$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa File: 3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa (raw, json) Hash identifier: bzgmeNk+RTlBoGqusN6v8fvRVhXp8YED5fczTfvL+Pk= Subject key identifier: E9:B1:A2:8F:A9:EF:A8:CD:17:C9:65:50:00:AA:01:CC:16:B4:77:EB Certificate issuer: /CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Certificate serial: 3F60924F74E633D386DBF507E3F26D259B467B98 Authority key identifier: AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa Signing time: Sun 03 May 2026 02:35:21 +0000 ROA not before: Sun 03 May 2026 02:30:21 +0000 ROA not after: Sun 02 May 2027 02:35:21 +0000 asID: 138866 IP address blocks: 103.140.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:60:92:4f:74:e6:33:d3:86:db:f5:07:e3:f2:6d:25:9b:46:7b:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Validity Not Before: May 3 02:30:21 2026 GMT Not After : May 2 02:35:21 2027 GMT Subject: CN=E9B1A28FA9EFA8CD17C9655000AA01CC16B477EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:44:8a:4c:08:2e:df:43:f8:cc:42:6d:e0: 46:12:c4:fe:6f:31:5b:6c:0c:e0:7a:c0:55:e2:0a: 3f:ca:ba:ee:ae:fb:09:f3:15:69:82:17:b4:89:ec: 6b:2a:72:53:1a:32:63:ca:b8:ce:c0:cb:41:6a:67: 6d:35:e3:ba:27:86:56:9c:f3:c0:c7:43:98:82:4e: 84:02:29:67:dc:09:48:f0:b0:d3:ae:5e:40:6c:c0: 11:52:82:4b:c9:b5:18:b0:5c:82:04:e8:16:d9:ad: fc:31:f4:c0:63:46:5a:47:6a:9f:32:56:74:06:57: be:5d:17:2a:02:64:ff:7a:96:2f:9f:61:b9:cd:5a: 44:c6:08:08:58:ea:75:bc:40:43:e7:5e:c7:21:85: e6:26:fa:56:82:d0:ab:a1:bc:79:57:05:bb:ae:33: cf:48:71:c0:e0:5d:6c:28:90:06:09:26:39:40:dc: f1:7b:c1:68:e8:bd:9f:ae:30:b7:8b:b5:d8:df:a4: 00:6d:fb:3a:5b:db:0f:59:9a:c6:a4:ed:e2:46:84: 89:61:38:01:ef:8d:78:1d:b4:5b:16:0a:b1:94:fb: 79:0f:52:ea:55:88:5a:cc:74:27:2d:3e:89:c1:cd: 85:6e:f7:f7:73:75:43:1b:73:0a:52:41:a6:98:c2: 0b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B1:A2:8F:A9:EF:A8:CD:17:C9:65:50:00:AA:01:CC:16:B4:77:EB X509v3 Authority Key Identifier: keyid:AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.131.0/24 Signature Algorithm: sha256WithRSAEncryption b1:a7:74:f1:9c:ff:aa:0a:19:38:56:71:eb:87:40:98:c1:de: f9:6d:6d:0e:7e:33:14:80:ca:38:16:d3:22:aa:75:5e:36:05: 22:78:2b:27:6f:db:24:19:af:e3:48:38:e1:ae:cf:e1:c7:91: 60:32:b9:32:db:70:70:81:d2:d2:42:72:ec:7b:cf:8d:e2:9c: d2:6c:02:62:f7:0a:b9:8b:07:71:2f:34:85:d3:13:e0:fd:e7: b4:ec:63:98:a3:89:96:2f:b4:49:e2:18:ac:5c:22:92:9e:06: e0:e0:b6:a8:16:f9:11:70:67:fe:7e:5b:83:e3:12:55:2d:76: 4f:30:46:0b:39:90:ca:17:fa:1f:d1:78:b9:59:19:34:59:28: 60:5e:48:27:ea:21:d5:f2:a4:86:d2:1a:1f:ae:50:87:72:23: 16:20:d5:5b:54:45:d0:ff:38:09:7a:61:c6:94:55:b3:98:40: 23:fe:aa:53:c2:8f:6a:b2:dc:4b:16:25:97:ef:d3:94:ce:52: 8a:0e:ee:25:b3:cb:6d:b5:72:cd:7f:6e:1c:6d:ae:0c:1a:9c: d4:f1:ae:f5:8e:b3:2e:a5:0b:ac:80:e2:a7:11:ad:5a:36:d7: bd:f9:f9:09:a2:ad:6c:48:a6:3b:4f:7c:5a:9e:8c:18:4a:42: a3:ee:0f:d6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP2CST3TmM9OG2/UH4/JtJZtGe5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3RTgzREU3NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZG NkJDOTU4QTAeFw0yNjA1MDMwMjMwMjFaFw0yNzA1MDIwMjM1MjFaMDMxMTAvBgNV BAMTKEU5QjFBMjhGQTlFRkE4Q0QxN0M5NjU1MDAwQUEwMUNDMTZCNDc3RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD5kSKTAgu30P4zEJt4EYSxP5v MVtsDOB6wFXiCj/Kuu6u+wnzFWmCF7SJ7GsqclMaMmPKuM7Ay0FqZ20147onhlac 88DHQ5iCToQCKWfcCUjwsNOuXkBswBFSgkvJtRiwXIIE6BbZrfwx9MBjRlpHap8y VnQGV75dFyoCZP96li+fYbnNWkTGCAhY6nW8QEPnXschheYm+laC0KuhvHlXBbuu M89IccDgXWwokAYJJjlA3PF7wWjovZ+uMLeLtdjfpABt+zpb2w9Zmsak7eJGhIlh OAHvjXgdtFsWCrGU+3kPUupViFrMdCctPonBzYVu9/dzdUMbcwpSQaaYwgvFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6bGij6nvqM0XyWVQAKoBzBa0d+swHwYDVR0j BBgwFoAUqn6D3nQ1q3it5hN7Hqz9xva8lYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1MTlhZWItNWM1Ni00Y2IzLTk0YTAtMGY0MDBlYTZhMzc1LzAvQUE3RTgzREU3 NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZGNkJDOTU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTdFODNERTc0MzVBQjc4QURFNjEzN0IxRUFDRkRDNkY2QkM5 NThBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjIMwDQYJ KoZIhvcNAQELBQADggEBALGndPGc/6oKGThWceuHQJjB3vltbQ5+MxSAyjgW0yKq dV42BSJ4Kydv2yQZr+NIOOGuz+HHkWAyuTLbcHCB0tJCcux7z43inNJsAmL3CrmL B3EvNIXTE+D957TsY5ijiZYvtEniGKxcIpKeBuDgtqgW+RFwZ/5+W4PjElUtdk8w Rgs5kMoX+h/ReLlZGTRZKGBeSCfqIdXypIbSGh+uUIdyIxYg1VtURdD/OAl6YcaU VbOYQCP+qlPCj2qy3EsWJZfv05TOUooO7iWzy221cs1/bhxtrgwanNTxrvWOsy6l C6yA4qcRrVo21735+QmirWxIpjtPfFqejBhKQqPuD9Y= -----END CERTIFICATE-----Generated at Wed May 13 08:10:12 2026 by rpki-client