$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/3130332e33312e3130392e302f32342d3234203d3e20313333333630.roa File: 3130332e33312e3130392e302f32342d3234203d3e20313333333630.roa (raw, json) Hash identifier: ohVHX4YN8ERE5ZaanIq+FJ4sj6xtkTx6fZFuzW5hCso= Subject key identifier: 4E:29:87:0F:D5:8F:C3:DA:2D:A3:D0:58:43:26:35:B3:E6:72:40:86 Certificate issuer: /CN=DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641 Certificate serial: 15C024512F092A83BE09ACA860BDFFB74724F7D2 Authority key identifier: DD:AF:8D:65:28:C4:2D:5B:45:31:AC:E7:7D:6A:1C:BE:1F:04:66:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/3130332e33312e3130392e302f32342d3234203d3e20313333333630.roa Signing time: Sun 03 May 2026 02:32:28 +0000 ROA not before: Sun 03 May 2026 02:27:28 +0000 ROA not after: Sun 02 May 2027 02:32:28 +0000 asID: 133360 IP address blocks: 103.31.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641.crl rsync://rpki-rsync.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c0:24:51:2f:09:2a:83:be:09:ac:a8:60:bd:ff:b7:47:24:f7:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641 Validity Not Before: May 3 02:27:28 2026 GMT Not After : May 2 02:32:28 2027 GMT Subject: CN=4E29870FD58FC3DA2DA3D058432635B3E6724086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:7f:c3:73:bc:88:98:89:45:57:9f:bd:ce:b4: 5e:a5:f8:8b:5a:b8:02:ca:2a:78:c6:b9:ed:cf:f1: 87:d9:a1:63:fc:c1:27:f2:7d:72:0d:a9:1b:a1:a6: ed:8b:0c:a0:90:1d:17:7b:a2:89:70:3a:5a:c1:92: a5:39:88:2c:11:9f:71:e5:4c:78:c0:73:4f:27:42: fa:f2:4a:3f:d5:17:49:59:14:41:80:98:95:35:15: 7f:20:0f:49:40:76:83:ca:2a:c9:bf:72:2b:cf:44: d9:b8:35:8b:16:b9:10:a2:88:1a:b1:34:91:7f:c4: 46:e7:68:45:8c:70:19:fe:1a:89:63:ea:69:17:70: 8e:93:c4:2e:b1:99:61:d9:a4:81:8a:23:5c:ca:77: 0f:50:f4:7b:cc:8e:90:06:47:c3:58:c2:1b:f8:8b: 51:10:16:90:c9:14:74:fe:71:96:10:84:50:53:00: 64:42:5d:ef:1c:c4:ef:a0:3e:3b:50:3d:16:b8:df: 61:65:b4:9f:d3:75:24:d2:51:08:2e:d8:a5:e2:01: 41:e0:17:ab:30:a9:f3:fc:59:4b:0a:40:58:4d:31: ee:f0:65:cf:fa:f6:13:4c:32:b0:df:ac:de:ec:c1: 90:9d:6e:c7:5d:a1:11:5c:da:f0:15:61:dd:28:9d: 44:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:29:87:0F:D5:8F:C3:DA:2D:A3:D0:58:43:26:35:B3:E6:72:40:86 X509v3 Authority Key Identifier: keyid:DD:AF:8D:65:28:C4:2D:5B:45:31:AC:E7:7D:6A:1C:BE:1F:04:66:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDAF8D6528C42D5B4531ACE77D6A1CBE1F046641.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/3130332e33312e3130392e302f32342d3234203d3e20313333333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.109.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:fb:f5:7d:95:e5:8e:8a:82:17:e0:8e:88:3d:2d:04:e1:ea: 04:d0:50:af:9e:a1:de:c4:19:44:76:f6:a6:13:04:52:63:76: 1c:d0:ba:e8:c3:00:c8:9e:43:f9:fe:0d:53:c0:b6:cb:f9:2b: d1:bf:00:13:17:dc:19:73:c1:ea:24:27:9d:eb:13:d6:d5:9b: 01:32:db:12:9a:c8:cc:d2:5f:70:d9:65:b8:44:3c:c6:0c:63: 9c:8b:a7:e9:7a:c0:03:e4:f9:6c:fc:07:87:e4:8f:c7:0c:28: 03:36:07:ad:2e:4e:09:fb:90:cb:41:98:93:e9:70:71:61:51: 4d:72:97:31:52:5f:4b:95:62:ba:8a:47:5b:f3:89:51:96:30: a0:28:4f:2f:cf:ad:e9:00:d2:09:5c:79:8b:ed:2e:e5:e5:2f: 54:cf:b1:d4:62:fe:9a:14:ca:52:92:73:84:e9:ec:9b:0b:33: 32:b2:6a:80:14:a3:95:90:bd:6e:e3:62:be:f8:ea:07:ff:60: 92:88:d8:c9:bc:ee:69:87:c8:31:7f:ef:8e:b1:fb:bc:6d:dd: 65:73:34:29:87:78:ce:e5:cf:0c:70:8b:32:dc:f6:5c:26:f6: f9:41:29:4a:73:f8:be:8d:94:00:f4:67:d1:6b:cd:b7:19:d9: 82:36:98:d6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFcAkUS8JKoO+CayoYL3/t0ck99IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERBRjhENjUyOEM0MkQ1QjQ1MzFBQ0U3N0Q2QTFDQkUx RjA0NjY0MTAeFw0yNjA1MDMwMjI3MjhaFw0yNzA1MDIwMjMyMjhaMDMxMTAvBgNV BAMTKDRFMjk4NzBGRDU4RkMzREEyREEzRDA1ODQzMjYzNUIzRTY3MjQwODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1f8NzvIiYiUVXn73OtF6l+Ita uALKKnjGue3P8YfZoWP8wSfyfXINqRuhpu2LDKCQHRd7oolwOlrBkqU5iCwRn3Hl THjAc08nQvrySj/VF0lZFEGAmJU1FX8gD0lAdoPKKsm/civPRNm4NYsWuRCiiBqx NJF/xEbnaEWMcBn+Golj6mkXcI6TxC6xmWHZpIGKI1zKdw9Q9HvMjpAGR8NYwhv4 i1EQFpDJFHT+cZYQhFBTAGRCXe8cxO+gPjtQPRa432FltJ/TdSTSUQgu2KXiAUHg F6swqfP8WUsKQFhNMe7wZc/69hNMMrDfrN7swZCdbsddoRFc2vAVYd0onURhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTimHD9WPw9oto9BYQyY1s+ZyQIYwHwYDVR0j BBgwFoAU3a+NZSjELVtFMaznfWocvh8EZkEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY2YWEzMWEtZGQwZC00YzEwLWI1ZGQtYjFhODNmYTU3NzYzLzAvRERBRjhENjUy OEM0MkQ1QjQ1MzFBQ0U3N0Q2QTFDQkUxRjA0NjY0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EREFGOEQ2NTI4QzQyRDVCNDUzMUFDRTc3RDZBMUNCRTFGMDQ2 NjQxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmNmFhMzFhLWRkMGQtNGMxMC1i NWRkLWIxYTgzZmE1Nzc2My8wLzMxMzAzMzJlMzMzMTJlMzEzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx9tMA0GCSqG SIb3DQEBCwUAA4IBAQBu+/V9leWOioIX4I6IPS0E4eoE0FCvnqHexBlEdvamEwRS Y3Yc0LrowwDInkP5/g1TwLbL+SvRvwATF9wZc8HqJCed6xPW1ZsBMtsSmsjM0l9w 2WW4RDzGDGOci6fpesAD5Pls/AeH5I/HDCgDNgetLk4J+5DLQZiT6XBxYVFNcpcx Ul9LlWK6ikdb84lRljCgKE8vz63pANIJXHmL7S7l5S9Uz7HUYv6aFMpSknOE6eyb CzMysmqAFKOVkL1u42K++OoH/2CSiNjJvO5ph8gxf++Osfu8bd1lczQph3jO5c8M cIsy3PZcJvb5QSlKc/i+jZQA9GfRa823GdmCNpjW -----END CERTIFICATE-----Generated at Wed May 13 04:03:04 2026 by rpki-client