$ rpki-client -vvf rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa File: 3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: NpQnwPQm4+MZdCx5RwEF6BiVLRmHGtHyCiNoecoz5oY= Subject key identifier: AF:8A:7C:8A:3C:AE:F4:70:C7:71:D5:0C:B5:42:55:5E:5B:EB:60:C3 Certificate issuer: /CN=41D594A81CE7902C5B861CDDF442D40BD7622D23 Certificate serial: 1A83306128E92C621C59537BC2FDD2AFD7F68509 Authority key identifier: 41:D5:94:A8:1C:E7:90:2C:5B:86:1C:DD:F4:42:D4:0B:D7:62:2D:23 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41D594A81CE7902C5B861CDDF442D40BD7622D23.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:33:28 +0000 ROA not before: Sun 03 May 2026 02:28:28 +0000 ROA not after: Sun 02 May 2027 02:33:28 +0000 asID: 131745 IP address blocks: 103.30.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/41D594A81CE7902C5B861CDDF442D40BD7622D23.crl rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/41D594A81CE7902C5B861CDDF442D40BD7622D23.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41D594A81CE7902C5B861CDDF442D40BD7622D23.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:83:30:61:28:e9:2c:62:1c:59:53:7b:c2:fd:d2:af:d7:f6:85:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D594A81CE7902C5B861CDDF442D40BD7622D23 Validity Not Before: May 3 02:28:28 2026 GMT Not After : May 2 02:33:28 2027 GMT Subject: CN=AF8A7C8A3CAEF470C771D50CB542555E5BEB60C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6d:21:37:5f:13:51:76:ad:9c:54:cc:03:24: 28:e1:ac:03:38:16:d6:ef:e0:9a:ef:22:67:06:6e: 26:86:30:31:1d:cb:30:d8:d5:c2:c8:57:6c:50:46: 38:ec:33:0f:a0:38:27:52:fd:c3:b1:0e:09:2c:4e: ab:33:53:ca:81:1f:c7:64:ad:31:7e:df:d7:8a:75: 48:35:42:50:35:9e:13:63:60:97:99:56:cc:5b:fe: 75:04:c0:b7:71:0d:9d:ca:26:10:47:b5:c2:17:d4: aa:10:48:f0:b3:84:87:f3:c2:bb:16:55:8f:b4:ad: bb:f5:0e:1a:89:48:42:e3:06:21:f9:fc:26:57:36: 5c:06:9d:dc:e6:b6:fc:ad:99:af:46:73:6c:eb:3e: c1:ae:30:c9:3a:d8:f6:ac:88:12:cf:88:5c:df:a1: 71:67:57:7c:4e:f6:af:0d:4a:68:e9:67:d8:5e:bc: f2:73:53:76:de:dc:f3:90:fe:b7:45:d3:7d:4d:a5: 9e:e6:ac:b4:18:8b:91:05:f7:95:e4:17:49:51:d6: c1:61:f8:ac:0f:14:ae:ae:b9:71:b4:3f:23:33:cf: 71:78:68:c4:2f:34:74:f0:ca:ba:62:a1:41:14:b9: 26:4b:f2:61:be:9a:81:59:51:dc:05:1c:44:de:ee: 6c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8A:7C:8A:3C:AE:F4:70:C7:71:D5:0C:B5:42:55:5E:5B:EB:60:C3 X509v3 Authority Key Identifier: keyid:41:D5:94:A8:1C:E7:90:2C:5B:86:1C:DD:F4:42:D4:0B:D7:62:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/41D594A81CE7902C5B861CDDF442D40BD7622D23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41D594A81CE7902C5B861CDDF442D40BD7622D23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.244.0/22 Signature Algorithm: sha256WithRSAEncryption 57:63:0d:ec:3a:77:3d:27:66:1e:db:82:19:4b:4e:17:2b:a2: a4:dc:4c:a9:be:9c:6c:ef:8a:1d:0d:a9:8e:63:0b:ab:f8:ae: 36:12:03:0e:86:f9:e3:00:69:67:9f:3f:87:ca:de:e3:42:fc: 40:e4:9c:77:c1:35:cf:01:4f:63:b8:a0:3a:78:01:5f:d4:2c: 9c:cd:4a:71:3f:29:45:c5:9d:58:69:a6:89:6b:ce:05:8f:b1: 79:6b:9e:dc:fd:79:3c:af:d8:b6:8d:82:1a:ae:21:20:1e:7e: 86:34:51:7a:2e:a0:85:3d:a5:87:3f:8d:d5:8e:73:1d:f1:47: 5c:56:93:42:ae:34:cb:e8:c6:89:e9:a9:8b:a6:8c:2c:56:39: d8:ab:7c:8f:1b:51:91:3f:18:84:ab:7e:02:8f:ab:c0:7f:c9: 9e:0d:f0:07:e9:9e:5b:72:d6:cf:90:f0:12:cf:eb:8c:a5:8c: b6:66:5b:a4:50:b8:f5:19:96:f3:c7:11:23:db:5c:e0:f0:b2: 7a:a3:cc:6b:b4:95:f4:8c:75:6f:b9:53:3d:2c:78:05:89:e3: 06:68:bc:64:91:cb:75:f4:a6:45:28:14:39:0b:11:91:29:91: b1:99:9f:bc:a3:42:69:f7:31:17:25:f6:38:23:01:7f:81:91: 10:2c:39:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGoMwYSjpLGIcWVN7wv3Sr9f2hQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFENTk0QTgxQ0U3OTAyQzVCODYxQ0RERjQ0MkQ0MEJE NzYyMkQyMzAeFw0yNjA1MDMwMjI4MjhaFw0yNzA1MDIwMjMzMjhaMDMxMTAvBgNV BAMTKEFGOEE3QzhBM0NBRUY0NzBDNzcxRDUwQ0I1NDI1NTVFNUJFQjYwQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzbSE3XxNRdq2cVMwDJCjhrAM4 Ftbv4JrvImcGbiaGMDEdyzDY1cLIV2xQRjjsMw+gOCdS/cOxDgksTqszU8qBH8dk rTF+39eKdUg1QlA1nhNjYJeZVsxb/nUEwLdxDZ3KJhBHtcIX1KoQSPCzhIfzwrsW VY+0rbv1DhqJSELjBiH5/CZXNlwGndzmtvytma9Gc2zrPsGuMMk62PasiBLPiFzf oXFnV3xO9q8NSmjpZ9hevPJzU3be3POQ/rdF031NpZ7mrLQYi5EF95XkF0lR1sFh +KwPFK6uuXG0PyMzz3F4aMQvNHTwyrpioUEUuSZL8mG+moFZUdwFHETe7mzPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUr4p8ijyu9HDHcdUMtUJVXlvrYMMwHwYDVR0j BBgwFoAUQdWUqBznkCxbhhzd9ELUC9diLSMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTM4YzYyMWQtMDViYy00YmNkLTk2NTctY2RmMzM4NjBmMjFhLzAvNDFENTk0QTgx Q0U3OTAyQzVCODYxQ0RERjQ0MkQ0MEJENzYyMkQyMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUQ1OTRBODFDRTc5MDJDNUI4NjFDRERGNDQyRDQwQkQ3NjIy RDIzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUzOGM2MjFkLTA1YmMtNGJjZC05 NjU3LWNkZjMzODYwZjIxYS8wLzMxMzAzMzJlMzMzMDJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZx70MA0GCSqG SIb3DQEBCwUAA4IBAQBXYw3sOnc9J2Ye24IZS04XK6Kk3Eypvpxs74odDamOYwur +K42EgMOhvnjAGlnnz+Hyt7jQvxA5Jx3wTXPAU9juKA6eAFf1CyczUpxPylFxZ1Y aaaJa84Fj7F5a57c/Xk8r9i2jYIariEgHn6GNFF6LqCFPaWHP43VjnMd8UdcVpNC rjTL6MaJ6amLpowsVjnYq3yPG1GRPxiEq34Cj6vAf8meDfAH6Z5bctbPkPASz+uM pYy2ZlukULj1GZbzxxEj21zg8LJ6o8xrtJX0jHVvuVM9LHgFieMGaLxkkct19KZF KBQ5CxGRKZGxmZ+8o0Jp9zEXJfY4IwF/gZEQLDly -----END CERTIFICATE-----Generated at Wed May 13 08:24:13 2026 by rpki-client