$ rpki-client -vvf rpki-rsync.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa File: 3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: tb79wAUMyUmfRc6qR3g5nMJGZjZzsgDDiwuLvNDnRQA= Subject key identifier: 24:0D:09:CA:81:CD:8A:AD:77:81:16:0B:7C:40:08:EE:8B:A8:2A:4C Certificate issuer: /CN=101B41766786F11711DBC574AEB99665E513B990 Certificate serial: 538FE8E642404E306DA38E7207F9A3F4A9440DF3 Authority key identifier: 10:1B:41:76:67:86:F1:17:11:DB:C5:74:AE:B9:96:65:E5:13:B9:90 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/101B41766786F11711DBC574AEB99665E513B990.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa Signing time: Sun 03 May 2026 02:41:00 +0000 ROA not before: Sun 03 May 2026 02:36:00 +0000 ROA not after: Sun 02 May 2027 02:41:00 +0000 asID: 139456 IP address blocks: 103.185.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/101B41766786F11711DBC574AEB99665E513B990.crl rsync://rpki-rsync.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/101B41766786F11711DBC574AEB99665E513B990.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/101B41766786F11711DBC574AEB99665E513B990.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:8f:e8:e6:42:40:4e:30:6d:a3:8e:72:07:f9:a3:f4:a9:44:0d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=101B41766786F11711DBC574AEB99665E513B990 Validity Not Before: May 3 02:36:00 2026 GMT Not After : May 2 02:41:00 2027 GMT Subject: CN=240D09CA81CD8AAD7781160B7C4008EE8BA82A4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:19:65:b0:39:2a:d1:69:5c:52:04:d7:ea:ff: c9:20:91:22:0f:d5:82:81:34:41:f9:10:55:78:72: 97:b2:45:d6:26:11:b2:78:9a:fc:23:2e:d0:21:19: 31:63:91:2e:5e:f6:46:96:2a:02:77:92:bb:c6:77: d6:33:e2:b1:a9:ff:e7:c0:c7:c0:b9:85:ed:a7:c7: fd:5a:b8:d5:44:75:8f:1c:21:c4:a6:11:ce:35:80: 07:7c:5f:87:79:b7:e4:fb:57:6a:99:c1:0c:cf:b1: 1c:5b:86:b6:ea:41:96:b7:8a:38:39:b9:11:96:29: 6d:83:f4:7b:8b:5a:3b:7d:a8:5a:a0:61:50:ac:7f: 8b:1a:bc:5d:15:2c:79:bf:bc:7c:4d:64:3b:3c:96: d2:a0:e6:05:fb:ae:ea:e9:aa:b6:eb:98:12:88:f7: ba:9a:57:02:e1:48:da:ef:66:4e:e8:05:34:24:a7: 96:73:d0:ff:34:78:21:68:65:d1:67:13:e0:0a:dc: 23:62:ec:c7:a3:a3:3e:ae:a6:01:b1:30:e0:1f:16: 04:ce:cd:b2:1a:8c:75:1d:74:e7:37:71:3a:6f:07: db:79:18:04:79:32:f1:13:fc:65:2e:d4:51:9a:9a: 34:6f:b5:4d:20:b6:5d:8d:3e:34:3f:a8:c9:21:f9: ae:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0D:09:CA:81:CD:8A:AD:77:81:16:0B:7C:40:08:EE:8B:A8:2A:4C X509v3 Authority Key Identifier: keyid:10:1B:41:76:67:86:F1:17:11:DB:C5:74:AE:B9:96:65:E5:13:B9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/101B41766786F11711DBC574AEB99665E513B990.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/101B41766786F11711DBC574AEB99665E513B990.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.52.0/23 Signature Algorithm: sha256WithRSAEncryption 03:99:f4:14:29:42:32:96:73:d3:9f:7d:43:ec:42:61:aa:90: 1f:36:ff:3c:d1:a5:de:b2:68:4b:d1:95:f6:30:e1:d8:76:83: 2e:a0:f5:3d:5e:d1:f0:e5:11:9f:10:74:26:4a:2a:8c:26:8f: e2:59:13:f2:88:e4:f6:0d:a1:dd:e6:9d:0e:c7:87:ef:ed:ea: 13:5a:6b:ca:08:b9:1f:d8:be:ee:13:8f:57:5f:94:88:f0:9b: 47:6b:92:c1:7e:c8:4d:99:f1:eb:27:49:c1:8d:01:8f:00:84: 3d:69:67:08:ad:cf:ca:0c:7a:7e:21:1f:52:98:79:33:6f:e1: 8e:43:e0:8e:ee:a9:f9:c1:69:c6:84:ff:53:1b:05:4e:db:8b: 73:77:49:f5:e4:29:46:a2:73:f3:59:dc:65:e4:ff:1c:66:c6: de:e3:b1:11:7d:f7:4c:f0:a2:b0:dc:25:99:e5:71:81:f0:7b: 9b:ff:8e:22:df:fe:27:3e:5b:fe:9c:fc:89:8a:f1:ad:79:95: 6b:7f:11:03:85:20:e5:9c:ab:c2:be:b4:50:ea:ef:12:20:7a: f3:1d:64:0d:cb:55:90:ca:be:3e:61:a2:b6:2a:22:ef:da:95: b1:e8:77:2e:bb:a2:d1:9c:e2:59:ac:c5:63:a8:5a:7d:a8:81: 50:32:b9:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU4/o5kJATjBto45yB/mj9KlEDfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAxQjQxNzY2Nzg2RjExNzExREJDNTc0QUVCOTk2NjVF NTEzQjk5MDAeFw0yNjA1MDMwMjM2MDBaFw0yNzA1MDIwMjQxMDBaMDMxMTAvBgNV BAMTKDI0MEQwOUNBODFDRDhBQUQ3NzgxMTYwQjdDNDAwOEVFOEJBODJBNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBGWWwOSrRaVxSBNfq/8kgkSIP 1YKBNEH5EFV4cpeyRdYmEbJ4mvwjLtAhGTFjkS5e9kaWKgJ3krvGd9Yz4rGp/+fA x8C5he2nx/1auNVEdY8cIcSmEc41gAd8X4d5t+T7V2qZwQzPsRxbhrbqQZa3ijg5 uRGWKW2D9HuLWjt9qFqgYVCsf4savF0VLHm/vHxNZDs8ltKg5gX7rurpqrbrmBKI 97qaVwLhSNrvZk7oBTQkp5Zz0P80eCFoZdFnE+AK3CNi7Mejoz6upgGxMOAfFgTO zbIajHUddOc3cTpvB9t5GAR5MvET/GUu1FGamjRvtU0gtl2NPjQ/qMkh+a4vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJA0JyoHNiq13gRYLfEAI7ouoKkwwHwYDVR0j BBgwFoAUEBtBdmeG8RcR28V0rrmWZeUTuZAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmM0NTc0ZTItM2I5NC00MTYwLThlYjgtOGYwOWFhZDgyYzJjLzAvMTAxQjQxNzY2 Nzg2RjExNzExREJDNTc0QUVCOTk2NjVFNTEzQjk5MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDFCNDE3NjY3ODZGMTE3MTFEQkM1NzRBRUI5OTY2NUU1MTNC OTkwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZjNDU3NGUyLTNiOTQtNDE2MC04 ZWI4LThmMDlhYWQ4MmMyYy8wLzMxMzAzMzJlMzEzODM1MmUzNTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7k0MA0GCSqG SIb3DQEBCwUAA4IBAQADmfQUKUIylnPTn31D7EJhqpAfNv880aXesmhL0ZX2MOHY doMuoPU9XtHw5RGfEHQmSiqMJo/iWRPyiOT2DaHd5p0Ox4fv7eoTWmvKCLkf2L7u E49XX5SI8JtHa5LBfshNmfHrJ0nBjQGPAIQ9aWcIrc/KDHp+IR9SmHkzb+GOQ+CO 7qn5wWnGhP9TGwVO24tzd0n15ClGonPzWdxl5P8cZsbe47ERffdM8KKw3CWZ5XGB 8Hub/44i3/4nPlv+nPyJivGteZVrfxEDhSDlnKvCvrRQ6u8SIHrzHWQNy1WQyr4+ YaK2KiLv2pWx6Hcuu6LRnOJZrMVjqFp9qIFQMrm/ -----END CERTIFICATE-----Generated at Wed May 13 08:24:20 2026 by rpki-client