$ rpki-client -vvf rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa File: 3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: qduWQnePlEvJvVDz1+kCY3smvF204bP3VzAzFq1FCjU= Subject key identifier: 67:A2:ED:A2:05:11:05:65:89:E9:00:F0:4D:23:34:BC:28:77:2B:87 Certificate issuer: /CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Certificate serial: 1E688AEF2018250E9D5F5F3B2FF0D3E8119C1687 Authority key identifier: DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa Signing time: Sun 03 May 2026 02:29:48 +0000 ROA not before: Sun 03 May 2026 02:24:48 +0000 ROA not after: Sun 02 May 2027 02:29:48 +0000 asID: 133823 IP address blocks: 103.104.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 10:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:68:8a:ef:20:18:25:0e:9d:5f:5f:3b:2f:f0:d3:e8:11:9c:16:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Validity Not Before: May 3 02:24:48 2026 GMT Not After : May 2 02:29:48 2027 GMT Subject: CN=67A2EDA20511056589E900F04D2334BC28772B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:26:f8:c8:be:4e:a2:a4:3a:1a:90:23:e4:24: 56:74:4f:66:3a:c3:94:e8:d8:5b:aa:85:83:00:47: 42:69:03:55:b1:a3:68:2c:24:4b:0a:bb:a2:96:9e: ce:82:3d:6e:2c:c2:aa:70:07:c2:86:45:25:47:2b: ff:97:79:98:70:ed:34:fc:39:30:7c:ca:f2:c2:8a: db:13:9b:60:ec:f6:e7:cb:e7:6d:0f:02:a3:99:55: ce:0a:42:df:ae:46:f0:85:6c:e9:79:14:c2:c8:f2: 91:c7:14:11:71:72:b6:a3:fa:73:62:a2:aa:ac:79: 63:71:5f:d8:53:fb:e9:af:d6:91:ec:97:04:a6:21: 1f:9e:b5:ba:86:b0:b7:25:54:7f:75:5c:8b:c3:55: 1a:69:28:7c:9e:c2:6f:ee:38:ef:19:46:f6:3e:1b: 93:17:84:fa:54:d0:7b:5b:db:2a:25:84:85:ba:3b: f0:bd:d6:24:36:b0:4d:cb:ff:22:2c:37:03:c7:da: f1:48:2f:6b:d8:a4:84:8f:96:ff:f2:08:ab:4e:f2: a3:13:6b:3e:ca:16:73:40:25:f3:0d:9c:80:6d:73: 20:77:f0:e9:c3:32:c2:99:ee:85:d3:1a:0f:65:65: 6f:98:09:d2:c5:5f:7b:97:10:08:12:70:a8:75:fd: db:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A2:ED:A2:05:11:05:65:89:E9:00:F0:4D:23:34:BC:28:77:2B:87 X509v3 Authority Key Identifier: keyid:DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.134.0/24 Signature Algorithm: sha256WithRSAEncryption 41:57:db:e3:d2:a4:21:9b:a9:3c:3a:13:7c:24:3d:f5:c7:8b: a9:80:35:9e:72:ec:52:4e:18:65:22:04:72:60:12:46:02:7a: b5:84:ab:96:38:9b:36:b1:3e:6e:2c:71:ab:f2:79:12:07:f2: 4b:22:d4:c6:c1:49:e2:2c:a1:4e:78:18:88:27:20:11:8a:dd: f2:ac:78:50:24:7d:91:ef:0f:68:f9:30:30:9f:0d:a4:dd:95: 94:74:d9:ee:76:24:d7:63:29:56:83:3f:3a:1d:fb:ac:42:90: 6e:58:59:1d:9f:61:18:6c:6d:be:a8:25:a5:99:a0:f0:28:37: a3:2b:7a:8a:ff:a2:10:ab:f8:08:10:e6:72:0b:9a:fb:9a:24: 2d:02:8d:4a:7e:1c:26:40:32:3c:5a:fb:52:a5:54:a5:a4:4f: b0:10:d6:99:9b:29:64:3b:9e:d3:a8:29:5d:e0:93:e2:22:64: 0b:42:c0:39:1b:d8:e3:e5:02:2d:ea:fa:52:63:aa:d2:54:5a: 92:fa:0a:d7:67:b1:f4:2d:30:0b:ef:b9:a7:83:e0:03:0e:cb: 31:aa:f5:89:c6:14:34:68:96:c1:19:b1:f2:16:2f:97:60:09: 3c:5b:b6:2d:a1:82:cd:55:1a:ad:3b:62:a9:24:f2:02:55:1f: 0d:50:34:ec -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHmiK7yAYJQ6dX187L/DT6BGcFocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVDQTkzQzIxNzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZB NTlEMjQ1NDAeFw0yNjA1MDMwMjI0NDhaFw0yNzA1MDIwMjI5NDhaMDMxMTAvBgNV BAMTKDY3QTJFREEyMDUxMTA1NjU4OUU5MDBGMDREMjMzNEJDMjg3NzJCODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOJvjIvk6ipDoakCPkJFZ0T2Y6 w5To2FuqhYMAR0JpA1Wxo2gsJEsKu6KWns6CPW4swqpwB8KGRSVHK/+XeZhw7TT8 OTB8yvLCitsTm2Ds9ufL520PAqOZVc4KQt+uRvCFbOl5FMLI8pHHFBFxcraj+nNi oqqseWNxX9hT++mv1pHslwSmIR+etbqGsLclVH91XIvDVRppKHyewm/uOO8ZRvY+ G5MXhPpU0Htb2yolhIW6O/C91iQ2sE3L/yIsNwPH2vFIL2vYpISPlv/yCKtO8qMT az7KFnNAJfMNnIBtcyB38OnDMsKZ7oXTGg9lZW+YCdLFX3uXEAgScKh1/dtHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZ6LtogURBWWJ6QDwTSM0vCh3K4cwHwYDVR0j BBgwFoAU3sqTwhcuUDvFyqoZdEENP6WdJFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQ3OTFiMWYtNmRhOS00MDBkLThiMTQtOTkyYWFlNjM3NDZjLzAvREVDQTkzQzIx NzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZBNTlEMjQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUNBOTNDMjE3MkU1MDNCQzVDQUFBMTk3NDQxMEQzRkE1OUQy NDU0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaIYwDQYJ KoZIhvcNAQELBQADggEBAEFX2+PSpCGbqTw6E3wkPfXHi6mANZ5y7FJOGGUiBHJg EkYCerWEq5Y4mzaxPm4scavyeRIH8ksi1MbBSeIsoU54GIgnIBGK3fKseFAkfZHv D2j5MDCfDaTdlZR02e52JNdjKVaDPzod+6xCkG5YWR2fYRhsbb6oJaWZoPAoN6Mr eor/ohCr+AgQ5nILmvuaJC0CjUp+HCZAMjxa+1KlVKWkT7AQ1pmbKWQ7ntOoKV3g k+IiZAtCwDkb2OPlAi3q+lJjqtJUWpL6CtdnsfQtMAvvuaeD4AMOyzGq9YnGFDRo lsEZsfIWL5dgCTxbti2hgs1VGq07Yqkk8gJVHw1QNOw= -----END CERTIFICATE-----Generated at Wed May 13 04:10:09 2026 by rpki-client