$ rpki-client -vvf rpki-rsync.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa File: 3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa (raw, json) Hash identifier: vpj2Cz8QvcSUHt1I4ZpBnWfoJ+ZMnw91/FihIVwqKaA= Subject key identifier: B7:23:AE:49:AB:A5:AD:33:AF:B9:D0:E9:41:BF:82:33:AF:B1:41:2E Certificate issuer: /CN=3FCCB124CE6330827269179656BC9A7F04BCACF3 Certificate serial: 651AE5FB3F9057701FEF8268D0F2CD9B9516053C Authority key identifier: 3F:CC:B1:24:CE:63:30:82:72:69:17:96:56:BC:9A:7F:04:BC:AC:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCCB124CE6330827269179656BC9A7F04BCACF3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa Signing time: Sun 03 May 2026 02:33:26 +0000 ROA not before: Sun 03 May 2026 02:28:26 +0000 ROA not after: Sun 02 May 2027 02:33:26 +0000 asID: 141126 IP address blocks: 103.158.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3FCCB124CE6330827269179656BC9A7F04BCACF3.crl rsync://rpki-rsync.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3FCCB124CE6330827269179656BC9A7F04BCACF3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCCB124CE6330827269179656BC9A7F04BCACF3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:1a:e5:fb:3f:90:57:70:1f:ef:82:68:d0:f2:cd:9b:95:16:05:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FCCB124CE6330827269179656BC9A7F04BCACF3 Validity Not Before: May 3 02:28:26 2026 GMT Not After : May 2 02:33:26 2027 GMT Subject: CN=B723AE49ABA5AD33AFB9D0E941BF8233AFB1412E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:8d:ad:40:01:4d:3c:5e:6c:fd:a4:3d:d6: 05:4f:c8:34:ee:cb:ff:bf:e6:4b:24:45:8b:e0:35: 64:b0:6f:82:09:b0:62:80:3a:be:a4:fd:f7:c5:db: 5d:06:bd:76:00:71:76:2c:b6:b4:46:1e:11:1a:7b: 6a:31:a1:7a:64:5e:6f:70:7c:a5:cd:e8:65:1e:2f: b4:fd:3c:92:7b:45:d0:03:5f:9d:58:e0:20:ff:9c: 7e:d0:0a:93:36:54:56:e6:ab:25:3f:23:24:0b:6f: 68:ca:24:67:95:6a:99:72:66:66:22:6c:7e:45:2b: 95:e7:a9:c9:61:f9:ad:f7:51:f8:69:52:b8:c5:e8: e9:77:48:d2:90:50:75:6b:0d:f0:0e:b8:d1:25:81: 95:aa:53:57:b2:57:34:d1:8b:d9:7a:bf:92:6f:fd: fe:5d:08:bc:3b:ab:84:3f:33:cb:9a:6e:ec:79:c7: 66:36:c5:ed:cb:74:cc:52:47:6c:aa:ba:d4:5b:99: e2:77:fb:d9:f5:03:d4:f8:65:62:f9:7c:65:2a:5b: 03:6c:49:48:85:58:d0:d1:15:c7:56:e8:0d:9b:8d: 91:f4:2d:49:e4:67:ae:41:c4:ba:a8:31:84:61:c7: 4a:bd:61:3e:1b:2b:cd:4f:78:9e:aa:56:48:45:96: 21:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:23:AE:49:AB:A5:AD:33:AF:B9:D0:E9:41:BF:82:33:AF:B1:41:2E X509v3 Authority Key Identifier: keyid:3F:CC:B1:24:CE:63:30:82:72:69:17:96:56:BC:9A:7F:04:BC:AC:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3FCCB124CE6330827269179656BC9A7F04BCACF3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCCB124CE6330827269179656BC9A7F04BCACF3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.155.0/24 Signature Algorithm: sha256WithRSAEncryption 66:e8:37:ea:4f:d1:1d:cb:13:0e:6a:7f:37:eb:7d:de:ca:62: 2e:80:a1:1f:41:48:20:e4:57:d1:03:23:61:80:aa:89:13:65: 31:7d:8d:81:8c:02:6f:3e:7b:88:eb:54:51:14:cb:a2:c1:9f: 57:b4:0d:53:88:b5:e1:2f:8b:1d:8f:ac:22:5a:30:fc:e7:33: d8:cc:1e:a1:ef:4e:b7:e1:b3:cb:5c:fb:78:41:6f:02:9a:e9: aa:5d:c4:4d:15:ff:eb:28:ca:a4:36:26:cf:0d:f5:2a:42:b3: dd:a9:18:c0:3b:4e:ca:02:0a:ae:12:a4:61:64:c6:04:f0:29: eb:d6:66:da:f9:58:c1:6a:be:10:11:ca:b1:b0:cb:ab:88:d6: 32:88:9b:cf:96:9e:73:f1:8a:b2:88:1a:c4:27:a3:55:45:24: a6:9f:7c:7b:35:9a:ac:5f:9f:d2:0d:fd:30:43:85:ef:12:e3: 44:a0:bf:fc:41:76:03:a7:5d:72:6d:b6:a5:a9:af:76:11:cc: 51:75:b2:4c:e3:8c:fe:d5:3d:23:66:41:ba:0a:0d:be:02:70: 27:15:b4:e8:21:35:70:b2:bc:98:2d:13:0d:dd:87:e0:cc:08: 70:99:46:42:f6:11:34:e7:f4:7a:6d:27:ec:a7:f4:9f:61:36: 95:6d:5e:29 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZRrl+z+QV3Af74Jo0PLNm5UWBTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZDQ0IxMjRDRTYzMzA4MjcyNjkxNzk2NTZCQzlBN0Yw NEJDQUNGMzAeFw0yNjA1MDMwMjI4MjZaFw0yNzA1MDIwMjMzMjZaMDMxMTAvBgNV BAMTKEI3MjNBRTQ5QUJBNUFEMzNBRkI5RDBFOTQxQkY4MjMzQUZCMTQxMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2o2tQAFNPF5s/aQ91gVPyDTu y/+/5kskRYvgNWSwb4IJsGKAOr6k/ffF210GvXYAcXYstrRGHhEae2oxoXpkXm9w fKXN6GUeL7T9PJJ7RdADX51Y4CD/nH7QCpM2VFbmqyU/IyQLb2jKJGeVaplyZmYi bH5FK5Xnqclh+a33UfhpUrjF6Ol3SNKQUHVrDfAOuNElgZWqU1eyVzTRi9l6v5Jv /f5dCLw7q4Q/M8uabux5x2Y2xe3LdMxSR2yqutRbmeJ3+9n1A9T4ZWL5fGUqWwNs SUiFWNDRFcdW6A2bjZH0LUnkZ65BxLqoMYRhx0q9YT4bK81PeJ6qVkhFliGjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtyOuSaulrTOvudDpQb+CM6+xQS4wHwYDVR0j BBgwFoAUP8yxJM5jMIJyaReWVryafwS8rPMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTMzZjYwZTYtYWZkZC00ZTEwLTgzYjQtZThjYmQ2NDFjNTJmLzAvM0ZDQ0IxMjRD RTYzMzA4MjcyNjkxNzk2NTZCQzlBN0YwNEJDQUNGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRkNDQjEyNENFNjMzMDgyNzI2OTE3OTY1NkJDOUE3RjA0QkNB Q0YzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnpswDQYJ KoZIhvcNAQELBQADggEBAGboN+pP0R3LEw5qfzfrfd7KYi6AoR9BSCDkV9EDI2GA qokTZTF9jYGMAm8+e4jrVFEUy6LBn1e0DVOIteEvix2PrCJaMPznM9jMHqHvTrfh s8tc+3hBbwKa6apdxE0V/+soyqQ2Js8N9SpCs92pGMA7TsoCCq4SpGFkxgTwKevW Ztr5WMFqvhARyrGwy6uI1jKIm8+WnnPxirKIGsQno1VFJKaffHs1mqxfn9IN/TBD he8S40Sgv/xBdgOnXXJttqWpr3YRzFF1skzjjP7VPSNmQboKDb4CcCcVtOghNXCy vJgtEw3dh+DMCHCZRkL2ETTn9HptJ+yn9J9hNpVtXik= -----END CERTIFICATE-----Generated at Wed May 13 02:15:51 2026 by rpki-client