$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32342d3234203d3e20313431363136.roa File: 3130332e3136312e3136322e302f32342d3234203d3e20313431363136.roa (raw, json) Hash identifier: XztwHCHvbhSLiUv5Dcefs2qJFPWKrlIiunIE1+CwfUw= Subject key identifier: ED:E0:E7:EB:51:AB:69:18:9E:DB:18:F6:8A:C6:A7:8A:F0:51:D4:A0 Certificate issuer: /CN=C858999BCD42FDA190703525FA3DB0036EF8DC4B Certificate serial: 52BFC31CF9AAF2076587017DF4C096C4044DB4FD Authority key identifier: C8:58:99:9B:CD:42:FD:A1:90:70:35:25:FA:3D:B0:03:6E:F8:DC:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C858999BCD42FDA190703525FA3DB0036EF8DC4B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32342d3234203d3e20313431363136.roa Signing time: Sun 03 May 2026 02:36:22 +0000 ROA not before: Sun 03 May 2026 02:31:22 +0000 ROA not after: Sun 02 May 2027 02:36:22 +0000 asID: 141616 IP address blocks: 103.161.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/C858999BCD42FDA190703525FA3DB0036EF8DC4B.crl rsync://rpki-rsync.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/C858999BCD42FDA190703525FA3DB0036EF8DC4B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C858999BCD42FDA190703525FA3DB0036EF8DC4B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:bf:c3:1c:f9:aa:f2:07:65:87:01:7d:f4:c0:96:c4:04:4d:b4:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C858999BCD42FDA190703525FA3DB0036EF8DC4B Validity Not Before: May 3 02:31:22 2026 GMT Not After : May 2 02:36:22 2027 GMT Subject: CN=EDE0E7EB51AB69189EDB18F68AC6A78AF051D4A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f3:80:9c:73:bd:c3:c5:fa:02:6b:98:40:07: 36:88:7d:87:49:68:f3:b6:b0:e5:6b:3e:76:f1:0e: 8b:1f:37:e7:8a:84:2c:d3:af:cb:f2:12:a4:1c:8a: 5e:ec:33:d3:e1:d7:18:3b:b5:54:44:be:26:ad:8f: cb:34:b8:7b:99:28:af:3f:84:f8:83:18:da:00:14: df:eb:50:dd:40:8a:83:93:96:1a:9b:4b:b7:d6:a2: 98:2b:03:00:9f:8c:1e:a7:bd:10:c4:dd:f9:fd:2e: 91:44:3c:c4:ac:60:df:74:26:b0:03:da:24:70:c9: 4f:f1:9c:fb:2b:91:cf:39:71:fe:13:0f:29:44:76: 68:f6:c9:2c:d6:10:b5:56:60:7f:eb:b1:32:ad:df: df:a3:67:88:b4:dd:78:6a:5e:e4:25:d3:f5:5b:0e: 69:c6:3a:e3:07:64:1e:c8:e5:bd:49:48:8e:64:76: 70:96:ee:75:74:36:27:46:3b:97:ba:c9:73:b9:c7: f0:e8:79:1e:ba:a9:81:8b:9f:3c:64:e9:02:5e:47: fb:b2:38:72:46:49:a1:7b:12:a9:35:f2:d3:30:4c: d9:56:74:00:4f:d2:5e:9a:c4:7e:06:b2:eb:9a:1b: af:d3:f2:e0:b6:35:4b:fc:1a:5b:db:d8:b9:91:b0: f4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E0:E7:EB:51:AB:69:18:9E:DB:18:F6:8A:C6:A7:8A:F0:51:D4:A0 X509v3 Authority Key Identifier: keyid:C8:58:99:9B:CD:42:FD:A1:90:70:35:25:FA:3D:B0:03:6E:F8:DC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/C858999BCD42FDA190703525FA3DB0036EF8DC4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C858999BCD42FDA190703525FA3DB0036EF8DC4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32342d3234203d3e20313431363136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.162.0/24 Signature Algorithm: sha256WithRSAEncryption 32:a1:10:20:66:65:fa:b6:22:f0:9f:11:ac:41:14:31:5e:1e: 9a:f1:f8:44:24:a4:70:84:43:f2:47:0e:02:a9:65:6b:4b:a5: cd:c2:dc:19:34:ee:06:80:59:cb:3c:89:52:99:ab:65:52:5c: 96:c5:01:64:6a:e9:7f:53:87:df:ae:8d:5f:3f:99:d0:c2:7e: 9a:2f:fd:a4:d2:c6:d9:ab:e8:5e:48:91:08:c2:96:b6:53:52: 23:20:3c:40:09:40:a2:93:32:24:c2:00:c1:81:eb:f0:f5:41: 9f:03:3f:4a:d9:e9:ee:5b:16:f5:32:f0:10:38:eb:c3:8a:8e: 42:5f:2a:89:de:0e:04:ff:ef:a7:18:7e:25:36:6b:97:93:31: b1:16:95:b5:62:3b:37:bb:7f:0e:59:75:4f:11:d6:9f:04:ee: 9d:10:85:dd:2a:3c:1e:1c:ab:ca:5d:9d:4a:95:5f:ea:df:e7: 59:3c:22:ce:e0:71:52:8b:7a:8a:7f:3b:dd:24:13:8b:40:a9: b0:9a:4e:09:e9:86:28:40:4e:1b:9f:91:73:15:43:88:62:8f: 6e:4a:af:59:a6:36:ed:9d:cc:a5:08:85:51:91:29:b7:41:9c: e5:81:3b:11:da:4c:4e:f5:b1:3e:95:f4:cd:37:42:7c:0f:ca: d1:49:d3:a4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUr/DHPmq8gdlhwF99MCWxARNtP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg1ODk5OUJDRDQyRkRBMTkwNzAzNTI1RkEzREIwMDM2 RUY4REM0QjAeFw0yNjA1MDMwMjMxMjJaFw0yNzA1MDIwMjM2MjJaMDMxMTAvBgNV BAMTKEVERTBFN0VCNTFBQjY5MTg5RURCMThGNjhBQzZBNzhBRjA1MUQ0QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC284Ccc73DxfoCa5hABzaIfYdJ aPO2sOVrPnbxDosfN+eKhCzTr8vyEqQcil7sM9Ph1xg7tVREviatj8s0uHuZKK8/ hPiDGNoAFN/rUN1AioOTlhqbS7fWopgrAwCfjB6nvRDE3fn9LpFEPMSsYN90JrAD 2iRwyU/xnPsrkc85cf4TDylEdmj2ySzWELVWYH/rsTKt39+jZ4i03XhqXuQl0/Vb DmnGOuMHZB7I5b1JSI5kdnCW7nV0NidGO5e6yXO5x/DoeR66qYGLnzxk6QJeR/uy OHJGSaF7Eqk18tMwTNlWdABP0l6axH4GsuuaG6/T8uC2NUv8Glvb2LmRsPRJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7eDn61GraRie2xj2isanivBR1KAwHwYDVR0j BBgwFoAUyFiZm81C/aGQcDUl+j2wA2743EswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQwOTRkM2UtMDg5Yy00YzY4LTgwYTItNTZiNWNiZmMxMDNkLzAvQzg1ODk5OUJD RDQyRkRBMTkwNzAzNTI1RkEzREIwMDM2RUY4REM0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DODU4OTk5QkNENDJGREExOTA3MDM1MjVGQTNEQjAwMzZFRjhE QzRCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMDk0ZDNlLTA4OWMtNGM2OC04 MGEyLTU2YjVjYmZjMTAzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoaIwDQYJ KoZIhvcNAQELBQADggEBADKhECBmZfq2IvCfEaxBFDFeHprx+EQkpHCEQ/JHDgKp ZWtLpc3C3Bk07gaAWcs8iVKZq2VSXJbFAWRq6X9Th9+ujV8/mdDCfpov/aTSxtmr 6F5IkQjClrZTUiMgPEAJQKKTMiTCAMGB6/D1QZ8DP0rZ6e5bFvUy8BA468OKjkJf KoneDgT/76cYfiU2a5eTMbEWlbViOze7fw5ZdU8R1p8E7p0Qhd0qPB4cq8pdnUqV X+rf51k8Is7gcVKLeop/O90kE4tAqbCaTgnphihAThufkXMVQ4hij25Kr1mmNu2d zKUIhVGRKbdBnOWBOxHaTE71sT6V9M03QnwPytFJ06Q= -----END CERTIFICATE-----Generated at Wed May 13 02:49:47 2026 by rpki-client