$ rpki-client -vvf rpki-rsync.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/3130332e32302e38382e302f32342d3234203d3e20313530313837.roa File: 3130332e32302e38382e302f32342d3234203d3e20313530313837.roa (raw, json) Hash identifier: stKJlVY4X9Us0gcPWRVnra1On9usS4UIj80SOb9p2sg= Subject key identifier: 22:16:A2:A7:69:7F:0C:0D:A6:90:D3:D1:AC:BC:39:AB:55:19:44:DA Certificate issuer: /CN=F036C28EB79F3EEAFE6870FDFB62F2858EA8D491 Certificate serial: 1681C8BEE3750168CC7FEF1F76D3F9A3F4E45532 Authority key identifier: F0:36:C2:8E:B7:9F:3E:EA:FE:68:70:FD:FB:62:F2:85:8E:A8:D4:91 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F036C28EB79F3EEAFE6870FDFB62F2858EA8D491.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/3130332e32302e38382e302f32342d3234203d3e20313530313837.roa Signing time: Sun 03 May 2026 02:37:21 +0000 ROA not before: Sun 03 May 2026 02:32:21 +0000 ROA not after: Sun 02 May 2027 02:37:21 +0000 asID: 150187 IP address blocks: 103.20.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/F036C28EB79F3EEAFE6870FDFB62F2858EA8D491.crl rsync://rpki-rsync.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/F036C28EB79F3EEAFE6870FDFB62F2858EA8D491.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F036C28EB79F3EEAFE6870FDFB62F2858EA8D491.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:81:c8:be:e3:75:01:68:cc:7f:ef:1f:76:d3:f9:a3:f4:e4:55:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F036C28EB79F3EEAFE6870FDFB62F2858EA8D491 Validity Not Before: May 3 02:32:21 2026 GMT Not After : May 2 02:37:21 2027 GMT Subject: CN=2216A2A7697F0C0DA690D3D1ACBC39AB551944DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:da:5e:f6:cd:3d:ed:fa:ff:11:18:45:0e:7c: d7:3f:1e:27:ed:ce:40:05:57:c4:16:e5:cb:c1:a8: 52:bd:54:2a:b3:f7:ee:45:cd:72:19:74:14:46:83: db:c6:7d:f2:b4:dc:b3:f7:29:09:ea:95:08:12:f1: 81:50:12:f0:1f:6f:d0:a3:61:5a:5e:d4:3b:a6:d0: 83:51:82:1c:58:a4:73:e9:50:33:1f:08:b5:93:d6: 65:18:2c:36:f0:16:64:cd:1b:bc:4f:5c:f1:d1:a2: b4:19:50:14:6e:91:05:1a:dd:d7:88:ad:d4:03:2b: 17:9e:d0:11:88:d4:64:2f:0c:c2:31:8f:e4:67:26: f9:72:db:04:de:1e:f7:cc:5e:18:d0:2f:23:a8:3f: 8a:b2:b5:66:51:94:97:f4:4e:b3:5a:32:66:17:d9: b5:20:14:30:1c:f3:35:1c:cd:51:2a:b1:58:98:2e: b2:00:25:8f:da:08:6f:b2:dc:95:f7:7d:b5:f3:2e: 8d:4f:70:51:d9:f1:73:ad:8f:b8:a3:68:e3:30:46: 08:d1:a6:9f:34:4b:7b:7f:93:6c:61:0e:cb:16:3b: e6:7c:cb:3a:75:ee:69:51:62:c9:99:29:34:ee:76: 75:ac:56:78:2e:a1:fc:b1:88:f4:c8:41:36:8e:ef: af:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:16:A2:A7:69:7F:0C:0D:A6:90:D3:D1:AC:BC:39:AB:55:19:44:DA X509v3 Authority Key Identifier: keyid:F0:36:C2:8E:B7:9F:3E:EA:FE:68:70:FD:FB:62:F2:85:8E:A8:D4:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/F036C28EB79F3EEAFE6870FDFB62F2858EA8D491.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F036C28EB79F3EEAFE6870FDFB62F2858EA8D491.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/3130332e32302e38382e302f32342d3234203d3e20313530313837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.88.0/24 Signature Algorithm: sha256WithRSAEncryption 61:ef:ba:f1:e1:f1:00:33:ab:ac:42:68:30:c6:9c:95:37:45: 5a:96:4f:c3:e7:13:fb:b2:9e:a1:c2:b1:81:7a:94:7d:a2:73: 00:6d:ea:2c:75:0e:26:72:fe:ad:db:8d:5f:54:96:0b:4c:1d: 01:11:c0:64:73:d5:aa:6d:46:37:6b:ce:d3:8f:a8:62:3b:33: 43:b7:7d:ec:1d:83:ad:f6:34:da:bd:9f:e0:a1:dc:b6:e1:69: 65:b2:ca:ad:25:22:85:e2:a9:16:ec:78:37:5f:d2:48:6e:35: 84:fb:bf:58:20:fc:cc:aa:2d:ae:46:6a:4f:b9:c0:83:28:4b: 16:0b:37:26:b0:ca:64:92:01:da:f2:43:45:5b:43:ba:b0:f7: b0:ce:31:b3:36:72:2e:de:c7:73:a9:81:fd:df:8e:a4:d5:77: 4d:70:92:21:41:83:0d:54:20:fb:53:21:4b:0b:24:74:4c:99: 3e:78:f9:d2:99:f1:72:a0:1b:ee:b1:b2:f2:96:75:66:44:0f: 4a:5e:c8:a6:13:ae:f3:7f:89:1f:dc:00:d9:91:ed:21:69:0a: ca:e9:a4:20:18:8f:96:70:da:87:8c:26:6c:23:1e:67:5f:ba: af:98:21:79:13:33:4f:4d:4d:e6:2c:e2:1f:52:fb:45:30:02: d3:fd:1f:69 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFoHIvuN1AWjMf+8fdtP5o/TkVTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjAzNkMyOEVCNzlGM0VFQUZFNjg3MEZERkI2MkYyODU4 RUE4RDQ5MTAeFw0yNjA1MDMwMjMyMjFaFw0yNzA1MDIwMjM3MjFaMDMxMTAvBgNV BAMTKDIyMTZBMkE3Njk3RjBDMERBNjkwRDNEMUFDQkMzOUFCNTUxOTQ0REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2l72zT3t+v8RGEUOfNc/Hift zkAFV8QW5cvBqFK9VCqz9+5FzXIZdBRGg9vGffK03LP3KQnqlQgS8YFQEvAfb9Cj YVpe1Dum0INRghxYpHPpUDMfCLWT1mUYLDbwFmTNG7xPXPHRorQZUBRukQUa3deI rdQDKxee0BGI1GQvDMIxj+RnJvly2wTeHvfMXhjQLyOoP4qytWZRlJf0TrNaMmYX 2bUgFDAc8zUczVEqsViYLrIAJY/aCG+y3JX3fbXzLo1PcFHZ8XOtj7ijaOMwRgjR pp80S3t/k2xhDssWO+Z8yzp17mlRYsmZKTTudnWsVnguofyxiPTIQTaO769HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIhaip2l/DA2mkNPRrLw5q1UZRNowHwYDVR0j BBgwFoAU8DbCjrefPur+aHD9+2LyhY6o1JEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWZjYzFlZjYtNzY5Zi00YWFmLTlkMTQtMmU1YjE1YTZmZjIzLzAvRjAzNkMyOEVC NzlGM0VFQUZFNjg3MEZERkI2MkYyODU4RUE4RDQ5MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMDM2QzI4RUI3OUYzRUVBRkU2ODcwRkRGQjYyRjI4NThFQThE NDkxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVmY2MxZWY2LTc2OWYtNGFhZi05 ZDE0LTJlNWIxNWE2ZmYyMy8wLzMxMzAzMzJlMzIzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMxMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUWDANBgkqhkiG 9w0BAQsFAAOCAQEAYe+68eHxADOrrEJoMMaclTdFWpZPw+cT+7KeocKxgXqUfaJz AG3qLHUOJnL+rduNX1SWC0wdARHAZHPVqm1GN2vO04+oYjszQ7d97B2DrfY02r2f 4KHctuFpZbLKrSUiheKpFux4N1/SSG41hPu/WCD8zKotrkZqT7nAgyhLFgs3JrDK ZJIB2vJDRVtDurD3sM4xszZyLt7Hc6mB/d+OpNV3TXCSIUGDDVQg+1MhSwskdEyZ Pnj50pnxcqAb7rGy8pZ1ZkQPSl7IphOu83+JH9wA2ZHtIWkKyumkIBiPlnDah4wm bCMeZ1+6r5gheRMzT01N5iziH1L7RTAC0/0faQ== -----END CERTIFICATE-----Generated at Wed May 13 04:03:28 2026 by rpki-client