$ rpki-client -vvf rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa File: 3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa (raw, json) Hash identifier: /5UsQ72wkftXufGALBqkedRUAuHfRHvsc0Wy+KWVZoE= Subject key identifier: 3C:D1:9B:96:07:65:FC:CA:1A:8D:66:E4:B2:1B:A5:AA:3A:9C:25:F2 Certificate issuer: /CN=CEC7223DC3162D68B5B173F5479670C6ED7E854B Certificate serial: 7A212BF4080AC36EFA4A695DE5921EB1245051C7 Authority key identifier: CE:C7:22:3D:C3:16:2D:68:B5:B1:73:F5:47:96:70:C6:ED:7E:85:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEC7223DC3162D68B5B173F5479670C6ED7E854B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa Signing time: Sun 03 May 2026 02:29:32 +0000 ROA not before: Sun 03 May 2026 02:24:32 +0000 ROA not after: Sun 02 May 2027 02:29:32 +0000 asID: 136102 IP address blocks: 103.90.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/CEC7223DC3162D68B5B173F5479670C6ED7E854B.crl rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/CEC7223DC3162D68B5B173F5479670C6ED7E854B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEC7223DC3162D68B5B173F5479670C6ED7E854B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:21:2b:f4:08:0a:c3:6e:fa:4a:69:5d:e5:92:1e:b1:24:50:51:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC7223DC3162D68B5B173F5479670C6ED7E854B Validity Not Before: May 3 02:24:32 2026 GMT Not After : May 2 02:29:32 2027 GMT Subject: CN=3CD19B960765FCCA1A8D66E4B21BA5AA3A9C25F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:30:92:67:f3:3b:42:a4:80:3d:f5:4e:fe: 2f:c5:86:b6:7d:a0:cd:51:74:b2:07:11:59:22:c9: 56:16:47:cd:90:05:77:0f:a2:20:ef:3a:80:e1:7c: aa:19:5b:b6:f8:97:31:a8:cb:5c:00:7c:94:51:6d: 9a:13:15:36:e7:dd:f4:0a:42:3e:bb:c8:55:7b:7a: d5:3d:cd:45:18:83:53:47:3f:2b:7d:b9:e2:95:69: a5:57:02:b0:4c:9d:36:19:33:86:c3:00:17:dd:4d: ee:72:e2:2d:4e:5e:df:37:6f:96:3e:20:4f:97:27: 0e:ca:7e:80:cc:51:89:0b:89:f1:96:7a:eb:66:c2: 74:cb:5c:ad:51:20:de:94:44:9a:4a:a0:5a:4a:55: fc:a1:2e:67:59:2f:77:91:a5:fd:99:9b:58:2a:ac: cc:19:bc:d9:2e:05:20:9b:13:81:90:99:15:fd:cd: 2c:c1:e6:75:1d:7e:33:31:07:09:fb:4c:c6:c3:ff: 81:13:63:61:0c:ca:1c:8b:93:dd:c1:ff:45:91:bb: ac:74:c5:1b:22:cc:e6:07:be:30:67:fb:a6:ba:98: 12:39:0b:49:0b:3b:c7:32:2b:95:da:1d:f0:e7:09: 94:e9:fc:25:a6:44:1b:50:a7:f5:dc:d0:30:f8:fa: fc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D1:9B:96:07:65:FC:CA:1A:8D:66:E4:B2:1B:A5:AA:3A:9C:25:F2 X509v3 Authority Key Identifier: keyid:CE:C7:22:3D:C3:16:2D:68:B5:B1:73:F5:47:96:70:C6:ED:7E:85:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/CEC7223DC3162D68B5B173F5479670C6ED7E854B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEC7223DC3162D68B5B173F5479670C6ED7E854B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.250.0/23 Signature Algorithm: sha256WithRSAEncryption d7:ce:c3:3d:8b:8d:61:02:36:af:33:55:40:72:11:75:9f:e3: 90:16:34:cd:70:40:de:7e:bb:b2:76:84:ae:9f:db:49:7d:78: a2:a2:67:13:bc:f8:8f:0c:4e:d7:e7:2a:f0:02:e8:80:54:61: 00:69:27:6a:b3:6d:55:eb:80:8a:f4:c6:83:58:19:b1:a9:d4: 2a:b5:86:8d:1c:f6:de:b4:c3:7a:87:2c:e5:d5:69:b5:6d:d5: a1:b7:d0:b7:02:e5:32:76:e4:73:8c:91:9d:70:5b:db:ff:d6: c5:35:a7:d5:84:b3:e5:52:92:43:3f:94:87:4c:7f:ce:7f:24: 8a:c4:f4:37:b8:db:24:94:b8:33:85:82:28:11:5c:77:bd:4d: f4:87:a6:62:d9:3b:79:aa:b0:73:ba:f4:98:1a:28:6e:6e:a5: c2:c7:fb:7c:38:2a:d5:3a:40:6c:b7:3a:cf:56:a4:3b:03:ba: 77:78:7b:ec:5f:2d:8f:5c:fd:dc:00:e8:cc:0b:fa:fe:d1:38: ee:04:ec:01:28:8d:b1:ce:d4:e1:66:50:48:08:29:4d:21:0e: 45:19:cd:37:99:5a:99:27:19:5a:20:29:79:83:21:be:63:45: e6:bd:1e:78:99:f0:5d:a0:91:7c:f0:44:c7:93:1b:ac:f4:20: 7e:01:8e:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeiEr9AgKw276Smld5ZIesSRQUccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDNzIyM0RDMzE2MkQ2OEI1QjE3M0Y1NDc5NjcwQzZF RDdFODU0QjAeFw0yNjA1MDMwMjI0MzJaFw0yNzA1MDIwMjI5MzJaMDMxMTAvBgNV BAMTKDNDRDE5Qjk2MDc2NUZDQ0ExQThENjZFNEIyMUJBNUFBM0E5QzI1RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2nDCSZ/M7QqSAPfVO/i/FhrZ9 oM1RdLIHEVkiyVYWR82QBXcPoiDvOoDhfKoZW7b4lzGoy1wAfJRRbZoTFTbn3fQK Qj67yFV7etU9zUUYg1NHPyt9ueKVaaVXArBMnTYZM4bDABfdTe5y4i1OXt83b5Y+ IE+XJw7KfoDMUYkLifGWeutmwnTLXK1RIN6URJpKoFpKVfyhLmdZL3eRpf2Zm1gq rMwZvNkuBSCbE4GQmRX9zSzB5nUdfjMxBwn7TMbD/4ETY2EMyhyLk93B/0WRu6x0 xRsizOYHvjBn+6a6mBI5C0kLO8cyK5XaHfDnCZTp/CWmRBtQp/Xc0DD4+vz5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPNGblgdl/MoajWbkshulqjqcJfIwHwYDVR0j BBgwFoAUzsciPcMWLWi1sXP1R5Zwxu1+hUswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQwMmRhYTUtZmIwYy00YTI0LTk4ODktMzNiZDUwZGI0ZmUwLzAvQ0VDNzIyM0RD MzE2MkQ2OEI1QjE3M0Y1NDc5NjcwQzZFRDdFODU0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRUM3MjIzREMzMTYyRDY4QjVCMTczRjU0Nzk2NzBDNkVEN0U4 NTRCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0MDJkYWE1LWZiMGMtNGEyNC05 ODg5LTMzYmQ1MGRiNGZlMC8wLzMxMzAzMzJlMzkzMDJlMzIzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1r6MA0GCSqG SIb3DQEBCwUAA4IBAQDXzsM9i41hAjavM1VAchF1n+OQFjTNcEDefruydoSun9tJ fXiiomcTvPiPDE7X5yrwAuiAVGEAaSdqs21V64CK9MaDWBmxqdQqtYaNHPbetMN6 hyzl1Wm1bdWht9C3AuUyduRzjJGdcFvb/9bFNafVhLPlUpJDP5SHTH/OfySKxPQ3 uNsklLgzhYIoEVx3vU30h6Zi2Tt5qrBzuvSYGihubqXCx/t8OCrVOkBstzrPVqQ7 A7p3eHvsXy2PXP3cAOjMC/r+0TjuBOwBKI2xztThZlBICClNIQ5FGc03mVqZJxla ICl5gyG+Y0XmvR54mfBdoJF88ETHkxus9CB+AY6g -----END CERTIFICATE-----Generated at Wed May 13 04:53:48 2026 by rpki-client