$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e39352e362e302f32332d3233203d3e20313333383237.roa File: 3130332e39352e362e302f32332d3233203d3e20313333383237.roa (raw, json) Hash identifier: EFzx2gdrAoK4dLqP6OWhoqarBZwTNPP8hlTF8ndHsA8= Subject key identifier: 6A:24:B3:E7:86:A0:36:6D:37:4D:F1:5A:C4:D6:F1:C1:40:DD:52:7F Certificate issuer: /CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Certificate serial: 18485D8A94081688621E559F670DF3131ACB5F16 Authority key identifier: AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e39352e362e302f32332d3233203d3e20313333383237.roa Signing time: Sun 03 May 2026 02:35:32 +0000 ROA not before: Sun 03 May 2026 02:30:32 +0000 ROA not after: Sun 02 May 2027 02:35:32 +0000 asID: 133827 IP address blocks: 103.95.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:48:5d:8a:94:08:16:88:62:1e:55:9f:67:0d:f3:13:1a:cb:5f:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Validity Not Before: May 3 02:30:32 2026 GMT Not After : May 2 02:35:32 2027 GMT Subject: CN=6A24B3E786A0366D374DF15AC4D6F1C140DD527F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ef:fc:91:32:63:8c:45:8e:f2:fe:32:a1:6c: 3b:17:8e:78:c5:15:7c:7d:af:d0:e5:4e:c4:c8:c6: c7:04:3e:72:5f:58:c4:98:71:3f:f8:fb:ca:d1:77: 0f:56:ba:a5:b9:d5:f6:71:56:6b:c1:38:fe:b9:47: a9:ca:65:c7:59:24:8e:2c:95:3c:cb:73:12:d9:db: 97:40:84:24:a2:43:45:c1:a6:17:0c:8e:f0:1f:1c: 63:32:7f:30:30:12:72:42:29:fc:f1:5a:df:8c:f1: 6d:f5:31:bb:bb:61:9b:a8:1b:14:f0:a9:69:3c:44: 34:7a:bf:94:8b:fe:f9:17:94:71:5a:51:c0:34:7a: be:84:80:4b:ad:8a:4e:c7:2c:47:0e:12:30:84:78: 38:86:69:1c:d0:47:a3:0f:c5:1b:86:63:0c:87:65: 0f:10:12:f8:ad:3e:ad:6e:db:c2:d0:05:b4:db:7f: a4:82:59:04:52:38:cf:e9:9a:b6:f8:53:6f:13:00: 1c:17:41:d2:b5:e5:2d:15:37:52:45:f1:93:48:4d: 51:27:d8:e1:03:ac:8f:81:32:f9:bc:fd:d6:f8:5d: e7:09:4f:17:28:50:e0:2a:ae:1c:01:83:08:77:b7: 14:46:2b:9a:b1:97:87:63:cb:25:b6:ae:5f:c6:77: 71:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:24:B3:E7:86:A0:36:6D:37:4D:F1:5A:C4:D6:F1:C1:40:DD:52:7F X509v3 Authority Key Identifier: keyid:AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e39352e362e302f32332d3233203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.6.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:37:a8:1c:0c:32:ce:6a:78:44:6b:e3:fc:03:84:9a:fb:1a: 0a:e8:ad:b4:e8:1f:3e:ec:17:5d:45:76:6f:2c:51:40:10:30: f1:d6:8c:30:a8:c3:4b:c0:c3:7a:b5:08:4d:27:14:90:1a:46: 6c:a5:bf:ad:be:34:1f:28:1a:ec:8b:39:99:48:ae:32:8b:60: 2c:00:64:f7:c8:d3:c5:ba:58:9f:c3:2a:f7:42:52:82:4e:d3: 60:6a:28:1d:f7:cc:b9:b8:67:2e:6f:a1:fa:c2:e9:f1:62:f7: 2f:ab:1f:3e:7e:98:33:b9:fa:5c:da:b6:04:f2:99:f5:d7:f3: 0d:22:0b:ba:3c:78:4c:be:30:e2:74:f9:b3:05:2f:98:95:67: cd:8f:b1:00:e4:fe:0f:21:7b:2b:e9:b8:70:68:69:7c:6b:d4: 23:eb:3c:2f:b4:68:a3:01:37:d3:7e:b0:1d:0f:2e:06:f7:dc: 02:55:8b:7b:5b:80:7e:4f:3e:f4:6f:e6:12:e0:27:c4:89:c6: de:9d:9f:58:8b:43:9f:3d:57:94:fe:49:d0:65:45:0e:00:06: f8:36:27:a6:79:b6:89:ff:8b:31:bc:c3:e2:33:fe:d5:11:7b: 20:ca:1b:83:87:2d:f8:f4:c0:39:be:c7:6b:08:19:65:c6:25: 67:42:fa:b8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGEhdipQIFohiHlWfZw3zExrLXxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2QjdCQ0RBQ0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJB QjQ4OTQxODAeFw0yNjA1MDMwMjMwMzJaFw0yNzA1MDIwMjM1MzJaMDMxMTAvBgNV BAMTKDZBMjRCM0U3ODZBMDM2NkQzNzRERjE1QUM0RDZGMUMxNDBERDUyN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh7/yRMmOMRY7y/jKhbDsXjnjF FXx9r9DlTsTIxscEPnJfWMSYcT/4+8rRdw9WuqW51fZxVmvBOP65R6nKZcdZJI4s lTzLcxLZ25dAhCSiQ0XBphcMjvAfHGMyfzAwEnJCKfzxWt+M8W31Mbu7YZuoGxTw qWk8RDR6v5SL/vkXlHFaUcA0er6EgEutik7HLEcOEjCEeDiGaRzQR6MPxRuGYwyH ZQ8QEvitPq1u28LQBbTbf6SCWQRSOM/pmrb4U28TABwXQdK15S0VN1JF8ZNITVEn 2OEDrI+BMvm8/db4XecJTxcoUOAqrhwBgwh3txRGK5qxl4djyyW2rl/Gd3GDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUaiSz54agNm03TfFaxNbxwUDdUn8wHwYDVR0j BBgwFoAUr2t7zaz5C6gyBeopgyc3m6tIlBgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE5OTAxMjUtNjA5YS00OGM4LWFjODYtMWMzYmMzMTViYWQ2LzAvQUY2QjdCQ0RB Q0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJBQjQ4OTQxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjZCN0JDREFDRjkwQkE4MzIwNUVBMjk4MzI3Mzc5QkFCNDg5 NDE4LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMxMzAzMzJlMzkzNTJlMzYyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTMzMzMzODMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnXwYwDQYJKoZIhvcN AQELBQADggEBAF43qBwMMs5qeERr4/wDhJr7GgrorbToHz7sF11Fdm8sUUAQMPHW jDCow0vAw3q1CE0nFJAaRmylv62+NB8oGuyLOZlIrjKLYCwAZPfI08W6WJ/DKvdC UoJO02BqKB33zLm4Zy5vofrC6fFi9y+rHz5+mDO5+lzatgTymfXX8w0iC7o8eEy+ MOJ0+bMFL5iVZ82PsQDk/g8heyvpuHBoaXxr1CPrPC+0aKMBN9N+sB0PLgb33AJV i3tbgH5PPvRv5hLgJ8SJxt6dn1iLQ589V5T+SdBlRQ4ABvg2J6Z5ton/izG8w+Iz /tUReyDKG4OHLfj0wDm+x2sIGWXGJWdC+rg= -----END CERTIFICATE-----Generated at Wed May 13 04:08:56 2026 by rpki-client