$ rpki-client -vvf rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa File: 3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: 97HN/1c+8Hrc2pb/g0tPOiNTWcjkEdKOrzmx5piyFis= Subject key identifier: 91:54:25:C4:9D:C1:FD:26:04:A0:2C:7D:3C:8C:33:97:18:5F:15:04 Certificate issuer: /CN=DF6A987E2F9BF104B9938911E8F83F4C51C5A74D Certificate serial: 27FB689974A1B0D408A58F8B2C33F1924FC5A1D6 Authority key identifier: DF:6A:98:7E:2F:9B:F1:04:B9:93:89:11:E8:F8:3F:4C:51:C5:A7:4D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa Signing time: Sun 03 May 2026 02:42:25 +0000 ROA not before: Sun 03 May 2026 02:37:25 +0000 ROA not after: Sun 02 May 2027 02:42:25 +0000 asID: 4787 IP address blocks: 103.148.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.crl rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:fb:68:99:74:a1:b0:d4:08:a5:8f:8b:2c:33:f1:92:4f:c5:a1:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF6A987E2F9BF104B9938911E8F83F4C51C5A74D Validity Not Before: May 3 02:37:25 2026 GMT Not After : May 2 02:42:25 2027 GMT Subject: CN=915425C49DC1FD2604A02C7D3C8C3397185F1504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:17:a2:94:0a:9c:dd:45:a4:ee:e4:1a:be: 8b:44:b9:bb:97:25:71:89:59:a3:16:88:69:a6:05: f4:ca:03:a0:11:25:08:19:e1:bc:5c:61:f6:bb:24: 9e:67:ca:dd:98:e3:97:4f:20:76:bf:1e:d3:d2:33: 2d:71:41:57:92:ec:dd:de:6a:46:1c:2d:99:63:b3: 5e:22:97:1a:01:d9:77:40:e0:56:d5:e1:01:47:8d: 65:8d:a9:40:0b:87:2f:23:31:10:ea:22:49:2e:a0: 4c:92:42:04:dc:b3:79:40:59:23:4d:6f:5f:09:34: e2:8c:6d:86:46:6c:cd:b6:a1:3d:00:7d:ae:79:f7: bb:e4:6b:ab:31:48:15:09:d4:4a:5b:dc:fa:2a:72: 09:50:28:6a:10:35:c6:e3:1e:f7:3d:38:fd:33:6e: 48:85:76:bd:e8:ce:a1:eb:2c:ac:fb:1d:9c:eb:07: e2:47:c1:de:38:0d:0c:67:dd:e2:58:c5:e8:33:30: 70:ea:45:ae:ab:8d:e0:4c:b2:fb:4d:83:0d:7e:94: f4:d7:36:b3:97:62:e2:40:03:00:44:e3:de:80:be: 25:25:b3:b8:3c:22:f7:f5:4c:e8:d3:ba:46:2c:d8: b6:00:d4:99:03:ad:41:10:74:2c:fd:64:f9:bc:96: fd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:54:25:C4:9D:C1:FD:26:04:A0:2C:7D:3C:8C:33:97:18:5F:15:04 X509v3 Authority Key Identifier: keyid:DF:6A:98:7E:2F:9B:F1:04:B9:93:89:11:E8:F8:3F:4C:51:C5:A7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/24 Signature Algorithm: sha256WithRSAEncryption 48:41:fd:39:11:89:76:08:30:a3:3d:29:c1:ee:a6:6c:cb:c7: 7e:49:5e:fe:ac:fa:10:a1:ab:85:11:fb:23:c7:dd:ca:2f:d1: 40:b5:8f:61:98:4d:16:e9:05:5e:a2:3e:e8:10:e2:95:0b:ec: c8:a7:36:f3:a8:e8:61:64:96:50:91:1f:ea:7e:0c:3c:35:ac: 1f:93:f1:af:d6:20:74:f1:a2:82:4e:7a:94:3b:6a:bb:4e:bc: ba:39:a4:b4:d2:df:0e:b1:a4:f7:fe:7a:93:90:15:1a:c6:f3: be:fc:23:85:1c:00:51:be:6f:b6:9e:42:d9:c3:cb:4b:08:98: f9:56:b5:9d:f6:45:93:c9:2c:0b:d3:9b:7b:e3:dc:8f:55:f4: 45:ff:77:9e:f4:8c:b9:3d:b4:8a:fd:cc:7c:0f:11:e5:28:7d: 6f:c6:1c:ed:b1:a4:75:a1:50:f1:b9:0d:05:81:e2:52:24:b2: 4d:79:75:7f:9f:d4:1b:0e:e2:65:b2:ea:6e:5f:1a:a1:2b:e5: d6:21:a3:64:32:99:99:3a:9e:9a:f2:d4:41:e8:81:3c:bf:2b: 08:01:71:84:b3:e0:7e:8b:95:d1:22:a4:58:00:40:60:2a:51: 9d:33:f3:6b:51:e7:86:d9:5f:63:09:78:08:38:11:8c:5e:fb: 5e:b4:94:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ/tomXShsNQIpY+LLDPxkk/FodYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY2QTk4N0UyRjlCRjEwNEI5OTM4OTExRThGODNGNEM1 MUM1QTc0RDAeFw0yNjA1MDMwMjM3MjVaFw0yNzA1MDIwMjQyMjVaMDMxMTAvBgNV BAMTKDkxNTQyNUM0OURDMUZEMjYwNEEwMkM3RDNDOEMzMzk3MTg1RjE1MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzTheilAqc3UWk7uQavotEubuX JXGJWaMWiGmmBfTKA6ARJQgZ4bxcYfa7JJ5nyt2Y45dPIHa/HtPSMy1xQVeS7N3e akYcLZljs14ilxoB2XdA4FbV4QFHjWWNqUALhy8jMRDqIkkuoEySQgTcs3lAWSNN b18JNOKMbYZGbM22oT0Afa5597vka6sxSBUJ1Epb3PoqcglQKGoQNcbjHvc9OP0z bkiFdr3ozqHrLKz7HZzrB+JHwd44DQxn3eJYxegzMHDqRa6rjeBMsvtNgw1+lPTX NrOXYuJAAwBE496AviUls7g8Ivf1TOjTukYs2LYA1JkDrUEQdCz9ZPm8lv3LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkVQlxJ3B/SYEoCx9PIwzlxhfFQQwHwYDVR0j BBgwFoAU32qYfi+b8QS5k4kR6Pg/TFHFp00wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzBjMmExM2ItMWY0MC00YzAzLWJjMzUtZjY5NjE1MTZkNGQ5LzAvREY2QTk4N0Uy RjlCRjEwNEI5OTM4OTExRThGODNGNEM1MUM1QTc0RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERjZBOTg3RTJGOUJGMTA0Qjk5Mzg5MTFFOEY4M0Y0QzUxQzVB NzRELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeUxjANBgkqhkiG 9w0BAQsFAAOCAQEASEH9ORGJdggwoz0pwe6mbMvHfkle/qz6EKGrhRH7I8fdyi/R QLWPYZhNFukFXqI+6BDilQvsyKc286joYWSWUJEf6n4MPDWsH5Pxr9YgdPGigk56 lDtqu068ujmktNLfDrGk9/56k5AVGsbzvvwjhRwAUb5vtp5C2cPLSwiY+Va1nfZF k8ksC9Obe+Pcj1X0Rf93nvSMuT20iv3MfA8R5Sh9b8Yc7bGkdaFQ8bkNBYHiUiSy TXl1f5/UGw7iZbLqbl8aoSvl1iGjZDKZmTqemvLUQeiBPL8rCAFxhLPgfouV0SKk WABAYCpRnTPza1HnhtlfYwl4CDgRjF77XrSUfg== -----END CERTIFICATE-----Generated at Wed May 13 13:27:22 2026 by rpki-client