$ rpki-client -vvf rpki-rsync.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa File: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (raw, json) Hash identifier: oYvVYAWqY5/XajF618G7pKQtRtEqOMlHPhGTTZeide8= Subject key identifier: EE:D7:4F:FC:78:FA:3F:B0:9A:E5:CB:06:ED:18:20:82:C0:4C:2C:C7 Certificate issuer: /CN=9B995ECA9CF77E66AB04370A6C3562ADCD7413EF Certificate serial: 3A7D10ED35AD8A49D21312EAAA01C366991230DF Authority key identifier: 9B:99:5E:CA:9C:F7:7E:66:AB:04:37:0A:6C:35:62:AD:CD:74:13:EF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9B995ECA9CF77E66AB04370A6C3562ADCD7413EF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa Signing time: Sun 03 May 2026 02:31:14 +0000 ROA not before: Sun 03 May 2026 02:26:14 +0000 ROA not after: Sun 02 May 2027 02:31:14 +0000 asID: 150966 IP address blocks: 103.130.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/9B995ECA9CF77E66AB04370A6C3562ADCD7413EF.crl rsync://rpki-rsync.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/9B995ECA9CF77E66AB04370A6C3562ADCD7413EF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9B995ECA9CF77E66AB04370A6C3562ADCD7413EF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:7d:10:ed:35:ad:8a:49:d2:13:12:ea:aa:01:c3:66:99:12:30:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B995ECA9CF77E66AB04370A6C3562ADCD7413EF Validity Not Before: May 3 02:26:14 2026 GMT Not After : May 2 02:31:14 2027 GMT Subject: CN=EED74FFC78FA3FB09AE5CB06ED182082C04C2CC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7e:ff:61:d8:85:dd:44:4f:3b:16:42:b9:62: 4c:e2:fd:50:4a:ab:a1:c3:2a:dc:34:bf:65:cd:f1: b8:12:a2:86:92:b0:bf:e8:d9:e6:14:4e:f9:31:46: d7:d1:a2:49:6e:fb:cd:2f:ea:e1:e7:86:52:8e:1c: 5e:32:4c:ae:d5:0f:33:32:cb:95:6d:c2:c5:b9:08: 67:1b:59:95:a7:84:d7:e4:6c:01:46:09:59:4b:9b: 1d:61:27:d4:fd:71:45:89:79:37:49:71:5c:c0:bc: 9a:77:3c:a7:b2:22:db:d7:95:09:63:39:4b:1a:86: 62:ab:1a:65:21:58:5d:d3:e5:cf:87:91:85:8b:c8: 0f:57:47:84:f6:ad:80:80:3c:04:3a:7e:b0:c5:a5: 77:c8:6c:ff:cb:45:49:5f:3f:3a:e1:4f:77:4d:1e: 66:85:1b:66:0d:48:04:c9:55:b7:e9:75:cb:26:9d: 38:80:29:96:81:36:b3:ae:5b:6b:1e:e6:74:bd:2b: 1b:40:4d:00:00:5b:24:02:db:bd:f7:9d:31:16:4a: 77:57:f3:55:b6:92:4b:bf:87:fd:16:52:1f:13:fd: d7:56:36:33:05:07:f2:bd:84:a0:1a:07:84:f4:b9: 88:01:a4:73:11:3e:f2:82:03:77:f1:08:97:73:24: 7c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D7:4F:FC:78:FA:3F:B0:9A:E5:CB:06:ED:18:20:82:C0:4C:2C:C7 X509v3 Authority Key Identifier: keyid:9B:99:5E:CA:9C:F7:7E:66:AB:04:37:0A:6C:35:62:AD:CD:74:13:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/9B995ECA9CF77E66AB04370A6C3562ADCD7413EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9B995ECA9CF77E66AB04370A6C3562ADCD7413EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.82.0/23 Signature Algorithm: sha256WithRSAEncryption 38:63:44:fd:ff:54:11:07:5f:e7:63:2c:9e:69:7a:4d:ab:9d: 5f:b8:16:ae:53:07:c0:83:72:01:ae:eb:c3:bf:8c:a3:5c:75: 57:c5:30:1d:3c:70:1e:32:7f:ab:99:17:ba:3d:af:13:71:6b: 15:b9:8c:75:39:a7:6d:5d:c9:92:02:7c:77:91:68:a9:f9:ee: 22:fe:58:dc:77:af:97:2e:7c:df:e6:c5:c5:9d:0b:5c:87:27: 53:a6:38:bd:1b:03:c7:3c:04:c7:9c:6e:a6:97:dd:5e:b9:e5: b1:ee:9b:b8:87:48:c0:38:11:31:1c:f0:6f:40:58:1d:6e:91: e0:d5:76:69:d0:8c:e0:ba:20:11:d2:ac:0f:a0:a7:4e:48:2a: cb:f2:2e:21:62:47:1d:24:30:e1:a9:e6:bc:1c:10:69:be:53: 36:fa:a8:da:c7:a3:1f:6c:51:22:6c:08:c0:33:a2:7f:17:32: 1b:b5:bb:d7:c6:e1:e9:fe:83:91:4f:e5:94:e1:fe:b5:81:45: ba:40:f2:fb:ee:54:dd:26:a6:64:d6:35:a7:44:18:5d:b9:68: d1:db:bd:e1:3e:aa:6b:ce:78:3a:6b:04:62:ce:b1:b7:45:21: cb:73:49:e4:fc:da:25:67:02:15:cc:7d:6f:d0:6e:f0:21:b5: 24:83:84:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOn0Q7TWtiknSExLqqgHDZpkSMN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI5OTVFQ0E5Q0Y3N0U2NkFCMDQzNzBBNkMzNTYyQURD RDc0MTNFRjAeFw0yNjA1MDMwMjI2MTRaFw0yNzA1MDIwMjMxMTRaMDMxMTAvBgNV BAMTKEVFRDc0RkZDNzhGQTNGQjA5QUU1Q0IwNkVEMTgyMDgyQzA0QzJDQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCofv9h2IXdRE87FkK5Ykzi/VBK q6HDKtw0v2XN8bgSooaSsL/o2eYUTvkxRtfRoklu+80v6uHnhlKOHF4yTK7VDzMy y5VtwsW5CGcbWZWnhNfkbAFGCVlLmx1hJ9T9cUWJeTdJcVzAvJp3PKeyItvXlQlj OUsahmKrGmUhWF3T5c+HkYWLyA9XR4T2rYCAPAQ6frDFpXfIbP/LRUlfPzrhT3dN HmaFG2YNSATJVbfpdcsmnTiAKZaBNrOuW2se5nS9KxtATQAAWyQC2733nTEWSndX 81W2kku/h/0WUh8T/ddWNjMFB/K9hKAaB4T0uYgBpHMRPvKCA3fxCJdzJHytAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7tdP/Hj6P7Ca5csG7RgggsBMLMcwHwYDVR0j BBgwFoAUm5leypz3fmarBDcKbDVirc10E+8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGE4NzA2NGItNWYyNy00MjcwLTkwZTQtOTlmNDNhZTg0ZGI3LzAvOUI5OTVFQ0E5 Q0Y3N0U2NkFCMDQzNzBBNkMzNTYyQURDRDc0MTNFRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85Qjk5NUVDQTlDRjc3RTY2QUIwNDM3MEE2QzM1NjJBRENENzQx M0VGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05 MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4JSMA0GCSqG SIb3DQEBCwUAA4IBAQA4Y0T9/1QRB1/nYyyeaXpNq51fuBauUwfAg3IBruvDv4yj XHVXxTAdPHAeMn+rmRe6Pa8TcWsVuYx1OadtXcmSAnx3kWip+e4i/ljcd6+XLnzf 5sXFnQtchydTpji9GwPHPATHnG6ml91eueWx7pu4h0jAOBExHPBvQFgdbpHg1XZp 0IzguiAR0qwPoKdOSCrL8i4hYkcdJDDhqea8HBBpvlM2+qjax6MfbFEibAjAM6J/ FzIbtbvXxuHp/oORT+WU4f61gUW6QPL77lTdJqZk1jWnRBhduWjR273hPqprzng6 awRizrG3RSHLc0nk/NolZwIVzH1v0G7wIbUkg4Qg -----END CERTIFICATE-----Generated at Wed May 13 05:57:30 2026 by rpki-client