$ rpki-client -vvf rpki-rsync.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132332e302f32342d3234203d3e20313530393830.roa File: 3130332e37302e3132332e302f32342d3234203d3e20313530393830.roa (raw, json) Hash identifier: PZbtbKk588SOuMSDyRHv/Fg/EjC+9RQB0ZQtHocb618= Subject key identifier: 8D:1D:2D:00:1A:B7:0D:72:4B:C7:AD:38:0F:41:DD:C5:78:B5:9C:B3 Certificate issuer: /CN=8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7 Certificate serial: 6D472CEF008D14C4464B56CB291C8CC708058048 Authority key identifier: 8E:EC:1E:03:B8:E5:2F:66:A0:71:3D:EB:14:21:7C:87:F9:EA:17:A7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132332e302f32342d3234203d3e20313530393830.roa Signing time: Sun 03 May 2026 02:33:24 +0000 ROA not before: Sun 03 May 2026 02:28:24 +0000 ROA not after: Sun 02 May 2027 02:33:24 +0000 asID: 150980 IP address blocks: 103.70.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7.crl rsync://rpki-rsync.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:47:2c:ef:00:8d:14:c4:46:4b:56:cb:29:1c:8c:c7:08:05:80:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7 Validity Not Before: May 3 02:28:24 2026 GMT Not After : May 2 02:33:24 2027 GMT Subject: CN=8D1D2D001AB70D724BC7AD380F41DDC578B59CB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b1:43:7a:88:5e:16:b5:dd:f2:34:85:12:1c: 77:12:96:2e:2c:e2:a1:ef:6f:63:16:8d:9f:fb:be: 58:6d:4a:c1:57:09:e1:2c:5d:b8:4c:fc:6f:7d:55: 46:58:c6:57:0a:d0:62:2e:e2:87:a1:87:79:e5:bd: 04:e7:f0:0d:d3:8a:67:7d:27:07:f8:fd:53:08:e0: a2:86:2a:7d:51:c8:fe:b8:68:2c:f3:35:76:1b:6a: c8:3d:5a:6f:08:72:3c:df:18:f2:87:cd:47:e6:30: 9c:19:a1:b6:14:d8:2a:04:fd:f7:87:34:8b:57:da: 37:84:5d:1f:8b:9c:e1:91:05:59:2b:6d:82:6a:d6: 59:51:e9:8c:e9:17:88:d5:66:53:0c:8b:06:a8:df: e6:d6:0c:07:37:04:23:d4:06:38:40:86:fd:cf:ad: 44:5a:8e:ef:b5:32:88:11:b7:56:8e:23:06:85:42: 4d:00:d3:80:7e:bc:ed:3f:a4:8c:c5:2b:3a:aa:08: d4:19:0d:82:d9:da:a8:19:a5:c4:72:1b:2e:50:91: 8f:d5:88:d1:33:9a:b4:7f:ee:55:23:03:b5:23:ac: 60:24:b0:b3:b0:5d:90:36:9b:97:5c:87:62:e7:b8: 53:03:85:9f:22:07:2f:14:47:8f:22:69:76:35:6f: 9a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1D:2D:00:1A:B7:0D:72:4B:C7:AD:38:0F:41:DD:C5:78:B5:9C:B3 X509v3 Authority Key Identifier: keyid:8E:EC:1E:03:B8:E5:2F:66:A0:71:3D:EB:14:21:7C:87:F9:EA:17:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8EEC1E03B8E52F66A0713DEB14217C87F9EA17A7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132332e302f32342d3234203d3e20313530393830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.123.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:d1:9b:a9:08:36:a9:53:27:e4:f3:d9:b5:dd:f8:8e:bb:40: 95:26:af:5a:46:66:98:d7:d4:ec:6b:74:b0:27:a2:00:d9:58: 55:24:a5:5c:af:28:24:fb:10:86:65:9b:9b:45:29:e7:e9:c7: 96:5d:00:4d:fb:5b:4a:a8:be:63:8c:7b:88:d5:44:c3:40:45: e9:0a:8d:1c:b4:a3:0f:9d:bf:20:93:04:5d:b8:72:c4:31:90: 7c:86:4f:86:7f:9a:d1:a3:fb:82:8a:f1:57:42:13:f4:b9:1c: b5:98:4f:fb:00:52:3d:fa:a9:e3:7e:24:2a:2c:17:75:f1:93: 0f:0b:23:61:60:84:12:be:eb:8a:8a:67:7d:36:b1:f8:0c:c7: db:a4:be:22:43:dd:95:3a:93:c2:b2:f2:7b:0e:10:78:09:05: 3e:c3:74:3f:2d:73:44:f3:e0:15:96:1b:8d:ef:73:83:29:d8: a2:8f:8d:4a:66:56:4a:36:b9:81:da:67:1a:f3:66:53:50:c7: 4e:dc:b7:9b:e9:31:f2:88:2a:dd:21:aa:d3:6e:d5:bc:b8:c0: ca:ab:dc:7e:f8:97:b6:27:47:d2:04:74:70:26:a3:4b:51:ee: 8e:67:b4:9a:57:40:80:ce:a2:f8:81:b5:dd:64:d9:82:01:df: 7b:65:52:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbUcs7wCNFMRGS1bLKRyMxwgFgEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEVFQzFFMDNCOEU1MkY2NkEwNzEzREVCMTQyMTdDODdG OUVBMTdBNzAeFw0yNjA1MDMwMjI4MjRaFw0yNzA1MDIwMjMzMjRaMDMxMTAvBgNV BAMTKDhEMUQyRDAwMUFCNzBENzI0QkM3QUQzODBGNDFEREM1NzhCNTlDQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDosUN6iF4Wtd3yNIUSHHcSli4s 4qHvb2MWjZ/7vlhtSsFXCeEsXbhM/G99VUZYxlcK0GIu4oehh3nlvQTn8A3Timd9 Jwf4/VMI4KKGKn1RyP64aCzzNXYbasg9Wm8IcjzfGPKHzUfmMJwZobYU2CoE/feH NItX2jeEXR+LnOGRBVkrbYJq1llR6YzpF4jVZlMMiwao3+bWDAc3BCPUBjhAhv3P rURaju+1MogRt1aOIwaFQk0A04B+vO0/pIzFKzqqCNQZDYLZ2qgZpcRyGy5QkY/V iNEzmrR/7lUjA7UjrGAksLOwXZA2m5dch2LnuFMDhZ8iBy8UR48iaXY1b5r3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjR0tABq3DXJLx604D0HdxXi1nLMwHwYDVR0j BBgwFoAUjuweA7jlL2agcT3rFCF8h/nqF6cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTMyNTA2NjItM2VlZi00YWE5LTllZGUtNTYyOWQ1YjZlYTk1LzAvOEVFQzFFMDNC OEU1MkY2NkEwNzEzREVCMTQyMTdDODdGOUVBMTdBNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RUVDMUUwM0I4RTUyRjY2QTA3MTNERUIxNDIxN0M4N0Y5RUEx N0E3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUzMjUwNjYyLTNlZWYtNGFhOS05 ZWRlLTU2MjlkNWI2ZWE5NS8wLzMxMzAzMzJlMzczMDJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0Z7MA0GCSqG SIb3DQEBCwUAA4IBAQBe0ZupCDapUyfk89m13fiOu0CVJq9aRmaY19Tsa3SwJ6IA 2VhVJKVcrygk+xCGZZubRSnn6ceWXQBN+1tKqL5jjHuI1UTDQEXpCo0ctKMPnb8g kwRduHLEMZB8hk+Gf5rRo/uCivFXQhP0uRy1mE/7AFI9+qnjfiQqLBd18ZMPCyNh YIQSvuuKimd9NrH4DMfbpL4iQ92VOpPCsvJ7DhB4CQU+w3Q/LXNE8+AVlhuN73OD Kdiij41KZlZKNrmB2mca82ZTUMdO3Leb6THyiCrdIarTbtW8uMDKq9x++Je2J0fS BHRwJqNLUe6OZ7SaV0CAzqL4gbXdZNmCAd97ZVLt -----END CERTIFICATE-----Generated at Wed May 13 04:19:56 2026 by rpki-client