$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa File: 3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa (raw, json) Hash identifier: kX944U5wcZ4ljeI4U/N/cddY4+l6BlmIxGXHq+0AWLc= Subject key identifier: 7E:55:54:1B:7F:95:47:2F:B9:19:64:F8:58:6C:36:18:7A:09:EF:9A Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 08665025243A08C0F9404972840BC74D44BCCCB0 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:02 +0000 ROA not before: Sun 03 May 2026 02:38:02 +0000 ROA not after: Sun 02 May 2027 02:43:02 +0000 asID: 136088 IP address blocks: 103.87.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:66:50:25:24:3a:08:c0:f9:40:49:72:84:0b:c7:4d:44:bc:cc:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:02 2026 GMT Not After : May 2 02:43:02 2027 GMT Subject: CN=7E55541B7F95472FB91964F8586C36187A09EF9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:df:dd:18:20:90:4e:3e:bf:80:3d:7d:17:d1: d4:32:ae:77:fb:29:87:82:62:61:20:b1:f0:40:ee: 6d:c5:b1:b7:e8:5c:b6:ad:c1:f0:2a:35:63:8d:32: 17:7c:89:62:f5:a2:0e:04:97:93:6e:ae:03:e0:ac: ae:d8:9e:ef:11:b0:97:89:a8:ba:c2:8f:3d:86:3a: f8:9f:72:01:c7:83:64:65:3e:b7:f2:bc:3c:c6:e6: 8c:0b:2b:b6:a2:39:33:ea:3b:2e:46:1b:60:8f:bc: 6a:8a:2f:e7:e9:ef:9d:78:de:c4:f1:1d:bf:38:2e: 1b:87:d3:c4:9f:4d:dc:3e:88:b5:ad:b2:8b:70:5f: e8:0d:cb:4c:e4:36:e4:93:85:c7:eb:ef:f0:6e:4c: 77:cf:c7:04:13:4c:0b:36:96:a3:d8:67:a0:65:6e: 63:e7:73:95:13:db:b9:11:69:08:eb:51:ec:3a:8a: 72:d2:59:bc:1a:fd:1e:4d:21:68:5e:16:53:88:dd: 9d:02:d1:c6:b2:b2:47:0e:c4:c3:1a:d6:83:c7:81: d0:06:35:b1:4f:12:00:f1:a4:1f:b9:84:93:96:e4: 65:2a:7a:d0:d0:05:7d:5f:1f:bd:cb:c4:b7:b6:d8: 72:b6:da:b8:a2:8c:3e:31:b1:91:d5:d6:c2:31:a1: b9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:55:54:1B:7F:95:47:2F:B9:19:64:F8:58:6C:36:18:7A:09:EF:9A X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.228.0/24 Signature Algorithm: sha256WithRSAEncryption 43:cd:f5:fe:fa:a1:18:03:89:55:94:05:8e:c4:23:b4:db:8e: 63:64:a5:29:9b:95:55:24:fa:56:61:67:60:ec:55:ee:90:35: 09:c9:62:82:bd:a8:37:e9:21:89:25:f2:f4:f6:c4:ea:b0:c1: f7:b4:2f:82:6a:dd:33:85:c4:53:a5:56:98:44:03:70:4e:37: 65:f9:a6:e9:07:5d:51:6c:b2:41:7c:3f:60:0e:20:25:4c:f9: 81:c6:52:93:a9:6c:a5:bb:ec:af:d2:89:67:1b:56:f3:6e:30: 8c:54:65:07:66:a1:15:ad:9d:31:06:48:64:c4:f8:30:9f:c0: 5f:e3:e4:9f:41:5b:ab:d5:c6:76:c9:05:dd:47:27:52:62:3a: 4e:e8:3d:d5:84:3c:92:ba:74:98:bb:3e:d4:ab:74:cb:cc:b8: 1f:7c:57:2b:56:04:4c:87:bb:64:2a:34:59:06:48:99:b7:d8: 94:4a:52:56:6f:09:72:5c:b3:00:cc:98:a9:e4:00:3b:c1:25: a2:9c:f0:64:f9:f0:3d:40:fb:f7:e7:c0:9f:33:57:fd:37:93: 8f:03:5f:d4:fb:b8:bd:48:79:0c:a1:69:f8:a7:cc:6d:ff:f5: de:16:4e:f5:8d:77:06:09:dc:6b:1e:f0:3c:47:c1:55:07:75: e2:45:d0:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCGZQJSQ6CMD5QElyhAvHTUS8zLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDJaFw0yNzA1MDIwMjQzMDJaMDMxMTAvBgNV BAMTKDdFNTU1NDFCN0Y5NTQ3MkZCOTE5NjRGODU4NkMzNjE4N0EwOUVGOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu390YIJBOPr+APX0X0dQyrnf7 KYeCYmEgsfBA7m3FsbfoXLatwfAqNWONMhd8iWL1og4El5NurgPgrK7Ynu8RsJeJ qLrCjz2GOvifcgHHg2RlPrfyvDzG5owLK7aiOTPqOy5GG2CPvGqKL+fp75143sTx Hb84LhuH08SfTdw+iLWtsotwX+gNy0zkNuSThcfr7/BuTHfPxwQTTAs2lqPYZ6Bl bmPnc5UT27kRaQjrUew6inLSWbwa/R5NIWheFlOI3Z0C0cayskcOxMMa1oPHgdAG NbFPEgDxpB+5hJOW5GUqetDQBX1fH73LxLe22HK22riijD4xsZHV1sIxobl3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUflVUG3+VRy+5GWT4WGw2GHoJ75owHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMxMzAzMzJlMzgzNzJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1fkMA0GCSqG SIb3DQEBCwUAA4IBAQBDzfX++qEYA4lVlAWOxCO0245jZKUpm5VVJPpWYWdg7FXu kDUJyWKCvag36SGJJfL09sTqsMH3tC+Cat0zhcRTpVaYRANwTjdl+abpB11RbLJB fD9gDiAlTPmBxlKTqWylu+yv0olnG1bzbjCMVGUHZqEVrZ0xBkhkxPgwn8Bf4+Sf QVur1cZ2yQXdRydSYjpO6D3VhDySunSYuz7Uq3TLzLgffFcrVgRMh7tkKjRZBkiZ t9iUSlJWbwlyXLMAzJip5AA7wSWinPBk+fA9QPv358CfM1f9N5OPA1/U+7i9SHkM oWn4p8xt//XeFk71jXcGCdxrHvA8R8FVB3XiRdCy -----END CERTIFICATE-----Generated at Wed May 13 04:26:54 2026 by rpki-client