$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa File: 3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa (raw, json) Hash identifier: IgZVkE+S6069w73+w/n6imuTngD34gWEV6HPl2N+lmw= Subject key identifier: 6C:6B:03:3D:76:D8:59:94:B2:8F:DA:81:66:87:6F:23:2E:AF:F9:84 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 1682363137348CCF4C2A0B38F5567FE106C8CC8A Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:36 +0000 ROA not before: Sun 03 May 2026 02:30:36 +0000 ROA not after: Sun 02 May 2027 02:35:36 +0000 asID: 138089 IP address blocks: 103.124.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:82:36:31:37:34:8c:cf:4c:2a:0b:38:f5:56:7f:e1:06:c8:cc:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:36 2026 GMT Not After : May 2 02:35:36 2027 GMT Subject: CN=6C6B033D76D85994B28FDA8166876F232EAFF984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1a:ed:a0:19:07:45:95:ba:4e:6e:f3:97:49: d1:d6:c8:7c:73:7d:ea:85:0e:95:27:a4:af:c9:bd: 80:43:c0:fd:ef:b3:b2:6d:2b:1c:92:45:41:21:fa: bb:6a:57:49:45:9c:ca:b6:65:e7:14:f9:5c:91:23: 3d:e4:03:25:a6:9d:ac:f5:79:c6:49:6a:09:89:81: ea:95:0c:5c:46:8e:06:81:17:c1:dd:b5:9c:71:c5: 2a:53:69:1f:50:4b:53:82:c7:ad:1a:79:e1:de:f3: 31:17:1e:1d:a6:c1:8a:5c:bc:47:e6:26:4a:3e:13: 9b:be:31:7a:5d:04:c9:7e:6d:60:64:ac:1f:67:e9: b6:48:ab:39:7f:eb:49:ec:e4:31:04:03:06:ce:0d: c7:35:f1:9d:de:f3:ba:75:34:1d:14:50:2a:5c:ac: e8:9a:60:80:70:47:54:69:a5:b8:9b:34:ae:1b:31: 6f:f1:46:ed:ca:5b:c1:5b:39:51:43:dc:1d:d5:90: 87:05:7f:f1:55:2c:b5:2d:2b:58:98:30:1b:56:87: 78:0f:2a:56:b4:8c:41:fe:09:f2:f2:bd:e9:21:67: a6:fa:86:9d:75:d7:41:d4:fa:d7:a2:e4:1e:84:ee: d6:f3:18:55:fd:7f:4d:cf:70:b6:06:53:58:2e:c2: e6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6B:03:3D:76:D8:59:94:B2:8F:DA:81:66:87:6F:23:2E:AF:F9:84 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/22 Signature Algorithm: sha256WithRSAEncryption 24:f3:c2:72:46:10:31:f2:e5:fa:91:54:dd:33:53:29:17:72: fa:7c:3b:6b:63:e5:3e:8b:2b:f0:ad:e5:c0:d1:a2:40:b9:c1: 63:dd:a9:d6:69:12:81:59:87:3d:cd:ce:27:41:87:39:9d:04: 09:7c:01:c4:5a:c9:e7:19:94:e0:4f:70:44:63:58:62:6e:77: 5b:be:4c:8f:ae:f6:42:4d:b9:bf:c8:fe:48:80:20:46:bc:fd: 02:e8:0c:36:91:38:9c:94:6e:6e:26:5b:e0:25:bc:f7:06:66: 09:4e:55:40:2f:c8:f6:0d:67:b4:fe:d4:1b:2a:4a:33:12:07: d0:91:0e:94:68:6f:75:83:90:91:6e:14:76:88:6e:b9:be:11: 6d:23:0b:80:85:ff:a9:5e:0e:24:08:53:5a:13:4d:16:5d:73: d3:f4:e8:3c:28:9a:1c:a5:83:09:f2:8d:d7:79:39:d1:58:99: 75:95:45:97:1f:77:ee:ce:d6:d5:01:76:3a:89:8f:f8:fa:d6: 14:17:b5:cf:60:9b:28:da:ee:71:75:a3:8b:ad:ef:79:51:ba: 57:11:9d:37:d7:90:86:ac:e5:f8:d9:6e:de:ad:bd:7e:70:a6: 3f:11:f0:08:a1:2b:da:71:91:b1:b7:7e:00:e7:39:b4:78:d0: c7:cd:31:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFoI2MTc0jM9MKgs49VZ/4QbIzIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwMzZaFw0yNzA1MDIwMjM1MzZaMDMxMTAvBgNV BAMTKDZDNkIwMzNENzZEODU5OTRCMjhGREE4MTY2ODc2RjIzMkVBRkY5ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Gu2gGQdFlbpObvOXSdHWyHxz feqFDpUnpK/JvYBDwP3vs7JtKxySRUEh+rtqV0lFnMq2ZecU+VyRIz3kAyWmnaz1 ecZJagmJgeqVDFxGjgaBF8HdtZxxxSpTaR9QS1OCx60aeeHe8zEXHh2mwYpcvEfm Jko+E5u+MXpdBMl+bWBkrB9n6bZIqzl/60ns5DEEAwbODcc18Z3e87p1NB0UUCpc rOiaYIBwR1RppbibNK4bMW/xRu3KW8FbOVFD3B3VkIcFf/FVLLUtK1iYMBtWh3gP Kla0jEH+CfLyvekhZ6b6hp1110HU+tei5B6E7tbzGFX9f03PcLYGU1guwua/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbGsDPXbYWZSyj9qBZodvIy6v+YQwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfIgwDQYJ KoZIhvcNAQELBQADggEBACTzwnJGEDHy5fqRVN0zUykXcvp8O2tj5T6LK/Ct5cDR okC5wWPdqdZpEoFZhz3NzidBhzmdBAl8AcRayecZlOBPcERjWGJud1u+TI+u9kJN ub/I/kiAIEa8/QLoDDaROJyUbm4mW+AlvPcGZglOVUAvyPYNZ7T+1BsqSjMSB9CR DpRob3WDkJFuFHaIbrm+EW0jC4CF/6leDiQIU1oTTRZdc9P06Dwomhylgwnyjdd5 OdFYmXWVRZcfd+7O1tUBdjqJj/j61hQXtc9gmyja7nF1o4ut73lRulcRnTfXkIas 5fjZbt6tvX5wpj8R8AihK9pxkbG3fgDnObR40MfNMSo= -----END CERTIFICATE-----Generated at Wed May 13 00:21:11 2026 by rpki-client