$ rpki-client -vvf rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa (raw, json) Hash identifier: eE9KfhHZMD39d40KbY7oSEFpRtTmkSjOZgjX7V3PP3E= Subject key identifier: 82:EC:4E:B1:5F:D1:47:E4:6A:E0:00:EE:A7:7B:1D:B8:7C:B4:D2:C0 Certificate issuer: /CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Certificate serial: 39A8D84439C3461D59A925A7A81D8FE318A3C1E6 Authority key identifier: 9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa Signing time: Sun 03 May 2026 02:42:38 +0000 ROA not before: Sun 03 May 2026 02:37:38 +0000 ROA not after: Sun 02 May 2027 02:42:38 +0000 asID: 140407 IP address blocks: 103.122.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a8:d8:44:39:c3:46:1d:59:a9:25:a7:a8:1d:8f:e3:18:a3:c1:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Validity Not Before: May 3 02:37:38 2026 GMT Not After : May 2 02:42:38 2027 GMT Subject: CN=82EC4EB15FD147E46AE000EEA77B1DB87CB4D2C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:20:e4:2a:a6:57:e5:4c:11:ae:77:bb:fa:62: 84:de:68:10:8b:fa:b2:53:54:69:c9:a4:86:0d:b7: a0:2a:70:15:ed:e0:c8:30:fa:53:d9:05:a6:e5:4e: 7d:7b:01:4f:ee:92:4b:fd:26:9c:1f:50:59:5b:68: 7f:ed:b6:b6:a6:0d:62:f6:dc:59:e5:32:9a:0c:2b: f2:d8:45:a1:2f:01:f0:ab:e5:da:d5:2f:2a:fe:d1: 8c:22:48:3e:c6:e4:89:d5:37:99:8c:a0:77:b1:40: 3a:90:54:ac:5e:11:57:ca:8a:0b:7f:af:a1:02:c4: 55:3d:89:8e:84:bf:dd:e1:96:28:c8:5e:d5:e2:7f: af:94:59:3c:9a:d8:01:c5:46:26:1b:0f:6a:8d:20: d4:b3:de:20:7b:18:d1:32:4a:a6:a7:93:14:e4:75: 35:24:f7:0c:19:51:8e:9a:6a:88:54:be:f3:f3:76: e5:10:0c:3e:af:b2:0a:32:18:e5:d0:08:93:c2:dc: 3c:ff:b2:54:71:90:f6:d2:cd:07:6a:db:d9:a4:79: 33:51:af:04:58:a7:71:46:44:4c:d0:f8:c4:f7:1b: e3:4d:76:49:1d:5b:ae:89:ab:4b:5b:4d:f8:82:a1: 59:43:cb:20:3a:28:61:aa:1b:91:72:e8:98:d0:e3: 71:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:EC:4E:B1:5F:D1:47:E4:6A:E0:00:EE:A7:7B:1D:B8:7C:B4:D2:C0 X509v3 Authority Key Identifier: keyid:9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:d5:08:f5:23:42:6e:25:74:02:3d:d4:3f:9c:22:9f:16:e2: c2:56:01:c7:44:4c:27:77:7b:9f:92:cc:cc:3a:6d:8c:ee:2b: eb:ac:20:4c:ec:0f:a3:7e:f8:9c:72:8b:dc:06:a1:ca:ac:68: af:b6:f8:37:22:99:ea:62:ad:49:2e:e3:ed:ac:94:93:5b:35: a3:82:b4:2a:23:54:b4:b1:51:be:3f:44:62:13:f6:69:9f:84: a7:23:41:7d:86:a6:54:f2:1e:0f:53:31:df:9f:d0:fb:ac:bb: 38:85:3f:06:69:99:3e:40:72:aa:5a:51:1e:11:34:a1:ad:2e: d3:19:1a:63:d7:2e:7d:fc:58:8c:bc:16:5f:95:58:5e:05:f6: 07:6f:5c:c0:57:81:58:fd:b7:f0:87:91:5b:f7:8e:60:0f:c0: 30:76:2d:ff:c8:77:7d:89:34:7e:3d:ef:10:a3:eb:3b:d4:c3: aa:9c:62:32:67:5b:ef:32:0e:e3:0c:d7:af:81:77:e0:91:4f: de:fd:17:52:85:8e:64:a2:4a:ca:fc:fa:c9:a8:61:1d:02:b3: e4:a5:e0:6d:bd:92:9a:a4:6c:b7:47:78:63:36:a6:69:fd:9c: bb:21:18:dd:94:5e:81:80:1f:d1:9b:e9:a9:0e:4b:27:41:f8: 13:d2:45:77 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOajYRDnDRh1ZqSWnqB2P4xijweYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYyRDQ3QzI3QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5 RjJCMUZCRDAeFw0yNjA1MDMwMjM3MzhaFw0yNzA1MDIwMjQyMzhaMDMxMTAvBgNV BAMTKDgyRUM0RUIxNUZEMTQ3RTQ2QUUwMDBFRUE3N0IxREI4N0NCNEQyQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjIOQqplflTBGud7v6YoTeaBCL +rJTVGnJpIYNt6AqcBXt4Mgw+lPZBablTn17AU/ukkv9JpwfUFlbaH/ttramDWL2 3FnlMpoMK/LYRaEvAfCr5drVLyr+0YwiSD7G5InVN5mMoHexQDqQVKxeEVfKigt/ r6ECxFU9iY6Ev93hlijIXtXif6+UWTya2AHFRiYbD2qNINSz3iB7GNEySqankxTk dTUk9wwZUY6aaohUvvPzduUQDD6vsgoyGOXQCJPC3Dz/slRxkPbSzQdq29mkeTNR rwRYp3FGREzQ+MT3G+NNdkkdW66Jq0tbTfiCoVlDyyA6KGGqG5Fy6JjQ43HxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUguxOsV/RR+Rq4ADup3sduHy00sAwHwYDVR0j BBgwFoAUny1HwnoEZmR8mo+vJGrIWp8rH70wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzIyOTc4MWEtOGFjOS00NDUyLWIyNWYtNTRlN2VkZjdkNGE0LzAvOUYyRDQ3QzI3 QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5RjJCMUZCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RjJENDdDMjdBMDQ2NjY0N0M5QThGQUYyNDZBQzg1QTlGMkIx RkJELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnepgwDQYJ KoZIhvcNAQELBQADggEBAEvVCPUjQm4ldAI91D+cIp8W4sJWAcdETCd3e5+SzMw6 bYzuK+usIEzsD6N++Jxyi9wGocqsaK+2+DcimepirUku4+2slJNbNaOCtCojVLSx Ub4/RGIT9mmfhKcjQX2GplTyHg9TMd+f0PusuziFPwZpmT5AcqpaUR4RNKGtLtMZ GmPXLn38WIy8Fl+VWF4F9gdvXMBXgVj9t/CHkVv3jmAPwDB2Lf/Id32JNH497xCj 6zvUw6qcYjJnW+8yDuMM16+Bd+CRT979F1KFjmSiSsr8+smoYR0Cs+Sl4G29kpqk bLdHeGM2pmn9nLshGN2UXoGAH9Gb6akOSydB+BPSRXc= -----END CERTIFICATE-----Generated at Wed May 13 09:17:50 2026 by rpki-client