$ rpki-client -vvf rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa File: 3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa (raw, json) Hash identifier: wInMUXHOP8RJI5eoz/+Dc4x331OyQaS/P4AI/7E+Chw= Subject key identifier: 16:02:AF:DD:89:80:BB:E4:F2:23:11:5E:CC:20:8C:62:86:90:FB:74 Certificate issuer: /CN=9A347241E9DA18B0BB748E5558F85DFA6AD14F13 Certificate serial: 2E26C707B91C76D0ACCC717DA4C23915B0BC84E1 Authority key identifier: 9A:34:72:41:E9:DA:18:B0:BB:74:8E:55:58:F8:5D:FA:6A:D1:4F:13 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa Signing time: Sun 03 May 2026 02:27:59 +0000 ROA not before: Sun 03 May 2026 02:22:59 +0000 ROA not after: Sun 02 May 2027 02:27:59 +0000 asID: 140470 IP address blocks: 103.159.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.crl rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:26:c7:07:b9:1c:76:d0:ac:cc:71:7d:a4:c2:39:15:b0:bc:84:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A347241E9DA18B0BB748E5558F85DFA6AD14F13 Validity Not Before: May 3 02:22:59 2026 GMT Not After : May 2 02:27:59 2027 GMT Subject: CN=1602AFDD8980BBE4F223115ECC208C628690FB74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e7:5d:33:f7:ac:e9:c9:27:70:33:b6:e4:b6: 66:26:bb:e4:95:ce:56:c4:a5:be:4c:fd:5b:41:89: 3c:33:e6:2b:31:bf:63:1e:dd:b9:0a:3a:44:a4:32: 86:dc:15:32:da:2b:1e:3d:f5:86:87:61:35:51:5b: 42:ba:fa:7d:43:38:1c:c0:1f:33:de:aa:76:98:a8: 43:2e:d6:5f:bd:6f:88:9b:90:1f:40:e3:4c:99:47: 4f:21:8d:58:ee:ec:c2:ed:c1:5c:f6:31:99:70:27: ae:6b:ba:5a:dd:02:9c:8b:85:35:57:9b:12:82:5d: 2c:e5:6d:5f:5d:92:3a:45:e8:54:41:91:15:3e:a9: 24:bf:ca:38:8e:a3:da:34:03:7c:38:4d:91:08:a5: 81:c0:14:c9:2b:07:e9:da:05:29:92:1e:d6:c9:ef: 5d:85:44:9e:e7:f0:7e:3d:62:00:96:3b:30:e8:8a: 18:55:a9:3c:53:ae:3b:46:72:f0:4b:cb:c3:05:22: 8c:06:d8:a5:46:1a:30:f9:be:d6:5f:c2:9c:3f:a1: 78:20:c4:a4:90:a6:a9:b4:98:d6:aa:3d:d1:d9:c8: 8e:30:a8:32:b6:65:ae:11:42:be:71:37:13:98:96: 05:50:90:0e:f7:fa:f6:95:53:1f:61:17:1d:c4:2c: d2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:02:AF:DD:89:80:BB:E4:F2:23:11:5E:CC:20:8C:62:86:90:FB:74 X509v3 Authority Key Identifier: keyid:9A:34:72:41:E9:DA:18:B0:BB:74:8E:55:58:F8:5D:FA:6A:D1:4F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.196.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:60:15:14:9f:7e:81:b1:45:48:c4:b6:1f:73:a3:08:f9:e9: e1:ad:41:cd:b3:95:f9:7a:d7:73:a2:c1:c0:02:57:51:02:d1: 29:ec:ac:d9:d7:22:bb:53:8c:e5:a0:a9:0d:fc:66:9c:8a:c5: 0c:87:ca:21:6b:41:b4:04:6a:26:f3:f6:b1:a6:42:be:55:1c: 7c:4d:a7:4a:fd:24:22:8b:3f:4f:3d:88:21:e1:14:a8:f0:4a: 49:74:a4:74:2b:d2:cb:f1:50:cc:58:bd:b1:e9:9e:ee:64:28: c8:bd:bb:74:51:b2:4f:f9:94:14:64:67:59:db:74:1e:aa:6a: dd:91:33:38:57:cc:e2:4e:43:7b:fc:b0:90:08:fa:59:30:e3: d8:ae:30:ab:24:5e:6e:8a:bb:5a:c6:99:5b:7a:3b:76:89:2b: 07:9d:64:34:ee:ef:b3:54:6b:68:74:34:61:56:fe:8d:ce:42: 90:d4:9a:72:81:8a:71:32:38:78:20:d5:06:72:09:7e:d1:c4: 39:d4:3e:cd:28:d7:0b:bb:08:0e:1b:89:5e:d3:e9:4e:07:4e: 40:f4:d3:23:e3:ae:40:9e:c8:01:86:92:50:81:5c:06:32:8d: d3:ce:da:30:ec:71:01:85:75:4a:1f:29:9c:84:2e:4a:ee:68: 80:68:dd:ee -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULibHB7kcdtCszHF9pMI5FbC8hOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUEzNDcyNDFFOURBMThCMEJCNzQ4RTU1NThGODVERkE2 QUQxNEYxMzAeFw0yNjA1MDMwMjIyNTlaFw0yNzA1MDIwMjI3NTlaMDMxMTAvBgNV BAMTKDE2MDJBRkREODk4MEJCRTRGMjIzMTE1RUNDMjA4QzYyODY5MEZCNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV510z96zpySdwM7bktmYmu+SV zlbEpb5M/VtBiTwz5isxv2Me3bkKOkSkMobcFTLaKx499YaHYTVRW0K6+n1DOBzA HzPeqnaYqEMu1l+9b4ibkB9A40yZR08hjVju7MLtwVz2MZlwJ65rulrdApyLhTVX mxKCXSzlbV9dkjpF6FRBkRU+qSS/yjiOo9o0A3w4TZEIpYHAFMkrB+naBSmSHtbJ 712FRJ7n8H49YgCWOzDoihhVqTxTrjtGcvBLy8MFIowG2KVGGjD5vtZfwpw/oXgg xKSQpqm0mNaqPdHZyI4wqDK2Za4RQr5xNxOYlgVQkA73+vaVUx9hFx3ELNKLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFgKv3YmAu+TyIxFezCCMYoaQ+3QwHwYDVR0j BBgwFoAUmjRyQenaGLC7dI5VWPhd+mrRTxMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2NkZDU3NzQtMzBkZC00YTAwLWIxYTktOWIxMjgyNjkzMGMyLzAvOUEzNDcyNDFF OURBMThCMEJCNzQ4RTU1NThGODVERkE2QUQxNEYxMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QTM0NzI0MUU5REExOEIwQkI3NDhFNTU1OEY4NURGQTZBRDE0 RjEzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8QwDQYJ KoZIhvcNAQELBQADggEBAF9gFRSffoGxRUjEth9zowj56eGtQc2zlfl613OiwcAC V1EC0SnsrNnXIrtTjOWgqQ38ZpyKxQyHyiFrQbQEaibz9rGmQr5VHHxNp0r9JCKL P089iCHhFKjwSkl0pHQr0svxUMxYvbHpnu5kKMi9u3RRsk/5lBRkZ1nbdB6qat2R MzhXzOJOQ3v8sJAI+lkw49iuMKskXm6Ku1rGmVt6O3aJKwedZDTu77NUa2h0NGFW /o3OQpDUmnKBinEyOHgg1QZyCX7RxDnUPs0o1wu7CA4biV7T6U4HTkD00yPjrkCe yAGGklCBXAYyjdPO2jDscQGFdUofKZyELkruaIBo3e4= -----END CERTIFICATE-----Generated at Wed May 13 13:00:34 2026 by rpki-client