$ rpki-client -vvf rpki-rsync.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa File: 3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa (raw, json) Hash identifier: A6nVc+CU4v4uaObx3pcTTBPbO/2k+l19C2GraBAa5qQ= Subject key identifier: 10:CF:D5:98:2E:D2:F1:C0:C1:7D:B6:3A:1A:1D:5A:99:20:35:F6:8F Certificate issuer: /CN=28880E6A35B6C8AECBC08328E0C2F639619FE0BA Certificate serial: 0CA06C0D5B746332BAA9FC9CACFE0186AEB13800 Authority key identifier: 28:88:0E:6A:35:B6:C8:AE:CB:C0:83:28:E0:C2:F6:39:61:9F:E0:BA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28880E6A35B6C8AECBC08328E0C2F639619FE0BA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa Signing time: Sun 03 May 2026 02:27:46 +0000 ROA not before: Sun 03 May 2026 02:22:46 +0000 ROA not after: Sun 02 May 2027 02:27:46 +0000 asID: 141909 IP address blocks: 103.164.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/28880E6A35B6C8AECBC08328E0C2F639619FE0BA.crl rsync://rpki-rsync.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/28880E6A35B6C8AECBC08328E0C2F639619FE0BA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28880E6A35B6C8AECBC08328E0C2F639619FE0BA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a0:6c:0d:5b:74:63:32:ba:a9:fc:9c:ac:fe:01:86:ae:b1:38:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28880E6A35B6C8AECBC08328E0C2F639619FE0BA Validity Not Before: May 3 02:22:46 2026 GMT Not After : May 2 02:27:46 2027 GMT Subject: CN=10CFD5982ED2F1C0C17DB63A1A1D5A992035F68F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a3:53:86:5a:f1:3c:b8:47:e4:72:53:fc:bf: b0:eb:a5:e8:a2:1e:a3:d3:95:84:4d:9b:75:c3:74: 3f:2b:fe:c7:e4:3f:35:f2:74:9c:54:88:13:d9:5c: 05:59:eb:d8:41:d9:83:88:aa:1f:fd:0f:39:03:48: dc:4f:97:50:0e:8d:54:88:6a:95:d0:98:0b:34:76: 51:9b:6e:a6:f0:6f:28:5e:84:7f:eb:d8:27:e3:ec: 25:79:9f:10:88:58:01:76:0d:10:28:dc:fc:ca:1e: 92:b2:65:f0:5d:13:0f:0b:e1:f3:3f:21:e5:27:89: d7:4d:87:e4:2c:68:cf:ce:d3:ad:bd:e1:6d:6a:a4: 93:ff:ea:50:9d:a1:c3:9e:df:51:78:53:94:78:c3: 68:05:d0:e9:9a:cf:41:a7:7e:2f:64:59:cb:df:53: 7f:e0:e4:8d:b7:63:1a:d1:b9:79:76:cc:c6:f2:fa: ca:89:d9:2c:ca:ad:56:26:ab:45:69:28:7a:d9:ff: a5:be:fd:a7:a9:09:e3:80:a0:99:73:20:ec:46:9a: 2f:fd:82:3e:62:1a:6d:68:70:5e:36:c2:37:8c:4e: a0:fa:16:76:cd:12:17:ae:51:77:21:fd:cc:ed:84: 82:ac:e8:06:b7:d6:34:49:f6:91:28:37:43:60:ba: 05:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:CF:D5:98:2E:D2:F1:C0:C1:7D:B6:3A:1A:1D:5A:99:20:35:F6:8F X509v3 Authority Key Identifier: keyid:28:88:0E:6A:35:B6:C8:AE:CB:C0:83:28:E0:C2:F6:39:61:9F:E0:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/28880E6A35B6C8AECBC08328E0C2F639619FE0BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28880E6A35B6C8AECBC08328E0C2F639619FE0BA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/24 Signature Algorithm: sha256WithRSAEncryption 76:4a:ed:69:5b:4b:48:38:e3:99:f2:7f:c5:6e:f9:0d:f1:3a: a2:c6:9a:c8:4e:10:83:9d:02:c1:c5:fc:16:59:66:d2:74:6f: 55:7c:de:59:cb:d6:a0:39:13:19:14:3e:21:dd:89:09:c6:76: 4b:26:9e:11:4f:c5:de:0f:ca:92:0a:ac:9b:c5:e8:f1:79:83: 4d:36:5a:b9:09:34:48:90:f3:46:af:69:d5:d2:8e:52:80:4b: 0b:24:a1:64:81:25:9f:12:32:d1:79:06:90:69:78:40:5b:da: c6:b5:cd:eb:34:69:fd:0f:83:63:ad:80:28:ac:b0:94:8f:8e: ac:c8:c8:bb:c0:a3:c7:18:29:79:3f:d2:0c:62:c7:e9:91:82: f2:32:9d:ad:ec:54:26:a6:84:29:13:c2:af:53:0c:d4:84:49: f6:7a:a9:6e:fe:e0:07:a0:6b:86:c7:5a:18:ed:05:59:2f:c7: ec:01:00:76:c1:eb:a9:02:34:e0:e5:7c:65:e7:d5:7d:bc:4e: a7:8b:c1:20:d6:08:82:60:e6:53:30:05:92:6b:b5:cd:22:83: c4:b7:65:6e:d0:ee:35:04:1d:a0:c2:af:96:41:10:a1:8b:ff: b0:58:26:72:40:4b:fc:e9:ba:07:3a:76:66:a8:e3:e1:2c:56: 9d:9d:90:d3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDKBsDVt0YzK6qfycrP4Bhq6xOAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg4ODBFNkEzNUI2QzhBRUNCQzA4MzI4RTBDMkY2Mzk2 MTlGRTBCQTAeFw0yNjA1MDMwMjIyNDZaFw0yNzA1MDIwMjI3NDZaMDMxMTAvBgNV BAMTKDEwQ0ZENTk4MkVEMkYxQzBDMTdEQjYzQTFBMUQ1QTk5MjAzNUY2OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0o1OGWvE8uEfkclP8v7Drpeii HqPTlYRNm3XDdD8r/sfkPzXydJxUiBPZXAVZ69hB2YOIqh/9DzkDSNxPl1AOjVSI apXQmAs0dlGbbqbwbyhehH/r2Cfj7CV5nxCIWAF2DRAo3PzKHpKyZfBdEw8L4fM/ IeUniddNh+QsaM/O06294W1qpJP/6lCdocOe31F4U5R4w2gF0Omaz0Gnfi9kWcvf U3/g5I23YxrRuXl2zMby+sqJ2SzKrVYmq0VpKHrZ/6W+/aepCeOAoJlzIOxGmi/9 gj5iGm1ocF42wjeMTqD6FnbNEheuUXch/czthIKs6Aa31jRJ9pEoN0NgugUjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEM/VmC7S8cDBfbY6Gh1amSA19o8wHwYDVR0j BBgwFoAUKIgOajW2yK7LwIMo4ML2OWGf4LowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2M4ODQ0MmItYzQ4ZS00YmEwLThhZDctNThlMTI2M2M2ZGM3LzAvMjg4ODBFNkEz NUI2QzhBRUNCQzA4MzI4RTBDMkY2Mzk2MTlGRTBCQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODg4MEU2QTM1QjZDOEFFQ0JDMDgzMjhFMEMyRjYzOTYxOUZF MEJBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjODg0NDJiLWM0OGUtNGJhMC04 YWQ3LTU4ZTEyNjNjNmRjNy8wLzMxMzAzMzJlMzEzNjM0MmUzMTM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpJYwDQYJ KoZIhvcNAQELBQADggEBAHZK7WlbS0g445nyf8Vu+Q3xOqLGmshOEIOdAsHF/BZZ ZtJ0b1V83lnL1qA5ExkUPiHdiQnGdksmnhFPxd4PypIKrJvF6PF5g002WrkJNEiQ 80avadXSjlKASwskoWSBJZ8SMtF5BpBpeEBb2sa1zes0af0Pg2OtgCissJSPjqzI yLvAo8cYKXk/0gxix+mRgvIyna3sVCamhCkTwq9TDNSESfZ6qW7+4Aega4bHWhjt BVkvx+wBAHbB66kCNODlfGXn1X28TqeLwSDWCIJg5lMwBZJrtc0ig8S3ZW7Q7jUE HaDCr5ZBEKGL/7BYJnJAS/zpugc6dmao4+EsVp2dkNM= -----END CERTIFICATE-----Generated at Wed May 13 12:19:13 2026 by rpki-client