$ rpki-client -vvf rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa File: 3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa (raw, json) Hash identifier: IkerkjqgnhBAn5EejyZFy6lrwBbURS4/dFzRwIvSKxM= Subject key identifier: 16:48:26:FC:6E:3C:5D:73:92:49:D2:A0:FF:5C:53:75:95:BA:BE:E4 Certificate issuer: /CN=CEC7223DC3162D68B5B173F5479670C6ED7E854B Certificate serial: 3853052A0EB9AC95731B9EBF053254978D72C2DD Authority key identifier: CE:C7:22:3D:C3:16:2D:68:B5:B1:73:F5:47:96:70:C6:ED:7E:85:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEC7223DC3162D68B5B173F5479670C6ED7E854B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa Signing time: Sun 03 May 2026 02:29:34 +0000 ROA not before: Sun 03 May 2026 02:24:34 +0000 ROA not after: Sun 02 May 2027 02:29:34 +0000 asID: 136102 IP address blocks: 103.10.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/CEC7223DC3162D68B5B173F5479670C6ED7E854B.crl rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/CEC7223DC3162D68B5B173F5479670C6ED7E854B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEC7223DC3162D68B5B173F5479670C6ED7E854B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:53:05:2a:0e:b9:ac:95:73:1b:9e:bf:05:32:54:97:8d:72:c2:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC7223DC3162D68B5B173F5479670C6ED7E854B Validity Not Before: May 3 02:24:34 2026 GMT Not After : May 2 02:29:34 2027 GMT Subject: CN=164826FC6E3C5D739249D2A0FF5C537595BABEE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:62:33:af:38:5c:7f:a5:cd:b5:80:9d:01:15: bc:bd:0a:af:1c:65:4e:e0:9e:6f:3f:d1:34:f5:15: 47:5d:c5:8b:8e:4b:95:e1:80:a0:a8:e9:bd:f9:16: 8c:65:05:89:b1:36:aa:04:d1:d8:b9:82:de:90:83: 17:af:1a:ac:c8:af:9c:1e:59:13:7b:e4:f4:b9:8c: bf:59:cc:ae:2e:bf:ca:9e:16:f4:a0:d8:28:3c:60: 9c:99:d6:ab:4d:40:19:25:c5:50:9b:66:4f:7a:99: 26:2b:e5:55:7f:69:d1:a3:cf:c3:aa:10:8d:cc:a9: d2:73:b1:eb:52:84:fa:cb:6b:88:ae:7a:98:45:13: 07:6a:62:5f:be:5a:03:ea:97:c2:7c:dc:c3:cb:c9: 87:f3:72:7c:2b:5d:02:ed:91:ac:cc:bb:ba:db:93: 2f:4c:c3:ae:e4:aa:b3:db:76:b9:5a:3f:5f:b8:9f: a9:70:e2:b4:16:95:76:8e:ae:24:ed:ce:dd:e1:cd: 30:9e:f4:6b:ca:ca:b7:41:fd:bf:f6:65:90:ba:a4: 80:94:ac:27:df:4d:09:19:fb:bc:fb:b4:02:aa:a0: be:16:7c:aa:88:10:2a:7c:fb:58:60:97:01:59:be: e7:3d:3c:a3:bd:29:10:87:e7:c0:a7:80:a6:42:20: f6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:48:26:FC:6E:3C:5D:73:92:49:D2:A0:FF:5C:53:75:95:BA:BE:E4 X509v3 Authority Key Identifier: keyid:CE:C7:22:3D:C3:16:2D:68:B5:B1:73:F5:47:96:70:C6:ED:7E:85:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/CEC7223DC3162D68B5B173F5479670C6ED7E854B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEC7223DC3162D68B5B173F5479670C6ED7E854B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.148.0/22 Signature Algorithm: sha256WithRSAEncryption 36:48:f4:99:6e:59:54:85:02:74:58:d2:9c:9f:89:43:8d:e4: 65:13:fa:ea:30:59:69:84:26:a5:2b:17:8d:e7:17:24:04:42: 79:f8:12:ab:a7:95:f0:68:17:09:65:d7:89:a2:51:d9:92:15: fa:c0:3a:ca:18:e0:90:64:75:a3:24:56:7c:11:e7:69:af:16: 7c:de:53:46:4f:21:12:5e:25:80:ec:93:a0:33:8d:69:7b:a9: e9:5c:f3:f9:40:5d:46:2b:d9:ec:d2:5f:c0:65:c0:2c:74:8d: fb:ed:a4:13:9f:63:86:16:7b:06:09:68:4a:f8:48:b2:35:6a: 0f:1e:48:c2:ac:16:c1:96:5e:a1:07:01:58:85:43:ef:c8:96: 87:05:5e:0e:48:7d:54:07:93:8f:3b:4e:1d:08:4b:65:b8:27: 07:b0:c5:19:36:ac:b0:e6:bd:2b:d0:99:22:0a:d6:a5:9d:e4: 4b:88:d1:66:8a:f1:e6:d7:51:3d:7f:14:f3:9c:53:74:28:cc: cc:de:d5:de:81:9d:93:ef:26:71:a6:4a:e8:b6:20:92:e3:22: e9:43:e4:4c:a6:ff:1e:25:07:a4:bf:e2:dc:db:cd:30:f2:be: 97:e6:4b:bf:23:b7:70:c0:5c:5d:1b:fa:be:34:ec:d5:8c:48: 84:2b:4d:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOFMFKg65rJVzG56/BTJUl41ywt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDNzIyM0RDMzE2MkQ2OEI1QjE3M0Y1NDc5NjcwQzZF RDdFODU0QjAeFw0yNjA1MDMwMjI0MzRaFw0yNzA1MDIwMjI5MzRaMDMxMTAvBgNV BAMTKDE2NDgyNkZDNkUzQzVENzM5MjQ5RDJBMEZGNUM1Mzc1OTVCQUJFRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRYjOvOFx/pc21gJ0BFby9Cq8c ZU7gnm8/0TT1FUddxYuOS5XhgKCo6b35FoxlBYmxNqoE0di5gt6QgxevGqzIr5we WRN75PS5jL9ZzK4uv8qeFvSg2Cg8YJyZ1qtNQBklxVCbZk96mSYr5VV/adGjz8Oq EI3MqdJzsetShPrLa4iuephFEwdqYl++WgPql8J83MPLyYfzcnwrXQLtkazMu7rb ky9Mw67kqrPbdrlaP1+4n6lw4rQWlXaOriTtzt3hzTCe9GvKyrdB/b/2ZZC6pICU rCffTQkZ+7z7tAKqoL4WfKqIECp8+1hglwFZvuc9PKO9KRCH58CngKZCIPbHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFkgm/G48XXOSSdKg/1xTdZW6vuQwHwYDVR0j BBgwFoAUzsciPcMWLWi1sXP1R5Zwxu1+hUswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQwMmRhYTUtZmIwYy00YTI0LTk4ODktMzNiZDUwZGI0ZmUwLzAvQ0VDNzIyM0RD MzE2MkQ2OEI1QjE3M0Y1NDc5NjcwQzZFRDdFODU0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRUM3MjIzREMzMTYyRDY4QjVCMTczRjU0Nzk2NzBDNkVEN0U4 NTRCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0MDJkYWE1LWZiMGMtNGEyNC05 ODg5LTMzYmQ1MGRiNGZlMC8wLzMxMzAzMzJlMzEzMDJlMzEzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZwqUMA0GCSqG SIb3DQEBCwUAA4IBAQA2SPSZbllUhQJ0WNKcn4lDjeRlE/rqMFlphCalKxeN5xck BEJ5+BKrp5XwaBcJZdeJolHZkhX6wDrKGOCQZHWjJFZ8EedprxZ83lNGTyESXiWA 7JOgM41pe6npXPP5QF1GK9ns0l/AZcAsdI377aQTn2OGFnsGCWhK+EiyNWoPHkjC rBbBll6hBwFYhUPvyJaHBV4OSH1UB5OPO04dCEtluCcHsMUZNqyw5r0r0JkiCtal neRLiNFmivHm11E9fxTznFN0KMzM3tXegZ2T7yZxpkrotiCS4yLpQ+RMpv8eJQek v+Lc280w8r6X5ku/I7dwwFxdG/q+NOzVjEiEK00C -----END CERTIFICATE-----Generated at Wed May 13 05:36:25 2026 by rpki-client