$ rpki-client -vvf rpki-rsync.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa File: 3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa (raw, json) Hash identifier: QGY4lzWj4Cp3rLIA8ZEjymdBTTpuyiO2y6++xao+5yg= Subject key identifier: A3:68:B2:C7:2B:D6:8E:DB:93:B0:9F:05:B1:E5:43:44:C1:51:92:D8 Certificate issuer: /CN=B3CEDD0459F32B7E856E38152E88C017667C44C5 Certificate serial: 1314340C65CF07B9E5841926C88B3FCA14D7195A Authority key identifier: B3:CE:DD:04:59:F3:2B:7E:85:6E:38:15:2E:88:C0:17:66:7C:44:C5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B3CEDD0459F32B7E856E38152E88C017667C44C5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa Signing time: Sun 03 May 2026 02:26:50 +0000 ROA not before: Sun 03 May 2026 02:21:50 +0000 ROA not after: Sun 02 May 2027 02:26:50 +0000 asID: 132641 IP address blocks: 103.253.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/B3CEDD0459F32B7E856E38152E88C017667C44C5.crl rsync://rpki-rsync.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/B3CEDD0459F32B7E856E38152E88C017667C44C5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B3CEDD0459F32B7E856E38152E88C017667C44C5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:14:34:0c:65:cf:07:b9:e5:84:19:26:c8:8b:3f:ca:14:d7:19:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CEDD0459F32B7E856E38152E88C017667C44C5 Validity Not Before: May 3 02:21:50 2026 GMT Not After : May 2 02:26:50 2027 GMT Subject: CN=A368B2C72BD68EDB93B09F05B1E54344C15192D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d2:af:7a:42:33:ae:b5:b7:7d:73:3b:37:80: 85:ff:af:ae:02:df:c0:13:8f:b4:7d:af:d7:f7:e3: 59:4d:34:dd:53:17:ad:f2:35:eb:53:f4:8e:36:8c: 21:c0:ce:ed:c9:c0:4a:29:82:05:7e:b8:d2:02:23: ce:03:7e:39:86:82:b3:30:18:17:18:70:09:82:1c: 0d:61:0b:22:8e:5d:d5:fb:e2:21:17:b0:c4:99:c3: 9b:7b:25:04:d7:4b:bd:79:43:5c:ef:2d:ac:39:b8: 3a:7d:e2:56:fe:a6:8e:d9:09:fe:8e:0c:ba:ff:d9: 2b:80:ce:8b:14:55:a0:09:97:57:11:51:d2:a2:8f: 69:30:43:eb:52:58:93:ca:44:5f:7b:bd:14:f4:cf: 6b:68:9c:41:b3:16:74:fb:56:a9:f7:0b:89:f9:17: 61:66:b3:20:2d:79:cf:7b:d5:a0:6e:37:fd:f4:f3: 72:9a:1e:db:b1:7a:4f:7c:41:f8:d5:a4:f7:32:7d: 52:8e:3c:14:6b:49:86:f7:b1:ff:cf:c4:4f:00:32: a0:e3:ec:f1:b3:47:d6:31:3c:bc:18:ca:07:31:1d: 31:3f:20:af:d7:4e:eb:67:d1:87:8e:36:4b:3f:9b: c2:68:2f:0b:6e:1c:11:11:a9:0a:61:94:90:89:ce: e8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:68:B2:C7:2B:D6:8E:DB:93:B0:9F:05:B1:E5:43:44:C1:51:92:D8 X509v3 Authority Key Identifier: keyid:B3:CE:DD:04:59:F3:2B:7E:85:6E:38:15:2E:88:C0:17:66:7C:44:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/B3CEDD0459F32B7E856E38152E88C017667C44C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B3CEDD0459F32B7E856E38152E88C017667C44C5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.112.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:53:52:b8:d0:ce:48:32:83:be:86:56:28:cd:0b:e1:a0:42: 22:d5:41:61:ff:9c:2c:b6:1b:28:c1:bd:ab:dc:14:b9:19:9a: 49:58:4d:2d:b2:4d:a3:ed:b0:04:9b:cd:5d:22:0e:84:b2:95: 00:b3:92:6c:58:82:52:3d:ed:bb:19:ce:2d:01:7b:b6:30:c0: 5e:f7:da:fd:47:cf:36:ee:1f:62:ce:c6:c8:a5:04:8a:b7:8f: a8:47:49:a6:13:68:02:3c:d2:ee:bc:8e:54:31:86:79:14:bb: 17:49:40:8e:28:9e:02:7f:63:59:d5:78:45:f9:e1:29:54:d3: 94:d0:4a:ad:00:11:7b:8c:f1:d4:03:0e:27:20:b1:aa:df:3a: 98:a8:78:d3:f6:9c:ba:b3:fa:f0:b7:17:a2:a9:ca:42:ff:47: bc:b7:6f:af:7b:1e:ec:c7:d9:b6:64:00:73:13:60:f4:46:fb: e3:40:47:6d:f6:95:87:a0:c0:c3:8c:9b:24:fe:af:f1:30:08: 80:64:ce:14:c3:b1:7e:15:c1:99:4f:f1:0e:2c:fb:16:a0:4c: 14:00:89:d7:d6:45:b6:d1:01:a7:06:ba:58:4f:d8:8c:23:be: 9b:31:21:e5:54:08:f7:94:b1:83:98:79:d3:de:25:3c:97:51: 44:bc:dd:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUExQ0DGXPB7nlhBkmyIs/yhTXGVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDRUREMDQ1OUYzMkI3RTg1NkUzODE1MkU4OEMwMTc2 NjdDNDRDNTAeFw0yNjA1MDMwMjIxNTBaFw0yNzA1MDIwMjI2NTBaMDMxMTAvBgNV BAMTKEEzNjhCMkM3MkJENjhFREI5M0IwOUYwNUIxRTU0MzQ0QzE1MTkyRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT0q96QjOutbd9czs3gIX/r64C 38ATj7R9r9f341lNNN1TF63yNetT9I42jCHAzu3JwEopggV+uNICI84DfjmGgrMw GBcYcAmCHA1hCyKOXdX74iEXsMSZw5t7JQTXS715Q1zvLaw5uDp94lb+po7ZCf6O DLr/2SuAzosUVaAJl1cRUdKij2kwQ+tSWJPKRF97vRT0z2tonEGzFnT7Vqn3C4n5 F2FmsyAtec971aBuN/3083KaHtuxek98QfjVpPcyfVKOPBRrSYb3sf/PxE8AMqDj 7PGzR9YxPLwYygcxHTE/IK/XTutn0YeONks/m8JoLwtuHBERqQphlJCJzuhDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUo2iyxyvWjtuTsJ8FseVDRMFRktgwHwYDVR0j BBgwFoAUs87dBFnzK36FbjgVLojAF2Z8RMUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2FiMWE3OTAtZGNlZC00NjRhLTg5NWQtOTAzNWEwY2M1ZjJmLzAvQjNDRUREMDQ1 OUYzMkI3RTg1NkUzODE1MkU4OEMwMTc2NjdDNDRDNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CM0NFREQwNDU5RjMyQjdFODU2RTM4MTUyRTg4QzAxNzY2N0M0 NEM1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhYjFhNzkwLWRjZWQtNDY0YS04 OTVkLTkwMzVhMGNjNWYyZi8wLzMxMzAzMzJlMzIzNTMzMmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/XAwDQYJ KoZIhvcNAQELBQADggEBABpTUrjQzkgyg76GVijNC+GgQiLVQWH/nCy2GyjBvavc FLkZmklYTS2yTaPtsASbzV0iDoSylQCzkmxYglI97bsZzi0Be7YwwF732v1Hzzbu H2LOxsilBIq3j6hHSaYTaAI80u68jlQxhnkUuxdJQI4ongJ/Y1nVeEX54SlU05TQ Sq0AEXuM8dQDDicgsarfOpioeNP2nLqz+vC3F6KpykL/R7y3b697HuzH2bZkAHMT YPRG++NAR232lYegwMOMmyT+r/EwCIBkzhTDsX4VwZlP8Q4s+xagTBQAidfWRbbR AacGulhP2IwjvpsxIeVUCPeUsYOYedPeJTyXUUS83QQ= -----END CERTIFICATE-----Generated at Wed May 13 08:24:58 2026 by rpki-client