$ rpki-client -vvf rpki-rsync.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa File: 3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa (raw, json) Hash identifier: hcBwS6YzikTq1s/P8jlWWii/vuvMdnJI6Od19w2iLTM= Subject key identifier: 59:FA:5B:9E:BD:B7:E9:00:AB:CD:9D:8E:55:7E:5A:5B:1B:B0:7A:C7 Certificate issuer: /CN=A9D586A82CB166902F1D1B2CAE5EB420F08D23D0 Certificate serial: 44C0A32942854041E1E79D95747305B0158FA3F5 Authority key identifier: A9:D5:86:A8:2C:B1:66:90:2F:1D:1B:2C:AE:5E:B4:20:F0:8D:23:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9D586A82CB166902F1D1B2CAE5EB420F08D23D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa Signing time: Sun 03 May 2026 02:47:02 +0000 ROA not before: Sun 03 May 2026 02:42:02 +0000 ROA not after: Sun 02 May 2027 02:47:02 +0000 asID: 140431 IP address blocks: 103.150.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/A9D586A82CB166902F1D1B2CAE5EB420F08D23D0.crl rsync://rpki-rsync.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/A9D586A82CB166902F1D1B2CAE5EB420F08D23D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9D586A82CB166902F1D1B2CAE5EB420F08D23D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c0:a3:29:42:85:40:41:e1:e7:9d:95:74:73:05:b0:15:8f:a3:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D586A82CB166902F1D1B2CAE5EB420F08D23D0 Validity Not Before: May 3 02:42:02 2026 GMT Not After : May 2 02:47:02 2027 GMT Subject: CN=59FA5B9EBDB7E900ABCD9D8E557E5A5B1BB07AC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dc:b6:e6:fa:96:52:ef:a0:36:95:df:96:cd: 56:74:70:15:a6:59:ef:71:d4:76:46:5c:d6:92:a6: 4a:9a:cc:c3:c0:3a:fc:89:eb:22:fc:64:10:7a:32: 92:6f:89:f1:31:ce:e6:ab:72:c9:00:b4:e2:21:2e: 86:c4:48:dd:8c:8d:0c:85:ed:b7:38:4d:e8:82:94: ac:b6:99:5c:ec:b1:ff:22:28:0a:e8:44:2b:de:1b: e4:86:a0:64:3f:b8:b7:c6:cf:3a:98:26:f9:6f:b7: 62:10:7c:92:5b:3a:e2:d6:40:26:2d:5a:bf:1a:b7: 08:df:8b:6c:80:60:c8:c9:bd:c2:c7:ae:c5:e0:63: 23:57:00:25:43:ad:e6:d9:43:b0:b0:ed:11:53:47: 61:ab:fa:ec:0b:00:a6:1d:6c:d4:2d:3e:22:87:3f: 29:d9:65:dc:b1:eb:84:46:30:92:80:9f:96:90:31: dd:b5:b1:50:63:8f:d9:e8:7a:81:6e:93:ec:7f:ab: f5:17:4b:b9:3f:b5:61:b8:36:58:8d:f8:c1:9d:8f: 83:b8:b2:ed:fb:99:b6:22:04:4b:01:05:9e:03:90: 99:54:9a:bf:da:d3:c1:97:a6:d0:28:24:fc:97:76: 84:9a:9c:87:03:aa:1e:71:d0:88:c5:68:21:8b:6e: 51:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FA:5B:9E:BD:B7:E9:00:AB:CD:9D:8E:55:7E:5A:5B:1B:B0:7A:C7 X509v3 Authority Key Identifier: keyid:A9:D5:86:A8:2C:B1:66:90:2F:1D:1B:2C:AE:5E:B4:20:F0:8D:23:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/A9D586A82CB166902F1D1B2CAE5EB420F08D23D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9D586A82CB166902F1D1B2CAE5EB420F08D23D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.159.0/24 Signature Algorithm: sha256WithRSAEncryption 96:40:0b:4f:75:3c:4a:1d:86:2d:4b:b6:f4:6a:79:ac:12:0b: 0f:42:71:4e:47:bd:66:f1:51:26:2e:1e:40:b3:26:29:1b:97: b2:9e:c6:71:00:55:89:71:d5:53:70:b1:db:f5:37:70:27:10: f4:eb:b7:c7:0c:f6:ab:19:35:cb:2a:d7:b2:40:22:56:f5:4c: a1:97:b8:33:f4:08:73:bc:bd:c8:68:ed:77:f8:06:b6:80:43: 30:a8:c7:a7:55:14:c8:56:1f:c5:c5:cb:c1:38:17:ea:5c:66: 18:c3:32:f4:a6:f5:0b:23:da:32:32:85:3b:04:7f:20:79:cd: 58:46:46:e5:59:c3:4e:d9:de:13:a5:e6:57:53:94:71:43:81: 86:7c:5a:92:54:b6:8e:6d:e1:89:4e:f5:5e:1e:58:96:30:a7: 72:e0:6b:68:0b:e8:20:e9:9f:cd:bc:d3:27:fe:d8:03:f7:c2: cc:af:79:e7:fc:48:af:14:69:85:8c:b9:c2:48:1a:0e:29:00: fa:6b:22:91:59:9d:3b:22:ef:67:ae:4f:cb:15:db:7b:7c:89: 71:54:6f:a8:e6:9e:48:43:f0:09:c5:89:ec:83:87:e0:22:d1: 57:d5:28:58:5e:be:c9:05:ae:fa:a9:e5:42:f9:5a:a6:0d:30: 49:63:1a:93 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURMCjKUKFQEHh552VdHMFsBWPo/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENTg2QTgyQ0IxNjY5MDJGMUQxQjJDQUU1RUI0MjBG MDhEMjNEMDAeFw0yNjA1MDMwMjQyMDJaFw0yNzA1MDIwMjQ3MDJaMDMxMTAvBgNV BAMTKDU5RkE1QjlFQkRCN0U5MDBBQkNEOUQ4RTU1N0U1QTVCMUJCMDdBQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh3Lbm+pZS76A2ld+WzVZ0cBWm We9x1HZGXNaSpkqazMPAOvyJ6yL8ZBB6MpJvifExzuarcskAtOIhLobESN2MjQyF 7bc4TeiClKy2mVzssf8iKAroRCveG+SGoGQ/uLfGzzqYJvlvt2IQfJJbOuLWQCYt Wr8atwjfi2yAYMjJvcLHrsXgYyNXACVDrebZQ7Cw7RFTR2Gr+uwLAKYdbNQtPiKH PynZZdyx64RGMJKAn5aQMd21sVBjj9noeoFuk+x/q/UXS7k/tWG4NliN+MGdj4O4 su37mbYiBEsBBZ4DkJlUmr/a08GXptAoJPyXdoSanIcDqh5x0IjFaCGLblFFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWfpbnr236QCrzZ2OVX5aWxuwescwHwYDVR0j BBgwFoAUqdWGqCyxZpAvHRssrl60IPCNI9AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODE2NWU0ODEtNWE3OS00ODY4LWE0ZTQtZmFjZmQ5MjJkODEzLzAvQTlENTg2QTgy Q0IxNjY5MDJGMUQxQjJDQUU1RUI0MjBGMDhEMjNEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOUQ1ODZBODJDQjE2NjkwMkYxRDFCMkNBRTVFQjQyMEYwOEQy M0QwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgxNjVlNDgxLTVhNzktNDg2OC1h NGU0LWZhY2ZkOTIyZDgxMy8wLzMxMzAzMzJlMzEzNTMwMmUzMTM1MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlp8wDQYJ KoZIhvcNAQELBQADggEBAJZAC091PEodhi1LtvRqeawSCw9CcU5HvWbxUSYuHkCz Jikbl7KexnEAVYlx1VNwsdv1N3AnEPTrt8cM9qsZNcsq17JAIlb1TKGXuDP0CHO8 vcho7Xf4BraAQzCox6dVFMhWH8XFy8E4F+pcZhjDMvSm9Qsj2jIyhTsEfyB5zVhG RuVZw07Z3hOl5ldTlHFDgYZ8WpJUto5t4YlO9V4eWJYwp3Lga2gL6CDpn8280yf+ 2AP3wsyveef8SK8UaYWMucJIGg4pAPprIpFZnTsi72euT8sV23t8iXFUb6jmnkhD 8AnFieyDh+Ai0VfVKFhevskFrvqp5UL5WqYNMEljGpM= -----END CERTIFICATE-----Generated at Wed May 13 05:47:02 2026 by rpki-client