:1e:42:d8:96:c9:4e:0a:23:8b:4d:8c:df:0c:c9:36: c7:7c:5c:43 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGnPdk9BDmCkuyumYbKcLXSReidMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE0Qzc0QjA2RDlBNEQzQTQ3NjYyREE3NjYyNUNEMzUz N0QwMDQ3MTAeFw0yNjA1MDMwMjIwMjdaFw0yNzA1MDIwMjI1MjdaMDMxMTAvBgNV BAMTKDI0REEzQzBGMUI0RjAyMUE3RkM1RkUxRDM1ODEyMDdFOEQyNzNFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt58NGBALXHTfrn06t4ylrwaQR RNk7PeOi9EQBDwpY+52xCA6ZVaKXXxZbPqryVqRXehjRorSuX2duccXatqayIBJK Wpi/jZGpDOqUgey51HhqEweMGg3cDy0AiJNuFyMFkazsgw7GktQkRDraBg1ctOOI 32bSR1lK4aK4lFGi1Z372v6ohaeY/2XLxy2hfFLUFDBqPd4+QFhBI71TmfO94xKg ma+QdlFJDsMsqmUZEyKaM568BDKpVwQJFtYFdJChgj5DGRkyh2NbLyRK3AmkbWar ImAy7BNwdjqCVUZ9vpdw0YbG2fcvZuM6v/iHPQkGlbOVWj7LkriKet5tfLZjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJNo8DxtPAhp/xf4dNYEgfo0nProwHwYDVR0j BBgwFoAU0Ux0sG2aTTpHZi2nZiXNNTfQBHEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzYyYmFjYzktZDI1ZC00NjEwLWFlZTQtNjU1YTE0ZWEyZmQ2LzAvRDE0Qzc0QjA2 RDlBNEQzQTQ3NjYyREE3NjYyNUNEMzUzN0QwMDQ3MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMTRDNzRCMDZEOUE0RDNBNDc2NjJEQTc2NjI1Q0QzNTM3RDAw NDcxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM2MmJhY2M5LWQyNWQtNDYxMC1h ZWU0LTY1NWExNGVhMmZkNi8wLzMxMzAzMzJlMzQzMzJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyukMA0GCSqG SIb3DQEBCwUAA4IBAQCZTp2uk7r29hHuQGUeTC95iJeg6yLkyV1x/FUnK0yYBoYI oiB/eHZZXJl8rgMTK2Y27d/SsV9ofQJImmDeBObEed+t9WURfkiLXqqovk7xqngl um3eHmnsIL50pvaON0MPmjAnRvKZU8ZXrAt+dP/rmwzRAOa8fzgt0RIqqixIAEY1 ngmArFdUqK9l8ptNTO2V3F5ygejoU7v+22dmsEIJ0JbEKHXzi1jv60rN5NWmsHVw k913DTEy/HtVVnQvxmUHt9ki4mqY2H43a2V7oXqrfEPI8VGoi+XsuZpgJAwZcmLO 4+uguaDqaTNGNTMeQtiWyU4KI4tNjN8MyTbHfFxD -----END CERTIFICATE-----Generated at Wed May 13 06:56:07 2026 by rpki-client