$ rpki-client -vvf rpki-rsync.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa File: 3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa (raw, json) Hash identifier: tCaJ2zwdgsb4+fHqF/Tm3Uoxd1Qn9nKNIXa1bnIvzy4= Subject key identifier: 16:D3:DC:DD:7B:19:44:3F:41:36:A9:A4:20:A5:BF:83:AA:58:61:C1 Certificate issuer: /CN=3FE5A09F80C22C04D77F30DEDF26B908BE7777F9 Certificate serial: 629CA586C56F84461796648873071C65987674FD Authority key identifier: 3F:E5:A0:9F:80:C2:2C:04:D7:7F:30:DE:DF:26:B9:08:BE:77:77:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FE5A09F80C22C04D77F30DEDF26B908BE7777F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa Signing time: Sun 03 May 2026 02:34:56 +0000 ROA not before: Sun 03 May 2026 02:29:56 +0000 ROA not after: Sun 02 May 2027 02:34:56 +0000 asID: 150986 IP address blocks: 103.193.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3FE5A09F80C22C04D77F30DEDF26B908BE7777F9.crl rsync://rpki-rsync.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3FE5A09F80C22C04D77F30DEDF26B908BE7777F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FE5A09F80C22C04D77F30DEDF26B908BE7777F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:9c:a5:86:c5:6f:84:46:17:96:64:88:73:07:1c:65:98:76:74:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FE5A09F80C22C04D77F30DEDF26B908BE7777F9 Validity Not Before: May 3 02:29:56 2026 GMT Not After : May 2 02:34:56 2027 GMT Subject: CN=16D3DCDD7B19443F4136A9A420A5BF83AA5861C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:71:3a:c4:ee:39:76:3a:04:cc:3e:e7:04:46: 61:1a:66:51:ee:e7:13:92:b7:7f:f8:7e:49:a2:16: 81:c6:a9:d8:c6:9f:a3:5a:a7:70:8a:1c:1b:e9:32: 9b:91:43:4b:6c:f5:16:c3:60:9f:7d:e5:11:6e:6d: f3:19:14:b4:0f:7f:30:a9:17:d7:7a:9a:6e:32:ae: 50:22:d1:fa:93:56:60:59:25:50:87:45:e5:83:32: ba:c9:dd:48:b0:d1:03:38:b9:b1:9e:e9:77:66:29: 5d:8a:e9:58:21:ab:1e:dc:e3:0c:ab:80:cb:50:81: d7:f0:87:83:bc:1c:32:72:61:5c:6c:59:42:2e:26: 4c:12:e2:a7:3b:5f:f4:56:01:82:47:e6:76:46:a0: 61:0d:10:e6:9c:57:60:60:73:33:5c:7d:c7:98:ec: af:fd:38:4a:cf:fe:15:37:84:3e:90:84:9b:9c:c0: 7d:62:98:2b:d9:56:7e:5b:d4:27:43:de:ab:06:81: ab:a1:16:c6:ff:a9:68:78:75:0f:02:8e:9c:4c:13: d8:20:4f:59:2b:22:e6:71:de:10:5b:76:47:63:1b: d8:37:f9:ea:a8:9a:c6:b8:19:a7:72:c1:6d:1b:4f: 01:29:19:e4:f4:56:6c:04:c0:0c:5c:a5:99:9d:8e: 16:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D3:DC:DD:7B:19:44:3F:41:36:A9:A4:20:A5:BF:83:AA:58:61:C1 X509v3 Authority Key Identifier: keyid:3F:E5:A0:9F:80:C2:2C:04:D7:7F:30:DE:DF:26:B9:08:BE:77:77:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3FE5A09F80C22C04D77F30DEDF26B908BE7777F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FE5A09F80C22C04D77F30DEDF26B908BE7777F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.147.0/24 Signature Algorithm: sha256WithRSAEncryption 76:a8:6c:d8:19:c2:fa:4f:22:03:30:95:6d:a8:3d:dd:8e:37: ca:82:28:19:bc:3b:a5:df:16:e7:af:b3:cc:4b:c0:1e:f7:82: f2:16:99:6d:5b:94:70:3e:89:42:17:75:64:72:3d:90:b8:15: 42:85:77:23:88:12:58:25:8a:02:8c:7b:ca:dd:86:28:48:4e: 07:47:38:c7:0a:be:fe:8e:b1:63:76:ad:90:5f:bf:10:0f:30: af:e8:3f:aa:ee:0b:a6:a3:1b:46:c8:41:b3:5b:9a:52:f0:70: 15:34:31:4e:11:02:0e:8c:b5:4b:38:0e:b8:61:6c:03:35:de: 75:87:dd:1b:f0:03:db:16:48:36:21:e5:4c:77:93:25:ae:35: 0b:de:16:65:e6:b4:dd:fc:9c:f6:0b:1a:6d:4c:b4:9a:4a:6a: cf:16:a3:0b:24:7e:e4:95:a2:83:da:18:b8:da:fa:62:2b:d3: 9c:0c:32:30:45:24:70:d0:56:1d:f5:94:c1:d9:cb:7a:e2:55: 4a:94:32:f9:a6:e2:46:7f:fc:e9:52:39:d7:8f:e6:0e:3e:73: d1:3c:94:11:de:31:aa:a1:4f:95:e9:a4:3c:b6:db:77:da:88: 6c:6d:e5:0a:55:b9:21:e9:3a:fd:4c:94:67:db:89:f3:57:9e: 57:a5:7b:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYpylhsVvhEYXlmSIcwccZZh2dP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZFNUEwOUY4MEMyMkMwNEQ3N0YzMERFREYyNkI5MDhC RTc3NzdGOTAeFw0yNjA1MDMwMjI5NTZaFw0yNzA1MDIwMjM0NTZaMDMxMTAvBgNV BAMTKDE2RDNEQ0REN0IxOTQ0M0Y0MTM2QTlBNDIwQTVCRjgzQUE1ODYxQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCacTrE7jl2OgTMPucERmEaZlHu 5xOSt3/4fkmiFoHGqdjGn6Nap3CKHBvpMpuRQ0ts9RbDYJ995RFubfMZFLQPfzCp F9d6mm4yrlAi0fqTVmBZJVCHReWDMrrJ3Uiw0QM4ubGe6XdmKV2K6Vghqx7c4wyr gMtQgdfwh4O8HDJyYVxsWUIuJkwS4qc7X/RWAYJH5nZGoGENEOacV2BgczNcfceY 7K/9OErP/hU3hD6QhJucwH1imCvZVn5b1CdD3qsGgauhFsb/qWh4dQ8CjpxME9gg T1krIuZx3hBbdkdjG9g3+eqomsa4GadywW0bTwEpGeT0VmwEwAxcpZmdjhZRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFtPc3XsZRD9BNqmkIKW/g6pYYcEwHwYDVR0j BBgwFoAUP+Wgn4DCLATXfzDe3ya5CL53d/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTkxNTdjZWQtZTgyYy00MzM0LTkwM2EtY2NjYmJlOWNmZTg5LzAvM0ZFNUEwOUY4 MEMyMkMwNEQ3N0YzMERFREYyNkI5MDhCRTc3NzdGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRkU1QTA5RjgwQzIyQzA0RDc3RjMwREVERjI2QjkwOEJFNzc3 N0Y5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5MTU3Y2VkLWU4MmMtNDMzNC05 MDNhLWNjY2JiZTljZmU4OS8wLzMxMzAzMzJlMzEzOTMzMmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnwZMwDQYJ KoZIhvcNAQELBQADggEBAHaobNgZwvpPIgMwlW2oPd2ON8qCKBm8O6XfFuevs8xL wB73gvIWmW1blHA+iUIXdWRyPZC4FUKFdyOIElgligKMe8rdhihITgdHOMcKvv6O sWN2rZBfvxAPMK/oP6ruC6ajG0bIQbNbmlLwcBU0MU4RAg6MtUs4DrhhbAM13nWH 3RvwA9sWSDYh5Ux3kyWuNQveFmXmtN38nPYLGm1MtJpKas8WowskfuSVooPaGLja +mIr05wMMjBFJHDQVh31lMHZy3riVUqUMvmm4kZ//OlSOdeP5g4+c9E8lBHeMaqh T5XppDy223faiGxt5QpVuSHpOv1MlGfbifNXnlele8k= -----END CERTIFICATE-----Generated at Wed May 13 02:15:19 2026 by rpki-client