$ rpki-client -vvf rpki-rsync.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa File: 3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa (raw, json) Hash identifier: 5+l8Bv4b+lu/zj1I0m9wF216uhFzz02OufoiSu3ruBk= Subject key identifier: 0D:DC:A5:BC:5F:D1:7C:13:88:D1:73:96:4D:18:8E:D6:D1:0A:20:F2 Certificate issuer: /CN=357778A786AA1E6854673B0A6AAAA40B85254E94 Certificate serial: 0EEB5DFF8AE6A3EDB823FDD9F498084BEE5B1989 Authority key identifier: 35:77:78:A7:86:AA:1E:68:54:67:3B:0A:6A:AA:A4:0B:85:25:4E:94 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/357778A786AA1E6854673B0A6AAAA40B85254E94.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa Signing time: Sun 03 May 2026 02:44:53 +0000 ROA not before: Sun 03 May 2026 02:39:53 +0000 ROA not after: Sun 02 May 2027 02:44:53 +0000 asID: 147101 IP address blocks: 103.174.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/357778A786AA1E6854673B0A6AAAA40B85254E94.crl rsync://rpki-rsync.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/357778A786AA1E6854673B0A6AAAA40B85254E94.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/357778A786AA1E6854673B0A6AAAA40B85254E94.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:eb:5d:ff:8a:e6:a3:ed:b8:23:fd:d9:f4:98:08:4b:ee:5b:19:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=357778A786AA1E6854673B0A6AAAA40B85254E94 Validity Not Before: May 3 02:39:53 2026 GMT Not After : May 2 02:44:53 2027 GMT Subject: CN=0DDCA5BC5FD17C1388D173964D188ED6D10A20F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:8d:07:47:08:8e:1e:00:20:d0:72:e1:d1: f8:f5:f2:f7:e9:7e:ee:7e:64:06:f3:59:c3:dd:65: 54:6a:c5:0a:e3:1d:11:25:7c:4a:12:52:dd:3a:d5: 97:5f:d5:0a:97:ee:01:73:e3:e5:9d:88:d7:dd:6f: 57:50:95:b9:c2:a4:c5:c3:15:88:3d:22:3c:e4:fe: 07:c5:bf:52:fe:7e:dd:75:57:2c:92:04:41:2f:38: 81:97:9c:95:98:b3:c9:c0:c8:28:5d:ae:7a:f7:29: c9:33:c3:e7:60:8d:a5:b0:9e:56:fb:fb:bd:70:5e: dd:32:36:d1:87:15:ca:01:81:af:75:c4:08:43:da: cf:15:52:5b:c8:da:20:30:92:f9:e0:38:a4:88:d6: 06:f1:c3:0e:b3:b6:b9:9e:a5:76:81:73:64:07:61: d0:e7:85:60:49:9f:89:45:18:26:73:0a:32:58:81: 31:63:96:c1:61:5b:93:9b:f1:ef:a1:03:55:82:ed: 9f:46:5d:35:18:97:ad:83:71:b2:51:97:f8:d6:1c: c1:44:af:85:4f:e0:6d:a4:90:00:92:c7:44:c2:e5: c2:e1:ca:b5:4a:7f:5a:db:a7:9f:d3:ac:83:de:dd: 80:cf:5a:c8:43:4f:f5:f8:00:5c:45:dd:51:7f:43: 80:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DC:A5:BC:5F:D1:7C:13:88:D1:73:96:4D:18:8E:D6:D1:0A:20:F2 X509v3 Authority Key Identifier: keyid:35:77:78:A7:86:AA:1E:68:54:67:3B:0A:6A:AA:A4:0B:85:25:4E:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/357778A786AA1E6854673B0A6AAAA40B85254E94.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/357778A786AA1E6854673B0A6AAAA40B85254E94.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.174.0/24 Signature Algorithm: sha256WithRSAEncryption 52:c2:f8:64:5c:d2:b6:61:0b:da:a9:da:0f:5e:88:d5:62:13: 45:ce:61:37:6a:4b:c3:1d:a4:71:dc:8b:18:ab:54:de:35:73: ad:0b:d5:12:ab:f7:58:96:ad:9e:89:7f:09:74:00:44:94:2c: d8:1d:e0:2d:69:36:c4:a4:83:b3:21:ed:bd:0b:68:4e:c0:21: 0a:92:7a:57:4c:e6:d7:57:11:53:b2:a9:d9:78:7d:c1:4f:0a: 50:88:38:a4:a5:3c:fe:13:a1:7d:d5:5d:f8:05:ea:55:6d:d9: b7:57:8f:bd:23:ba:2c:d2:24:cc:b6:84:99:cd:44:17:3f:fc: 7e:d9:78:16:1b:5b:65:d1:94:17:24:e3:96:c5:b9:db:35:97: 2a:a1:1e:3b:29:f9:18:e9:ff:a0:59:cf:5d:8d:e4:24:c4:63: 10:34:ed:ef:dc:c8:d8:c2:50:c2:dd:ca:f5:cd:3b:7a:d9:77: ad:68:b1:ba:42:d4:93:5d:40:34:4b:33:ca:ce:d6:7f:e7:c2: 03:08:4c:39:43:50:8d:d5:93:35:ec:31:42:47:25:81:98:04: 9c:23:e1:54:61:34:da:a7:13:a4:9b:4e:d1:ba:cb:2c:00:a8: 35:ac:33:88:6b:40:4d:83:5f:41:2e:7e:5d:30:91:14:c3:25: 10:25:b8:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDutd/4rmo+24I/3Z9JgIS+5bGYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU3Nzc4QTc4NkFBMUU2ODU0NjczQjBBNkFBQUE0MEI4 NTI1NEU5NDAeFw0yNjA1MDMwMjM5NTNaFw0yNzA1MDIwMjQ0NTNaMDMxMTAvBgNV BAMTKDBERENBNUJDNUZEMTdDMTM4OEQxNzM5NjREMTg4RUQ2RDEwQTIwRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6040HRwiOHgAg0HLh0fj18vfp fu5+ZAbzWcPdZVRqxQrjHRElfEoSUt061Zdf1QqX7gFz4+WdiNfdb1dQlbnCpMXD FYg9Ijzk/gfFv1L+ft11VyySBEEvOIGXnJWYs8nAyChdrnr3Kckzw+dgjaWwnlb7 +71wXt0yNtGHFcoBga91xAhD2s8VUlvI2iAwkvngOKSI1gbxww6ztrmepXaBc2QH YdDnhWBJn4lFGCZzCjJYgTFjlsFhW5Ob8e+hA1WC7Z9GXTUYl62DcbJRl/jWHMFE r4VP4G2kkACSx0TC5cLhyrVKf1rbp5/TrIPe3YDPWshDT/X4AFxF3VF/Q4APAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDdylvF/RfBOI0XOWTRiO1tEKIPIwHwYDVR0j BBgwFoAUNXd4p4aqHmhUZzsKaqqkC4UlTpQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2E3MGQ0NGUtMGY3MC00NWEzLWFmMDQtODFmNDI5ZGIzYTVkLzAvMzU3Nzc4QTc4 NkFBMUU2ODU0NjczQjBBNkFBQUE0MEI4NTI1NEU5NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNTc3NzhBNzg2QUExRTY4NTQ2NzNCMEE2QUFBQTQwQjg1MjU0 RTk0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdhNzBkNDRlLTBmNzAtNDVhMy1h ZjA0LTgxZjQyOWRiM2E1ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrq4wDQYJ KoZIhvcNAQELBQADggEBAFLC+GRc0rZhC9qp2g9eiNViE0XOYTdqS8MdpHHcixir VN41c60L1RKr91iWrZ6Jfwl0AESULNgd4C1pNsSkg7Mh7b0LaE7AIQqSeldM5tdX EVOyqdl4fcFPClCIOKSlPP4ToX3VXfgF6lVt2bdXj70juizSJMy2hJnNRBc//H7Z eBYbW2XRlBck45bFuds1lyqhHjsp+Rjp/6BZz12N5CTEYxA07e/cyNjCUMLdyvXN O3rZd61osbpC1JNdQDRLM8rO1n/nwgMITDlDUI3VkzXsMUJHJYGYBJwj4VRhNNqn E6SbTtG6yywAqDWsM4hrQE2DX0Eufl0wkRTDJRAluCc= -----END CERTIFICATE-----Generated at Wed May 13 09:54:21 2026 by rpki-client