$ rpki-client -vvf rpki-rsync.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32342d3234203d3e20313336383431.roa File: 3130332e34312e3234382e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: xAsDO0flNJB0vE3TWF5f6bA3MwrWKS77T8klNMeGAzA= Subject key identifier: F9:BD:84:FE:59:50:70:C6:6D:36:67:25:FD:43:07:1B:57:5E:84:8F Certificate issuer: /CN=41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A Certificate serial: 357484E00A8E0869DF9F2C96DC73D22F3D992098 Authority key identifier: 41:C0:A6:F7:37:34:FF:B0:C7:D9:97:70:1A:62:B4:DF:A1:BA:B4:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32342d3234203d3e20313336383431.roa Signing time: Sun 03 May 2026 02:43:58 +0000 ROA not before: Sun 03 May 2026 02:38:58 +0000 ROA not after: Sun 02 May 2027 02:43:58 +0000 asID: 136841 IP address blocks: 103.41.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A.crl rsync://rpki-rsync.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:74:84:e0:0a:8e:08:69:df:9f:2c:96:dc:73:d2:2f:3d:99:20:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A Validity Not Before: May 3 02:38:58 2026 GMT Not After : May 2 02:43:58 2027 GMT Subject: CN=F9BD84FE595070C66D366725FD43071B575E848F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:23:eb:2d:be:1e:d1:0a:b7:31:c1:d9:dc:37: 45:f6:5b:ff:fc:06:93:7d:1b:7c:8a:ea:df:8a:d1: cb:b5:db:1d:27:06:c0:d7:03:c9:d2:f6:0f:a4:26: b4:f1:4c:42:e1:cd:9a:77:4b:a8:6b:57:0c:9a:f6: 28:78:7c:6f:8a:26:b1:5d:f7:c0:3f:18:49:cc:a7: 2a:a3:22:01:76:22:3f:31:7d:75:fa:b9:f7:fa:44: 55:0b:8f:67:16:ac:d9:dd:f9:48:d1:95:86:db:5d: bb:31:bc:6a:dd:75:ef:7d:05:8f:b4:4b:f6:96:aa: 69:9b:5b:e2:4b:69:49:13:69:56:f5:0c:b8:4a:82: c3:6b:8a:aa:6e:8d:d4:60:ee:87:06:8e:59:d5:fe: e0:09:bd:33:d5:e5:c0:b9:10:20:b1:4f:77:7e:26: 3c:bb:bc:75:f6:04:36:0d:14:8a:79:1f:75:d5:10: 95:e8:fd:e9:65:5f:04:88:47:ec:c2:f8:89:3a:04: 2c:b8:3b:0b:47:47:3d:2c:45:af:0c:c9:79:ee:eb: 59:ee:11:57:13:8c:af:4a:49:52:ac:53:12:f8:03: 1b:1f:a0:5b:c9:23:b4:2d:a2:d6:75:7b:9a:cc:57: 1a:ce:bf:1b:f0:b0:8c:ed:e5:bc:0a:76:45:e3:07: 46:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:BD:84:FE:59:50:70:C6:6D:36:67:25:FD:43:07:1B:57:5E:84:8F X509v3 Authority Key Identifier: keyid:41:C0:A6:F7:37:34:FF:B0:C7:D9:97:70:1A:62:B4:DF:A1:BA:B4:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41C0A6F73734FFB0C7D997701A62B4DFA1BAB43A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.248.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:6d:6f:94:1f:20:53:ea:4a:da:15:cf:a8:93:a2:97:ec:17: 4e:64:c5:ed:b3:0c:66:23:dc:ad:d3:d9:5d:9b:f7:7c:2d:36: a5:20:66:06:52:b2:23:b3:ed:d0:6e:71:78:44:78:ee:39:f8: 74:07:a4:ef:b2:4e:3c:84:87:b2:fe:ea:76:2f:a6:a5:5f:36: 19:9a:95:26:52:3d:1c:1a:66:d2:40:1f:a4:1d:4f:37:95:1c: 9c:73:12:13:2a:cc:3a:f1:ce:95:35:80:bf:57:e0:e6:9c:1b: 05:b6:b7:cd:46:ba:7e:50:ff:ee:d1:d3:f0:4a:26:9c:f9:c5: 3a:21:fa:f8:68:d3:8a:e1:71:50:6c:5c:83:4a:7e:08:0f:70: 54:6e:d3:b6:38:21:8d:d5:5c:4d:2e:38:70:5e:7d:49:95:09: 29:a0:7f:7e:c9:6e:73:d9:28:06:ac:00:b6:73:d8:3b:f3:b5: 47:df:da:a9:4b:ab:dc:97:03:e9:28:a6:44:95:dd:f0:ab:0c: 3d:c3:33:a6:ce:62:49:83:6d:c8:c4:9a:29:05:3f:11:59:b9: 97:bc:3c:03:ff:43:fe:4f:22:c6:63:5f:96:dc:ab:e8:f4:76: b0:7c:ae:f9:4e:cc:9f:83:34:34:4a:00:72:41:ff:9d:3f:46: d6:59:fd:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNXSE4AqOCGnfnyyW3HPSLz2ZIJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFDMEE2RjczNzM0RkZCMEM3RDk5NzcwMUE2MkI0REZB MUJBQjQzQTAeFw0yNjA1MDMwMjM4NThaFw0yNzA1MDIwMjQzNThaMDMxMTAvBgNV BAMTKEY5QkQ4NEZFNTk1MDcwQzY2RDM2NjcyNUZENDMwNzFCNTc1RTg0OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVI+stvh7RCrcxwdncN0X2W//8 BpN9G3yK6t+K0cu12x0nBsDXA8nS9g+kJrTxTELhzZp3S6hrVwya9ih4fG+KJrFd 98A/GEnMpyqjIgF2Ij8xfXX6uff6RFULj2cWrNnd+UjRlYbbXbsxvGrdde99BY+0 S/aWqmmbW+JLaUkTaVb1DLhKgsNriqpujdRg7ocGjlnV/uAJvTPV5cC5ECCxT3d+ Jjy7vHX2BDYNFIp5H3XVEJXo/ellXwSIR+zC+Ik6BCy4OwtHRz0sRa8MyXnu61nu EVcTjK9KSVKsUxL4AxsfoFvJI7QtotZ1e5rMVxrOvxvwsIzt5bwKdkXjB0YJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+b2E/llQcMZtNmcl/UMHG1dehI8wHwYDVR0j BBgwFoAUQcCm9zc0/7DH2ZdwGmK036G6tDowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Nzc1Mjc3ZTgtN2QwZi00MTg0LTljMjgtYTY2MzVlZmVmMjljLzAvNDFDMEE2Rjcz NzM0RkZCMEM3RDk5NzcwMUE2MkI0REZBMUJBQjQzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUMwQTZGNzM3MzRGRkIwQzdEOTk3NzAxQTYyQjRERkExQkFC NDNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc3NTI3N2U4LTdkMGYtNDE4NC05 YzI4LWE2NjM1ZWZlZjI5Yy8wLzMxMzAzMzJlMzQzMTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyn4MA0GCSqG SIb3DQEBCwUAA4IBAQBsbW+UHyBT6kraFc+ok6KX7BdOZMXtswxmI9yt09ldm/d8 LTalIGYGUrIjs+3QbnF4RHjuOfh0B6Tvsk48hIey/up2L6alXzYZmpUmUj0cGmbS QB+kHU83lRyccxITKsw68c6VNYC/V+DmnBsFtrfNRrp+UP/u0dPwSiac+cU6Ifr4 aNOK4XFQbFyDSn4ID3BUbtO2OCGN1VxNLjhwXn1JlQkpoH9+yW5z2SgGrAC2c9g7 87VH39qpS6vclwPpKKZEld3wqww9wzOmzmJJg23IxJopBT8RWbmXvDwD/0P+TyLG Y1+W3Kvo9HawfK75TsyfgzQ0SgByQf+dP0bWWf1X -----END CERTIFICATE-----Generated at Wed May 13 11:46:17 2026 by rpki-client