$ rpki-client -vvf rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa File: 3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa (raw, json) Hash identifier: 8XrnQ5SnhyZDHtT2jqiiu3w//jV9DlxlWcB7qtbppcE= Subject key identifier: 9B:50:0C:A0:1C:01:63:27:CF:0A:0C:27:98:7A:8F:63:CC:3E:76:53 Certificate issuer: /CN=FF5F881DC07CC4A9A985D594360658D202A551B7 Certificate serial: 29E80DD4A574BF9DA4EE66478E8A855A2C6C56D9 Authority key identifier: FF:5F:88:1D:C0:7C:C4:A9:A9:85:D5:94:36:06:58:D2:02:A5:51:B7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF5F881DC07CC4A9A985D594360658D202A551B7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa Signing time: Sun 03 May 2026 02:45:22 +0000 ROA not before: Sun 03 May 2026 02:40:22 +0000 ROA not after: Sun 02 May 2027 02:45:22 +0000 asID: 17440 IP address blocks: 103.209.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/FF5F881DC07CC4A9A985D594360658D202A551B7.crl rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/FF5F881DC07CC4A9A985D594360658D202A551B7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF5F881DC07CC4A9A985D594360658D202A551B7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:e8:0d:d4:a5:74:bf:9d:a4:ee:66:47:8e:8a:85:5a:2c:6c:56:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF5F881DC07CC4A9A985D594360658D202A551B7 Validity Not Before: May 3 02:40:22 2026 GMT Not After : May 2 02:45:22 2027 GMT Subject: CN=9B500CA01C016327CF0A0C27987A8F63CC3E7653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:82:bf:21:ab:7d:17:ea:0d:db:64:49:8d:74: 91:3d:18:40:a0:6d:26:fd:34:60:96:9c:bd:14:06: 0d:ff:3c:57:d5:4e:6b:47:e4:26:ad:f2:bd:45:cd: 40:08:66:f8:30:24:1f:80:8f:59:ab:a0:9c:bd:0c: 4e:2f:19:46:40:ba:08:ad:20:d4:96:d7:17:59:79: 73:e7:19:13:db:03:aa:8d:c0:f5:e2:34:c9:59:3a: f3:ea:64:f1:9e:44:2f:a2:5a:44:39:22:4a:78:67: e1:67:0c:3d:3d:a9:18:e7:f7:32:1c:14:42:b0:ab: 48:17:27:64:f9:06:e5:48:cb:be:44:6d:fa:5f:22: 12:66:e3:b1:89:92:21:31:87:fa:c1:21:70:36:fd: 79:3a:49:a0:35:a7:ac:c4:55:4d:f6:4d:83:73:5e: d0:5e:75:7e:b7:f9:75:1a:d4:ee:ee:86:7b:d6:16: 10:d4:c4:22:14:f6:cb:32:ad:ea:af:bf:53:92:4c: d4:01:3a:d3:73:d3:18:f9:cb:06:68:61:9e:10:b3: 4b:e3:de:d8:dd:9c:b2:ca:86:f9:47:ac:e1:fe:8f: e9:57:ef:3a:17:68:eb:47:b7:43:e2:a9:6f:55:68: ae:21:c4:d0:e9:e7:4b:6e:99:0e:62:a7:22:44:10: 26:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:50:0C:A0:1C:01:63:27:CF:0A:0C:27:98:7A:8F:63:CC:3E:76:53 X509v3 Authority Key Identifier: keyid:FF:5F:88:1D:C0:7C:C4:A9:A9:85:D5:94:36:06:58:D2:02:A5:51:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/FF5F881DC07CC4A9A985D594360658D202A551B7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF5F881DC07CC4A9A985D594360658D202A551B7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.249.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:77:7a:28:d6:4c:65:74:5c:f2:97:a2:03:c4:1c:ea:d6:17: 47:be:31:76:87:98:3f:c9:8a:d3:e6:2c:ed:0c:ab:d8:35:f7: d4:04:c2:78:7e:66:5c:0f:03:8e:d9:1e:f5:3d:d1:ed:d6:08: 23:1d:f8:91:b6:64:2d:ef:9e:b7:4f:c3:35:fd:2c:9f:bb:7e: 47:44:6e:75:a9:62:e5:6e:d7:3c:ca:99:b9:81:5f:19:e6:02: 7b:1c:8d:de:75:26:04:92:a0:9c:74:94:4a:e9:6f:db:53:b5: 99:54:9a:45:7d:d8:80:c7:30:aa:99:4e:e6:fc:c3:2a:73:d8: 6a:b8:72:f6:2c:ed:17:1b:2f:ec:18:ba:17:ff:f2:c0:21:c0: f5:7b:a8:69:a7:f4:75:bf:25:69:36:a1:63:15:cb:3a:8a:df: e3:83:46:6c:b1:43:96:c4:6d:bc:c0:fa:ca:0a:f7:10:8c:64: bb:13:0c:07:92:24:33:f2:21:a8:4e:ba:e7:04:a1:b4:84:a1: b6:7d:16:10:79:30:f6:df:bd:e1:39:a6:7f:2b:ba:08:10:3f: 26:7c:e5:d0:86:a6:6e:15:a9:00:37:e6:d9:ce:6f:63:85:45: 73:78:ec:a7:4b:98:2c:82:9f:a8:87:1e:fa:10:4c:4e:de:97: 31:b4:78:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKegN1KV0v52k7mZHjoqFWixsVtkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY1Rjg4MURDMDdDQzRBOUE5ODVENTk0MzYwNjU4RDIw MkE1NTFCNzAeFw0yNjA1MDMwMjQwMjJaFw0yNzA1MDIwMjQ1MjJaMDMxMTAvBgNV BAMTKDlCNTAwQ0EwMUMwMTYzMjdDRjBBMEMyNzk4N0E4RjYzQ0MzRTc2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTgr8hq30X6g3bZEmNdJE9GECg bSb9NGCWnL0UBg3/PFfVTmtH5Cat8r1FzUAIZvgwJB+Aj1mroJy9DE4vGUZAugit INSW1xdZeXPnGRPbA6qNwPXiNMlZOvPqZPGeRC+iWkQ5Ikp4Z+FnDD09qRjn9zIc FEKwq0gXJ2T5BuVIy75EbfpfIhJm47GJkiExh/rBIXA2/Xk6SaA1p6zEVU32TYNz XtBedX63+XUa1O7uhnvWFhDUxCIU9ssyreqvv1OSTNQBOtNz0xj5ywZoYZ4Qs0vj 3tjdnLLKhvlHrOH+j+lX7zoXaOtHt0PiqW9VaK4hxNDp50tumQ5ipyJEECYLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm1AMoBwBYyfPCgwnmHqPY8w+dlMwHwYDVR0j BBgwFoAU/1+IHcB8xKmphdWUNgZY0gKlUbcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2MwNzRjZDgtMjgzMC00ZWFiLWJkZDQtYTgwN2VjNTExNWRhLzAvRkY1Rjg4MURD MDdDQzRBOUE5ODVENTk0MzYwNjU4RDIwMkE1NTFCNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GRjVGODgxREMwN0NDNEE5QTk4NUQ1OTQzNjA2NThEMjAyQTU1 MUI3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H5MA0GCSqG SIb3DQEBCwUAA4IBAQBud3oo1kxldFzyl6IDxBzq1hdHvjF2h5g/yYrT5iztDKvY NffUBMJ4fmZcDwOO2R71PdHt1ggjHfiRtmQt7563T8M1/Syfu35HRG51qWLlbtc8 ypm5gV8Z5gJ7HI3edSYEkqCcdJRK6W/bU7WZVJpFfdiAxzCqmU7m/MMqc9hquHL2 LO0XGy/sGLoX//LAIcD1e6hpp/R1vyVpNqFjFcs6it/jg0ZssUOWxG28wPrKCvcQ jGS7EwwHkiQz8iGoTrrnBKG0hKG2fRYQeTD2373hOaZ/K7oIED8mfOXQhqZuFakA N+bZzm9jhUVzeOynS5gsgp+ohx76EExO3pcxtHiP -----END CERTIFICATE-----Generated at Wed May 13 03:51:28 2026 by rpki-client