$ rpki-client -vvf rpki-rsync.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa File: 3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa (raw, json) Hash identifier: 8mWztPKHecvNCBMMV0cUZVPOGf2iWRWZndzDVuRiFm4= Subject key identifier: F5:35:C8:FB:CA:24:12:0B:35:2A:89:6D:DD:4E:85:BE:48:BA:7C:8A Certificate issuer: /CN=AB5F90552B80CDC2416592E5FDA773F5D66F53BE Certificate serial: 0A219C7E3DC02B3BE573D77A60DADF921B5F7987 Authority key identifier: AB:5F:90:55:2B:80:CD:C2:41:65:92:E5:FD:A7:73:F5:D6:6F:53:BE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AB5F90552B80CDC2416592E5FDA773F5D66F53BE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa Signing time: Sun 03 May 2026 02:39:20 +0000 ROA not before: Sun 03 May 2026 02:34:20 +0000 ROA not after: Sun 02 May 2027 02:39:20 +0000 asID: 139963 IP address blocks: 103.147.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/AB5F90552B80CDC2416592E5FDA773F5D66F53BE.crl rsync://rpki-rsync.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/AB5F90552B80CDC2416592E5FDA773F5D66F53BE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AB5F90552B80CDC2416592E5FDA773F5D66F53BE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:21:9c:7e:3d:c0:2b:3b:e5:73:d7:7a:60:da:df:92:1b:5f:79:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB5F90552B80CDC2416592E5FDA773F5D66F53BE Validity Not Before: May 3 02:34:20 2026 GMT Not After : May 2 02:39:20 2027 GMT Subject: CN=F535C8FBCA24120B352A896DDD4E85BE48BA7C8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:29:20:44:c9:d3:d4:1f:5c:63:b0:62:11:47: b4:c6:e6:05:ec:ef:62:35:fb:5e:80:95:3f:ff:57: 61:0e:63:aa:1f:a0:ed:d0:13:5b:c5:98:57:67:41: 4f:35:30:99:45:f5:18:7f:6e:e6:1d:2d:d1:72:0c: 56:72:a0:fa:cf:46:9b:d9:66:93:d4:cc:11:cd:8a: a7:b6:3f:f9:b1:d1:b4:dd:08:c3:18:ed:5a:07:9f: 70:5e:e3:d0:93:64:47:5a:e6:39:55:44:16:ff:ec: b2:d7:61:1f:89:ad:ba:a4:ac:03:76:27:34:a6:61: bd:76:3d:66:e6:b9:c3:df:b5:46:fd:2a:e9:2b:f2: 46:15:f1:79:fb:6f:c5:c2:cc:93:24:03:45:a3:6e: c5:f0:91:9f:03:32:7d:f2:b9:b9:71:7c:9f:e7:01: 65:f4:7d:ed:28:51:0a:61:78:db:5b:5d:e5:e3:96: eb:97:51:5c:5c:b4:48:67:7e:da:4d:79:03:13:2c: 82:bb:62:8c:af:9b:7c:c9:fb:c0:9d:a7:99:9f:32: ac:8d:71:0a:f3:2b:0c:1b:92:eb:af:07:95:4e:3f: 8e:06:b6:21:6c:1a:58:0e:47:7d:68:98:f0:ab:6f: 0f:92:00:af:9b:fc:ab:d2:ed:56:9c:a5:7c:41:54: 73:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:35:C8:FB:CA:24:12:0B:35:2A:89:6D:DD:4E:85:BE:48:BA:7C:8A X509v3 Authority Key Identifier: keyid:AB:5F:90:55:2B:80:CD:C2:41:65:92:E5:FD:A7:73:F5:D6:6F:53:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/AB5F90552B80CDC2416592E5FDA773F5D66F53BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AB5F90552B80CDC2416592E5FDA773F5D66F53BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.134.0/23 Signature Algorithm: sha256WithRSAEncryption de:52:96:6d:35:64:f0:c1:17:38:14:90:5e:c9:db:da:39:57: 8a:5b:1b:96:5e:f5:ef:0e:4d:92:9d:ef:b4:d4:af:b8:00:d1: eb:a0:2a:97:34:96:36:da:64:26:0e:9e:99:1c:74:5f:bb:ef: dc:8e:f0:35:e5:69:46:73:64:5d:91:84:da:9d:09:79:38:9b: d4:78:29:79:55:73:f7:91:42:f6:33:76:47:c8:58:f6:4d:12: c0:8b:c3:af:d2:7e:c1:6a:82:41:f1:30:b3:17:ba:57:a6:e9: 58:e3:fb:aa:37:be:3d:ef:62:bc:b9:ba:c9:9e:1a:d2:2d:76: ea:e1:34:46:a2:f5:5f:03:e5:31:70:79:86:3d:15:01:d8:37: 90:d3:26:f4:1a:b6:83:a8:82:ff:5d:52:a6:fa:ef:f3:45:c7: 27:67:ff:87:b1:71:00:21:14:f8:ef:8e:8a:7a:09:4a:2c:32: 7b:38:3d:05:a6:08:c7:e1:8e:bb:62:be:d2:56:c7:9d:89:07: 90:05:31:b8:7d:41:21:75:43:10:d5:d4:bd:fc:a5:b3:8b:9b: a5:1d:97:98:97:6b:1d:d8:40:6f:e5:24:85:40:4f:b3:ee:2e: 96:ba:0f:1c:91:ea:65:11:c0:22:4c:cb:79:e9:0b:14:a3:94: bc:c8:7b:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCiGcfj3AKzvlc9d6YNrfkhtfeYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUI1RjkwNTUyQjgwQ0RDMjQxNjU5MkU1RkRBNzczRjVE NjZGNTNCRTAeFw0yNjA1MDMwMjM0MjBaFw0yNzA1MDIwMjM5MjBaMDMxMTAvBgNV BAMTKEY1MzVDOEZCQ0EyNDEyMEIzNTJBODk2RERENEU4NUJFNDhCQTdDOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUKSBEydPUH1xjsGIRR7TG5gXs 72I1+16AlT//V2EOY6ofoO3QE1vFmFdnQU81MJlF9Rh/buYdLdFyDFZyoPrPRpvZ ZpPUzBHNiqe2P/mx0bTdCMMY7VoHn3Be49CTZEda5jlVRBb/7LLXYR+JrbqkrAN2 JzSmYb12PWbmucPftUb9Kukr8kYV8Xn7b8XCzJMkA0WjbsXwkZ8DMn3yublxfJ/n AWX0fe0oUQpheNtbXeXjluuXUVxctEhnftpNeQMTLIK7Yoyvm3zJ+8Cdp5mfMqyN cQrzKwwbkuuvB5VOP44GtiFsGlgOR31omPCrbw+SAK+b/KvS7VacpXxBVHNNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9TXI+8okEgs1Kolt3U6Fvki6fIowHwYDVR0j BBgwFoAUq1+QVSuAzcJBZZLl/adz9dZvU74wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjQ4YjY1ODMtNDEyMi00NjlkLTgzODQtM2FmMWJjYzY2MDdmLzAvQUI1RjkwNTUy QjgwQ0RDMjQxNjU5MkU1RkRBNzczRjVENjZGNTNCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQjVGOTA1NTJCODBDREMyNDE2NTkyRTVGREE3NzNGNUQ2NkY1 M0JFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0OGI2NTgzLTQxMjItNDY5ZC04 Mzg0LTNhZjFiY2M2NjA3Zi8wLzMxMzAzMzJlMzEzNDM3MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk4YwDQYJ KoZIhvcNAQELBQADggEBAN5Slm01ZPDBFzgUkF7J29o5V4pbG5Ze9e8OTZKd77TU r7gA0eugKpc0ljbaZCYOnpkcdF+779yO8DXlaUZzZF2RhNqdCXk4m9R4KXlVc/eR QvYzdkfIWPZNEsCLw6/SfsFqgkHxMLMXulem6Vjj+6o3vj3vYry5usmeGtItdurh NEai9V8D5TFweYY9FQHYN5DTJvQatoOogv9dUqb67/NFxydn/4excQAhFPjvjop6 CUosMns4PQWmCMfhjrtivtJWx52JB5AFMbh9QSF1QxDV1L38pbOLm6Udl5iXax3Y QG/lJIVAT7PuLpa6DxyR6mURwCJMy3npCxSjlLzIe+8= -----END CERTIFICATE-----Generated at Wed May 13 05:11:17 2026 by rpki-client