$ rpki-client -vvf rpki-rsync.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa File: 3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: 8ED3fpYlNYrY20dW5dy2FIrzIf47HrbQ0fyQ3uLjegk= Subject key identifier: D2:30:AA:E1:2D:AB:D0:8B:A4:61:55:45:B0:13:17:B7:E0:71:CE:44 Certificate issuer: /CN=F92C9917A30302FCE264D46D8FE65A1CEA194138 Certificate serial: 5F4C54AFD7FB2527E4C68C4CF194F7D02464A5E2 Authority key identifier: F9:2C:99:17:A3:03:02:FC:E2:64:D4:6D:8F:E6:5A:1C:EA:19:41:38 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F92C9917A30302FCE264D46D8FE65A1CEA194138.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa Signing time: Sun 03 May 2026 02:31:20 +0000 ROA not before: Sun 03 May 2026 02:26:20 +0000 ROA not after: Sun 02 May 2027 02:31:20 +0000 asID: 138096 IP address blocks: 103.207.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/F92C9917A30302FCE264D46D8FE65A1CEA194138.crl rsync://rpki-rsync.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/F92C9917A30302FCE264D46D8FE65A1CEA194138.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F92C9917A30302FCE264D46D8FE65A1CEA194138.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4c:54:af:d7:fb:25:27:e4:c6:8c:4c:f1:94:f7:d0:24:64:a5:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F92C9917A30302FCE264D46D8FE65A1CEA194138 Validity Not Before: May 3 02:26:20 2026 GMT Not After : May 2 02:31:20 2027 GMT Subject: CN=D230AAE12DABD08BA4615545B01317B7E071CE44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1b:ab:3a:c3:30:cf:3e:01:06:2e:c5:3b:b8: 3d:29:b7:47:2f:c9:5f:d5:f4:fd:49:65:c9:9c:b9: 4a:6a:0f:da:92:2f:6b:16:6d:d5:26:fe:93:78:4e: 87:e2:5c:70:14:e2:5f:ab:c8:9e:1a:fb:fd:e0:f0: 89:eb:73:b0:01:a0:2b:0b:3f:37:14:7c:2a:a1:5c: f7:9c:6b:60:8d:5c:a9:0e:69:64:14:91:57:5e:c8: aa:78:3c:db:60:07:7a:a5:a5:9e:e5:ec:05:55:9a: 3b:76:64:ad:f6:42:c1:5c:78:35:91:58:1a:66:3b: 02:2a:3b:d5:14:ba:f7:2e:a1:43:2f:23:81:3d:0a: 90:de:db:20:a4:ac:5d:b0:4b:54:2e:aa:f2:29:ed: 29:5e:1c:88:e5:9b:19:8d:11:12:69:c1:10:9d:ce: f2:5e:98:d9:52:4e:4b:78:28:f6:0d:69:c0:86:63: 95:16:de:03:34:b1:bb:3c:78:a4:c7:1e:ae:b7:c2: 65:2b:1a:2b:87:e0:3a:6b:14:50:15:25:03:01:11: c8:22:ab:2d:eb:80:8c:b9:7f:36:02:da:0e:bb:eb: aa:00:b6:23:79:11:b5:e8:be:24:0c:18:83:06:2f: 61:dc:0c:ae:de:82:88:40:49:9c:50:0a:e5:ec:18: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:30:AA:E1:2D:AB:D0:8B:A4:61:55:45:B0:13:17:B7:E0:71:CE:44 X509v3 Authority Key Identifier: keyid:F9:2C:99:17:A3:03:02:FC:E2:64:D4:6D:8F:E6:5A:1C:EA:19:41:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/F92C9917A30302FCE264D46D8FE65A1CEA194138.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F92C9917A30302FCE264D46D8FE65A1CEA194138.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.238.0/24 Signature Algorithm: sha256WithRSAEncryption 26:24:a0:a3:9e:ab:a8:5c:9f:ee:d8:88:bf:44:76:01:e3:fb: 1d:c6:8f:b0:54:8d:04:cb:f6:5b:d4:b6:0f:e4:40:b1:ba:c0: 92:f1:c0:0e:d0:22:6c:03:6a:49:67:60:7a:a8:fc:fd:a5:f6: 61:39:dc:9a:3e:a1:b3:b6:6c:5b:fc:28:a6:b7:3c:ab:d9:0a: dd:fa:d9:7a:7f:2c:04:d0:dd:1f:ff:f0:1b:6d:39:21:8a:1f: 3c:2e:cd:23:8f:00:13:56:5e:60:dd:ae:5d:50:2b:05:f0:79: 0b:7d:7c:d6:79:b7:d2:f0:a2:e1:99:0f:88:05:dd:fb:0a:d6: 96:42:15:c2:b1:05:a9:3f:94:8d:d2:bf:d7:f2:1e:02:2f:be: 30:18:82:75:6d:62:39:91:f9:65:a1:dd:48:27:71:3c:26:6c: 42:02:e6:7b:ce:36:e6:d5:82:35:bc:2f:19:a8:0a:71:62:d1: 19:ba:21:16:9f:f6:f0:c0:a7:75:d4:03:3e:cd:f8:f6:2c:6b: 20:5e:66:1e:66:7a:fe:f6:eb:34:6e:73:b3:03:1c:93:05:f0: 22:34:b6:7f:ae:36:86:c2:ff:59:a0:5b:0b:13:18:65:21:ad: 24:ea:36:e9:03:f0:2f:19:fd:02:1e:fc:3d:96:8d:64:82:4c: 4d:28:3d:08 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX0xUr9f7JSfkxoxM8ZT30CRkpeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkyQzk5MTdBMzAzMDJGQ0UyNjRENDZEOEZFNjVBMUNF QTE5NDEzODAeFw0yNjA1MDMwMjI2MjBaFw0yNzA1MDIwMjMxMjBaMDMxMTAvBgNV BAMTKEQyMzBBQUUxMkRBQkQwOEJBNDYxNTU0NUIwMTMxN0I3RTA3MUNFNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsG6s6wzDPPgEGLsU7uD0pt0cv yV/V9P1JZcmcuUpqD9qSL2sWbdUm/pN4TofiXHAU4l+ryJ4a+/3g8Inrc7ABoCsL PzcUfCqhXPeca2CNXKkOaWQUkVdeyKp4PNtgB3qlpZ7l7AVVmjt2ZK32QsFceDWR WBpmOwIqO9UUuvcuoUMvI4E9CpDe2yCkrF2wS1QuqvIp7SleHIjlmxmNERJpwRCd zvJemNlSTkt4KPYNacCGY5UW3gM0sbs8eKTHHq63wmUrGiuH4DprFFAVJQMBEcgi qy3rgIy5fzYC2g6766oAtiN5EbXoviQMGIMGL2HcDK7egohASZxQCuXsGEWtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0jCq4S2r0IukYVVFsBMXt+BxzkQwHwYDVR0j BBgwFoAU+SyZF6MDAvziZNRtj+ZaHOoZQTgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGIwZTdmOGUtYzI5Zi00ZTZiLWFkMGEtOTk1N2ZiZDU2OTUzLzAvRjkyQzk5MTdB MzAzMDJGQ0UyNjRENDZEOEZFNjVBMUNFQTE5NDEzOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTJDOTkxN0EzMDMwMkZDRTI2NEQ0NkQ4RkU2NUExQ0VBMTk0 MTM4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnz+4wDQYJ KoZIhvcNAQELBQADggEBACYkoKOeq6hcn+7YiL9EdgHj+x3Gj7BUjQTL9lvUtg/k QLG6wJLxwA7QImwDaklnYHqo/P2l9mE53Jo+obO2bFv8KKa3PKvZCt362Xp/LATQ 3R//8BttOSGKHzwuzSOPABNWXmDdrl1QKwXweQt9fNZ5t9LwouGZD4gF3fsK1pZC FcKxBak/lI3Sv9fyHgIvvjAYgnVtYjmR+WWh3UgncTwmbEIC5nvONubVgjW8Lxmo CnFi0Rm6IRaf9vDAp3XUAz7N+PYsayBeZh5mev726zRuc7MDHJMF8CI0tn+uNobC /1mgWwsTGGUhrSTqNukD8C8Z/QIe/D2WjWSCTE0oPQg= -----END CERTIFICATE-----Generated at Wed May 13 01:36:52 2026 by rpki-client