$ rpki-client -vvf rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa File: 3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: vdwdHoa0dxzBT4qxWDgRcyQiniSgsgBOI6Tm2dJ4lDY= Subject key identifier: 8E:79:C8:03:1C:96:22:D8:F3:6F:B5:0A:73:E2:27:B8:D9:D8:2A:07 Certificate issuer: /CN=9A347241E9DA18B0BB748E5558F85DFA6AD14F13 Certificate serial: 4CAACB28018E6C2E7513A245A1E186DE3D69B9C5 Authority key identifier: 9A:34:72:41:E9:DA:18:B0:BB:74:8E:55:58:F8:5D:FA:6A:D1:4F:13 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa Signing time: Sun 03 May 2026 02:27:59 +0000 ROA not before: Sun 03 May 2026 02:22:59 +0000 ROA not after: Sun 02 May 2027 02:27:59 +0000 asID: 140470 IP address blocks: 103.159.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.crl rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:aa:cb:28:01:8e:6c:2e:75:13:a2:45:a1:e1:86:de:3d:69:b9:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A347241E9DA18B0BB748E5558F85DFA6AD14F13 Validity Not Before: May 3 02:22:59 2026 GMT Not After : May 2 02:27:59 2027 GMT Subject: CN=8E79C8031C9622D8F36FB50A73E227B8D9D82A07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7e:d8:de:5d:97:ef:43:0e:b6:2a:bc:53:0e: ea:d2:5a:af:f2:da:51:d1:bb:1f:69:37:3a:bb:ac: 3a:db:97:7c:2c:83:21:92:67:5a:1e:45:d1:60:21: 04:8b:54:f6:3f:95:92:58:d2:56:36:0d:8e:c6:f5: f4:90:66:9d:82:17:f7:01:58:38:3e:8c:30:53:50: 38:a6:73:6e:fc:1a:be:62:22:02:bd:0c:22:6b:85: d8:4d:13:63:25:87:ce:92:37:1c:49:26:cb:b3:da: f6:3f:88:8a:23:36:2b:ae:bd:1b:bf:e0:5e:56:67: 99:ae:62:c6:eb:ed:4e:e4:32:8d:bc:6e:00:58:62: e0:88:b2:ee:07:4b:09:c4:eb:2b:ae:95:15:91:59: 4d:1c:ba:23:7f:21:10:03:af:e7:5f:da:e6:98:12: ea:74:4a:34:5a:e8:3a:50:2a:8d:85:e6:d9:6d:c5: 30:f8:81:53:b8:00:68:76:e5:82:2b:1f:b5:b8:04: 08:a7:44:4e:5a:c9:27:e4:bf:dc:24:ed:fc:35:ea: 4d:32:4e:7f:ed:87:4e:3e:1e:60:c2:2f:8e:ca:0f: 59:8e:63:f7:1d:b2:c4:fd:d6:c9:c3:d7:ea:28:86: 80:0a:71:90:ca:47:4c:4a:64:64:76:fa:1e:7a:5e: 87:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:79:C8:03:1C:96:22:D8:F3:6F:B5:0A:73:E2:27:B8:D9:D8:2A:07 X509v3 Authority Key Identifier: keyid:9A:34:72:41:E9:DA:18:B0:BB:74:8E:55:58:F8:5D:FA:6A:D1:4F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9A347241E9DA18B0BB748E5558F85DFA6AD14F13.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.197.0/24 Signature Algorithm: sha256WithRSAEncryption 94:42:96:8b:0d:9e:44:78:f0:13:58:09:1b:3f:1d:39:cf:95: ab:e4:13:28:23:0d:e4:69:5b:48:d6:f7:75:5b:e3:64:ac:6e: cd:b2:c9:9c:af:e2:6a:18:c0:11:25:c3:ef:7d:cd:09:cf:7d: 4b:f9:90:d6:df:13:4e:52:74:40:f6:8b:c1:9f:74:92:bc:ea: ce:44:fd:db:d7:b9:0d:09:3a:c0:73:45:48:3b:ff:80:de:34: 86:ed:fd:4a:ed:d0:76:2b:45:9c:ad:ee:b0:f6:27:cc:11:4e: e2:4e:fe:e2:df:32:10:92:5c:d1:35:7f:3b:42:ab:17:f0:83: 57:7e:f5:3f:ef:88:3e:b0:7f:9b:32:fd:62:af:bb:37:45:28: 5a:1b:4c:d9:73:b9:0a:71:44:29:4f:ac:85:89:ac:c7:b2:d1: 6f:bd:c3:42:be:b0:e6:64:b5:5b:00:c1:df:9f:fb:78:a3:d6: da:59:a5:6f:ba:50:c1:cc:24:0e:2e:04:5c:d8:3b:17:cf:6f: d6:a6:32:a9:32:4e:87:5d:bb:bb:ea:a7:f1:97:5a:9d:54:0e: 82:cb:0a:d6:ce:8e:42:cc:7d:1c:6c:ba:49:89:9d:c8:50:14: e2:96:b5:e4:fc:5f:4a:04:6c:ab:c4:03:6e:67:d3:81:ea:52: 39:a1:a7:4d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTKrLKAGObC51E6JFoeGG3j1pucUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUEzNDcyNDFFOURBMThCMEJCNzQ4RTU1NThGODVERkE2 QUQxNEYxMzAeFw0yNjA1MDMwMjIyNTlaFw0yNzA1MDIwMjI3NTlaMDMxMTAvBgNV BAMTKDhFNzlDODAzMUM5NjIyRDhGMzZGQjUwQTczRTIyN0I4RDlEODJBMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoftjeXZfvQw62KrxTDurSWq/y 2lHRux9pNzq7rDrbl3wsgyGSZ1oeRdFgIQSLVPY/lZJY0lY2DY7G9fSQZp2CF/cB WDg+jDBTUDimc278Gr5iIgK9DCJrhdhNE2Mlh86SNxxJJsuz2vY/iIojNiuuvRu/ 4F5WZ5muYsbr7U7kMo28bgBYYuCIsu4HSwnE6yuulRWRWU0cuiN/IRADr+df2uaY Eup0SjRa6DpQKo2F5tltxTD4gVO4AGh25YIrH7W4BAinRE5aySfkv9wk7fw16k0y Tn/th04+HmDCL47KD1mOY/cdssT91snD1+oohoAKcZDKR0xKZGR2+h56XofNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjnnIAxyWItjzb7UKc+InuNnYKgcwHwYDVR0j BBgwFoAUmjRyQenaGLC7dI5VWPhd+mrRTxMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2NkZDU3NzQtMzBkZC00YTAwLWIxYTktOWIxMjgyNjkzMGMyLzAvOUEzNDcyNDFF OURBMThCMEJCNzQ4RTU1NThGODVERkE2QUQxNEYxMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QTM0NzI0MUU5REExOEIwQkI3NDhFNTU1OEY4NURGQTZBRDE0 RjEzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnn8UwDQYJ KoZIhvcNAQELBQADggEBAJRClosNnkR48BNYCRs/HTnPlavkEygjDeRpW0jW93Vb 42Ssbs2yyZyv4moYwBElw+99zQnPfUv5kNbfE05SdED2i8GfdJK86s5E/dvXuQ0J OsBzRUg7/4DeNIbt/Urt0HYrRZyt7rD2J8wRTuJO/uLfMhCSXNE1fztCqxfwg1d+ 9T/viD6wf5sy/WKvuzdFKFobTNlzuQpxRClPrIWJrMey0W+9w0K+sOZktVsAwd+f +3ij1tpZpW+6UMHMJA4uBFzYOxfPb9amMqkyToddu7vqp/GXWp1UDoLLCtbOjkLM fRxsukmJnchQFOKWteT8X0oEbKvEA25n04HqUjmhp00= -----END CERTIFICATE-----Generated at Wed May 13 16:48:17 2026 by rpki-client