$ rpki-client -vvf rpki-rsync.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa File: 3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa (raw, json) Hash identifier: O9b/sE0cgUl/rxVhhp6cIJikTp6ysHnQzs5JN33UOjQ= Subject key identifier: 9B:0D:BA:12:66:03:78:D4:53:B8:8F:51:33:84:22:65:94:B4:58:9A Certificate issuer: /CN=D84B02092CD9FAF487B7FFE8A3CE245E1532817B Certificate serial: 36851EB59FB55AA8C8CA91F8447EF8B450AE8EF4 Authority key identifier: D8:4B:02:09:2C:D9:FA:F4:87:B7:FF:E8:A3:CE:24:5E:15:32:81:7B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D84B02092CD9FAF487B7FFE8A3CE245E1532817B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa Signing time: Sun 03 May 2026 02:27:03 +0000 ROA not before: Sun 03 May 2026 02:22:03 +0000 ROA not after: Sun 02 May 2027 02:27:03 +0000 asID: 150196 IP address blocks: 103.229.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/D84B02092CD9FAF487B7FFE8A3CE245E1532817B.crl rsync://rpki-rsync.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/D84B02092CD9FAF487B7FFE8A3CE245E1532817B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D84B02092CD9FAF487B7FFE8A3CE245E1532817B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:85:1e:b5:9f:b5:5a:a8:c8:ca:91:f8:44:7e:f8:b4:50:ae:8e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D84B02092CD9FAF487B7FFE8A3CE245E1532817B Validity Not Before: May 3 02:22:03 2026 GMT Not After : May 2 02:27:03 2027 GMT Subject: CN=9B0DBA12660378D453B88F513384226594B4589A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d2:2b:2c:66:eb:f8:23:c2:46:26:5e:84:68: bf:78:b0:22:03:ad:3e:85:7c:16:24:8a:42:89:02: c7:dc:b7:cf:a8:2f:d6:c1:10:fc:38:d5:c5:b4:f5: be:fc:ea:5b:27:3b:7e:9a:a9:d2:23:76:5e:11:b3: 78:c4:18:1a:56:d0:1f:96:b9:9c:07:b6:62:65:59: b5:f7:41:22:f8:3f:bf:73:9d:e7:38:3d:4c:4e:a5: ea:66:a0:f8:d3:11:4c:33:d7:77:20:61:d5:ea:37: d2:a0:6e:35:da:60:98:d8:10:d5:c2:08:e8:6a:34: 5c:06:b5:da:77:dc:03:a8:d2:f6:97:3d:f5:1e:2c: 28:8f:0e:32:66:7d:20:f2:23:1b:57:e2:9e:68:df: b0:0b:ba:fc:b8:ca:a7:ba:b5:26:24:a7:26:0d:05: b5:21:a6:0a:7f:dd:77:55:f0:f9:43:9d:ed:d7:ff: bd:13:84:03:35:84:85:2b:22:50:46:8c:f8:98:56: 77:a5:12:d2:01:44:4d:33:cf:94:84:38:4f:2f:0b: 2a:60:3e:1a:fa:ae:be:23:af:7a:72:59:2e:69:12: cb:81:c6:be:ba:84:78:c6:c0:76:42:55:f0:93:da: d0:79:2b:4d:20:91:c7:9c:34:1f:15:f1:c9:70:91: 87:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0D:BA:12:66:03:78:D4:53:B8:8F:51:33:84:22:65:94:B4:58:9A X509v3 Authority Key Identifier: keyid:D8:4B:02:09:2C:D9:FA:F4:87:B7:FF:E8:A3:CE:24:5E:15:32:81:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/D84B02092CD9FAF487B7FFE8A3CE245E1532817B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D84B02092CD9FAF487B7FFE8A3CE245E1532817B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.14.0/24 Signature Algorithm: sha256WithRSAEncryption 55:1e:0f:cd:bb:e5:71:c0:33:3b:1c:87:0a:f3:18:1a:f3:aa: 6d:22:31:a6:f4:d9:97:27:c4:42:bf:dc:1f:14:6a:b9:d0:ae: 3c:dd:e9:df:de:d9:4d:76:e7:80:39:55:9b:98:37:a7:fa:42: 18:ec:a2:02:e6:cc:6e:de:18:1c:e1:88:77:50:e8:16:f8:c0: fb:02:14:6d:b2:45:44:6d:b3:18:93:aa:bf:18:d4:52:25:06: 84:43:29:e5:af:57:ff:df:96:4e:12:e3:16:09:8d:e4:a5:0a: 73:c2:c0:5e:d0:2f:b2:ea:f8:cf:40:50:35:e4:30:92:39:d6: a2:cf:fa:ac:5f:77:f1:52:bc:2e:6a:54:65:d9:b6:12:1b:c8: d8:7d:a3:bd:6e:8f:90:00:2c:ff:70:b2:34:7b:b1:86:6c:8c: 44:77:2d:f4:fd:57:8f:32:82:5a:0c:5e:f0:8a:8d:e6:04:fb: 5b:f8:e9:28:24:f0:02:75:04:8b:50:23:7e:bc:3e:1e:f1:fd: 8e:6f:d5:0e:0a:37:d0:5f:b8:41:19:10:8a:4f:2c:8c:51:f2: 92:5e:b2:02:46:20:96:e6:15:c8:cf:8d:36:96:94:d4:48:d6: f9:d4:d4:ef:bf:ee:57:f0:81:89:10:8a:9e:c3:7d:9f:32:d3: 4d:73:10:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNoUetZ+1WqjIypH4RH74tFCujvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg0QjAyMDkyQ0Q5RkFGNDg3QjdGRkU4QTNDRTI0NUUx NTMyODE3QjAeFw0yNjA1MDMwMjIyMDNaFw0yNzA1MDIwMjI3MDNaMDMxMTAvBgNV BAMTKDlCMERCQTEyNjYwMzc4RDQ1M0I4OEY1MTMzODQyMjY1OTRCNDU4OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC40issZuv4I8JGJl6EaL94sCID rT6FfBYkikKJAsfct8+oL9bBEPw41cW09b786lsnO36aqdIjdl4Rs3jEGBpW0B+W uZwHtmJlWbX3QSL4P79znec4PUxOpepmoPjTEUwz13cgYdXqN9KgbjXaYJjYENXC COhqNFwGtdp33AOo0vaXPfUeLCiPDjJmfSDyIxtX4p5o37ALuvy4yqe6tSYkpyYN BbUhpgp/3XdV8PlDne3X/70ThAM1hIUrIlBGjPiYVnelEtIBRE0zz5SEOE8vCypg Phr6rr4jr3pyWS5pEsuBxr66hHjGwHZCVfCT2tB5K00gkcecNB8V8clwkYfxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmw26EmYDeNRTuI9RM4QiZZS0WJowHwYDVR0j BBgwFoAU2EsCCSzZ+vSHt//oo84kXhUygXswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2I3NWJmZDAtYTg2Yy00YmViLTlmOTktYWFjMzNmYjVlNDlmLzAvRDg0QjAyMDky Q0Q5RkFGNDg3QjdGRkU4QTNDRTI0NUUxNTMyODE3Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EODRCMDIwOTJDRDlGQUY0ODdCN0ZGRThBM0NFMjQ1RTE1MzI4 MTdCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiNzViZmQwLWE4NmMtNGJlYi05 Zjk5LWFhYzMzZmI1ZTQ5Zi8wLzMxMzAzMzJlMzIzMjM5MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+UOMA0GCSqG SIb3DQEBCwUAA4IBAQBVHg/Nu+VxwDM7HIcK8xga86ptIjGm9NmXJ8RCv9wfFGq5 0K483enf3tlNdueAOVWbmDen+kIY7KIC5sxu3hgc4Yh3UOgW+MD7AhRtskVEbbMY k6q/GNRSJQaEQynlr1f/35ZOEuMWCY3kpQpzwsBe0C+y6vjPQFA15DCSOdaiz/qs X3fxUrwualRl2bYSG8jYfaO9bo+QACz/cLI0e7GGbIxEdy30/VePMoJaDF7wio3m BPtb+OkoJPACdQSLUCN+vD4e8f2Ob9UOCjfQX7hBGRCKTyyMUfKSXrICRiCW5hXI z402lpTUSNb51NTvv+5X8IGJEIqew32fMtNNcxCN -----END CERTIFICATE-----Generated at Wed May 13 02:13:08 2026 by rpki-client