$ rpki-client -vvf rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e31392e38312e302f32342d3234203d3e20313332363339.roa File: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (raw, json) Hash identifier: K3q/Ez2ylWAHvKZbfEY9nE0ATvil8bcfxJnHQI/5nNA= Subject key identifier: 59:F0:E5:C5:BA:AE:6D:8C:70:51:7A:92:50:55:41:6D:AF:D5:CC:A4 Certificate issuer: /CN=25F44906F292384CC9F1BE632798B911BD52EB7E Certificate serial: 657389B33F488F0D6503750953214E7C54FC265B Authority key identifier: 25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e31392e38312e302f32342d3234203d3e20313332363339.roa Signing time: Sun 03 May 2026 02:40:50 +0000 ROA not before: Sun 03 May 2026 02:35:50 +0000 ROA not after: Sun 02 May 2027 02:40:50 +0000 asID: 132639 IP address blocks: 103.19.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:73:89:b3:3f:48:8f:0d:65:03:75:09:53:21:4e:7c:54:fc:26:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F44906F292384CC9F1BE632798B911BD52EB7E Validity Not Before: May 3 02:35:50 2026 GMT Not After : May 2 02:40:50 2027 GMT Subject: CN=59F0E5C5BAAE6D8C70517A925055416DAFD5CCA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7e:05:3b:01:4b:a6:70:9a:37:81:46:e7:45: c3:bc:3e:e9:ea:7a:ed:d8:cc:d9:fc:de:8c:12:8c: de:46:51:78:41:6c:0e:e6:4a:f9:45:95:b1:4a:6b: a6:bb:2c:b7:87:27:a4:3b:63:c0:36:e6:d6:5f:6b: 69:7c:39:fc:bc:53:24:57:78:41:b5:e7:9e:45:5b: 46:a1:76:a6:87:ca:76:80:98:ce:8d:21:08:d2:14: e8:7c:67:36:47:ad:69:78:cd:a5:df:de:12:73:db: f6:e8:ff:fa:98:8c:1a:8d:54:a6:92:2d:b2:a1:93: 7e:69:14:34:37:e2:88:5e:78:04:84:88:a8:f0:46: bc:a2:5c:2d:df:5c:a2:a4:9d:15:27:50:9b:f9:19: 72:06:90:15:87:fe:6c:c5:fa:f3:c6:44:6f:57:e9: 20:b2:65:f2:e5:31:96:0e:a8:33:c4:7e:f8:c4:70: e0:da:a0:96:e1:6d:75:99:fb:cd:7c:42:bb:a4:cd: ab:74:ac:c7:75:5e:14:e1:7f:92:b8:6e:ad:e4:35: 4a:be:21:e2:af:7f:bb:9e:54:83:0c:40:4c:4e:29: a4:be:58:ae:0f:38:06:a9:15:c0:da:07:ab:46:d2: 77:ca:27:28:89:01:78:79:31:3d:10:42:46:bd:e9: 7c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F0:E5:C5:BA:AE:6D:8C:70:51:7A:92:50:55:41:6D:AF:D5:CC:A4 X509v3 Authority Key Identifier: keyid:25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e31392e38312e302f32342d3234203d3e20313332363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.81.0/24 Signature Algorithm: sha256WithRSAEncryption 46:41:98:0c:0a:15:ef:28:22:a1:68:cd:88:63:dd:a8:56:05: 86:89:ab:54:ee:90:aa:90:f8:20:4e:37:c4:6c:bd:87:a7:91: 04:f5:73:85:59:24:71:a2:8c:17:dd:8b:9f:07:b9:f2:51:2e: 93:bd:05:f7:c0:58:85:4f:70:a1:ec:70:eb:2e:b3:cd:89:d2: fe:a6:1c:81:8c:f6:19:ed:65:9d:3b:1e:5d:c5:31:df:20:df: 65:f3:5c:8e:f3:3c:0e:8b:5e:c6:e5:2f:3e:9f:c3:86:17:b1: cf:cb:b9:99:39:66:10:af:54:3b:f7:75:64:bc:5c:3e:86:3c: 17:08:34:95:2e:d3:2c:34:9e:a7:ef:56:e4:30:99:6a:34:06: 8c:89:a9:7e:74:31:1a:6e:8c:38:11:f5:dd:9a:29:d9:a3:f5: ae:95:bf:2d:d9:71:a1:32:62:3e:6a:b7:d2:fe:fd:25:9b:60: 9e:4e:10:63:8f:94:fe:1b:11:18:65:c9:99:e5:8f:0d:96:81: 5e:36:af:25:73:01:8a:49:d3:99:34:e6:32:d6:49:2a:aa:59: 36:a1:30:62:07:c9:c8:a6:e2:d5:22:ea:03:9a:cb:48:4f:9a: 1c:dd:0b:4d:63:99:5c:c6:90:76:07:7c:3c:fe:43:32:b0:dd: 51:59:0d:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZXOJsz9Ijw1lA3UJUyFOfFT8JlswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDQ5MDZGMjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFC RDUyRUI3RTAeFw0yNjA1MDMwMjM1NTBaFw0yNzA1MDIwMjQwNTBaMDMxMTAvBgNV BAMTKDU5RjBFNUM1QkFBRTZEOEM3MDUxN0E5MjUwNTU0MTZEQUZENUNDQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFfgU7AUumcJo3gUbnRcO8Punq eu3YzNn83owSjN5GUXhBbA7mSvlFlbFKa6a7LLeHJ6Q7Y8A25tZfa2l8Ofy8UyRX eEG1555FW0ahdqaHynaAmM6NIQjSFOh8ZzZHrWl4zaXf3hJz2/bo//qYjBqNVKaS LbKhk35pFDQ34oheeASEiKjwRryiXC3fXKKknRUnUJv5GXIGkBWH/mzF+vPGRG9X 6SCyZfLlMZYOqDPEfvjEcODaoJbhbXWZ+818Qrukzat0rMd1XhThf5K4bq3kNUq+ IeKvf7ueVIMMQExOKaS+WK4POAapFcDaB6tG0nfKJyiJAXh5MT0QQka96Xx5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWfDlxbqubYxwUXqSUFVBba/VzKQwHwYDVR0j BBgwFoAUJfRJBvKSOEzJ8b5jJ5i5Eb1S634wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmFhNDI3NDItODlkMi00OWJiLThhM2UtMjk0YzM2ODk3MWY1LzAvMjVGNDQ5MDZG MjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFCRDUyRUI3RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNUY0NDkwNkYyOTIzODRDQzlGMUJFNjMyNzk4QjkxMUJENTJF QjdFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZhYTQyNzQyLTg5ZDItNDliYi04 YTNlLTI5NGMzNjg5NzFmNS8wLzMxMzAzMzJlMzEzOTJlMzgzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTUTANBgkqhkiG 9w0BAQsFAAOCAQEARkGYDAoV7ygioWjNiGPdqFYFhomrVO6QqpD4IE43xGy9h6eR BPVzhVkkcaKMF92Lnwe58lEuk70F98BYhU9woexw6y6zzYnS/qYcgYz2Ge1lnTse XcUx3yDfZfNcjvM8DotexuUvPp/Dhhexz8u5mTlmEK9UO/d1ZLxcPoY8Fwg0lS7T LDSep+9W5DCZajQGjImpfnQxGm6MOBH13Zop2aP1rpW/LdlxoTJiPmq30v79JZtg nk4QY4+U/hsRGGXJmeWPDZaBXjavJXMBiknTmTTmMtZJKqpZNqEwYgfJyKbi1SLq A5rLSE+aHN0LTWOZXMaQdgd8PP5DMrDdUVkNXw== -----END CERTIFICATE-----Generated at Wed May 13 03:47:37 2026 by rpki-client