$ rpki-client -vvf rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa File: 3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa (raw, json) Hash identifier: 1yaaJ9G5o/7m18fGAiY33Sl2tkngDENHDH33T1CdcHc= Subject key identifier: 09:7E:1D:46:B2:3A:87:D2:91:66:7A:92:83:10:42:F8:30:BC:9A:72 Certificate issuer: /CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Certificate serial: 4B34D9641EA091B9D402F61DDD94FFA051C7A2D2 Authority key identifier: BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa Signing time: Sun 03 May 2026 02:37:50 +0000 ROA not before: Sun 03 May 2026 02:32:50 +0000 ROA not after: Sun 02 May 2027 02:37:50 +0000 asID: 134654 IP address blocks: 103.147.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:34:d9:64:1e:a0:91:b9:d4:02:f6:1d:dd:94:ff:a0:51:c7:a2:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Validity Not Before: May 3 02:32:50 2026 GMT Not After : May 2 02:37:50 2027 GMT Subject: CN=097E1D46B23A87D291667A92831042F830BC9A72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:92:8a:b9:81:68:1f:54:5c:a1:e1:a2:9c:db: 2a:14:a8:d7:52:4d:3b:0a:99:ef:50:76:8c:44:05: 40:51:d5:5d:ed:49:7f:d3:ff:1c:9d:43:3b:46:c2: 13:80:2b:3e:25:17:63:4e:0d:55:11:b8:6f:7c:85: 3c:2b:a6:be:08:bd:0e:6c:2f:82:23:d4:35:b0:cd: d5:f7:e6:1a:8a:8e:54:65:f1:d1:7a:1e:4b:fb:18: 75:7c:7f:cb:3c:55:e4:74:76:20:cf:f1:f8:0a:f1: 55:24:da:a4:1f:c8:e5:2c:60:12:aa:83:45:c7:f1: 04:bf:c1:ac:a1:4c:62:ba:f4:68:35:4d:1b:73:e4: f9:d9:1d:4d:37:49:f8:5c:1d:45:76:e8:88:85:17: 1a:3e:de:fe:b0:29:9c:d5:05:31:3f:4b:ca:8f:ce: eb:85:15:6e:9e:5c:a4:0c:30:f0:5c:92:8c:0e:c2: b7:99:b0:e9:c7:16:6a:ae:89:be:13:41:dc:00:aa: d0:e2:7b:ec:f2:ee:e9:d9:cd:fa:81:72:f0:d1:fe: 96:cb:c5:67:52:82:db:65:49:70:78:d6:a2:7e:84: b5:03:06:f4:5f:73:dd:5e:dd:9e:ad:85:b6:57:d2: ff:c6:6d:0d:e9:72:42:ee:52:dc:98:a1:c1:62:9d: a0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7E:1D:46:B2:3A:87:D2:91:66:7A:92:83:10:42:F8:30:BC:9A:72 X509v3 Authority Key Identifier: keyid:BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.254.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:06:e5:00:a4:27:b3:11:c3:b6:f1:e2:5a:c1:d8:3d:68:66: f6:12:fc:25:e1:49:6e:99:91:be:37:9f:0a:00:46:ae:36:e1: 30:5b:ac:b8:b1:42:10:58:46:ef:31:35:1a:c8:24:e4:7e:2b: 07:4a:4a:99:d7:80:1a:22:6d:59:eb:78:3c:1f:75:38:a6:28: 15:73:8c:83:05:fe:4e:26:c0:9e:42:d6:a0:6a:9b:1c:01:d4: cd:e8:ba:ec:34:da:83:5d:8a:39:ad:dc:e3:62:2c:a5:33:02: 8d:20:01:74:dc:39:1c:33:7b:db:44:b6:70:62:d0:ba:70:88: ff:61:ac:89:08:80:0a:e4:75:7a:b3:5c:3c:ba:2f:93:c6:80: 07:25:92:38:05:0c:9d:da:89:a2:c3:68:e5:bd:7c:31:44:4f: d8:21:8d:f5:e9:5a:bf:bc:37:a5:ac:75:04:83:9c:16:4c:a1: 06:59:db:61:e7:65:65:0f:f3:6a:9a:10:d6:3b:41:35:cd:9c: 62:e8:19:75:64:26:da:24:cc:b7:1e:61:c0:85:87:55:63:34: 5e:9c:e3:b2:55:5f:e2:2b:0a:94:6c:ff:d5:db:ab:d0:50:ac: c0:bf:19:8e:f1:51:0f:de:8e:6f:73:cf:4b:81:f1:b2:23:60: ce:27:c1:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSzTZZB6gkbnUAvYd3ZT/oFHHotIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE1Nzg4QjlEOUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4 QjRFRTc1MDAeFw0yNjA1MDMwMjMyNTBaFw0yNzA1MDIwMjM3NTBaMDMxMTAvBgNV BAMTKDA5N0UxRDQ2QjIzQTg3RDI5MTY2N0E5MjgzMTA0MkY4MzBCQzlBNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5koq5gWgfVFyh4aKc2yoUqNdS TTsKme9QdoxEBUBR1V3tSX/T/xydQztGwhOAKz4lF2NODVURuG98hTwrpr4IvQ5s L4Ij1DWwzdX35hqKjlRl8dF6Hkv7GHV8f8s8VeR0diDP8fgK8VUk2qQfyOUsYBKq g0XH8QS/wayhTGK69Gg1TRtz5PnZHU03SfhcHUV26IiFFxo+3v6wKZzVBTE/S8qP zuuFFW6eXKQMMPBckowOwreZsOnHFmquib4TQdwAqtDie+zy7unZzfqBcvDR/pbL xWdSgttlSXB41qJ+hLUDBvRfc91e3Z6thbZX0v/GbQ3pckLuUtyYocFinaDzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCX4dRrI6h9KRZnqSgxBC+DC8mnIwHwYDVR0j BBgwFoAUuleIudm+pzTOSUyXYmRfe4tO51AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjBlNDc1MGUtNDM5My00M2VjLTlhYjUtZDI0N2JiYzA3ZDg2LzAvQkE1Nzg4QjlE OUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4QjRFRTc1MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTU3ODhCOUQ5QkVBNzM0Q0U0OTRDOTc2MjY0NUY3QjhCNEVF NzUwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMxMzAzMzJlMzEzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/4wDQYJ KoZIhvcNAQELBQADggEBAA8G5QCkJ7MRw7bx4lrB2D1oZvYS/CXhSW6Zkb43nwoA Rq424TBbrLixQhBYRu8xNRrIJOR+KwdKSpnXgBoibVnreDwfdTimKBVzjIMF/k4m wJ5C1qBqmxwB1M3ouuw02oNdijmt3ONiLKUzAo0gAXTcORwze9tEtnBi0LpwiP9h rIkIgArkdXqzXDy6L5PGgAclkjgFDJ3aiaLDaOW9fDFET9ghjfXpWr+8N6WsdQSD nBZMoQZZ22HnZWUP82qaENY7QTXNnGLoGXVkJtokzLceYcCFh1VjNF6c47JVX+Ir CpRs/9Xbq9BQrMC/GY7xUQ/ejm9zz0uB8bIjYM4nwV4= -----END CERTIFICATE-----Generated at Wed May 13 07:01:23 2026 by rpki-client