$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa File: 3130332e33382e3130302e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: cIqt8an55Boi6QzS9htBN9Y4EwGnUF5GkY+Hn0B2NYM= Subject key identifier: F5:DA:4C:2B:E4:E6:0A:52:17:87:24:F1:38:4D:13:36:3E:59:17:20 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 5A8F9BDCF44B39A054AA8D15ECF06E1BB85DC311 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:31 +0000 ROA not before: Sun 03 May 2026 02:41:31 +0000 ROA not after: Sun 02 May 2027 02:46:31 +0000 asID: 38524 IP address blocks: 103.38.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8f:9b:dc:f4:4b:39:a0:54:aa:8d:15:ec:f0:6e:1b:b8:5d:c3:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:31 2026 GMT Not After : May 2 02:46:31 2027 GMT Subject: CN=F5DA4C2BE4E60A52178724F1384D13363E591720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:06:65:39:c2:6e:e4:d5:cf:b1:a6:27:c9:8d: 20:63:02:06:5e:cb:4e:e3:35:fb:06:b1:05:10:e5: d8:d6:c1:f9:eb:14:54:fe:0e:c9:41:f1:d1:80:6e: 05:7b:98:b0:2e:35:d8:3a:bd:01:62:fd:72:d3:e3: f5:34:b8:93:55:cb:6d:6d:35:21:a1:80:54:ed:21: ce:26:a1:49:bd:05:09:28:8d:c2:30:5e:31:76:be: 20:c8:c3:5b:3f:2b:c3:c7:06:94:fd:bf:40:fd:9b: 5e:3f:e8:52:fe:e3:b8:48:7c:e5:3d:a4:06:5e:46: f2:fa:be:f1:8f:72:1b:d0:61:ad:9b:d1:c3:62:79: 02:85:a9:2e:0d:31:6e:a3:d9:21:5a:39:e5:f1:16: df:d8:db:d8:13:a4:00:48:ef:02:56:13:69:e7:1b: 46:ed:cb:04:16:81:27:4b:7f:03:62:24:bc:b5:e0: b4:a4:40:30:fc:44:5a:13:87:68:d2:c9:ae:7a:0d: 2a:b5:1c:8a:57:53:58:5d:e5:69:03:5e:0f:16:db: 2b:08:85:ca:8d:48:4b:2b:aa:64:ce:c2:a1:90:33: 96:e9:a9:e9:fa:5d:d2:23:0a:ff:47:fc:2a:50:62: cd:c0:bd:ef:a2:f8:f4:45:77:58:9f:67:a7:91:3b: f5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DA:4C:2B:E4:E6:0A:52:17:87:24:F1:38:4D:13:36:3E:59:17:20 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.100.0/24 Signature Algorithm: sha256WithRSAEncryption 82:4f:70:fb:4e:60:6f:ca:ab:16:ed:82:bc:87:4b:01:c6:d6: d4:d8:29:78:2b:6d:70:49:a1:d2:4f:2f:4b:86:34:f2:f2:ce: 42:1c:ac:2a:9f:c7:2f:36:03:55:a0:8a:10:43:47:e8:73:fb: 5d:59:de:50:98:dc:9c:40:9e:29:a0:d3:9c:e7:ae:ec:2c:7a: 6b:a1:fe:8e:68:81:a3:41:08:d5:39:73:1a:9f:34:0c:c2:30: 8a:85:79:85:7e:20:2a:cd:c2:cd:79:83:c2:3d:e2:cb:16:51: 32:37:7a:3a:cb:02:da:b5:3c:b9:62:f6:b2:3c:b1:46:4d:7e: 4c:b5:f9:4c:63:22:58:d9:2d:4d:96:22:39:d1:2e:f3:80:85: 00:26:8c:54:9a:5a:f8:1d:e9:2c:f7:14:84:a6:1a:7f:6c:ff: ca:b2:c7:97:28:d3:58:d3:09:ca:04:e0:fd:db:8b:23:ed:56: a3:71:9e:cd:0f:46:16:fb:ad:1a:96:ba:1f:03:ab:ba:5e:fc: bb:ad:7e:0f:10:a7:d5:5a:1f:ee:80:cb:07:6a:4d:cb:94:f4: 1b:ea:e2:27:2b:d1:7f:fe:bb:9e:68:62:ca:7e:bc:8b:12:e8: c0:61:5c:09:a1:f0:9e:32:39:3d:92:5a:c5:c3:0e:99:fb:b4: a2:bc:c2:1d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWo+b3PRLOaBUqo0V7PBuG7hdwxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMzFaFw0yNzA1MDIwMjQ2MzFaMDMxMTAvBgNV BAMTKEY1REE0QzJCRTRFNjBBNTIxNzg3MjRGMTM4NEQxMzM2M0U1OTE3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkBmU5wm7k1c+xpifJjSBjAgZe y07jNfsGsQUQ5djWwfnrFFT+DslB8dGAbgV7mLAuNdg6vQFi/XLT4/U0uJNVy21t NSGhgFTtIc4moUm9BQkojcIwXjF2viDIw1s/K8PHBpT9v0D9m14/6FL+47hIfOU9 pAZeRvL6vvGPchvQYa2b0cNieQKFqS4NMW6j2SFaOeXxFt/Y29gTpABI7wJWE2nn G0btywQWgSdLfwNiJLy14LSkQDD8RFoTh2jSya56DSq1HIpXU1hd5WkDXg8W2ysI hcqNSEsrqmTOwqGQM5bpqen6XdIjCv9H/CpQYs3Ave+i+PRFd1ifZ6eRO/WnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9dpMK+TmClIXhyTxOE0TNj5ZFyAwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMxMzAzMzJlMzMzODJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcmZDANBgkqhkiG 9w0BAQsFAAOCAQEAgk9w+05gb8qrFu2CvIdLAcbW1NgpeCttcEmh0k8vS4Y08vLO QhysKp/HLzYDVaCKEENH6HP7XVneUJjcnECeKaDTnOeu7Cx6a6H+jmiBo0EI1Tlz Gp80DMIwioV5hX4gKs3CzXmDwj3iyxZRMjd6OssC2rU8uWL2sjyxRk1+TLX5TGMi WNktTZYiOdEu84CFACaMVJpa+B3pLPcUhKYaf2z/yrLHlyjTWNMJygTg/duLI+1W o3GezQ9GFvutGpa6HwOrul78u61+DxCn1Vof7oDLB2pNy5T0G+riJyvRf/67nmhi yn68ixLowGFcCaHwnjI5PZJaxcMOmfu0orzCHQ== -----END CERTIFICATE-----Generated at Wed May 13 04:19:54 2026 by rpki-client