$ rpki-client -vvf rpki-rsync.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa File: 3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: rgzG3kznE/vX9Snz2lJ8VJAkEg2Libw6TWafKzP37ss= Subject key identifier: 5C:18:21:A2:40:65:80:49:7B:82:F0:D7:60:84:43:E3:53:E3:EA:40 Certificate issuer: /CN=3CC3A3124EFBB050A42375C8461F1E336F6982FC Certificate serial: 20D9DF0159F748C503DCDCB03F1E4B40EA68162C Authority key identifier: 3C:C3:A3:12:4E:FB:B0:50:A4:23:75:C8:46:1F:1E:33:6F:69:82:FC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3CC3A3124EFBB050A42375C8461F1E336F6982FC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa Signing time: Sun 03 May 2026 02:33:53 +0000 ROA not before: Sun 03 May 2026 02:28:53 +0000 ROA not after: Sun 02 May 2027 02:33:53 +0000 asID: 133823 IP address blocks: 103.161.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3CC3A3124EFBB050A42375C8461F1E336F6982FC.crl rsync://rpki-rsync.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3CC3A3124EFBB050A42375C8461F1E336F6982FC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3CC3A3124EFBB050A42375C8461F1E336F6982FC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d9:df:01:59:f7:48:c5:03:dc:dc:b0:3f:1e:4b:40:ea:68:16:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CC3A3124EFBB050A42375C8461F1E336F6982FC Validity Not Before: May 3 02:28:53 2026 GMT Not After : May 2 02:33:53 2027 GMT Subject: CN=5C1821A2406580497B82F0D7608443E353E3EA40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0d:39:76:8a:22:89:ae:ac:68:84:96:6e:ef: f8:62:41:fa:c3:b8:3d:ae:94:e6:02:0d:12:a7:35: 42:85:e7:2f:7f:13:5d:ff:7c:0b:a2:08:2a:f1:19: cf:5a:0f:fd:a0:f7:20:9a:1f:57:da:cc:cc:21:ee: a6:6d:c7:32:39:14:d1:44:f2:e7:52:e8:cf:12:79: 44:2d:20:ea:0b:e5:62:23:e2:fc:3e:0e:ae:1f:23: a5:08:69:cd:1f:a8:f0:2d:21:f8:64:10:2a:ac:1b: c0:1a:9c:1f:13:9d:76:7d:65:33:e2:16:26:37:73: ec:ae:ea:6c:bb:23:88:b9:72:b4:2a:b2:0d:26:16: ca:94:75:f0:b3:26:8a:15:cc:7c:55:b3:48:69:ad: 88:19:d1:63:4a:d6:18:0c:f6:1f:14:44:e9:8b:aa: a4:d1:a6:66:19:17:ee:42:0c:8d:ef:c0:3c:a1:78: 7e:a1:bf:bd:da:89:60:fc:3a:61:77:a6:97:43:a0: a0:91:b3:ff:b9:c8:4a:12:5a:fd:63:da:29:fe:38: 3f:db:e5:b7:e9:ed:77:ca:79:fc:be:1f:0c:9e:c8: ab:4c:d5:d5:67:7d:61:ab:87:02:07:c1:73:de:59: 04:33:a7:7d:53:a9:9f:f3:d6:ea:cd:7c:b7:06:b7: 17:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:18:21:A2:40:65:80:49:7B:82:F0:D7:60:84:43:E3:53:E3:EA:40 X509v3 Authority Key Identifier: keyid:3C:C3:A3:12:4E:FB:B0:50:A4:23:75:C8:46:1F:1E:33:6F:69:82:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3CC3A3124EFBB050A42375C8461F1E336F6982FC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3CC3A3124EFBB050A42375C8461F1E336F6982FC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.191.0/24 Signature Algorithm: sha256WithRSAEncryption 02:d5:79:8c:81:a4:15:e4:f7:aa:ff:77:95:d0:d2:9b:9e:53: 29:18:aa:9c:e8:d7:8d:3e:d9:6d:97:77:3c:3e:43:60:9a:84: ed:e6:02:72:c0:dd:c7:8e:b7:30:a0:75:4c:cd:24:34:79:f5: 08:da:67:35:f4:88:63:74:5b:0c:e8:5e:44:4f:01:60:47:24: c9:cf:d2:94:09:79:9e:76:d6:f8:d4:b3:23:32:90:e2:0e:44: 03:82:4c:f5:ca:9b:b9:b1:92:a8:68:ef:5d:43:c6:f1:af:67: ce:bd:ff:37:99:69:da:c3:56:32:f5:4a:e9:83:a5:dc:a8:df: 69:3c:4a:75:01:75:66:0d:8b:25:b0:b7:55:30:26:db:48:e2: 3b:03:67:2d:0d:0d:61:7d:80:2c:a3:a6:4f:e4:42:79:5d:32: 13:62:72:45:e5:94:39:bd:ee:38:9a:1d:a1:4e:ea:9f:d0:b2: 3c:59:f7:e0:3f:32:d2:3b:af:fc:cb:84:51:b8:d3:77:a0:7a: 4e:27:07:35:79:15:24:13:76:7d:03:b9:f1:1c:47:c5:77:25: a4:5c:7c:dc:de:19:bc:18:9a:20:a8:ca:1e:a2:b3:33:d6:49: 24:87:f4:55:08:a0:fb:52:20:b5:3b:58:80:f0:fa:80:f5:de: ed:11:03:13 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUINnfAVn3SMUD3NywPx5LQOpoFiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NDM0EzMTI0RUZCQjA1MEE0MjM3NUM4NDYxRjFFMzM2 RjY5ODJGQzAeFw0yNjA1MDMwMjI4NTNaFw0yNzA1MDIwMjMzNTNaMDMxMTAvBgNV BAMTKDVDMTgyMUEyNDA2NTgwNDk3QjgyRjBENzYwODQ0M0UzNTNFM0VBNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbDTl2iiKJrqxohJZu7/hiQfrD uD2ulOYCDRKnNUKF5y9/E13/fAuiCCrxGc9aD/2g9yCaH1fazMwh7qZtxzI5FNFE 8udS6M8SeUQtIOoL5WIj4vw+Dq4fI6UIac0fqPAtIfhkECqsG8AanB8TnXZ9ZTPi FiY3c+yu6my7I4i5crQqsg0mFsqUdfCzJooVzHxVs0hprYgZ0WNK1hgM9h8UROmL qqTRpmYZF+5CDI3vwDyheH6hv73aiWD8OmF3ppdDoKCRs/+5yEoSWv1j2in+OD/b 5bfp7XfKefy+HwyeyKtM1dVnfWGrhwIHwXPeWQQzp31TqZ/z1urNfLcGtxfXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXBghokBlgEl7gvDXYIRD41Pj6kAwHwYDVR0j BBgwFoAUPMOjEk77sFCkI3XIRh8eM29pgvwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTU5MWI1OWItMWNhNS00NDY0LTk5ODItYmY2ZjZkOGExYzk0LzAvM0NDM0EzMTI0 RUZCQjA1MEE0MjM3NUM4NDYxRjFFMzM2RjY5ODJGQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQ0MzQTMxMjRFRkJCMDUwQTQyMzc1Qzg0NjFGMUUzMzZGNjk4 MkZDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1OTFiNTliLTFjYTUtNDQ2NC05 OTgyLWJmNmY2ZDhhMWM5NC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnob8wDQYJ KoZIhvcNAQELBQADggEBAALVeYyBpBXk96r/d5XQ0pueUykYqpzo140+2W2Xdzw+ Q2CahO3mAnLA3ceOtzCgdUzNJDR59QjaZzX0iGN0WwzoXkRPAWBHJMnP0pQJeZ52 1vjUsyMykOIORAOCTPXKm7mxkqho711DxvGvZ869/zeZadrDVjL1SumDpdyo32k8 SnUBdWYNiyWwt1UwJttI4jsDZy0NDWF9gCyjpk/kQnldMhNickXllDm97jiaHaFO 6p/QsjxZ9+A/MtI7r/zLhFG403egek4nBzV5FSQTdn0DufEcR8V3JaRcfNzeGbwY miCoyh6iszPWSSSH9FUIoPtSILU7WIDw+oD13u0RAxM= -----END CERTIFICATE-----Generated at Wed May 13 05:14:59 2026 by rpki-client