$ rpki-client -vvf rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e34332e302e302f32342d3234203d3e203539313333.roa File: 3130332e34332e302e302f32342d3234203d3e203539313333.roa (raw, json) Hash identifier: B8wFxDYdDhj0bVN1Mv977ycTYWUiqiZS21F8KsySBWY= Subject key identifier: BC:5B:06:1E:5E:BB:B0:05:C9:99:49:CE:D2:C4:0C:92:56:C4:0D:DD Certificate issuer: /CN=51D2872389FAB3963625D56D9C53751581B4095A Certificate serial: 0457175482C258C070A666E517FE323270F5D0E4 Authority key identifier: 51:D2:87:23:89:FA:B3:96:36:25:D5:6D:9C:53:75:15:81:B4:09:5A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51D2872389FAB3963625D56D9C53751581B4095A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e34332e302e302f32342d3234203d3e203539313333.roa Signing time: Sun 03 May 2026 02:28:45 +0000 ROA not before: Sun 03 May 2026 02:23:45 +0000 ROA not after: Sun 02 May 2027 02:28:45 +0000 asID: 59133 IP address blocks: 103.43.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/51D2872389FAB3963625D56D9C53751581B4095A.crl rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/51D2872389FAB3963625D56D9C53751581B4095A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51D2872389FAB3963625D56D9C53751581B4095A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:57:17:54:82:c2:58:c0:70:a6:66:e5:17:fe:32:32:70:f5:d0:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51D2872389FAB3963625D56D9C53751581B4095A Validity Not Before: May 3 02:23:45 2026 GMT Not After : May 2 02:28:45 2027 GMT Subject: CN=BC5B061E5EBBB005C99949CED2C40C9256C40DDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:36:54:aa:b3:86:f2:60:0e:a9:6d:91:fc:c7: 0f:16:3b:95:6a:a2:2d:df:14:fc:e5:3f:e2:63:2d: 95:08:c7:a0:78:96:f8:ec:79:8e:43:57:8d:42:79: 56:f5:e8:6a:a1:b6:46:2e:d4:90:26:b4:c0:34:97: 38:c5:c8:83:2c:14:b3:f4:14:61:6f:9b:78:27:d3: 62:bc:d5:24:c7:90:2c:9c:74:9c:2d:0e:c0:23:4b: bb:cf:30:8b:f5:db:0d:86:55:0a:32:27:d3:27:78: 43:8d:98:22:11:e8:3e:52:ea:db:1a:ef:43:ea:91: 08:cb:74:96:d2:80:d1:8b:80:9f:f5:70:ac:d9:b9: e4:d4:45:c1:bd:60:85:2b:9e:01:8b:f6:4b:36:b1: 27:14:00:91:09:d1:58:1e:d3:f6:ef:91:3a:7b:8c: 21:b1:ed:fc:73:7c:24:1a:be:4b:a0:71:a4:0b:59: f0:37:84:3b:a1:9b:fb:8a:66:81:30:15:52:61:03: b4:e2:f9:eb:10:8b:bc:fd:fa:e4:f1:f3:d3:ac:56: b7:f8:9b:91:3e:bf:85:87:e5:27:e0:af:3d:87:e5: 51:76:2f:e0:20:bd:0f:c3:cd:84:af:1b:f8:2a:fc: f2:a1:22:02:a4:c6:c3:a3:9f:ea:0a:3d:2f:38:b9: ce:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5B:06:1E:5E:BB:B0:05:C9:99:49:CE:D2:C4:0C:92:56:C4:0D:DD X509v3 Authority Key Identifier: keyid:51:D2:87:23:89:FA:B3:96:36:25:D5:6D:9C:53:75:15:81:B4:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/51D2872389FAB3963625D56D9C53751581B4095A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51D2872389FAB3963625D56D9C53751581B4095A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e34332e302e302f32342d3234203d3e203539313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.0.0/24 Signature Algorithm: sha256WithRSAEncryption 33:0c:ed:3c:7b:f0:82:f2:9c:ac:1f:25:3e:82:34:34:2a:b2: d2:92:ee:73:9d:48:c7:f4:97:19:19:8e:83:ec:b0:b6:22:b3: cf:4b:2b:ea:98:66:b7:f8:e2:55:1a:cb:57:22:dc:36:c5:a4: 83:25:d7:4e:ef:7a:7c:ac:d1:b4:28:9d:e3:4d:f0:8f:26:55: b2:a9:7a:b5:70:11:ea:f2:a3:02:12:be:af:42:29:68:0b:84: 6d:1a:62:31:e9:34:0a:b7:b2:9f:0b:5c:2b:a2:9b:fd:32:41: 35:ea:2d:6e:27:f2:53:34:ce:61:79:cc:14:7b:d9:d1:c9:18: 58:5d:38:0b:d3:e8:03:9c:64:62:ba:35:22:52:85:62:55:0b: 6c:29:3e:52:df:82:a2:45:79:ae:dc:e4:32:5c:64:ce:85:7d: 90:ed:84:6c:83:0c:e5:8d:5a:8a:ab:94:ad:8f:2e:a0:26:5c: 8b:ce:9c:0b:1f:23:aa:a6:d7:c3:6e:a9:42:bd:88:0b:40:29: 43:49:76:5a:4c:03:ea:4c:d6:46:a0:0c:38:6f:1f:9a:35:96: 27:1b:50:9d:e6:67:dd:2f:ed:63:cf:09:07:98:79:85:d3:4e: d6:21:7e:eb:ca:8c:59:ca:f7:42:62:c1:57:b1:51:9d:42:8b: da:7f:18:2b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUBFcXVILCWMBwpmblF/4yMnD10OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTFEMjg3MjM4OUZBQjM5NjM2MjVENTZEOUM1Mzc1MTU4 MUI0MDk1QTAeFw0yNjA1MDMwMjIzNDVaFw0yNzA1MDIwMjI4NDVaMDMxMTAvBgNV BAMTKEJDNUIwNjFFNUVCQkIwMDVDOTk5NDlDRUQyQzQwQzkyNTZDNDBEREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7NlSqs4byYA6pbZH8xw8WO5Vq oi3fFPzlP+JjLZUIx6B4lvjseY5DV41CeVb16GqhtkYu1JAmtMA0lzjFyIMsFLP0 FGFvm3gn02K81STHkCycdJwtDsAjS7vPMIv12w2GVQoyJ9MneEONmCIR6D5S6tsa 70PqkQjLdJbSgNGLgJ/1cKzZueTURcG9YIUrngGL9ks2sScUAJEJ0Vge0/bvkTp7 jCGx7fxzfCQavkugcaQLWfA3hDuhm/uKZoEwFVJhA7Ti+esQi7z9+uTx89OsVrf4 m5E+v4WH5Sfgrz2H5VF2L+AgvQ/DzYSvG/gq/PKhIgKkxsOjn+oKPS84uc75AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUvFsGHl67sAXJmUnO0sQMklbEDd0wHwYDVR0j BBgwFoAUUdKHI4n6s5Y2JdVtnFN1FYG0CVowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDAwZWM0M2ItNDMzZC00MDdkLWJkZWUtZWVhNjIxNmE2ZmY0LzAvNTFEMjg3MjM4 OUZBQjM5NjM2MjVENTZEOUM1Mzc1MTU4MUI0MDk1QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MUQyODcyMzg5RkFCMzk2MzYyNUQ1NkQ5QzUzNzUxNTgxQjQw OTVBLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDAwZWM0M2ItNDMzZC00MDdkLWJk ZWUtZWVhNjIxNmE2ZmY0LzAvMzEzMDMzMmUzNDMzMmUzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzkzMTMzMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnKwAwDQYJKoZIhvcNAQEL BQADggEBADMM7Tx78ILynKwfJT6CNDQqstKS7nOdSMf0lxkZjoPssLYis89LK+qY Zrf44lUay1ci3DbFpIMl107venys0bQoneNN8I8mVbKperVwEeryowISvq9CKWgL hG0aYjHpNAq3sp8LXCuim/0yQTXqLW4n8lM0zmF5zBR72dHJGFhdOAvT6AOcZGK6 NSJShWJVC2wpPlLfgqJFea7c5DJcZM6FfZDthGyDDOWNWoqrlK2PLqAmXIvOnAsf I6qm18NuqUK9iAtAKUNJdlpMA+pM1kagDDhvH5o1licbUJ3mZ90v7WPPCQeYeYXT TtYhfuvKjFnK90JiwVexUZ1Ci9p/GCs= -----END CERTIFICATE-----Generated at Wed May 13 03:48:58 2026 by rpki-client