$ rpki-client -vvf rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20323135373237.roa File: 3130332e39362e35332e302f32342d3234203d3e20323135373237.roa (raw, json) Hash identifier: 0wPUMAsuo5ZHSc/EbFWdWxfuAnUpnc2Dl/9rdO80RmQ= Subject key identifier: 34:0A:16:1B:80:DC:D1:EB:01:87:69:14:E8:23:3D:96:D0:82:98:C8 Certificate issuer: /CN=95C2241DAF3580597A730032BDD8356019AA8598 Certificate serial: 7538479C4ED6E129A953403E87CBBB125DC2E331 Authority key identifier: 95:C2:24:1D:AF:35:80:59:7A:73:00:32:BD:D8:35:60:19:AA:85:98 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20323135373237.roa Signing time: Sun 03 May 2026 02:44:50 +0000 ROA not before: Sun 03 May 2026 02:39:50 +0000 ROA not after: Sun 02 May 2027 02:44:50 +0000 asID: 215727 IP address blocks: 103.96.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.crl rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:38:47:9c:4e:d6:e1:29:a9:53:40:3e:87:cb:bb:12:5d:c2:e3:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95C2241DAF3580597A730032BDD8356019AA8598 Validity Not Before: May 3 02:39:50 2026 GMT Not After : May 2 02:44:50 2027 GMT Subject: CN=340A161B80DCD1EB01876914E8233D96D08298C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3b:f0:01:04:5c:4c:64:74:1a:64:ca:f3:42: b8:b0:7e:af:f7:74:44:4d:62:f0:e1:87:b2:e7:c3: dd:43:55:6e:86:4d:32:1a:17:7f:59:ef:08:80:f8: f2:14:4e:95:45:7a:e1:f0:98:99:7b:15:b1:77:b0: cf:65:cb:2e:3d:4a:89:ba:27:6e:31:c9:c4:d3:7c: 63:e2:d6:fd:a1:5c:50:00:b8:e0:af:a5:8a:b2:6a: 8e:fb:03:3e:b2:a6:13:a7:fa:1c:1e:2a:7b:33:1a: 71:60:44:b3:ea:e6:7c:66:6f:4f:ad:26:8c:82:3a: 29:63:37:ed:29:6b:5c:c1:77:b0:2d:c2:cd:82:73: fa:89:bf:b6:f4:df:1e:39:e0:c2:3a:36:ee:b3:60: 7b:8a:8f:52:c1:0a:b2:c3:5d:f0:19:12:20:3a:c7: 86:94:b3:cb:ac:63:b9:6e:e0:71:e3:16:55:78:dd: f5:e6:a8:6a:cc:01:0b:f5:4c:16:60:e9:f5:73:2c: 14:1d:58:05:64:15:f7:b3:df:83:c5:41:f1:00:26: 45:6f:a3:74:52:39:2e:b3:fc:77:f9:8b:dd:fe:0c: e6:54:ce:4f:ff:76:a3:f8:95:2d:ad:98:a7:cb:72: 55:61:6b:c5:8f:f5:35:12:b5:8d:e9:1d:ec:62:79: f1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0A:16:1B:80:DC:D1:EB:01:87:69:14:E8:23:3D:96:D0:82:98:C8 X509v3 Authority Key Identifier: keyid:95:C2:24:1D:AF:35:80:59:7A:73:00:32:BD:D8:35:60:19:AA:85:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20323135373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.53.0/24 Signature Algorithm: sha256WithRSAEncryption a5:ab:36:26:88:7d:55:b2:2c:da:89:33:4a:df:e7:ba:f8:af: f2:ce:07:54:5e:51:f6:f2:3d:4b:7e:85:a3:49:08:b7:6f:c9: bc:f0:0e:e6:a4:f7:cf:c8:95:23:ca:18:d7:93:14:63:fb:16: 86:3c:1a:8b:84:9d:6f:30:4d:25:3e:20:99:65:9f:b2:7d:c6: 9f:c9:4c:66:e9:f8:f9:12:64:af:25:e2:c6:29:77:17:61:cf: 2c:1d:68:2c:ca:4a:b4:ff:2d:9d:89:a1:2b:a4:28:6d:62:49: 4e:67:03:ce:07:58:b3:bf:fb:2d:cb:d1:be:48:c0:6d:4b:c8: 5d:b8:ff:a1:49:78:25:31:37:aa:e6:9c:01:50:38:57:be:57: c9:2d:91:4c:1d:44:a9:ba:0c:90:24:7f:c5:d8:6e:a7:a7:e7: bc:7c:74:ea:d8:b8:55:74:e7:82:2b:81:ca:3f:c2:ea:28:67: 98:48:af:71:1b:61:2e:e0:40:3e:88:0a:fa:a7:b1:25:b2:b8: bc:8e:e9:78:91:02:52:43:a7:82:2c:75:67:ce:69:91:aa:24: f5:85:81:0c:69:8b:2e:9e:22:75:55:57:65:4d:62:71:ee:eb: a4:1e:e8:59:51:ad:b3:af:fb:c0:b6:9a:d4:84:53:b2:09:90: e1:97:02:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdThHnE7W4SmpU0A+h8u7El3C4zEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVDMjI0MURBRjM1ODA1OTdBNzMwMDMyQkREODM1NjAx OUFBODU5ODAeFw0yNjA1MDMwMjM5NTBaFw0yNzA1MDIwMjQ0NTBaMDMxMTAvBgNV BAMTKDM0MEExNjFCODBEQ0QxRUIwMTg3NjkxNEU4MjMzRDk2RDA4Mjk4QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKO/ABBFxMZHQaZMrzQriwfq/3 dERNYvDhh7Lnw91DVW6GTTIaF39Z7wiA+PIUTpVFeuHwmJl7FbF3sM9lyy49Som6 J24xycTTfGPi1v2hXFAAuOCvpYqyao77Az6yphOn+hweKnszGnFgRLPq5nxmb0+t JoyCOiljN+0pa1zBd7Atws2Cc/qJv7b03x454MI6Nu6zYHuKj1LBCrLDXfAZEiA6 x4aUs8usY7lu4HHjFlV43fXmqGrMAQv1TBZg6fVzLBQdWAVkFfez34PFQfEAJkVv o3RSOS6z/Hf5i93+DOZUzk//dqP4lS2tmKfLclVha8WP9TUStY3pHexiefFLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNAoWG4Dc0esBh2kU6CM9ltCCmMgwHwYDVR0j BBgwFoAUlcIkHa81gFl6cwAyvdg1YBmqhZgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ExYzRjMWYtNzE0MS00N2Q2LWE3ZjgtZTM1ZmZlMTE3NDA0LzAvOTVDMjI0MURB RjM1ODA1OTdBNzMwMDMyQkREODM1NjAxOUFBODU5OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NUMyMjQxREFGMzU4MDU5N0E3MzAwMzJCREQ4MzU2MDE5QUE4 NTk4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMxMzAzMzJlMzkzNjJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzNTM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdgNTANBgkqhkiG 9w0BAQsFAAOCAQEApas2Joh9VbIs2okzSt/nuviv8s4HVF5R9vI9S36Fo0kIt2/J vPAO5qT3z8iVI8oY15MUY/sWhjwai4SdbzBNJT4gmWWfsn3Gn8lMZun4+RJkryXi xil3F2HPLB1oLMpKtP8tnYmhK6QobWJJTmcDzgdYs7/7LcvRvkjAbUvIXbj/oUl4 JTE3quacAVA4V75XyS2RTB1EqboMkCR/xdhup6fnvHx06ti4VXTngiuByj/C6ihn mEivcRthLuBAPogK+qexJbK4vI7peJECUkOngix1Z85pkaok9YWBDGmLLp4idVVX ZU1ice7rpB7oWVGts6/7wLaa1IRTsgmQ4ZcCFg== -----END CERTIFICATE-----Generated at Wed May 13 03:53:17 2026 by rpki-client