$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: IcQvSAJGT5F2NpZZwUWfDRfWyeJTixApL9YTKNnPovc= Subject key identifier: EE:4E:30:6D:0B:E0:2C:F0:9C:73:43:22:AF:59:34:F0:93:4F:40:CD Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 0EA3EDDA32E0937B766B29E42FAF4530F72A4E8C Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:37 +0000 ROA not before: Sun 03 May 2026 02:30:37 +0000 ROA not after: Sun 02 May 2027 02:35:37 +0000 asID: 138089 IP address blocks: 103.124.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:a3:ed:da:32:e0:93:7b:76:6b:29:e4:2f:af:45:30:f7:2a:4e:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:37 2026 GMT Not After : May 2 02:35:37 2027 GMT Subject: CN=EE4E306D0BE02CF09C734322AF5934F0934F40CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7f:12:dc:5e:0e:45:c0:dd:f0:00:e6:cf:af: 4b:98:b7:d4:37:d9:d0:da:6a:fc:2e:be:4d:56:7a: b7:d8:8a:fb:66:c8:2a:34:f4:02:0d:0e:ca:97:53: 5f:0c:dd:4f:80:03:9e:cb:68:a0:20:8b:94:9c:f5: 2e:f0:9b:4d:78:fc:d2:06:db:6c:33:7b:18:22:11: 73:93:c0:ed:32:a9:87:9c:de:84:70:3f:3b:9a:6b: 93:4b:3f:a9:67:1b:9c:30:a6:47:89:3e:18:08:a1: d4:99:51:94:02:20:50:65:95:5a:cd:fb:8f:e3:d6: 45:25:84:48:70:f8:e3:70:9c:46:a9:6d:c7:09:c9: e7:18:44:c6:60:3b:a2:38:15:7a:cc:ef:d0:3e:a8: f1:a6:a3:0c:10:d3:dc:77:fb:a7:b1:fd:53:8f:d1: 14:c8:28:ab:15:fa:6c:70:7f:e1:9e:a0:be:a7:23: f3:c0:43:07:11:03:b7:7d:b7:94:a8:4e:a7:2e:e4: 21:bf:05:b2:5f:f4:04:3a:83:41:34:e7:7d:3d:06: 0e:9a:54:f1:2e:e0:1e:a1:a5:9b:29:8e:2a:9f:43: 88:d8:49:48:b6:8a:43:57:b6:da:dc:be:4f:e9:3b: 96:56:e3:1a:b8:75:a2:88:76:70:d8:6d:43:68:a7: af:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4E:30:6D:0B:E0:2C:F0:9C:73:43:22:AF:59:34:F0:93:4F:40:CD X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.138.0/24 Signature Algorithm: sha256WithRSAEncryption 96:7f:b1:eb:f3:b5:06:48:12:95:f7:45:2d:20:0c:1a:4a:26: 31:5d:ea:61:9e:d9:78:22:24:5b:04:6f:37:3b:77:d1:9d:fc: e4:f2:61:c6:3f:33:80:ae:27:44:92:c9:62:48:43:85:a4:4c: c1:3c:e2:07:52:8a:9d:79:ce:41:22:b5:74:8b:ec:ba:4b:06: e2:1e:e4:da:28:af:da:08:45:33:23:20:db:44:f5:c4:5e:21: 6f:42:e1:93:54:cf:c6:5f:48:e0:01:3f:9c:bf:28:91:a2:e2: 1a:3a:30:c5:9b:d2:48:f3:82:35:53:cf:02:df:45:e5:a2:d9: f8:1b:f2:4b:80:20:77:b5:59:85:be:20:be:6f:9b:1a:ba:31: d0:93:11:d2:d8:c2:a9:3e:e7:c2:08:b6:cc:35:3e:c7:47:6e: f9:5b:8d:a9:22:55:94:fb:a9:d4:be:35:ff:ad:50:62:92:4c: 87:ce:59:b7:13:0d:f7:e3:3a:db:90:18:96:55:3a:6d:2f:10: 27:22:a9:29:88:a0:75:18:85:d4:f3:6e:af:c4:3c:f1:74:6a: f9:22:b5:44:dc:7f:6c:0b:76:e5:59:63:97:28:88:66:7b:11: 86:83:d6:70:79:8c:c9:80:6a:53:2c:38:70:05:6c:00:69:dc: f8:7a:b0:4e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDqPt2jLgk3t2aynkL69FMPcqTowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwMzdaFw0yNzA1MDIwMjM1MzdaMDMxMTAvBgNV BAMTKEVFNEUzMDZEMEJFMDJDRjA5QzczNDMyMkFGNTkzNEYwOTM0RjQwQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwfxLcXg5FwN3wAObPr0uYt9Q3 2dDaavwuvk1WerfYivtmyCo09AINDsqXU18M3U+AA57LaKAgi5Sc9S7wm014/NIG 22wzexgiEXOTwO0yqYec3oRwPzuaa5NLP6lnG5wwpkeJPhgIodSZUZQCIFBllVrN +4/j1kUlhEhw+ONwnEapbccJyecYRMZgO6I4FXrM79A+qPGmowwQ09x3+6ex/VOP 0RTIKKsV+mxwf+GeoL6nI/PAQwcRA7d9t5SoTqcu5CG/BbJf9AQ6g0E05309Bg6a VPEu4B6hpZspjiqfQ4jYSUi2ikNXttrcvk/pO5ZW4xq4daKIdnDYbUNop68hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7k4wbQvgLPCcc0Mir1k08JNPQM0wHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIowDQYJ KoZIhvcNAQELBQADggEBAJZ/sevztQZIEpX3RS0gDBpKJjFd6mGe2XgiJFsEbzc7 d9Gd/OTyYcY/M4CuJ0SSyWJIQ4WkTME84gdSip15zkEitXSL7LpLBuIe5Noor9oI RTMjINtE9cReIW9C4ZNUz8ZfSOABP5y/KJGi4ho6MMWb0kjzgjVTzwLfReWi2fgb 8kuAIHe1WYW+IL5vmxq6MdCTEdLYwqk+58IItsw1PsdHbvlbjakiVZT7qdS+Nf+t UGKSTIfOWbcTDffjOtuQGJZVOm0vECciqSmIoHUYhdTzbq/EPPF0avkitUTcf2wL duVZY5coiGZ7EYaD1nB5jMmAalMsOHAFbABp3Ph6sE4= -----END CERTIFICATE-----Generated at Wed May 13 00:45:12 2026 by rpki-client