$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a1f6299-b155-4212-b5e1-9f5703cd0989/0/3130332e3136382e3134382e302f32342d3234203d3e20313432333530.roa File: 3130332e3136382e3134382e302f32342d3234203d3e20313432333530.roa (raw, json) Hash identifier: ErPUUUg1dRZKVbJQVmVoH6jrv862m0Pddw1XMyfUrjA= Subject key identifier: 00:97:4C:A8:D6:B5:5F:E3:0C:EA:D4:C2:2D:EE:DD:99:8E:12:3C:31 Certificate issuer: /CN=3BD4349E7B550BCE0E7C957E03D62D60B7D285F8 Certificate serial: 53D9E9CABED7DA2D8E629E73A0183F75D2AEE3B1 Authority key identifier: 3B:D4:34:9E:7B:55:0B:CE:0E:7C:95:7E:03:D6:2D:60:B7:D2:85:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3BD4349E7B550BCE0E7C957E03D62D60B7D285F8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a1f6299-b155-4212-b5e1-9f5703cd0989/0/3130332e3136382e3134382e302f32342d3234203d3e20313432333530.roa Signing time: Sun 03 May 2026 02:26:25 +0000 ROA not before: Sun 03 May 2026 02:21:25 +0000 ROA not after: Sun 02 May 2027 02:26:25 +0000 asID: 142350 IP address blocks: 103.168.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a1f6299-b155-4212-b5e1-9f5703cd0989/0/3BD4349E7B550BCE0E7C957E03D62D60B7D285F8.crl rsync://rpki-rsync.idnic.net/repo/3a1f6299-b155-4212-b5e1-9f5703cd0989/0/3BD4349E7B550BCE0E7C957E03D62D60B7D285F8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3BD4349E7B550BCE0E7C957E03D62D60B7D285F8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d9:e9:ca:be:d7:da:2d:8e:62:9e:73:a0:18:3f:75:d2:ae:e3:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BD4349E7B550BCE0E7C957E03D62D60B7D285F8 Validity Not Before: May 3 02:21:25 2026 GMT Not After : May 2 02:26:25 2027 GMT Subject: CN=00974CA8D6B55FE30CEAD4C22DEEDD998E123C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:81:95:06:d5:9d:6b:ec:a4:3a:9c:ac:ff:6a: 14:0c:59:ad:c2:92:d7:4f:4e:ab:d2:44:5e:59:a6: eb:ed:9f:97:cf:a6:1a:67:51:08:72:5c:1f:c9:22: d8:8b:2d:b6:61:42:f8:6b:89:02:85:3e:3d:4b:cd: dd:e9:de:ef:74:1f:b3:e1:f5:7a:1d:d8:40:53:aa: f8:95:95:7d:83:fd:e3:be:cd:e0:26:e4:e5:a9:19: 21:43:37:cb:d7:03:31:60:04:ae:18:55:12:de:88: 17:bf:49:47:cc:aa:8a:67:43:cd:b4:8d:c1:ad:66: 87:ee:ff:61:e5:2e:46:d8:cb:67:81:9c:62:19:a3: c4:00:66:f8:33:d5:fd:25:28:60:c3:64:bc:d7:f1: c5:16:40:f2:c1:5c:67:ad:ec:9b:fa:bc:e0:e3:9e: 21:08:91:6c:c4:27:df:f6:46:06:3d:8d:77:1e:89: 60:6e:e2:7d:a8:8e:3c:03:89:e9:68:01:f6:f0:c1: 32:d4:86:7e:97:52:5f:38:9d:a5:27:bb:55:3f:a7: bb:b8:5d:c7:af:22:49:10:67:e9:50:92:b8:3b:12: 77:da:c4:f2:fc:80:a6:40:b6:cf:a3:66:5f:b1:a3: 32:16:f5:b9:14:7e:09:70:cb:95:78:22:99:1b:17: 1d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:97:4C:A8:D6:B5:5F:E3:0C:EA:D4:C2:2D:EE:DD:99:8E:12:3C:31 X509v3 Authority Key Identifier: keyid:3B:D4:34:9E:7B:55:0B:CE:0E:7C:95:7E:03:D6:2D:60:B7:D2:85:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a1f6299-b155-4212-b5e1-9f5703cd0989/0/3BD4349E7B550BCE0E7C957E03D62D60B7D285F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3BD4349E7B550BCE0E7C957E03D62D60B7D285F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a1f6299-b155-4212-b5e1-9f5703cd0989/0/3130332e3136382e3134382e302f32342d3234203d3e20313432333530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.148.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:b6:30:04:9a:1a:07:ea:6a:27:bc:99:b6:63:54:d8:0b:64: 45:67:3a:5b:a7:41:e2:2d:b4:f2:f3:91:64:9e:b9:3b:24:18: 45:0d:65:5e:64:a2:51:ad:aa:70:a6:c2:38:83:89:4b:4a:10: 09:ec:e3:ad:88:5f:d9:18:ed:77:13:5a:bb:51:5e:2f:6a:83: 46:bb:df:04:3c:f6:6c:3c:a3:03:a3:dc:81:d5:ec:65:ff:e5: 04:d4:74:ed:1e:a1:50:5c:bc:18:a9:88:de:fb:cc:59:94:f8: 72:c9:18:46:c7:9a:43:54:2c:c2:33:32:5f:28:eb:5f:c6:19: f5:2f:ae:3f:29:dc:79:70:95:bc:0a:b7:03:75:0d:c6:18:2c: 43:53:e4:6c:07:04:b7:7f:50:02:de:35:07:a4:ed:a2:f0:2b: f0:da:ee:25:bc:be:b2:a1:7f:21:63:d6:ac:68:54:8d:45:6f: b0:c4:ad:0d:53:77:48:3f:76:78:b5:9d:4c:55:9f:12:7d:d4: 31:08:73:fe:57:e8:da:0e:0e:84:9c:77:99:f3:e8:5b:8b:9f: b3:fa:86:19:aa:eb:c3:46:ba:e1:55:b0:6b:8a:54:86:01:57: 99:b9:de:01:de:be:83:b9:38:e7:12:3e:79:47:f0:46:2d:9e: 08:e4:94:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU9npyr7X2i2OYp5zoBg/ddKu47EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JENDM0OUU3QjU1MEJDRTBFN0M5NTdFMDNENjJENjBC N0QyODVGODAeFw0yNjA1MDMwMjIxMjVaFw0yNzA1MDIwMjI2MjVaMDMxMTAvBgNV BAMTKDAwOTc0Q0E4RDZCNTVGRTMwQ0VBRDRDMjJERUVERDk5OEUxMjNDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHgZUG1Z1r7KQ6nKz/ahQMWa3C ktdPTqvSRF5Zpuvtn5fPphpnUQhyXB/JItiLLbZhQvhriQKFPj1Lzd3p3u90H7Ph 9Xod2EBTqviVlX2D/eO+zeAm5OWpGSFDN8vXAzFgBK4YVRLeiBe/SUfMqopnQ820 jcGtZofu/2HlLkbYy2eBnGIZo8QAZvgz1f0lKGDDZLzX8cUWQPLBXGet7Jv6vODj niEIkWzEJ9/2RgY9jXceiWBu4n2ojjwDieloAfbwwTLUhn6XUl84naUnu1U/p7u4 XcevIkkQZ+lQkrg7EnfaxPL8gKZAts+jZl+xozIW9bkUfglwy5V4IpkbFx1VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAJdMqNa1X+MM6tTCLe7dmY4SPDEwHwYDVR0j BBgwFoAUO9Q0nntVC84OfJV+A9YtYLfShfgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2ExZjYyOTktYjE1NS00MjEyLWI1ZTEtOWY1NzAzY2QwOTg5LzAvM0JENDM0OUU3 QjU1MEJDRTBFN0M5NTdFMDNENjJENjBCN0QyODVGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQkQ0MzQ5RTdCNTUwQkNFMEU3Qzk1N0UwM0Q2MkQ2MEI3RDI4 NUY4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhMWY2Mjk5LWIxNTUtNDIxMi1i NWUxLTlmNTcwM2NkMDk4OS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM1MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJQwDQYJ KoZIhvcNAQELBQADggEBAFy2MASaGgfqaie8mbZjVNgLZEVnOlunQeIttPLzkWSe uTskGEUNZV5kolGtqnCmwjiDiUtKEAns462IX9kY7XcTWrtRXi9qg0a73wQ89mw8 owOj3IHV7GX/5QTUdO0eoVBcvBipiN77zFmU+HLJGEbHmkNULMIzMl8o61/GGfUv rj8p3HlwlbwKtwN1DcYYLENT5GwHBLd/UALeNQek7aLwK/Da7iW8vrKhfyFj1qxo VI1Fb7DErQ1Td0g/dni1nUxVnxJ91DEIc/5X6NoODoScd5nz6FuLn7P6hhmq68NG uuFVsGuKVIYBV5m53gHevoO5OOcSPnlH8EYtngjklLo= -----END CERTIFICATE-----Generated at Wed May 13 12:06:12 2026 by rpki-client