$ rpki-client -vvf rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa File: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: kDGuaA+cqkmx9XuIt8DtLniH0ehk8T8tx9w2wbnmu+I= Subject key identifier: B3:7D:3E:78:34:A5:B9:FE:4C:EF:18:90:FD:94:73:5F:8A:27:77:A5 Certificate issuer: /CN=23A948EB16F42F91944CC667D8613DD9AD7F2481 Certificate serial: 6C072A72730EA52C2D88BABA8D12D6E44B865A58 Authority key identifier: 23:A9:48:EB:16:F4:2F:91:94:4C:C6:67:D8:61:3D:D9:AD:7F:24:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa Signing time: Sun 03 May 2026 02:33:16 +0000 ROA not before: Sun 03 May 2026 02:28:16 +0000 ROA not after: Sun 02 May 2027 02:33:16 +0000 asID: 136052 IP address blocks: 103.236.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.crl rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:07:2a:72:73:0e:a5:2c:2d:88:ba:ba:8d:12:d6:e4:4b:86:5a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23A948EB16F42F91944CC667D8613DD9AD7F2481 Validity Not Before: May 3 02:28:16 2026 GMT Not After : May 2 02:33:16 2027 GMT Subject: CN=B37D3E7834A5B9FE4CEF1890FD94735F8A2777A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:31:e7:18:93:e3:3d:14:c5:10:df:31:c7:d6: 89:8c:42:7a:4c:c7:57:d0:8f:33:18:57:9f:3b:74: f5:04:01:d2:45:fc:90:f1:7b:7c:e5:4a:5b:82:08: be:ef:55:fe:3d:ad:f9:b4:a5:e0:7e:12:14:78:c0: 25:09:84:08:ff:8f:11:00:fd:33:c6:db:d9:69:5b: 25:c7:6d:35:a9:c5:4f:ec:ec:e3:39:4c:8e:37:0b: 64:cc:70:af:7a:36:5c:38:6e:af:19:26:5b:e6:c4: ee:83:f6:8c:6e:3f:5f:00:4e:b2:bc:d3:b6:97:95: fd:16:b5:75:aa:18:7e:26:0b:09:2e:70:59:f6:fc: e2:f0:cc:fb:54:11:39:93:5e:6e:3f:66:1b:3d:7c: a1:2e:c0:fd:39:ec:2d:b3:40:5f:0d:7e:fc:96:88: 70:91:d4:70:69:0a:1e:9a:1e:4c:48:70:f4:25:07: 84:07:d5:79:ed:63:ec:bb:0b:6e:61:c6:fd:41:2b: ea:ae:22:ef:86:f9:f9:f7:e2:04:9c:d7:11:30:8f: 28:bb:fa:ea:6d:1d:55:ad:fd:22:89:d7:24:22:d3: 20:c5:3d:c2:18:8a:5e:34:02:ec:67:1a:93:e8:ac: e6:47:44:83:03:a3:75:c7:92:f8:f1:5b:df:fe:8c: a5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:7D:3E:78:34:A5:B9:FE:4C:EF:18:90:FD:94:73:5F:8A:27:77:A5 X509v3 Authority Key Identifier: keyid:23:A9:48:EB:16:F4:2F:91:94:4C:C6:67:D8:61:3D:D9:AD:7F:24:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.201.0/24 Signature Algorithm: sha256WithRSAEncryption 58:ba:1a:2c:b1:13:7b:b7:85:4b:72:6a:99:e0:ca:95:45:ad: e1:38:d4:25:d1:9f:e8:70:c8:c7:ea:4c:ff:42:77:56:aa:18: 01:89:c5:5f:05:42:d8:bc:d8:06:54:1a:c2:89:48:c9:50:d0: d8:cd:b8:34:ce:51:2e:8b:67:21:70:fc:5a:14:69:1f:47:21: 48:2a:4f:aa:97:8f:57:0b:5e:60:51:b3:ed:43:ea:8f:11:c4: 2a:0a:f5:f9:8d:82:33:1b:44:7a:5c:71:00:11:78:41:66:c8: b9:b8:c7:a9:e0:79:5f:ad:4e:e7:f4:a9:05:3a:9e:44:3d:d0: 8b:cd:70:6b:fe:1b:e4:38:76:cd:e9:1c:b3:7e:48:8b:bf:f5: ba:3f:0c:39:34:39:6b:1b:4e:16:d8:26:e3:a1:15:75:e0:03: 5e:aa:83:0b:06:d7:a6:49:91:6e:cf:a7:e8:4f:9a:18:ac:39: 46:a4:e7:60:ab:f4:bf:ab:b2:be:f0:8f:be:40:51:57:40:be: 59:f2:42:03:d5:54:df:66:ce:eb:26:7d:fe:f6:e4:49:ae:3c: 0d:93:34:72:50:31:fa:ff:64:76:90:16:16:6b:f1:5b:e1:bc: 58:a9:a5:cf:55:cc:7f:1b:21:b2:53:63:9a:a6:41:c8:cd:b9: 2b:1a:26:ff -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbAcqcnMOpSwtiLq6jRLW5EuGWlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNBOTQ4RUIxNkY0MkY5MTk0NENDNjY3RDg2MTNERDlB RDdGMjQ4MTAeFw0yNjA1MDMwMjI4MTZaFw0yNzA1MDIwMjMzMTZaMDMxMTAvBgNV BAMTKEIzN0QzRTc4MzRBNUI5RkU0Q0VGMTg5MEZEOTQ3MzVGOEEyNzc3QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/MecYk+M9FMUQ3zHH1omMQnpM x1fQjzMYV587dPUEAdJF/JDxe3zlSluCCL7vVf49rfm0peB+EhR4wCUJhAj/jxEA /TPG29lpWyXHbTWpxU/s7OM5TI43C2TMcK96Nlw4bq8ZJlvmxO6D9oxuP18ATrK8 07aXlf0WtXWqGH4mCwkucFn2/OLwzPtUETmTXm4/Zhs9fKEuwP057C2zQF8NfvyW iHCR1HBpCh6aHkxIcPQlB4QH1XntY+y7C25hxv1BK+quIu+G+fn34gSc1xEwjyi7 +uptHVWt/SKJ1yQi0yDFPcIYil40AuxnGpPorOZHRIMDo3XHkvjxW9/+jKWJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUs30+eDSluf5M7xiQ/ZRzX4ond6UwHwYDVR0j BBgwFoAUI6lI6xb0L5GUTMZn2GE92a1/JIEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTJhYzBjYTUtNWNlNy00ZTZlLTlmZmYtNzIxM2VmMWVmMzY0LzAvMjNBOTQ4RUIx NkY0MkY5MTk0NENDNjY3RDg2MTNERDlBRDdGMjQ4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yM0E5NDhFQjE2RjQyRjkxOTQ0Q0M2NjdEODYxM0REOUFEN0Yy NDgxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzIzMzM2MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn7MkwDQYJ KoZIhvcNAQELBQADggEBAFi6GiyxE3u3hUtyapngypVFreE41CXRn+hwyMfqTP9C d1aqGAGJxV8FQti82AZUGsKJSMlQ0NjNuDTOUS6LZyFw/FoUaR9HIUgqT6qXj1cL XmBRs+1D6o8RxCoK9fmNgjMbRHpccQAReEFmyLm4x6ngeV+tTuf0qQU6nkQ90IvN cGv+G+Q4ds3pHLN+SIu/9bo/DDk0OWsbThbYJuOhFXXgA16qgwsG16ZJkW7Pp+hP mhisOUak52Cr9L+rsr7wj75AUVdAvlnyQgPVVN9mzusmff725EmuPA2TNHJQMfr/ ZHaQFhZr8VvhvFippc9VzH8bIbJTY5qmQcjNuSsaJv8= -----END CERTIFICATE-----Generated at Wed May 13 04:20:21 2026 by rpki-client