$ rpki-client -vvf rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39342e302f32332d3234203d3e20313333383233.roa File: 3130332e35342e39342e302f32332d3234203d3e20313333383233.roa (raw, json) Hash identifier: 8k8GBdwmmLxxYbQl8hVSFJB11CCZhdmJeHDaxUryxLk= Subject key identifier: C9:33:94:34:9F:7F:42:AF:61:9C:62:D3:02:69:DA:13:91:F2:67:93 Certificate issuer: /CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Certificate serial: 1E7F0F85AF96B7A3B0F4C536A154574EA742E573 Authority key identifier: DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39342e302f32332d3234203d3e20313333383233.roa Signing time: Sun 03 May 2026 02:29:47 +0000 ROA not before: Sun 03 May 2026 02:24:47 +0000 ROA not after: Sun 02 May 2027 02:29:47 +0000 asID: 133823 IP address blocks: 103.54.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:7f:0f:85:af:96:b7:a3:b0:f4:c5:36:a1:54:57:4e:a7:42:e5:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Validity Not Before: May 3 02:24:47 2026 GMT Not After : May 2 02:29:47 2027 GMT Subject: CN=C93394349F7F42AF619C62D30269DA1391F26793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d9:73:1a:ff:69:7c:aa:c6:6b:c9:da:ae:23: 87:6c:14:52:ee:5c:75:3d:cc:a2:a8:0e:93:2a:c6: d2:5e:12:f9:58:c7:be:e9:3f:3c:37:75:78:cf:4b: 3a:f5:e6:66:61:f0:aa:47:17:32:89:f5:62:77:75: 8b:c2:cb:51:c8:83:7a:87:da:11:d2:f4:52:d1:24: 58:af:99:07:db:65:32:77:74:fe:81:4f:1d:f8:18: 32:2d:32:53:75:02:2b:d1:54:e6:3f:02:0e:5e:28: 67:8d:48:a3:2f:d8:e9:cf:79:d9:c6:30:06:2f:18: 60:93:e8:05:07:30:78:27:f7:c0:af:ba:24:8e:0b: b6:49:82:dc:dd:c7:9e:50:dc:e6:89:f7:f8:de:f5: 12:90:24:cf:28:6c:de:00:1b:4a:93:86:4c:db:9a: fd:20:5c:ad:2e:ee:96:57:85:1b:cf:17:18:db:11: 68:db:b3:76:0f:e0:5f:d7:8c:51:d2:06:e8:db:fa: 9b:78:b7:59:48:88:8f:1b:f5:1b:81:cf:59:b4:75: d7:4b:6f:85:d0:50:10:bf:a8:be:d0:f8:c6:b3:7a: e0:e9:78:cd:fe:9a:f0:b3:fd:3c:3d:b6:86:04:fe: 25:33:75:c1:03:99:28:7d:16:57:e9:59:0d:82:0b: ce:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:33:94:34:9F:7F:42:AF:61:9C:62:D3:02:69:DA:13:91:F2:67:93 X509v3 Authority Key Identifier: keyid:DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39342e302f32332d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.94.0/23 Signature Algorithm: sha256WithRSAEncryption 81:a7:91:ce:f0:95:56:23:53:81:5a:3b:1e:f0:f6:b9:9a:d3: 4f:26:8e:31:07:0c:78:06:38:bb:bb:b3:49:11:e7:0e:64:39: 60:51:5e:54:df:d8:0d:3c:c6:6d:51:4f:3f:7c:ad:d3:eb:55: 6d:9d:81:4d:96:1c:fc:77:a6:40:e7:ef:6c:19:c8:df:de:d9: 5a:fc:d1:5f:a6:92:51:60:91:1a:57:b2:64:56:fe:c4:4b:65: d3:d2:46:37:fe:cb:d7:58:7f:c2:51:aa:93:29:14:ce:80:bc: e3:d8:c7:36:2e:82:9e:35:9b:39:2a:03:13:11:b8:4e:3b:f4: 56:a1:f3:87:72:d6:f5:ba:c4:2c:51:40:d3:d4:23:2d:25:af: 4b:64:80:c8:90:8e:81:f1:66:5c:55:52:e5:94:39:57:95:70: 56:58:61:9c:c4:14:5e:84:ef:24:36:df:c1:f0:8c:51:5a:fe: a6:c9:37:25:1f:0a:4e:0d:7e:d9:5c:4a:0a:f8:3c:a1:59:b0: 59:77:db:a7:89:60:c0:f8:69:4e:1d:f9:cd:04:5b:42:76:3e: c4:dc:56:1a:ce:40:ae:68:54:db:d3:74:0e:0e:28:c8:6a:8b: ad:72:2f:d5:42:55:6c:e5:51:9f:81:fd:32:8c:87:3e:2b:18: 5b:9b:72:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHn8Pha+Wt6Ow9MU2oVRXTqdC5XMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVDQTkzQzIxNzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZB NTlEMjQ1NDAeFw0yNjA1MDMwMjI0NDdaFw0yNzA1MDIwMjI5NDdaMDMxMTAvBgNV BAMTKEM5MzM5NDM0OUY3RjQyQUY2MTlDNjJEMzAyNjlEQTEzOTFGMjY3OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz2XMa/2l8qsZrydquI4dsFFLu XHU9zKKoDpMqxtJeEvlYx77pPzw3dXjPSzr15mZh8KpHFzKJ9WJ3dYvCy1HIg3qH 2hHS9FLRJFivmQfbZTJ3dP6BTx34GDItMlN1AivRVOY/Ag5eKGeNSKMv2OnPednG MAYvGGCT6AUHMHgn98CvuiSOC7ZJgtzdx55Q3OaJ9/je9RKQJM8obN4AG0qThkzb mv0gXK0u7pZXhRvPFxjbEWjbs3YP4F/XjFHSBujb+pt4t1lIiI8b9RuBz1m0dddL b4XQUBC/qL7Q+MazeuDpeM3+mvCz/Tw9toYE/iUzdcEDmSh9FlfpWQ2CC853AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyTOUNJ9/Qq9hnGLTAmnaE5HyZ5MwHwYDVR0j BBgwFoAU3sqTwhcuUDvFyqoZdEENP6WdJFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQ3OTFiMWYtNmRhOS00MDBkLThiMTQtOTkyYWFlNjM3NDZjLzAvREVDQTkzQzIx NzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZBNTlEMjQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUNBOTNDMjE3MkU1MDNCQzVDQUFBMTk3NDQxMEQzRkE1OUQy NDU0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzUzNDJlMzkzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc2XjANBgkqhkiG 9w0BAQsFAAOCAQEAgaeRzvCVViNTgVo7HvD2uZrTTyaOMQcMeAY4u7uzSRHnDmQ5 YFFeVN/YDTzGbVFPP3yt0+tVbZ2BTZYc/HemQOfvbBnI397ZWvzRX6aSUWCRGley ZFb+xEtl09JGN/7L11h/wlGqkykUzoC849jHNi6CnjWbOSoDExG4Tjv0VqHzh3LW 9brELFFA09QjLSWvS2SAyJCOgfFmXFVS5ZQ5V5VwVlhhnMQUXoTvJDbfwfCMUVr+ psk3JR8KTg1+2VxKCvg8oVmwWXfbp4lgwPhpTh35zQRbQnY+xNxWGs5ArmhU29N0 Dg4oyGqLrXIv1UJVbOVRn4H9MoyHPisYW5ty8w== -----END CERTIFICATE-----Generated at Wed May 13 05:55:18 2026 by rpki-client