$ rpki-client -vvf rpki-rsync.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132392e302f32342d3234203d3e20313431363634.roa File: 3130332e32362e3132392e302f32342d3234203d3e20313431363634.roa (raw, json) Hash identifier: XRMjBNqHnY6+jz0gyEQDgptcLtfFhiyGtn8MtQxlV6s= Subject key identifier: 29:2F:AF:16:58:AE:A3:F5:0A:5F:4C:4C:0F:79:ED:A9:96:38:D6:2B Certificate issuer: /CN=883B1118323CCC5736EA818FCCFAFAA5F6346633 Certificate serial: 4C15B4B866E4EE08E904A49132813DBCC79FB43E Authority key identifier: 88:3B:11:18:32:3C:CC:57:36:EA:81:8F:CC:FA:FA:A5:F6:34:66:33 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/883B1118323CCC5736EA818FCCFAFAA5F6346633.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132392e302f32342d3234203d3e20313431363634.roa Signing time: Sun 03 May 2026 02:36:56 +0000 ROA not before: Sun 03 May 2026 02:31:56 +0000 ROA not after: Sun 02 May 2027 02:36:56 +0000 asID: 141664 IP address blocks: 103.26.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/883B1118323CCC5736EA818FCCFAFAA5F6346633.crl rsync://rpki-rsync.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/883B1118323CCC5736EA818FCCFAFAA5F6346633.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/883B1118323CCC5736EA818FCCFAFAA5F6346633.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:15:b4:b8:66:e4:ee:08:e9:04:a4:91:32:81:3d:bc:c7:9f:b4:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=883B1118323CCC5736EA818FCCFAFAA5F6346633 Validity Not Before: May 3 02:31:56 2026 GMT Not After : May 2 02:36:56 2027 GMT Subject: CN=292FAF1658AEA3F50A5F4C4C0F79EDA99638D62B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:00:1d:af:e4:1e:40:c9:e2:e7:ed:9a:73:d1: ad:00:a8:dd:32:8a:c4:07:ab:1c:78:e2:f1:83:e3: 9a:16:34:09:e3:24:7a:b4:40:dc:69:5c:49:bb:ed: 56:19:42:7c:cd:62:71:50:2e:f8:a6:eb:4a:9c:b2: 74:67:82:0a:f0:ed:ff:c1:0d:ed:2a:86:68:3a:7b: 0b:7b:0b:34:eb:d2:fc:85:d5:67:d5:30:5f:ac:37: b2:c0:72:e5:3b:67:55:ad:dd:7d:ba:ae:ae:d3:cf: cb:ed:e5:19:cd:d3:f9:f7:bd:da:fb:93:eb:cc:5c: b2:75:65:5f:fe:c3:c0:9d:d3:e4:43:40:8a:b5:ec: 85:37:a5:09:fa:00:c5:7c:03:72:42:1c:64:a3:68: 70:00:f4:78:53:ce:10:f8:fc:bf:d8:3b:e6:7f:b2: c7:38:5b:e4:61:40:1c:69:72:a4:46:d1:f7:65:7a: 0a:c4:79:7d:35:89:a6:88:e7:c7:44:e2:31:00:22: fd:16:7a:d6:3b:75:0b:fc:ba:b3:7b:b6:7d:63:4e: ba:28:1d:3a:11:0a:97:ac:4f:68:bb:ef:7f:f3:27: 9d:24:ca:a6:92:c1:d8:41:78:92:f1:9e:41:c4:cd: 08:9a:ab:d5:bf:7e:c7:7c:a1:9a:39:5b:06:70:21: d5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2F:AF:16:58:AE:A3:F5:0A:5F:4C:4C:0F:79:ED:A9:96:38:D6:2B X509v3 Authority Key Identifier: keyid:88:3B:11:18:32:3C:CC:57:36:EA:81:8F:CC:FA:FA:A5:F6:34:66:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/883B1118323CCC5736EA818FCCFAFAA5F6346633.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/883B1118323CCC5736EA818FCCFAFAA5F6346633.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132392e302f32342d3234203d3e20313431363634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.129.0/24 Signature Algorithm: sha256WithRSAEncryption 71:0f:18:1e:01:01:49:d9:db:ee:02:b7:3e:42:75:f3:47:9c: c7:ad:43:30:b4:e2:1c:74:e0:d9:e2:dd:07:00:e2:62:e4:ec: 4a:3d:13:ca:21:f8:4e:ba:4b:ab:61:54:0d:f4:9e:dd:3e:a4: 94:70:14:b0:b2:b6:a6:8b:d6:50:83:38:d2:1d:a6:7e:c3:00: f6:cc:b6:f5:ba:9f:b0:3d:65:3d:ba:bf:6b:0d:32:a0:65:96: 4e:82:86:cc:f0:cc:8d:42:96:0c:03:49:4c:da:6b:40:d3:47: eb:4d:38:87:f7:e5:cd:a1:da:2a:0f:03:ac:cb:84:11:c5:0c: f6:25:36:85:31:9a:10:e1:4a:49:66:b3:d9:80:14:a7:8b:27: 8d:f1:77:f5:97:d9:ff:df:1d:39:9e:0b:6d:78:c8:a8:f5:85: 06:87:4f:f9:b9:b8:f4:06:b1:75:6c:9f:c2:6a:96:c3:24:32: be:b3:ea:b9:6d:78:86:50:7b:00:02:35:14:7f:8f:a1:70:0f: 6b:49:d3:3a:be:d4:53:43:ce:c7:cd:f7:70:db:6e:4e:ab:66: a4:e6:a4:c6:ee:a9:21:c1:6c:53:ef:de:73:15:df:b8:7f:dd: bd:11:99:10:4c:dd:72:c9:a4:6d:6a:45:61:48:20:c8:8f:d5: 7a:cf:55:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTBW0uGbk7gjpBKSRMoE9vMeftD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgzQjExMTgzMjNDQ0M1NzM2RUE4MThGQ0NGQUZBQTVG NjM0NjYzMzAeFw0yNjA1MDMwMjMxNTZaFw0yNzA1MDIwMjM2NTZaMDMxMTAvBgNV BAMTKDI5MkZBRjE2NThBRUEzRjUwQTVGNEM0QzBGNzlFREE5OTYzOEQ2MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOAB2v5B5AyeLn7Zpz0a0AqN0y isQHqxx44vGD45oWNAnjJHq0QNxpXEm77VYZQnzNYnFQLvim60qcsnRnggrw7f/B De0qhmg6ewt7CzTr0vyF1WfVMF+sN7LAcuU7Z1Wt3X26rq7Tz8vt5RnN0/n3vdr7 k+vMXLJ1ZV/+w8Cd0+RDQIq17IU3pQn6AMV8A3JCHGSjaHAA9HhTzhD4/L/YO+Z/ ssc4W+RhQBxpcqRG0fdlegrEeX01iaaI58dE4jEAIv0WetY7dQv8urN7tn1jTroo HToRCpesT2i773/zJ50kyqaSwdhBeJLxnkHEzQiaq9W/fsd8oZo5WwZwIdXRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKS+vFliuo/UKX0xMD3ntqZY41iswHwYDVR0j BBgwFoAUiDsRGDI8zFc26oGPzPr6pfY0ZjMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWRhMzI5NjctZDU1OC00YTM0LWJlOGUtNjRlZjRjZmMwNGUzLzAvODgzQjExMTgz MjNDQ0M1NzM2RUE4MThGQ0NGQUZBQTVGNjM0NjYzMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84ODNCMTExODMyM0NDQzU3MzZFQTgxOEZDQ0ZBRkFBNUY2MzQ2 NjMzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkYTMyOTY3LWQ1NTgtNGEzNC1i ZThlLTY0ZWY0Y2ZjMDRlMy8wLzMxMzAzMzJlMzIzNjJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxqBMA0GCSqG SIb3DQEBCwUAA4IBAQBxDxgeAQFJ2dvuArc+QnXzR5zHrUMwtOIcdODZ4t0HAOJi 5OxKPRPKIfhOukurYVQN9J7dPqSUcBSwsrami9ZQgzjSHaZ+wwD2zLb1up+wPWU9 ur9rDTKgZZZOgobM8MyNQpYMA0lM2mtA00frTTiH9+XNodoqDwOsy4QRxQz2JTaF MZoQ4UpJZrPZgBSniyeN8Xf1l9n/3x05ngtteMio9YUGh0/5ubj0BrF1bJ/CapbD JDK+s+q5bXiGUHsAAjUUf4+hcA9rSdM6vtRTQ87Hzfdw225Oq2ak5qTG7qkhwWxT 795zFd+4f929EZkQTN1yyaRtakVhSCDIj9V6z1UW -----END CERTIFICATE-----Generated at Wed May 13 02:26:54 2026 by rpki-client