$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa File: 3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa (raw, json) Hash identifier: 8knmmlk6VbCEzOwxll8mjdcL7YeA/GevLWgeSXesFqE= Subject key identifier: 2F:07:6E:B3:07:73:64:10:36:9D:8D:3B:C2:02:CB:AF:7F:31:4D:F5 Certificate issuer: /CN=AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE Certificate serial: 02C6F05FF9E586AE1AB45F83646EA0908620B34F Authority key identifier: AF:4C:B4:6F:A8:35:3C:B5:A3:B2:3E:F5:7F:23:18:D4:6C:27:E3:CE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa Signing time: Sun 03 May 2026 02:36:18 +0000 ROA not before: Sun 03 May 2026 02:31:18 +0000 ROA not after: Sun 02 May 2027 02:36:18 +0000 asID: 141087 IP address blocks: 103.156.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.crl rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c6:f0:5f:f9:e5:86:ae:1a:b4:5f:83:64:6e:a0:90:86:20:b3:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE Validity Not Before: May 3 02:31:18 2026 GMT Not After : May 2 02:36:18 2027 GMT Subject: CN=2F076EB307736410369D8D3BC202CBAF7F314DF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:33:78:f6:e6:5c:fe:33:48:c9:7d:eb:87:cc: 78:58:cf:4d:d1:8a:37:6b:06:2b:01:5a:6a:68:6f: fa:dc:a6:b3:db:1c:31:40:6e:2a:7e:9e:22:39:10: 37:e7:24:04:5a:ea:96:50:3d:1f:67:ad:34:be:35: cc:f1:52:eb:8a:58:54:42:32:16:fc:6b:9f:bd:30: f3:1e:87:d9:d8:fd:b0:10:a7:c5:79:ab:ef:47:d6: f1:f0:f1:f8:e3:7f:bc:d1:1f:86:45:99:ef:4f:5c: ea:bb:3a:30:92:84:c8:19:52:dc:d8:86:ff:5b:08: f3:24:8d:6b:73:e0:10:9b:c0:1e:34:6b:af:ea:00: e4:5b:fe:5e:1e:ca:06:f6:18:40:72:aa:5a:36:6b: 4c:0c:28:02:1a:5a:fb:a1:14:12:61:74:17:d4:fe: ff:65:00:e7:6d:d0:ef:a8:b1:61:55:b7:e0:d5:55: d1:ed:b8:fd:d8:61:0c:73:36:84:7f:c0:4b:66:21: 35:09:ef:42:8e:17:97:26:e0:be:93:7f:21:d6:87: 34:75:9a:22:a8:16:c2:33:fd:eb:2c:48:42:4d:e4: a4:cf:ba:c1:0d:b7:e9:b7:43:31:36:77:f5:2a:95: f4:f1:16:e9:05:0b:2b:95:e9:b7:49:8d:a8:4f:63: 83:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:07:6E:B3:07:73:64:10:36:9D:8D:3B:C2:02:CB:AF:7F:31:4D:F5 X509v3 Authority Key Identifier: keyid:AF:4C:B4:6F:A8:35:3C:B5:A3:B2:3E:F5:7F:23:18:D4:6C:27:E3:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.96.0/24 Signature Algorithm: sha256WithRSAEncryption 31:66:b6:21:62:8b:d4:d6:1f:1a:f0:23:b1:41:c0:76:18:ce: fd:68:c5:24:c2:d9:88:e4:02:6b:5b:d5:1c:6c:76:12:30:0b: 5d:06:5c:d5:42:13:c0:21:d5:3f:57:6b:a1:d7:31:4b:c3:54: e1:74:ca:58:be:d2:36:1a:e0:0c:25:1a:8a:cc:0c:2f:a8:e6: 34:dc:04:04:ad:e4:33:19:49:44:df:59:d8:0f:18:7e:d0:33: e0:94:67:cb:ef:07:bd:52:62:9c:5a:47:0e:51:bf:d1:d4:e2: ab:a4:05:3b:11:a9:cc:06:64:04:f3:20:28:3b:37:60:78:c5: 7b:20:a6:d6:06:39:b0:76:bf:b3:6a:1f:03:ff:04:db:d8:b1: 2a:31:86:ad:3a:7f:bc:c6:04:d0:0c:52:e4:83:97:98:c0:6b: 36:b6:20:96:77:fe:ba:2c:dd:bb:86:c3:f6:19:1a:a3:f5:13: 00:93:34:02:21:32:a7:c7:09:35:74:c7:07:99:9a:19:6f:96: 7f:30:60:32:85:1a:fc:74:cf:fb:b9:08:a3:ed:6e:c0:99:9f: 68:5f:a1:7e:f2:6a:54:5c:f5:fc:ef:10:b8:f1:94:8d:d4:dd: d2:7f:8e:44:ca:1c:86:65:d9:ef:67:fd:1d:49:43:b1:4b:67: 02:32:9e:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAsbwX/nlhq4atF+DZG6gkIYgs08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0Q0I0NkZBODM1M0NCNUEzQjIzRUY1N0YyMzE4RDQ2 QzI3RTNDRTAeFw0yNjA1MDMwMjMxMThaFw0yNzA1MDIwMjM2MThaMDMxMTAvBgNV BAMTKDJGMDc2RUIzMDc3MzY0MTAzNjlEOEQzQkMyMDJDQkFGN0YzMTRERjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKM3j25lz+M0jJfeuHzHhYz03R ijdrBisBWmpob/rcprPbHDFAbip+niI5EDfnJARa6pZQPR9nrTS+NczxUuuKWFRC Mhb8a5+9MPMeh9nY/bAQp8V5q+9H1vHw8fjjf7zRH4ZFme9PXOq7OjCShMgZUtzY hv9bCPMkjWtz4BCbwB40a6/qAORb/l4eygb2GEByqlo2a0wMKAIaWvuhFBJhdBfU /v9lAOdt0O+osWFVt+DVVdHtuP3YYQxzNoR/wEtmITUJ70KOF5cm4L6TfyHWhzR1 miKoFsIz/essSEJN5KTPusENt+m3QzE2d/UqlfTxFukFCyuV6bdJjahPY4PpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULwduswdzZBA2nY07wgLLr38xTfUwHwYDVR0j BBgwFoAUr0y0b6g1PLWjsj71fyMY1Gwn484wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWM4OTdjNGEtZTBmZi00NjUyLWE1OTEtZmYyZDQ4ZTcyYzkxLzAvQUY0Q0I0NkZB ODM1M0NCNUEzQjIzRUY1N0YyMzE4RDQ2QzI3RTNDRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjRDQjQ2RkE4MzUzQ0I1QTNCMjNFRjU3RjIzMThENDZDMjdF M0NFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjODk3YzRhLWUwZmYtNDY1Mi1h NTkxLWZmMmQ0OGU3MmM5MS8wLzMxMzAzMzJlMzEzNTM2MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5xgMA0GCSqG SIb3DQEBCwUAA4IBAQAxZrYhYovU1h8a8COxQcB2GM79aMUkwtmI5AJrW9UcbHYS MAtdBlzVQhPAIdU/V2uh1zFLw1ThdMpYvtI2GuAMJRqKzAwvqOY03AQEreQzGUlE 31nYDxh+0DPglGfL7we9UmKcWkcOUb/R1OKrpAU7EanMBmQE8yAoOzdgeMV7IKbW Bjmwdr+zah8D/wTb2LEqMYatOn+8xgTQDFLkg5eYwGs2tiCWd/66LN27hsP2GRqj 9RMAkzQCITKnxwk1dMcHmZoZb5Z/MGAyhRr8dM/7uQij7W7AmZ9oX6F+8mpUXPX8 7xC48ZSN1N3Sf45EyhyGZdnvZ/0dSUOxS2cCMp7I -----END CERTIFICATE-----Generated at Wed May 13 04:08:37 2026 by rpki-client