$ rpki-client -vvf rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa File: 3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa (raw, json) Hash identifier: 9NfA+UigkaeRrDOYfR/pW+xu+btdeunFAYc1t2/cwBA= Subject key identifier: C8:BB:9A:42:39:90:32:D5:5E:43:CD:E2:9C:E9:F2:20:5B:DF:5E:7C Certificate issuer: /CN=7AE9491DE111DAFB09BAC86C9777FC44A7E8D941 Certificate serial: 0FB9D03DC3861BD9BB6A442B00CAD32DCF59463D Authority key identifier: 7A:E9:49:1D:E1:11:DA:FB:09:BA:C8:6C:97:77:FC:44:A7:E8:D9:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa Signing time: Sun 03 May 2026 02:40:11 +0000 ROA not before: Sun 03 May 2026 02:35:11 +0000 ROA not after: Sun 02 May 2027 02:40:11 +0000 asID: 140442 IP address blocks: 103.152.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.crl rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b9:d0:3d:c3:86:1b:d9:bb:6a:44:2b:00:ca:d3:2d:cf:59:46:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7AE9491DE111DAFB09BAC86C9777FC44A7E8D941 Validity Not Before: May 3 02:35:11 2026 GMT Not After : May 2 02:40:11 2027 GMT Subject: CN=C8BB9A42399032D55E43CDE29CE9F2205BDF5E7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:31:a3:3f:f4:f8:19:c6:0c:b6:47:21:aa:8b: 1b:1a:9e:39:70:0e:0c:14:08:c6:c1:39:d7:b8:59: 79:db:95:c0:69:41:88:42:ce:90:4d:cf:67:b5:2f: 93:73:44:dd:06:0f:8d:f8:02:73:ba:11:ba:a5:bf: 2a:33:18:3c:29:bb:80:78:7e:fd:29:c1:e8:a8:9c: f9:b2:88:fb:15:1f:4b:95:a0:51:5c:be:28:1d:9d: be:10:0c:c1:df:f3:15:99:b2:5c:30:59:b2:1c:c7: 8d:d1:6d:86:0f:19:5a:e0:85:da:4a:0e:5d:5f:29: 09:2d:23:d6:87:7d:d6:f1:d5:f0:32:3e:0f:28:94: 15:c6:5b:4e:2a:1a:ad:db:8f:80:ef:ba:3a:84:63: 6d:fc:ad:41:1f:40:fd:b5:b5:89:44:1b:01:1a:3c: c5:4f:5a:62:02:2c:75:84:74:d2:07:95:4f:a7:95: 64:1e:0e:fb:c7:26:ca:c1:90:35:a8:ff:0b:96:59: 4a:7a:6e:47:c3:af:48:9c:4f:25:50:0a:5a:de:40: 29:cb:0e:2c:4b:e4:41:c0:7d:27:8d:44:69:c3:ba: dd:32:76:ac:42:61:2d:7d:4f:8d:9c:f9:34:6d:3e: dc:92:82:cc:48:d7:54:24:22:3b:82:a7:ab:73:d6: 57:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BB:9A:42:39:90:32:D5:5E:43:CD:E2:9C:E9:F2:20:5B:DF:5E:7C X509v3 Authority Key Identifier: keyid:7A:E9:49:1D:E1:11:DA:FB:09:BA:C8:6C:97:77:FC:44:A7:E8:D9:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.72.0/23 Signature Algorithm: sha256WithRSAEncryption 29:57:49:0e:ba:a1:9a:89:98:40:2a:97:54:6d:38:4d:a6:18: 34:e2:02:d1:2b:f3:ee:c7:18:6d:e8:dd:a3:71:33:a5:bb:23: 89:60:61:95:96:05:78:8f:44:38:22:03:4d:47:11:dd:10:69: f7:b4:3a:8a:d3:02:14:29:ef:09:8a:59:35:45:2e:fb:d5:69: 74:87:fb:74:8a:4f:59:53:29:c1:c4:aa:92:96:2d:58:39:67: 0d:1a:3b:d7:85:3c:fd:48:d6:1a:7b:94:7a:89:d7:f3:2d:0d: 52:ac:1c:07:54:37:e4:b2:4c:21:4a:48:9e:06:26:67:05:6a: f1:05:95:73:66:8b:07:83:5f:c8:2e:07:74:a2:09:82:da:00: fe:f3:2e:92:fd:52:2a:a5:3e:fd:11:75:af:d2:42:e5:3c:4b: 70:9e:95:d4:57:82:03:d3:4d:58:55:90:99:3e:90:79:a5:00: 10:df:df:a5:07:e7:db:e6:01:ab:bd:07:32:b1:b5:56:75:15: 03:ed:cc:80:6b:4c:f8:94:83:38:d0:85:37:00:7c:d0:b2:96: d8:30:9f:26:a8:1f:11:4e:9e:de:5f:49:ca:d7:0f:a8:55:72: cc:5e:0f:df:43:54:f9:9e:55:85:0f:0b:88:00:39:e7:8d:8d: 3f:7a:d6:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD7nQPcOGG9m7akQrAMrTLc9ZRj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0FFOTQ5MURFMTExREFGQjA5QkFDODZDOTc3N0ZDNDRB N0U4RDk0MTAeFw0yNjA1MDMwMjM1MTFaFw0yNzA1MDIwMjQwMTFaMDMxMTAvBgNV BAMTKEM4QkI5QTQyMzk5MDMyRDU1RTQzQ0RFMjlDRTlGMjIwNUJERjVFN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3MaM/9PgZxgy2RyGqixsanjlw DgwUCMbBOde4WXnblcBpQYhCzpBNz2e1L5NzRN0GD434AnO6EbqlvyozGDwpu4B4 fv0pweionPmyiPsVH0uVoFFcvigdnb4QDMHf8xWZslwwWbIcx43RbYYPGVrghdpK Dl1fKQktI9aHfdbx1fAyPg8olBXGW04qGq3bj4DvujqEY238rUEfQP21tYlEGwEa PMVPWmICLHWEdNIHlU+nlWQeDvvHJsrBkDWo/wuWWUp6bkfDr0icTyVQClreQCnL DixL5EHAfSeNRGnDut0ydqxCYS19T42c+TRtPtySgsxI11QkIjuCp6tz1lefAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyLuaQjmQMtVeQ83inOnyIFvfXnwwHwYDVR0j BBgwFoAUeulJHeER2vsJushsl3f8RKfo2UEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjcyOGM3N2ItMjEwMC00ZjJhLTkwZDktMDhjNTNlODQxZTFiLzAvN0FFOTQ5MURF MTExREFGQjA5QkFDODZDOTc3N0ZDNDRBN0U4RDk0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83QUU5NDkxREUxMTFEQUZCMDlCQUM4NkM5Nzc3RkM0NEE3RThE OTQxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMxMzAzMzJlMzEzNTMyMmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5hIMA0GCSqG SIb3DQEBCwUAA4IBAQApV0kOuqGaiZhAKpdUbThNphg04gLRK/Puxxht6N2jcTOl uyOJYGGVlgV4j0Q4IgNNRxHdEGn3tDqK0wIUKe8Jilk1RS771Wl0h/t0ik9ZUynB xKqSli1YOWcNGjvXhTz9SNYae5R6idfzLQ1SrBwHVDfkskwhSkieBiZnBWrxBZVz ZosHg1/ILgd0ogmC2gD+8y6S/VIqpT79EXWv0kLlPEtwnpXUV4ID001YVZCZPpB5 pQAQ39+lB+fb5gGrvQcysbVWdRUD7cyAa0z4lIM40IU3AHzQspbYMJ8mqB8RTp7e X0nK1w+oVXLMXg/fQ1T5nlWFDwuIADnnjY0/etbe -----END CERTIFICATE-----Generated at Wed May 13 05:36:10 2026 by rpki-client