$ rpki-client -vvf rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa File: 3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa (raw, json) Hash identifier: GNQ9BAndW/dbBDXxGBCrP2cWFnFb/Uhl5zGAhjYFfBA= Subject key identifier: D8:27:D0:52:FA:FC:CA:02:B3:EA:04:6F:C4:C9:83:AC:CE:8F:59:3A Certificate issuer: /CN=FF5F881DC07CC4A9A985D594360658D202A551B7 Certificate serial: 557C6ABEF10185D63AB93BEB5DEC95BD57EEDB1D Authority key identifier: FF:5F:88:1D:C0:7C:C4:A9:A9:85:D5:94:36:06:58:D2:02:A5:51:B7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF5F881DC07CC4A9A985D594360658D202A551B7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa Signing time: Sun 03 May 2026 02:45:22 +0000 ROA not before: Sun 03 May 2026 02:40:22 +0000 ROA not after: Sun 02 May 2027 02:45:22 +0000 asID: 17440 IP address blocks: 103.209.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/FF5F881DC07CC4A9A985D594360658D202A551B7.crl rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/FF5F881DC07CC4A9A985D594360658D202A551B7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF5F881DC07CC4A9A985D594360658D202A551B7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:7c:6a:be:f1:01:85:d6:3a:b9:3b:eb:5d:ec:95:bd:57:ee:db:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF5F881DC07CC4A9A985D594360658D202A551B7 Validity Not Before: May 3 02:40:22 2026 GMT Not After : May 2 02:45:22 2027 GMT Subject: CN=D827D052FAFCCA02B3EA046FC4C983ACCE8F593A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:53:7b:00:49:4d:e0:1a:55:77:ac:04:48:12: 53:00:8f:2f:45:80:16:ce:2a:d2:34:6d:ba:d2:52: 1a:ca:7e:e1:31:a7:18:da:a7:70:ef:b1:1c:5e:b2: 50:36:b7:86:ad:b8:30:dc:06:4f:e1:34:d2:e0:56: 81:02:f2:51:f5:3f:23:d6:da:63:2f:1d:00:3b:61: f0:8a:43:71:de:e8:27:9a:5e:9e:80:da:99:a4:95: e9:79:79:8e:b9:16:d7:9a:3a:da:05:a2:6b:a9:80: 9f:8a:33:23:a2:e2:65:b8:1e:88:52:dc:0f:b4:b9: 05:11:8d:b3:97:62:d5:3d:ee:bb:2e:b8:0a:03:91: f9:ae:31:f2:84:23:5e:b7:fd:66:6c:9e:70:a1:61: cb:f0:11:27:64:9c:5c:a7:e5:0c:bf:e9:84:86:e5: 4d:4d:fe:f1:f2:d0:ec:4f:ee:9f:b0:e3:3f:e8:55: 7b:93:4a:8c:4b:98:20:2a:f4:37:fa:c1:61:d2:6e: d9:d6:a9:8f:37:c4:2a:67:1c:ec:94:ba:48:b2:88: f1:97:96:09:cb:90:ff:1a:bd:82:1b:98:10:89:e9: 2b:8d:2f:b1:76:b2:22:c4:a1:62:a8:2d:4d:96:93: c1:a3:77:7a:6b:4f:8d:29:88:67:ab:7b:4b:df:ba: 99:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:27:D0:52:FA:FC:CA:02:B3:EA:04:6F:C4:C9:83:AC:CE:8F:59:3A X509v3 Authority Key Identifier: keyid:FF:5F:88:1D:C0:7C:C4:A9:A9:85:D5:94:36:06:58:D2:02:A5:51:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/FF5F881DC07CC4A9A985D594360658D202A551B7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF5F881DC07CC4A9A985D594360658D202A551B7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.248.0/24 Signature Algorithm: sha256WithRSAEncryption 65:03:90:de:3a:21:c5:84:4c:7a:27:36:37:98:db:d6:b1:1c: 2f:47:28:97:fa:8a:5a:b4:3b:05:60:f4:05:f3:c5:98:8d:d6: f1:96:9a:e8:6f:66:87:70:b7:00:62:7d:16:09:c1:29:f2:bf: 90:40:0b:22:e3:f6:a7:81:a1:34:52:f6:16:b2:67:6d:f8:6f: de:b0:27:6d:e4:30:99:b6:12:26:c2:5e:df:cf:da:84:3f:0e: 9a:56:39:77:31:99:bb:62:58:fd:13:18:9e:73:b4:89:a9:5d: 3b:da:e3:7c:7b:e7:4d:b6:17:09:a0:34:5d:97:c6:ff:2d:ba: 87:d2:ce:c3:94:00:0f:3c:c8:35:cc:f1:08:4f:3c:2f:e9:64: 8d:e5:d8:c5:9a:94:7f:c9:28:3c:4a:39:a8:4f:fd:03:aa:d4: 85:73:b4:60:7f:05:03:e0:62:69:fd:ce:89:82:81:be:c7:7d: 16:35:63:38:01:f4:94:ad:7f:da:3c:46:31:c3:8e:97:5b:4b: ad:1f:c7:bd:f4:12:fc:6d:b7:07:00:cc:b9:34:ca:7f:45:11: 64:10:5e:d6:de:14:9e:ed:cb:8f:8c:0f:fc:74:a4:d0:9c:6d: 39:31:c5:fb:69:e7:09:95:5a:bd:8c:8a:fe:29:d6:d4:3f:2d: a8:34:ec:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVXxqvvEBhdY6uTvrXeyVvVfu2x0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY1Rjg4MURDMDdDQzRBOUE5ODVENTk0MzYwNjU4RDIw MkE1NTFCNzAeFw0yNjA1MDMwMjQwMjJaFw0yNzA1MDIwMjQ1MjJaMDMxMTAvBgNV BAMTKEQ4MjdEMDUyRkFGQ0NBMDJCM0VBMDQ2RkM0Qzk4M0FDQ0U4RjU5M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnU3sASU3gGlV3rARIElMAjy9F gBbOKtI0bbrSUhrKfuExpxjap3DvsRxeslA2t4atuDDcBk/hNNLgVoEC8lH1PyPW 2mMvHQA7YfCKQ3He6CeaXp6A2pmklel5eY65FteaOtoFomupgJ+KMyOi4mW4HohS 3A+0uQURjbOXYtU97rsuuAoDkfmuMfKEI163/WZsnnChYcvwESdknFyn5Qy/6YSG 5U1N/vHy0OxP7p+w4z/oVXuTSoxLmCAq9Df6wWHSbtnWqY83xCpnHOyUukiyiPGX lgnLkP8avYIbmBCJ6SuNL7F2siLEoWKoLU2Wk8Gjd3prT40piGere0vfupkbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2CfQUvr8ygKz6gRvxMmDrM6PWTowHwYDVR0j BBgwFoAU/1+IHcB8xKmphdWUNgZY0gKlUbcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2MwNzRjZDgtMjgzMC00ZWFiLWJkZDQtYTgwN2VjNTExNWRhLzAvRkY1Rjg4MURD MDdDQzRBOUE5ODVENTk0MzYwNjU4RDIwMkE1NTFCNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GRjVGODgxREMwN0NDNEE5QTk4NUQ1OTQzNjA2NThEMjAyQTU1 MUI3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H4MA0GCSqG SIb3DQEBCwUAA4IBAQBlA5DeOiHFhEx6JzY3mNvWsRwvRyiX+opatDsFYPQF88WY jdbxlprob2aHcLcAYn0WCcEp8r+QQAsi4/angaE0UvYWsmdt+G/esCdt5DCZthIm wl7fz9qEPw6aVjl3MZm7Ylj9Exiec7SJqV072uN8e+dNthcJoDRdl8b/LbqH0s7D lAAPPMg1zPEITzwv6WSN5djFmpR/ySg8SjmoT/0DqtSFc7RgfwUD4GJp/c6JgoG+ x30WNWM4AfSUrX/aPEYxw46XW0utH8e99BL8bbcHAMy5NMp/RRFkEF7W3hSe7cuP jA/8dKTQnG05McX7aecJlVq9jIr+KdbUPy2oNOyB -----END CERTIFICATE-----Generated at Wed May 13 03:59:35 2026 by rpki-client