$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa File: 3130332e34322e3131382e302f32332d3233203d3e203234353139.roa (raw, json) Hash identifier: LUmG2PnUdmtlekMQPkmF2jVlBr5BwiDl1Q3zaubpydY= Subject key identifier: 8E:F9:D1:19:1B:22:D0:31:65:67:36:71:34:D7:7D:70:9E:02:4B:7F Certificate issuer: /CN=B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09 Certificate serial: 711F00FCC833DF5DFBD15256AFFD6CE621259261 Authority key identifier: B7:AC:AC:8C:1A:6D:56:7C:70:21:67:C3:BF:5D:55:DC:A8:06:1D:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa Signing time: Sun 03 May 2026 02:32:22 +0000 ROA not before: Sun 03 May 2026 02:27:22 +0000 ROA not after: Sun 02 May 2027 02:32:22 +0000 asID: 24519 IP address blocks: 103.42.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09.crl rsync://rpki-rsync.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:1f:00:fc:c8:33:df:5d:fb:d1:52:56:af:fd:6c:e6:21:25:92:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09 Validity Not Before: May 3 02:27:22 2026 GMT Not After : May 2 02:32:22 2027 GMT Subject: CN=8EF9D1191B22D0316567367134D77D709E024B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:32:78:a3:33:58:49:85:30:9e:c7:0f:fd: 59:17:ab:33:41:10:b9:09:6f:70:16:90:13:0f:ba: 26:df:a4:b9:3a:d9:b9:72:f2:99:b5:8d:4d:1f:57: 4c:b2:62:9b:7a:a9:18:5b:82:4d:9a:64:b1:a2:24: 37:ad:cd:4b:d8:7f:a4:5f:4a:5f:b6:a6:a2:09:6f: f4:f4:cb:49:d1:09:ed:ce:25:40:86:75:79:44:1f: 45:b5:c3:a7:2b:6b:ff:f7:98:8b:52:de:79:46:54: 25:64:83:dc:11:95:16:20:87:d4:ee:49:58:d1:f8: 14:94:4c:87:da:29:17:32:c9:ae:a8:bd:bb:e5:59: 99:0e:0b:70:40:0e:41:b8:35:c2:6c:b4:15:db:02: 45:a5:5a:47:35:c4:e9:1f:a2:72:4f:62:94:ea:1e: 81:49:96:41:8c:4f:a9:9d:f9:53:ed:97:67:f6:23: 85:39:90:01:8d:f9:17:b9:82:73:4d:a8:d6:59:fa: fb:ad:35:51:07:73:cb:d2:3d:fd:7c:2a:93:25:ec: 7e:8d:f7:79:cb:5e:67:0c:e0:ed:26:a4:40:f9:97: f0:a9:40:37:ec:07:1d:8c:c1:12:3d:82:f0:d1:bf: 00:e6:68:a6:67:9d:97:f2:4d:6a:89:39:1e:4a:fe: cd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F9:D1:19:1B:22:D0:31:65:67:36:71:34:D7:7D:70:9E:02:4B:7F X509v3 Authority Key Identifier: keyid:B7:AC:AC:8C:1A:6D:56:7C:70:21:67:C3:BF:5D:55:DC:A8:06:1D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7ACAC8C1A6D567C702167C3BF5D55DCA8061D09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.118.0/23 Signature Algorithm: sha256WithRSAEncryption 56:75:1f:87:67:c9:7f:f4:ca:7d:37:ed:98:e8:8b:1a:f0:a1: 50:f9:b3:44:f0:91:1a:20:ac:3a:37:17:d1:af:21:15:f8:66: ea:f6:f7:12:cf:ec:c4:3d:17:31:f3:37:eb:23:c1:a8:f3:52: 32:a0:52:7f:b1:23:32:69:19:a0:17:e4:5a:87:0d:2c:73:bb: 5a:7a:cb:88:7b:8f:23:20:ec:84:20:69:2b:9c:67:54:b9:ab: 70:f1:1d:5e:cb:de:d1:95:6e:ef:6b:fe:7d:4c:48:51:fa:ba: d0:69:4d:3f:6d:7f:58:dc:82:45:1d:1e:08:68:89:27:e5:e9: 3f:c5:0c:0e:64:c5:72:5b:01:ef:df:ba:ea:bf:7c:30:dd:48: bf:f8:8c:75:7b:c6:d5:b9:a9:e5:dc:7d:2f:c5:a0:4c:14:6c: b8:7f:67:a5:7b:a0:71:b7:f4:6b:ec:e6:80:d5:0a:a3:97:e0: 3d:65:63:fd:31:92:e0:64:54:c4:96:59:31:3d:fa:63:4c:b3: ad:12:01:84:11:ab:c9:00:98:14:13:1e:22:38:3e:ce:64:7e: 34:dc:b6:0a:1d:08:dd:e8:19:f0:1e:b0:81:80:16:e6:69:45: 47:9c:ec:b8:1b:2f:1d:ee:87:30:0f:e5:9a:cb:69:7f:85:6d: 7b:ea:04:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcR8A/Mgz31370VJWr/1s5iElkmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdBQ0FDOEMxQTZENTY3QzcwMjE2N0MzQkY1RDU1RENB ODA2MUQwOTAeFw0yNjA1MDMwMjI3MjJaFw0yNzA1MDIwMjMyMjJaMDMxMTAvBgNV BAMTKDhFRjlEMTE5MUIyMkQwMzE2NTY3MzY3MTM0RDc3RDcwOUUwMjRCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn2TJ4ozNYSYUwnscP/VkXqzNB ELkJb3AWkBMPuibfpLk62bly8pm1jU0fV0yyYpt6qRhbgk2aZLGiJDetzUvYf6Rf Sl+2pqIJb/T0y0nRCe3OJUCGdXlEH0W1w6cra//3mItS3nlGVCVkg9wRlRYgh9Tu SVjR+BSUTIfaKRcyya6ovbvlWZkOC3BADkG4NcJstBXbAkWlWkc1xOkfonJPYpTq HoFJlkGMT6md+VPtl2f2I4U5kAGN+Re5gnNNqNZZ+vutNVEHc8vSPf18KpMl7H6N 93nLXmcM4O0mpED5l/CpQDfsBx2MwRI9gvDRvwDmaKZnnZfyTWqJOR5K/s1VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjvnRGRsi0DFlZzZxNNd9cJ4CS38wHwYDVR0j BBgwFoAUt6ysjBptVnxwIWfDv11V3KgGHQkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY1ODkzNGQtMWIwMC00NDg5LTkyZWQtMWNhNmRjNGIyOTBmLzAvQjdBQ0FDOEMx QTZENTY3QzcwMjE2N0MzQkY1RDU1RENBODA2MUQwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CN0FDQUM4QzFBNkQ1NjdDNzAyMTY3QzNCRjVENTVEQ0E4MDYx RDA5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmNTg5MzRkLTFiMDAtNDQ4OS05 MmVkLTFjYTZkYzRiMjkwZi8wLzMxMzAzMzJlMzQzMjJlMzEzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcqdjANBgkqhkiG 9w0BAQsFAAOCAQEAVnUfh2fJf/TKfTftmOiLGvChUPmzRPCRGiCsOjcX0a8hFfhm 6vb3Es/sxD0XMfM36yPBqPNSMqBSf7EjMmkZoBfkWocNLHO7WnrLiHuPIyDshCBp K5xnVLmrcPEdXsve0ZVu72v+fUxIUfq60GlNP21/WNyCRR0eCGiJJ+XpP8UMDmTF clsB79+66r98MN1Iv/iMdXvG1bmp5dx9L8WgTBRsuH9npXugcbf0a+zmgNUKo5fg PWVj/TGS4GRUxJZZMT36Y0yzrRIBhBGryQCYFBMeIjg+zmR+NNy2Ch0I3egZ8B6w gYAW5mlFR5zsuBsvHe6HMA/lmstpf4Vte+oEQA== -----END CERTIFICATE-----Generated at Wed May 13 05:54:56 2026 by rpki-client