$ rpki-client -vvf rpki-rsync.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa File: 3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa (raw, json) Hash identifier: PVeUI9LzABp9X4uUesClPYyGG94/1D9llRU48PC0AGA= Subject key identifier: 3D:41:CC:6A:3C:34:04:91:41:A5:2E:F5:D2:8F:1F:0C:43:A9:F7:1A Certificate issuer: /CN=5256FBBE2FC545F984496DD4986EC64B662694E0 Certificate serial: 3AED2553A402A9468F72F8541F33C5A66E702D66 Authority key identifier: 52:56:FB:BE:2F:C5:45:F9:84:49:6D:D4:98:6E:C6:4B:66:26:94:E0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5256FBBE2FC545F984496DD4986EC64B662694E0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa Signing time: Sun 03 May 2026 02:33:25 +0000 ROA not before: Sun 03 May 2026 02:28:25 +0000 ROA not after: Sun 02 May 2027 02:33:25 +0000 asID: 59142 IP address blocks: 103.253.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/5256FBBE2FC545F984496DD4986EC64B662694E0.crl rsync://rpki-rsync.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/5256FBBE2FC545F984496DD4986EC64B662694E0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5256FBBE2FC545F984496DD4986EC64B662694E0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ed:25:53:a4:02:a9:46:8f:72:f8:54:1f:33:c5:a6:6e:70:2d:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5256FBBE2FC545F984496DD4986EC64B662694E0 Validity Not Before: May 3 02:28:25 2026 GMT Not After : May 2 02:33:25 2027 GMT Subject: CN=3D41CC6A3C34049141A52EF5D28F1F0C43A9F71A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:cc:0c:32:a9:ef:f6:c2:2c:43:80:d5:3d:54: ca:d8:e4:bb:0a:d1:d1:32:04:bb:fa:46:b6:4f:6d: bd:47:1d:87:81:39:6e:d6:d0:4e:31:a5:4b:ca:49: 99:78:b0:d5:b8:a4:33:08:11:f7:4b:82:5c:f1:df: 00:70:46:cd:99:17:64:68:3b:2c:97:b2:2f:c5:b9: eb:fa:8c:a5:bc:c7:34:b4:af:7e:90:bd:2e:9e:e2: dc:c0:90:89:07:01:21:40:12:c5:dd:ce:dd:29:31: 54:fe:04:30:0b:5f:02:f8:00:6d:0c:88:91:34:4e: ff:66:87:03:d0:e3:5d:d8:a2:79:d3:fb:a4:fb:75: 2f:bf:00:bc:61:15:f2:e2:71:28:72:c6:2c:ea:64: 51:30:b9:bc:3b:18:c4:98:5c:01:65:d0:b6:a6:9c: be:49:11:16:82:b8:90:2b:1e:7d:72:dc:5d:2e:ef: 84:0d:86:e2:86:16:8b:76:6e:79:02:bd:ee:68:5e: 04:0d:5a:c5:b1:87:89:02:79:02:66:ed:87:11:48: 70:60:c3:a8:c5:37:fe:e5:6e:55:57:46:08:d9:eb: 34:a5:e0:09:58:3e:9a:53:a7:c5:f4:5e:24:a5:75: 68:23:23:ac:91:94:5a:20:f9:c7:7d:3b:69:d3:4b: db:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:41:CC:6A:3C:34:04:91:41:A5:2E:F5:D2:8F:1F:0C:43:A9:F7:1A X509v3 Authority Key Identifier: keyid:52:56:FB:BE:2F:C5:45:F9:84:49:6D:D4:98:6E:C6:4B:66:26:94:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/5256FBBE2FC545F984496DD4986EC64B662694E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5256FBBE2FC545F984496DD4986EC64B662694E0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.124.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:c5:02:d5:f5:1f:bd:ec:69:df:5f:3f:e1:ae:76:b0:39:e6: 7e:8a:82:fa:a1:16:26:92:3b:1a:4f:8f:24:91:8f:4d:fc:b1: b7:ae:d7:57:e0:d8:f4:72:fd:c8:7e:a0:ac:1b:6d:8a:a5:7e: 88:e1:90:16:67:1b:17:3b:7e:3f:b9:3d:82:84:78:2d:1d:39: 42:94:9c:9e:b2:23:90:b9:c3:19:b0:bf:24:28:4a:60:c4:3d: 1a:04:17:ca:84:79:50:0d:04:63:0b:79:e1:f4:98:f0:dd:e7: 30:cf:72:59:9b:8b:7c:82:56:35:ab:82:85:f2:f0:58:df:4c: aa:6b:8f:29:30:77:1d:7b:12:09:ba:ac:db:8b:d8:98:26:8d: 15:37:0c:3e:e1:66:11:ca:59:e1:be:5d:fb:a8:4a:ae:f1:fd: 61:31:75:e3:af:f4:11:f3:5d:4c:5a:28:80:0c:42:54:99:31: 9a:b1:c2:d6:1c:9b:3b:d0:f7:b9:47:b5:4e:41:f6:75:79:c0: 0f:98:68:83:15:5d:18:1f:c9:27:97:05:94:0a:ce:54:5b:34: 81:be:68:39:cc:9c:a9:c6:ac:ec:2d:1e:cc:7b:10:d4:2a:33: bb:5a:e2:dc:28:1f:13:97:21:01:08:b9:13:79:12:90:4e:67: 2f:94:df:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOu0lU6QCqUaPcvhUHzPFpm5wLWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI1NkZCQkUyRkM1NDVGOTg0NDk2REQ0OTg2RUM2NEI2 NjI2OTRFMDAeFw0yNjA1MDMwMjI4MjVaFw0yNzA1MDIwMjMzMjVaMDMxMTAvBgNV BAMTKDNENDFDQzZBM0MzNDA0OTE0MUE1MkVGNUQyOEYxRjBDNDNBOUY3MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvzAwyqe/2wixDgNU9VMrY5LsK 0dEyBLv6RrZPbb1HHYeBOW7W0E4xpUvKSZl4sNW4pDMIEfdLglzx3wBwRs2ZF2Ro OyyXsi/Fuev6jKW8xzS0r36QvS6e4tzAkIkHASFAEsXdzt0pMVT+BDALXwL4AG0M iJE0Tv9mhwPQ413YonnT+6T7dS+/ALxhFfLicShyxizqZFEwubw7GMSYXAFl0Lam nL5JERaCuJArHn1y3F0u74QNhuKGFot2bnkCve5oXgQNWsWxh4kCeQJm7YcRSHBg w6jFN/7lblVXRgjZ6zSl4AlYPppTp8X0XiSldWgjI6yRlFog+cd9O2nTS9vjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPUHMajw0BJFBpS710o8fDEOp9xowHwYDVR0j BBgwFoAUUlb7vi/FRfmESW3UmG7GS2YmlOAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTMyYzUxMjEtZjc0OS00YTU0LWE5ZWMtZjZjMzQ5ZjM0MzEwLzAvNTI1NkZCQkUy RkM1NDVGOTg0NDk2REQ0OTg2RUM2NEI2NjI2OTRFMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MjU2RkJCRTJGQzU0NUY5ODQ0OTZERDQ5ODZFQzY0QjY2MjY5 NEUwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUzMmM1MTIxLWY3NDktNGE1NC1h OWVjLWY2YzM0OWYzNDMxMC8wLzMxMzAzMzJlMzIzNTMzMmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/18MA0GCSqG SIb3DQEBCwUAA4IBAQAbxQLV9R+97GnfXz/hrnawOeZ+ioL6oRYmkjsaT48kkY9N /LG3rtdX4Nj0cv3IfqCsG22KpX6I4ZAWZxsXO34/uT2ChHgtHTlClJyesiOQucMZ sL8kKEpgxD0aBBfKhHlQDQRjC3nh9Jjw3ecwz3JZm4t8glY1q4KF8vBY30yqa48p MHcdexIJuqzbi9iYJo0VNww+4WYRylnhvl37qEqu8f1hMXXjr/QR811MWiiADEJU mTGascLWHJs70Pe5R7VOQfZ1ecAPmGiDFV0YH8knlwWUCs5UWzSBvmg5zJypxqzs LR7MexDUKjO7WuLcKB8TlyEBCLkTeRKQTmcvlN+t -----END CERTIFICATE-----Generated at Wed May 13 09:11:48 2026 by rpki-client