$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa File: 3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa (raw, json) Hash identifier: kjEpWP2mRiJBPHjX3tFZhbKjrbBSMQGM2y+PNic1u8w= Subject key identifier: AE:BA:2B:1B:8D:BD:42:59:DA:B1:B9:5E:55:94:A1:C3:21:B9:41:B5 Certificate issuer: /CN=935DD14314C92CCD3B1B65E68751DA3E87B1057C Certificate serial: 1B1C7989444AD8980DB4C7AE680179C7284DD5C4 Authority key identifier: 93:5D:D1:43:14:C9:2C:CD:3B:1B:65:E6:87:51:DA:3E:87:B1:05:7C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/935DD14314C92CCD3B1B65E68751DA3E87B1057C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa Signing time: Sun 03 May 2026 02:35:19 +0000 ROA not before: Sun 03 May 2026 02:30:19 +0000 ROA not after: Sun 02 May 2027 02:35:19 +0000 asID: 45318 IP address blocks: 103.211.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/935DD14314C92CCD3B1B65E68751DA3E87B1057C.crl rsync://rpki-rsync.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/935DD14314C92CCD3B1B65E68751DA3E87B1057C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/935DD14314C92CCD3B1B65E68751DA3E87B1057C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1c:79:89:44:4a:d8:98:0d:b4:c7:ae:68:01:79:c7:28:4d:d5:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DD14314C92CCD3B1B65E68751DA3E87B1057C Validity Not Before: May 3 02:30:19 2026 GMT Not After : May 2 02:35:19 2027 GMT Subject: CN=AEBA2B1B8DBD4259DAB1B95E5594A1C321B941B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:24:b1:4e:6b:08:ac:d1:b2:e4:cf:b1:2d:4d: 0b:2a:42:ca:13:f4:c3:7b:18:ce:7a:5a:01:1a:87: c2:35:7a:22:5a:e2:eb:9b:09:b1:18:31:da:30:6f: c1:8d:7c:26:c3:14:3e:26:f3:d0:86:d6:0a:e1:04: d2:28:63:88:43:1a:15:4d:54:a4:3b:40:45:16:c8: 57:bc:1c:f8:a6:b1:66:ed:af:6b:29:30:47:d3:53: ac:49:38:15:7a:ae:47:53:05:81:9b:1a:4f:fc:ab: c9:d7:16:e1:78:f6:4e:9d:94:51:92:b3:6c:b7:db: 3e:c1:fb:bb:ed:a2:b9:0b:6c:46:76:47:01:95:7d: 7f:8d:72:1f:22:54:03:0f:64:0a:04:17:21:77:72: a3:ec:e5:16:1e:f7:f5:a3:af:4f:06:b3:81:51:a6: d3:22:17:0d:ef:de:2b:89:b9:0a:25:76:f3:c0:04: 67:97:d4:ca:13:91:64:16:9d:05:27:8c:74:b3:1c: 7b:e5:0f:54:57:e1:ec:85:8d:7f:7f:fa:90:48:68: af:77:a4:13:0a:64:25:95:05:22:33:8e:6d:fb:59: d4:15:21:c9:eb:6a:20:85:bd:50:50:9c:11:20:e5: 5e:a2:c4:8f:23:93:89:c2:6c:4a:e5:bb:06:aa:fd: 99:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:BA:2B:1B:8D:BD:42:59:DA:B1:B9:5E:55:94:A1:C3:21:B9:41:B5 X509v3 Authority Key Identifier: keyid:93:5D:D1:43:14:C9:2C:CD:3B:1B:65:E6:87:51:DA:3E:87:B1:05:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/935DD14314C92CCD3B1B65E68751DA3E87B1057C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/935DD14314C92CCD3B1B65E68751DA3E87B1057C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.143.0/24 Signature Algorithm: sha256WithRSAEncryption 89:64:73:c4:18:34:6b:13:19:70:02:4a:0e:c4:e0:35:55:02: bb:c8:82:3e:a3:2e:62:bb:c3:ba:69:3e:3a:8f:71:51:0c:d2: 41:30:2e:dc:e2:14:b4:17:c2:bf:48:e1:3b:41:e7:1b:47:cd: 52:d7:eb:28:f6:93:30:d5:d8:80:b5:6b:8a:54:c3:fe:ae:42: 1d:b1:f3:75:af:2a:4a:57:fb:fc:5d:3b:49:78:21:44:79:1b: ea:45:a9:d6:01:5d:2f:ec:0d:15:51:21:30:3e:a5:f5:75:2f: 5a:c4:80:45:60:46:70:9c:d4:36:c8:8b:7f:98:8b:ad:e5:01: bc:e5:c1:5c:04:85:16:ae:4f:83:08:4e:ff:9f:aa:c9:3a:bf: 3c:48:e2:9f:42:00:ca:5f:ca:15:41:77:93:00:c9:e0:42:6a: 23:74:40:35:08:6b:eb:6a:df:62:e9:4f:90:63:1e:22:b9:2e: fb:76:55:28:77:51:1f:23:2b:26:4b:34:68:e3:0f:40:1c:87: 33:8a:05:91:e3:53:c7:d7:b8:b9:92:0b:7b:da:52:c3:09:91: a4:37:b6:11:52:51:31:69:36:9e:89:97:6d:79:8b:2c:e6:9a: d8:74:43:d8:64:bf:3d:ae:9f:e1:c8:f2:8e:c6:8c:b2:1f:ac: 46:e5:b0:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGxx5iURK2JgNtMeuaAF5xyhN1cQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REQxNDMxNEM5MkNDRDNCMUI2NUU2ODc1MURBM0U4 N0IxMDU3QzAeFw0yNjA1MDMwMjMwMTlaFw0yNzA1MDIwMjM1MTlaMDMxMTAvBgNV BAMTKEFFQkEyQjFCOERCRDQyNTlEQUIxQjk1RTU1OTRBMUMzMjFCOTQxQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeJLFOawis0bLkz7EtTQsqQsoT 9MN7GM56WgEah8I1eiJa4uubCbEYMdowb8GNfCbDFD4m89CG1grhBNIoY4hDGhVN VKQ7QEUWyFe8HPimsWbtr2spMEfTU6xJOBV6rkdTBYGbGk/8q8nXFuF49k6dlFGS s2y32z7B+7vtorkLbEZ2RwGVfX+Nch8iVAMPZAoEFyF3cqPs5RYe9/Wjr08Gs4FR ptMiFw3v3iuJuQoldvPABGeX1MoTkWQWnQUnjHSzHHvlD1RX4eyFjX9/+pBIaK93 pBMKZCWVBSIzjm37WdQVIcnraiCFvVBQnBEg5V6ixI8jk4nCbErluwaq/ZkBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrrorG429QlnasbleVZShwyG5QbUwHwYDVR0j BBgwFoAUk13RQxTJLM07G2Xmh1HaPoexBXwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWEzYjY4ODEtYmExMS00MzMwLWExNjQtYjU1ZjQyMDg1Yjg5LzAvOTM1REQxNDMx NEM5MkNDRDNCMUI2NUU2ODc1MURBM0U4N0IxMDU3Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MzVERDE0MzE0QzkyQ0NEM0IxQjY1RTY4NzUxREEzRTg3QjEw NTdDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhM2I2ODgxLWJhMTEtNDMzMC1h MTY0LWI1NWY0MjA4NWI4OS8wLzMxMzAzMzJlMzIzMTMxMmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9OPMA0GCSqG SIb3DQEBCwUAA4IBAQCJZHPEGDRrExlwAkoOxOA1VQK7yII+oy5iu8O6aT46j3FR DNJBMC7c4hS0F8K/SOE7QecbR81S1+so9pMw1diAtWuKVMP+rkIdsfN1rypKV/v8 XTtJeCFEeRvqRanWAV0v7A0VUSEwPqX1dS9axIBFYEZwnNQ2yIt/mIut5QG85cFc BIUWrk+DCE7/n6rJOr88SOKfQgDKX8oVQXeTAMngQmojdEA1CGvrat9i6U+QYx4i uS77dlUod1EfIysmSzRo4w9AHIczigWR41PH17i5kgt72lLDCZGkN7YRUlExaTae iZdteYss5prYdEPYZL89rp/hyPKOxoyyH6xG5bCF -----END CERTIFICATE-----Generated at Wed May 13 12:28:12 2026 by rpki-client