$ rpki-client -vvf rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa File: 3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa (raw, json) Hash identifier: 1PUWFE0HvObC84cJz28KwHOs36xPuTELe/I8Yxh+ht0= Subject key identifier: B9:44:78:83:C3:35:44:1D:A8:B3:80:42:5D:7D:8C:97:30:B1:36:63 Certificate issuer: /CN=7E5852640ACB27CE4AC466E5338B30E206711DDD Certificate serial: 1C7A75FCEB64450AB694644EAC824CD5FD31B106 Authority key identifier: 7E:58:52:64:0A:CB:27:CE:4A:C4:66:E5:33:8B:30:E2:06:71:1D:DD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7E5852640ACB27CE4AC466E5338B30E206711DDD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa Signing time: Sun 03 May 2026 02:39:24 +0000 ROA not before: Sun 03 May 2026 02:34:24 +0000 ROA not after: Sun 02 May 2027 02:39:24 +0000 asID: 150261 IP address blocks: 103.22.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.crl rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7E5852640ACB27CE4AC466E5338B30E206711DDD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7a:75:fc:eb:64:45:0a:b6:94:64:4e:ac:82:4c:d5:fd:31:b1:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E5852640ACB27CE4AC466E5338B30E206711DDD Validity Not Before: May 3 02:34:24 2026 GMT Not After : May 2 02:39:24 2027 GMT Subject: CN=B9447883C335441DA8B380425D7D8C9730B13663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:91:73:4c:b8:50:10:80:ad:b6:2e:0b:ea: 9d:b2:63:d5:ec:7f:81:f5:d5:42:b0:d5:b8:7c:8e: 2b:d6:d4:0c:0a:da:3a:16:a7:86:49:62:6b:c9:db: 83:a6:c3:30:e9:d0:eb:98:3b:be:9a:54:53:68:e9: 44:f5:7d:69:e2:56:bb:37:5e:d8:d5:74:ab:ba:24: 3d:e5:74:c5:14:07:9b:33:22:b7:f3:fc:73:6b:a0: 4f:22:cf:82:c5:3b:b0:f9:41:af:62:38:05:18:b6: 49:9b:7f:ad:70:74:5a:42:11:31:02:21:d4:67:60: 14:3a:17:d0:8e:4f:d7:bb:8e:61:6a:78:6f:d2:ad: 77:6d:7c:70:1b:76:64:65:ce:00:c0:28:1a:1f:be: 2e:dc:16:f1:ba:20:59:2a:3d:30:00:fc:eb:d7:67: c4:81:0e:04:47:29:a5:d0:af:1c:8e:1a:68:00:b0: 22:27:f9:e9:ca:23:14:21:4e:e8:cf:11:6e:ca:9f: b3:2b:2c:58:e8:c7:01:26:43:ed:30:2a:5d:73:d5: cb:0e:ed:8c:02:4f:7c:99:d8:66:ad:dd:77:3b:68: 30:ed:9d:d7:b4:5a:54:f8:f2:2b:b7:84:3b:da:fa: a2:11:21:7d:9e:b8:63:fa:e7:2c:4a:f2:21:f6:e8: 21:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:44:78:83:C3:35:44:1D:A8:B3:80:42:5D:7D:8C:97:30:B1:36:63 X509v3 Authority Key Identifier: keyid:7E:58:52:64:0A:CB:27:CE:4A:C4:66:E5:33:8B:30:E2:06:71:1D:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7E5852640ACB27CE4AC466E5338B30E206711DDD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.216.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:bb:91:9d:4e:ff:be:6a:16:47:ce:dc:79:f6:ec:2a:77:ee: 74:02:8d:c6:cd:a6:14:35:dd:87:da:26:18:92:40:c8:ac:22: 69:9b:ff:92:9f:38:99:df:45:2d:81:8a:c3:aa:b2:83:b8:8b: 85:9f:b2:34:b4:75:b5:48:7d:2a:92:e9:be:b1:c0:f2:41:71: d7:8b:42:3f:de:a6:cf:91:92:8e:06:a6:15:b5:ae:80:a0:6e: 87:e2:d5:8a:79:d6:fa:c3:fd:a4:d9:44:8d:6e:ac:ed:dc:35: 65:ad:9a:91:13:72:3d:27:a1:a1:d9:fe:91:b0:ae:1a:75:25: 9c:73:a1:6a:b9:25:bb:7b:1e:ef:3f:5c:44:42:78:31:a7:d5: ce:a4:7f:6d:7b:2b:27:b7:77:3f:96:6b:6b:64:5a:95:81:06: 23:3b:50:be:b0:87:47:c2:72:b4:7a:26:29:b3:ee:ba:d7:45: f9:ac:87:be:4e:79:62:bd:ad:99:91:0e:c0:7d:2b:0d:29:a8: 5a:6f:b6:af:1c:92:f8:15:ef:46:4e:b2:4e:e6:54:84:9e:f3: a6:78:5c:33:63:2e:7b:19:e0:02:66:c6:58:bf:ad:87:e7:9b: fa:35:05:4b:4d:3b:a9:17:3c:e6:b8:61:c0:ab:59:d5:8f:b3: 4f:f3:20:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHHp1/OtkRQq2lGROrIJM1f0xsQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U1ODUyNjQwQUNCMjdDRTRBQzQ2NkU1MzM4QjMwRTIw NjcxMURERDAeFw0yNjA1MDMwMjM0MjRaFw0yNzA1MDIwMjM5MjRaMDMxMTAvBgNV BAMTKEI5NDQ3ODgzQzMzNTQ0MURBOEIzODA0MjVEN0Q4Qzk3MzBCMTM2NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9b5FzTLhQEICtti4L6p2yY9Xs f4H11UKw1bh8jivW1AwK2joWp4ZJYmvJ24OmwzDp0OuYO76aVFNo6UT1fWniVrs3 XtjVdKu6JD3ldMUUB5szIrfz/HNroE8iz4LFO7D5Qa9iOAUYtkmbf61wdFpCETEC IdRnYBQ6F9COT9e7jmFqeG/SrXdtfHAbdmRlzgDAKBofvi7cFvG6IFkqPTAA/OvX Z8SBDgRHKaXQrxyOGmgAsCIn+enKIxQhTujPEW7Kn7MrLFjoxwEmQ+0wKl1z1csO 7YwCT3yZ2Gat3Xc7aDDtnde0WlT48iu3hDva+qIRIX2euGP65yxK8iH26CFhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuUR4g8M1RB2os4BCXX2MlzCxNmMwHwYDVR0j BBgwFoAUflhSZArLJ85KxGblM4sw4gZxHd0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjU0NjA3ZjAtMTcwMS00OWIxLTkxZmYtYjFiZWQ1Y2JkZWQxLzAvN0U1ODUyNjQw QUNCMjdDRTRBQzQ2NkU1MzM4QjMwRTIwNjcxMURERC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RTU4NTI2NDBBQ0IyN0NFNEFDNDY2RTUzMzhCMzBFMjA2NzEx RERELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY1NDYwN2YwLTE3MDEtNDliMS05 MWZmLWIxYmVkNWNiZGVkMS8wLzMxMzAzMzJlMzIzMjJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxbYMA0GCSqG SIb3DQEBCwUAA4IBAQCLu5GdTv++ahZHztx59uwqd+50Ao3GzaYUNd2H2iYYkkDI rCJpm/+SnziZ30UtgYrDqrKDuIuFn7I0tHW1SH0qkum+scDyQXHXi0I/3qbPkZKO BqYVta6AoG6H4tWKedb6w/2k2USNbqzt3DVlrZqRE3I9J6Gh2f6RsK4adSWcc6Fq uSW7ex7vP1xEQngxp9XOpH9teysnt3c/lmtrZFqVgQYjO1C+sIdHwnK0eiYps+66 10X5rIe+Tnliva2ZkQ7AfSsNKahab7avHJL4Fe9GTrJO5lSEnvOmeFwzYy57GeAC ZsZYv62H55v6NQVLTTupFzzmuGHAq1nVj7NP8yCm -----END CERTIFICATE-----Generated at Wed May 13 10:29:58 2026 by rpki-client