$ rpki-client -vvf rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa File: 3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa (raw, json) Hash identifier: UWH9gD1/4ElZU52MCqktUtjxRojq4daDEIdWkUnok2k= Subject key identifier: 83:28:84:03:37:72:1F:70:88:06:76:61:51:49:EB:B3:3F:F2:F0:75 Certificate issuer: /CN=C8C1A31E42E799E9EDC0FAB813163052945845AC Certificate serial: 3511EEF6073900EAD35F58192C9DE3210E6555AF Authority key identifier: C8:C1:A3:1E:42:E7:99:E9:ED:C0:FA:B8:13:16:30:52:94:58:45:AC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C8C1A31E42E799E9EDC0FAB813163052945845AC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa Signing time: Sun 03 May 2026 02:26:07 +0000 ROA not before: Sun 03 May 2026 02:21:07 +0000 ROA not after: Sun 02 May 2027 02:26:07 +0000 asID: 138860 IP address blocks: 103.152.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C8C1A31E42E799E9EDC0FAB813163052945845AC.crl rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C8C1A31E42E799E9EDC0FAB813163052945845AC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C8C1A31E42E799E9EDC0FAB813163052945845AC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:11:ee:f6:07:39:00:ea:d3:5f:58:19:2c:9d:e3:21:0e:65:55:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8C1A31E42E799E9EDC0FAB813163052945845AC Validity Not Before: May 3 02:21:07 2026 GMT Not After : May 2 02:26:07 2027 GMT Subject: CN=8328840337721F70880676615149EBB33FF2F075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:bc:4f:96:a2:1e:31:ba:30:69:9d:e2:5d: e7:13:a1:e1:2d:cc:2e:9c:68:1e:10:10:5a:5e:a7: d2:51:3f:e8:35:24:44:8f:24:e5:4b:b2:c2:2f:f2: e6:3f:f1:70:5e:51:5c:f8:26:07:7b:3f:65:c6:8b: 1a:7c:35:6d:a4:ce:d5:fb:90:85:a2:c1:58:f8:17: 3c:1b:c6:81:ad:7d:23:e9:3e:3b:6e:39:dc:c9:0e: f0:71:c1:f8:b1:95:4d:ba:d4:f3:91:99:94:44:01: 83:b8:10:79:11:e0:e8:33:f8:55:68:9b:ff:90:c6: 5a:2e:ff:6a:e8:cc:14:5f:b4:b4:90:fe:3f:90:ef: c2:70:f0:cc:73:a6:b2:d4:d2:3f:46:d8:a7:68:57: 4e:18:f8:ae:5d:e7:bf:74:ad:3b:03:f1:73:27:1f: 20:71:94:b3:62:bd:6f:a0:73:3e:e6:3d:9a:c4:28: c8:94:e4:67:57:44:54:ba:c5:f6:0a:72:a4:66:c3: 34:3d:ce:79:c9:fb:5b:ec:bf:73:6c:03:d2:4b:97: b2:de:79:65:51:40:19:7b:f5:c2:6b:40:c3:58:95: 54:3f:73:fa:b0:fe:5c:01:97:0f:b4:d6:6f:de:c9: c5:03:df:01:6a:f8:e4:1e:13:44:f4:51:0f:1c:33: ca:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:28:84:03:37:72:1F:70:88:06:76:61:51:49:EB:B3:3F:F2:F0:75 X509v3 Authority Key Identifier: keyid:C8:C1:A3:1E:42:E7:99:E9:ED:C0:FA:B8:13:16:30:52:94:58:45:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C8C1A31E42E799E9EDC0FAB813163052945845AC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C8C1A31E42E799E9EDC0FAB813163052945845AC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.92.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:26:a4:53:74:46:ec:e5:70:82:4e:8a:60:25:9c:3a:2d:62: 9c:cc:36:d4:bf:b3:07:5b:af:23:82:88:c3:ce:85:85:08:be: d3:bd:f5:ec:30:af:d9:8f:9b:c2:06:c4:37:71:56:c6:fd:70: 78:c6:ab:88:45:1d:4c:de:27:73:fc:94:fb:fd:e6:68:bb:cb: 0e:0a:13:cc:9f:9f:1d:95:44:46:d2:37:63:b5:3f:c6:99:2e: 8f:c9:51:26:6c:38:3f:f7:7f:f3:79:68:ea:68:2e:ef:78:9d: f7:ec:05:50:98:8f:56:c2:d8:66:95:f4:47:05:b8:81:f5:06: 17:0d:88:dc:f5:6a:9c:f6:62:4a:09:e3:93:2d:ab:e1:66:32: 94:76:32:23:85:30:89:80:55:75:31:e0:ec:01:9e:47:b1:7c: f2:ff:86:4b:a3:23:02:99:95:26:56:63:82:aa:5f:89:96:4c: 5c:86:a0:bd:ab:2d:99:3f:90:72:f1:0e:da:73:14:92:b8:0d: 51:b9:6d:aa:ee:a0:05:14:da:8e:e2:65:9c:59:a8:07:dd:23: fb:95:95:4b:4f:a1:49:46:8c:3f:34:bb:04:15:d1:fd:11:63: 7b:4a:50:dd:fa:95:14:d8:d6:f1:7b:df:8f:42:99:80:7f:0a: ea:7f:1e:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNRHu9gc5AOrTX1gZLJ3jIQ5lVa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhDMUEzMUU0MkU3OTlFOUVEQzBGQUI4MTMxNjMwNTI5 NDU4NDVBQzAeFw0yNjA1MDMwMjIxMDdaFw0yNzA1MDIwMjI2MDdaMDMxMTAvBgNV BAMTKDgzMjg4NDAzMzc3MjFGNzA4ODA2NzY2MTUxNDlFQkIzM0ZGMkYwNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR8bxPlqIeMbowaZ3iXecToeEt zC6caB4QEFpep9JRP+g1JESPJOVLssIv8uY/8XBeUVz4Jgd7P2XGixp8NW2kztX7 kIWiwVj4FzwbxoGtfSPpPjtuOdzJDvBxwfixlU261PORmZREAYO4EHkR4Ogz+FVo m/+Qxlou/2rozBRftLSQ/j+Q78Jw8MxzprLU0j9G2KdoV04Y+K5d5790rTsD8XMn HyBxlLNivW+gcz7mPZrEKMiU5GdXRFS6xfYKcqRmwzQ9znnJ+1vsv3NsA9JLl7Le eWVRQBl79cJrQMNYlVQ/c/qw/lwBlw+01m/eycUD3wFq+OQeE0T0UQ8cM8phAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgyiEAzdyH3CIBnZhUUnrsz/y8HUwHwYDVR0j BBgwFoAUyMGjHkLnmentwPq4ExYwUpRYRawwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzhjOWMyNTItZjdjYS00ZGQ1LTg4ZjYtMjJhZGRjODkzNGIzLzAvQzhDMUEzMUU0 MkU3OTlFOUVEQzBGQUI4MTMxNjMwNTI5NDU4NDVBQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOEMxQTMxRTQyRTc5OUU5RURDMEZBQjgxMzE2MzA1Mjk0NTg0 NUFDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4YzljMjUyLWY3Y2EtNGRkNS04 OGY2LTIyYWRkYzg5MzRiMy8wLzMxMzAzMzJlMzEzNTMyMmUzOTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5hcMA0GCSqG SIb3DQEBCwUAA4IBAQCaJqRTdEbs5XCCTopgJZw6LWKczDbUv7MHW68jgojDzoWF CL7TvfXsMK/Zj5vCBsQ3cVbG/XB4xquIRR1M3idz/JT7/eZou8sOChPMn58dlURG 0jdjtT/GmS6PyVEmbDg/93/zeWjqaC7veJ337AVQmI9WwthmlfRHBbiB9QYXDYjc 9Wqc9mJKCeOTLavhZjKUdjIjhTCJgFV1MeDsAZ5HsXzy/4ZLoyMCmZUmVmOCql+J lkxchqC9qy2ZP5By8Q7acxSSuA1RuW2q7qAFFNqO4mWcWagH3SP7lZVLT6FJRow/ NLsEFdH9EWN7SlDd+pUU2Nbxe9+PQpmAfwrqfx7m -----END CERTIFICATE-----Generated at Wed May 13 15:37:09 2026 by rpki-client