$ rpki-client -vvf rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa File: 3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa (raw, json) Hash identifier: IUK+vwB76Q4G08ehK2Gx52lgwmgXNziNTOU2tmOlHFI= Subject key identifier: 93:79:5F:B2:3C:70:48:9E:C3:91:A7:45:1F:70:B8:41:8D:1C:43:A2 Certificate issuer: /CN=F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1 Certificate serial: 3A2C4D9BC03AD6B305231CE663AF1BBB55F1C5F7 Authority key identifier: F2:DE:D7:D1:AF:52:5B:DA:D6:41:4B:3E:2B:AF:7B:50:53:99:A7:D1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa Signing time: Sun 03 May 2026 02:35:02 +0000 ROA not before: Sun 03 May 2026 02:30:02 +0000 ROA not after: Sun 02 May 2027 02:35:02 +0000 asID: 38756 IP address blocks: 103.212.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.crl rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2c:4d:9b:c0:3a:d6:b3:05:23:1c:e6:63:af:1b:bb:55:f1:c5:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1 Validity Not Before: May 3 02:30:02 2026 GMT Not After : May 2 02:35:02 2027 GMT Subject: CN=93795FB23C70489EC391A7451F70B8418D1C43A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:87:4b:83:b1:0d:4c:93:44:f2:df:df:75:2f: 49:dc:ca:ac:73:d6:30:13:ba:a9:8f:b2:2f:27:02: 54:86:0e:74:76:2b:a3:6d:97:24:59:78:6d:c6:3a: b9:de:63:a8:3d:4c:d3:bb:95:95:53:a5:39:9f:6a: e9:1a:71:79:63:cb:c2:4b:6e:fb:29:c6:d3:e3:fd: 97:8b:78:39:85:1e:67:5a:43:ce:ee:53:a1:74:b9: 5f:dc:29:96:29:fd:6c:a2:0b:95:59:be:2d:37:0e: 24:bd:2a:5d:e0:8c:de:87:ea:c5:cb:f3:f7:ff:b4: 59:48:f7:74:5d:36:a4:64:e5:c1:66:6d:e0:a7:b4: 38:fb:bb:08:7f:da:1b:23:3e:ec:c3:3d:05:3b:8d: 12:bc:3f:22:cf:6d:ef:48:fb:24:52:84:f3:3c:fd: e8:60:14:89:60:f8:86:7d:2b:af:fa:28:57:75:f8: ad:72:15:f7:70:d8:69:c0:22:62:c5:47:1c:2f:9e: e3:15:7e:76:6a:f6:38:59:ce:e2:0d:ef:bc:99:f6: 68:0f:39:93:1f:3d:dd:ff:ca:4d:0e:15:c5:19:e7: 85:31:ca:d5:94:52:57:6d:ca:62:5a:6f:dd:df:ca: c3:94:89:62:87:08:5d:1a:39:aa:09:c3:2e:17:1f: cd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:79:5F:B2:3C:70:48:9E:C3:91:A7:45:1F:70:B8:41:8D:1C:43:A2 X509v3 Authority Key Identifier: keyid:F2:DE:D7:D1:AF:52:5B:DA:D6:41:4B:3E:2B:AF:7B:50:53:99:A7:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2DED7D1AF525BDAD6414B3E2BAF7B505399A7D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.238.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:60:c0:8f:35:fb:75:d5:c4:d3:58:85:ac:0c:7d:f1:68:cd: d9:44:a8:2d:f8:65:a0:00:e3:cc:7b:0d:65:e5:44:db:8f:35: 13:a4:23:6f:04:8d:6f:be:f1:ac:62:6f:75:e3:f1:13:d3:51: 6b:9d:ad:36:a9:67:e0:ce:67:74:53:95:dc:ef:af:fd:1d:25: 6b:cc:f3:d7:24:28:d4:b7:c8:15:80:89:01:15:e1:b9:dc:99: 32:ac:d3:cd:ac:02:54:53:ad:14:18:6b:1e:83:ee:56:90:60: df:43:6c:dc:ca:d3:f3:9a:b5:16:ae:53:b7:7d:34:b9:34:3f: 2b:76:4e:69:bc:21:89:d6:fd:79:29:44:79:58:f6:9d:6d:b7: ca:3e:8a:53:be:fa:b0:29:04:e5:98:98:75:94:e2:96:10:f1: 9a:22:f8:7d:92:57:4d:cb:a1:9d:ba:16:aa:d9:a2:9a:e2:35: 97:18:df:0c:f7:45:56:78:70:ef:ba:c6:aa:2b:bf:19:43:9c: ee:6c:b0:9a:a5:a1:65:02:7b:38:7e:da:23:66:1d:33:14:4e: b2:98:38:ec:de:bd:7a:3d:f4:c5:43:ae:b0:1b:60:67:f1:dd: aa:52:ce:18:24:c1:91:19:b2:04:52:06:26:ae:a6:74:06:c2: 4c:f2:b9:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOixNm8A61rMFIxzmY68bu1XxxfcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJERUQ3RDFBRjUyNUJEQUQ2NDE0QjNFMkJBRjdCNTA1 Mzk5QTdEMTAeFw0yNjA1MDMwMjMwMDJaFw0yNzA1MDIwMjM1MDJaMDMxMTAvBgNV BAMTKDkzNzk1RkIyM0M3MDQ4OUVDMzkxQTc0NTFGNzBCODQxOEQxQzQzQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4h0uDsQ1Mk0Ty3991L0ncyqxz 1jATuqmPsi8nAlSGDnR2K6NtlyRZeG3GOrneY6g9TNO7lZVTpTmfaukacXljy8JL bvspxtPj/ZeLeDmFHmdaQ87uU6F0uV/cKZYp/WyiC5VZvi03DiS9Kl3gjN6H6sXL 8/f/tFlI93RdNqRk5cFmbeCntDj7uwh/2hsjPuzDPQU7jRK8PyLPbe9I+yRShPM8 /ehgFIlg+IZ9K6/6KFd1+K1yFfdw2GnAImLFRxwvnuMVfnZq9jhZzuIN77yZ9mgP OZMfPd3/yk0OFcUZ54UxytWUUldtymJab93fysOUiWKHCF0aOaoJwy4XH82xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUk3lfsjxwSJ7DkadFH3C4QY0cQ6IwHwYDVR0j BBgwFoAU8t7X0a9SW9rWQUs+K697UFOZp9EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTk3MmY5YTItYjBmZi00Mjk4LThkYTYtZTJlMzgzNDhhMDdiLzAvRjJERUQ3RDFB RjUyNUJEQUQ2NDE0QjNFMkJBRjdCNTA1Mzk5QTdEMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMkRFRDdEMUFGNTI1QkRBRDY0MTRCM0UyQkFGN0I1MDUzOTlB N0QxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9TuMA0GCSqG SIb3DQEBCwUAA4IBAQBsYMCPNft11cTTWIWsDH3xaM3ZRKgt+GWgAOPMew1l5UTb jzUTpCNvBI1vvvGsYm914/ET01Frna02qWfgzmd0U5Xc76/9HSVrzPPXJCjUt8gV gIkBFeG53JkyrNPNrAJUU60UGGseg+5WkGDfQ2zcytPzmrUWrlO3fTS5ND8rdk5p vCGJ1v15KUR5WPadbbfKPopTvvqwKQTlmJh1lOKWEPGaIvh9kldNy6Gduhaq2aKa 4jWXGN8M90VWeHDvusaqK78ZQ5zubLCapaFlAns4ftojZh0zFE6ymDjs3r16PfTF Q66wG2Bn8d2qUs4YJMGRGbIEUgYmrqZ0BsJM8rmr -----END CERTIFICATE-----Generated at Wed May 13 02:37:02 2026 by rpki-client