$ rpki-client -vvf rpki-rsync.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa File: 3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa (raw, json) Hash identifier: bT5Uw393iqcafpbbgDNkyN2J0K45Ob4q+8CX5o4YsWs= Subject key identifier: 54:5B:E1:2A:1E:1C:25:E2:AD:A4:EB:8B:88:59:41:98:94:91:80:33 Certificate issuer: /CN=1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5 Certificate serial: 66218B11A107E741E52081D98425D95F9C0B07CC Authority key identifier: 1B:65:90:9C:14:04:B0:F0:7F:8F:36:7C:E3:EE:6E:FA:3F:88:1D:E5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa Signing time: Sun 03 May 2026 02:47:23 +0000 ROA not before: Sun 03 May 2026 02:42:23 +0000 ROA not after: Sun 02 May 2027 02:47:23 +0000 asID: 139941 IP address blocks: 103.146.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5.crl rsync://rpki-rsync.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:21:8b:11:a1:07:e7:41:e5:20:81:d9:84:25:d9:5f:9c:0b:07:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5 Validity Not Before: May 3 02:42:23 2026 GMT Not After : May 2 02:47:23 2027 GMT Subject: CN=545BE12A1E1C25E2ADA4EB8B8859419894918033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3d:78:d9:58:d7:a3:8a:6f:48:63:30:c4:f7: 32:50:09:36:d7:68:0a:95:05:41:fe:76:9d:b2:60: dd:c9:82:4b:1b:5a:80:d0:21:ae:87:1b:3a:ec:9c: 62:c5:47:9f:81:0c:9b:c0:b1:b9:28:06:27:c6:e3: 0f:30:c4:3a:d7:db:a4:d8:1d:55:f4:26:aa:32:3b: c3:18:7b:5a:22:90:1b:64:29:78:04:24:c1:39:11: 6e:a1:71:a2:73:bb:55:43:60:df:9d:c2:2a:48:00: ec:92:23:80:94:a3:69:ae:31:6f:af:4e:40:2e:5e: f3:2f:ad:fa:6e:c0:7e:f4:fd:e5:a4:6d:a4:36:ed: 55:99:62:e2:0c:56:56:34:04:23:05:86:44:04:47: e2:02:74:27:fb:20:30:16:17:b2:3b:ad:ce:3e:ae: 51:76:1d:f7:40:ee:1a:62:39:12:92:87:aa:40:c0: 42:9e:5a:d6:96:01:ea:43:ff:5d:9c:aa:c2:c4:1e: 7b:7c:bb:98:8e:50:73:e6:6b:74:67:c2:dc:96:a5: 86:d0:94:4e:7b:8b:a8:ee:45:63:29:d0:b3:2d:62: de:0f:fa:68:c7:5f:7d:8c:13:48:7a:44:87:ec:98: 1c:89:8a:c8:4b:fb:98:80:b6:9e:46:d8:d2:6c:39: 83:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:5B:E1:2A:1E:1C:25:E2:AD:A4:EB:8B:88:59:41:98:94:91:80:33 X509v3 Authority Key Identifier: keyid:1B:65:90:9C:14:04:B0:F0:7F:8F:36:7C:E3:EE:6E:FA:3F:88:1D:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1B65909C1404B0F07F8F367CE3EE6EFA3F881DE5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.197.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:ad:ab:f2:a4:cf:25:99:0e:a5:23:8b:86:b2:0d:69:4e:61: 95:97:fe:08:9a:d5:d6:55:3c:d5:09:94:07:f9:04:4c:02:36: b9:25:ba:0e:c9:bb:3a:5e:02:73:55:e0:0b:ab:b7:1f:b7:11: 13:57:d6:bc:f2:91:40:da:c7:9a:57:21:0f:50:38:d5:07:27: 82:6b:2e:05:80:e6:13:3d:0b:e9:af:27:b2:6c:eb:1e:38:2c: ee:64:59:ac:c9:bc:5d:9c:14:c2:82:5d:3d:70:ee:51:6e:d8: c2:48:b9:55:82:f6:d0:1d:0a:01:31:39:5c:6f:5b:25:a2:3a: bf:f4:54:0d:f8:4d:2c:da:c8:33:11:1b:9e:16:1d:2e:30:30: 45:f5:b5:8a:2d:9e:4d:98:d6:9d:4d:56:9a:a0:26:c4:dd:43: 7a:7c:02:47:ee:78:88:21:3f:59:0a:a3:f0:f9:68:98:db:1c: d5:70:14:84:58:16:2c:d9:5d:ab:af:98:bb:fd:79:d7:4b:16: d8:b8:08:a0:48:cc:83:da:e4:8e:60:d4:46:3d:18:12:5c:41: c3:4c:90:a8:3f:9d:45:17:df:c6:17:f2:c5:1c:c7:d7:3e:ee: bd:73:dd:3a:74:82:b6:ad:1e:9e:39:02:ba:62:f0:bf:5c:d0: 64:9e:f1:a5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZiGLEaEH50HlIIHZhCXZX5wLB8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI2NTkwOUMxNDA0QjBGMDdGOEYzNjdDRTNFRTZFRkEz Rjg4MURFNTAeFw0yNjA1MDMwMjQyMjNaFw0yNzA1MDIwMjQ3MjNaMDMxMTAvBgNV BAMTKDU0NUJFMTJBMUUxQzI1RTJBREE0RUI4Qjg4NTk0MTk4OTQ5MTgwMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6PXjZWNejim9IYzDE9zJQCTbX aAqVBUH+dp2yYN3JgksbWoDQIa6HGzrsnGLFR5+BDJvAsbkoBifG4w8wxDrX26TY HVX0JqoyO8MYe1oikBtkKXgEJME5EW6hcaJzu1VDYN+dwipIAOySI4CUo2muMW+v TkAuXvMvrfpuwH70/eWkbaQ27VWZYuIMVlY0BCMFhkQER+ICdCf7IDAWF7I7rc4+ rlF2HfdA7hpiORKSh6pAwEKeWtaWAepD/12cqsLEHnt8u5iOUHPma3RnwtyWpYbQ lE57i6juRWMp0LMtYt4P+mjHX32ME0h6RIfsmByJishL+5iAtp5G2NJsOYMNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVFvhKh4cJeKtpOuLiFlBmJSRgDMwHwYDVR0j BBgwFoAUG2WQnBQEsPB/jzZ84+5u+j+IHeUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODM1MDQ4YzYtOGNjZC00NjNkLWFkMzQtYWU3NDI4NjQ3YTljLzAvMUI2NTkwOUMx NDA0QjBGMDdGOEYzNjdDRTNFRTZFRkEzRjg4MURFNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQjY1OTA5QzE0MDRCMEYwN0Y4RjM2N0NFM0VFNkVGQTNGODgx REU1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgzNTA0OGM2LThjY2QtNDYzZC1h ZDM0LWFlNzQyODY0N2E5Yy8wLzMxMzAzMzJlMzEzNDM2MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnksUwDQYJ KoZIhvcNAQELBQADggEBADqtq/KkzyWZDqUji4ayDWlOYZWX/gia1dZVPNUJlAf5 BEwCNrklug7JuzpeAnNV4Aurtx+3ERNX1rzykUDax5pXIQ9QONUHJ4JrLgWA5hM9 C+mvJ7Js6x44LO5kWazJvF2cFMKCXT1w7lFu2MJIuVWC9tAdCgExOVxvWyWiOr/0 VA34TSzayDMRG54WHS4wMEX1tYotnk2Y1p1NVpqgJsTdQ3p8AkfueIghP1kKo/D5 aJjbHNVwFIRYFizZXauvmLv9eddLFti4CKBIzIPa5I5g1EY9GBJcQcNMkKg/nUUX 38YX8sUcx9c+7r1z3Tp0gratHp45Arpi8L9c0GSe8aU= -----END CERTIFICATE-----Generated at Wed May 13 13:42:12 2026 by rpki-client