$ rpki-client -vvf rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/3130332e3136332e3234312e302f32342d3234203d3e20313431383837.roa File: 3130332e3136332e3234312e302f32342d3234203d3e20313431383837.roa (raw, json) Hash identifier: 7y1kc2AMpxx6evn2aDQV63VxhXeky0gM842l022bSD4= Subject key identifier: B5:9E:25:51:C6:CD:AA:CA:DC:A7:76:73:68:96:AF:6C:B8:6C:85:45 Certificate issuer: /CN=4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F Certificate serial: 0C2E54FD7E418C057EF436CCE46A09AD7F222E68 Authority key identifier: 4A:CA:AD:0A:28:A6:50:A9:BD:65:B0:A6:E1:90:57:F4:7B:DB:94:2F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/3130332e3136332e3234312e302f32342d3234203d3e20313431383837.roa Signing time: Sun 03 May 2026 02:27:40 +0000 ROA not before: Sun 03 May 2026 02:22:40 +0000 ROA not after: Sun 02 May 2027 02:27:40 +0000 asID: 141887 IP address blocks: 103.163.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.crl rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:2e:54:fd:7e:41:8c:05:7e:f4:36:cc:e4:6a:09:ad:7f:22:2e:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F Validity Not Before: May 3 02:22:40 2026 GMT Not After : May 2 02:27:40 2027 GMT Subject: CN=B59E2551C6CDAACADCA776736896AF6CB86C8545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:37:9f:7b:b3:a1:7f:20:e9:2a:e9:1c:e1:4b: cf:86:66:f7:e9:07:7e:91:2a:80:11:bf:ef:a8:bc: ea:7f:02:03:b7:8c:0a:7d:c2:b2:a7:06:ba:0e:9e: 4c:dd:79:0c:69:9f:63:1a:a9:86:1c:cf:14:ee:29: ac:a4:e4:24:c9:18:69:7a:43:66:02:83:db:25:1b: b3:23:10:be:21:76:cf:43:20:fa:c5:94:f1:71:4b: 8a:81:82:50:20:07:48:bb:8f:dc:d0:d8:fc:b1:db: 75:e1:f9:f2:93:34:8c:50:81:de:fd:9c:f6:0d:dd: 1f:f9:10:0e:a5:1c:1b:a5:01:e9:f7:b8:a5:fc:10: 54:7c:d5:0a:56:25:19:d0:50:31:1f:76:44:69:14: 90:58:ae:31:a1:ba:30:4c:c6:47:b9:f7:82:93:fb: 84:50:33:f0:d3:e7:b5:f6:75:3a:5f:78:3c:fe:10: 0d:7a:f3:d4:99:82:3e:5b:30:7b:5e:4e:cf:bc:96: 76:c5:6a:cd:23:73:e6:6f:50:c0:4b:ad:a1:7d:d1: 49:a7:90:b2:12:49:4c:0b:8b:00:ba:d7:c5:22:03: 04:ae:10:36:d9:f4:6b:f6:77:bd:d3:60:03:1d:89: 28:9a:97:0b:f6:f5:e0:98:6b:f5:ea:46:6c:68:d9: 8d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:9E:25:51:C6:CD:AA:CA:DC:A7:76:73:68:96:AF:6C:B8:6C:85:45 X509v3 Authority Key Identifier: keyid:4A:CA:AD:0A:28:A6:50:A9:BD:65:B0:A6:E1:90:57:F4:7B:DB:94:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/3130332e3136332e3234312e302f32342d3234203d3e20313431383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.241.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b2:ac:38:c3:a4:7d:a2:f8:d1:36:89:a7:fd:40:47:13:0b: 9d:69:a4:1d:6e:74:30:d3:ea:65:e8:98:1b:0f:8e:41:99:da: a3:8e:c9:0b:3b:bd:dd:f1:92:fc:35:4a:a4:a9:18:cc:1b:d7: 26:d0:ca:d7:d7:cf:39:28:e6:a1:32:fc:71:0d:72:d3:59:87: d6:81:b7:05:e5:27:b4:7b:f7:18:dc:1a:c0:9a:88:f3:48:4d: 26:0f:8c:a3:46:cd:c7:e3:ea:f3:c3:e8:45:cc:f3:92:50:50: 5c:39:19:51:b2:fd:91:dd:35:9d:66:a8:eb:1a:d2:0a:a9:4c: 43:86:0b:f8:91:a1:38:f0:25:cc:03:35:89:f0:48:90:27:81: 94:d8:11:28:00:d6:8e:06:7b:7b:33:80:80:b8:92:59:26:a8: 98:6d:0e:20:8f:51:c2:a4:ce:37:cd:57:1f:61:9e:2c:7e:a7: 72:65:27:73:66:00:bd:78:04:a5:eb:6b:57:89:a2:e0:d1:e7: 98:b4:55:91:45:39:25:a9:32:94:bf:bd:86:e5:d2:33:cb:36: 99:10:14:7c:fc:14:a8:02:d4:1a:e7:e4:06:71:c0:d5:5e:ea: d2:64:f3:30:54:a8:ce:f4:8a:00:59:63:bb:b4:de:23:30:b0: 35:89:95:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDC5U/X5BjAV+9DbM5GoJrX8iLmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDQUFEMEEyOEE2NTBBOUJENjVCMEE2RTE5MDU3RjQ3 QkRCOTQyRjAeFw0yNjA1MDMwMjIyNDBaFw0yNzA1MDIwMjI3NDBaMDMxMTAvBgNV BAMTKEI1OUUyNTUxQzZDREFBQ0FEQ0E3NzY3MzY4OTZBRjZDQjg2Qzg1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIN597s6F/IOkq6RzhS8+GZvfp B36RKoARv++ovOp/AgO3jAp9wrKnBroOnkzdeQxpn2MaqYYczxTuKayk5CTJGGl6 Q2YCg9slG7MjEL4hds9DIPrFlPFxS4qBglAgB0i7j9zQ2Pyx23Xh+fKTNIxQgd79 nPYN3R/5EA6lHBulAen3uKX8EFR81QpWJRnQUDEfdkRpFJBYrjGhujBMxke594KT +4RQM/DT57X2dTpfeDz+EA1689SZgj5bMHteTs+8lnbFas0jc+ZvUMBLraF90Umn kLISSUwLiwC618UiAwSuEDbZ9Gv2d73TYAMdiSialwv29eCYa/XqRmxo2Y0RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtZ4lUcbNqsrcp3ZzaJavbLhshUUwHwYDVR0j BBgwFoAUSsqtCiimUKm9ZbCm4ZBX9HvblC8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2M1Yjc4NWQtODMwMy00NWM1LTlhNTgtZWMxMjg4NzQwODY2LzAvNEFDQUFEMEEy OEE2NTBBOUJENjVCMEE2RTE5MDU3RjQ3QkRCOTQyRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QUNBQUQwQTI4QTY1MEE5QkQ2NUIwQTZFMTkwNTdGNDdCREI5 NDJGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjNWI3ODVkLTgzMDMtNDVjNS05 YTU4LWVjMTI4ODc0MDg2Ni8wLzMxMzAzMzJlMzEzNjMzMmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno/EwDQYJ KoZIhvcNAQELBQADggEBAGKyrDjDpH2i+NE2iaf9QEcTC51ppB1udDDT6mXomBsP jkGZ2qOOyQs7vd3xkvw1SqSpGMwb1ybQytfXzzko5qEy/HENctNZh9aBtwXlJ7R7 9xjcGsCaiPNITSYPjKNGzcfj6vPD6EXM85JQUFw5GVGy/ZHdNZ1mqOsa0gqpTEOG C/iRoTjwJcwDNYnwSJAngZTYESgA1o4Ge3szgIC4klkmqJhtDiCPUcKkzjfNVx9h nix+p3JlJ3NmAL14BKXra1eJouDR55i0VZFFOSWpMpS/vYbl0jPLNpkQFHz8FKgC 1Brn5AZxwNVe6tJk8zBUqM70igBZY7u03iMwsDWJle8= -----END CERTIFICATE-----Generated at Wed May 13 13:27:51 2026 by rpki-client