$ rpki-client -vvf rpki-rsync.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa File: 3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa (raw, json) Hash identifier: I/xRHiSouk0qQoSEfFFc5Esrv4Bnl21g3IwAa+RLLcM= Subject key identifier: 1E:FB:D1:7B:5E:65:58:19:68:15:BB:62:08:62:55:01:21:3D:B8:43 Certificate issuer: /CN=02AAB50744B5B2355B015A3152AD1101FDD80A06 Certificate serial: 7348FC2CDF1A818849F093D7603A45E500669D2B Authority key identifier: 02:AA:B5:07:44:B5:B2:35:5B:01:5A:31:52:AD:11:01:FD:D8:0A:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02AAB50744B5B2355B015A3152AD1101FDD80A06.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa Signing time: Sun 03 May 2026 02:47:45 +0000 ROA not before: Sun 03 May 2026 02:42:45 +0000 ROA not after: Sun 02 May 2027 02:47:45 +0000 asID: 149687 IP address blocks: 103.186.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/02AAB50744B5B2355B015A3152AD1101FDD80A06.crl rsync://rpki-rsync.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/02AAB50744B5B2355B015A3152AD1101FDD80A06.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02AAB50744B5B2355B015A3152AD1101FDD80A06.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:48:fc:2c:df:1a:81:88:49:f0:93:d7:60:3a:45:e5:00:66:9d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02AAB50744B5B2355B015A3152AD1101FDD80A06 Validity Not Before: May 3 02:42:45 2026 GMT Not After : May 2 02:47:45 2027 GMT Subject: CN=1EFBD17B5E6558196815BB6208625501213DB843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a6:37:15:46:d1:7c:81:1f:93:52:11:89:f2: 45:84:fd:ae:54:a6:8c:6e:97:ae:23:9f:70:da:b8: 88:87:c1:d4:37:cc:e4:98:02:7d:2f:53:bb:ac:10: b3:33:bf:16:c9:54:e0:89:0b:23:e7:80:13:69:94: 00:0f:2b:31:c7:bf:11:83:95:1e:7d:23:61:64:2c: a1:b5:03:24:2e:10:3b:6f:54:be:b1:fa:17:33:b6: 19:ae:6f:79:f0:31:c3:e4:c3:42:96:db:44:d2:f2: 00:54:f6:07:c1:f2:9f:b0:f3:3f:33:03:f5:12:30: 17:34:1d:0f:5c:8a:cc:29:3c:36:56:3a:47:ed:a0: c8:0d:25:25:d4:9f:af:a9:bd:2f:03:2d:17:e9:b6: 42:13:97:b3:90:f4:94:fe:a4:b2:7a:e0:ab:95:4b: b5:61:a6:92:d9:b5:d5:42:77:83:fe:f3:97:96:e1: 57:bb:e0:84:b7:0d:3a:ef:d7:42:fa:36:00:c7:38: 72:39:a5:11:de:81:4d:78:d1:63:68:91:8e:31:2e: 89:ce:26:88:20:89:70:f0:6b:1e:01:38:6c:7d:91: bf:9a:15:67:17:77:42:01:08:ca:58:e7:5c:58:43: 27:fd:84:3e:3f:5f:71:33:6b:a9:cc:e7:30:11:bd: 46:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FB:D1:7B:5E:65:58:19:68:15:BB:62:08:62:55:01:21:3D:B8:43 X509v3 Authority Key Identifier: keyid:02:AA:B5:07:44:B5:B2:35:5B:01:5A:31:52:AD:11:01:FD:D8:0A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/02AAB50744B5B2355B015A3152AD1101FDD80A06.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02AAB50744B5B2355B015A3152AD1101FDD80A06.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.34.0/24 Signature Algorithm: sha256WithRSAEncryption 25:48:2e:ad:c5:4c:3b:b0:0e:4c:26:76:f1:52:1e:14:b9:e0: e0:68:d7:ad:69:39:02:2c:7b:18:c0:fb:fc:7e:46:07:db:40: 2b:9c:8d:04:10:ff:a4:3a:92:13:f0:41:32:fc:33:02:f8:1c: 89:57:0f:ba:27:62:37:a8:47:ff:0c:6d:e3:94:3e:12:7f:cd: cd:b8:fd:d2:da:2f:28:2f:f1:16:41:36:a4:25:1a:df:4a:f5: 4a:e8:fd:63:65:14:ff:08:c7:0a:4f:d9:53:37:cf:a5:84:b2: 3e:b9:40:a2:9c:c2:b5:3c:1c:8c:3b:e9:24:b1:48:b7:a0:94: 61:aa:b6:58:a5:0e:cd:bb:36:1f:75:1c:89:64:bb:88:b7:6f: 26:3a:e3:d3:4e:9c:37:50:0c:5c:a7:8b:6c:82:f7:22:98:bf: 7d:f8:a1:01:7f:3a:1f:9a:74:7d:2d:db:18:29:c5:a2:d0:e0: 8f:9b:c4:74:ba:03:8a:2c:ff:8c:c0:1d:99:b7:8f:b0:a9:ac: 01:b2:c7:b3:75:e5:ea:fe:7d:2f:27:58:b8:2d:f4:94:c8:6f: a9:78:02:69:23:28:7f:d7:09:4d:0a:57:f3:7a:d5:79:69:ce: 8d:5f:45:c0:40:fd:11:8a:a8:44:da:27:38:86:eb:bc:70:1b: 5e:5e:42:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc0j8LN8agYhJ8JPXYDpF5QBmnSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDJBQUI1MDc0NEI1QjIzNTVCMDE1QTMxNTJBRDExMDFG REQ4MEEwNjAeFw0yNjA1MDMwMjQyNDVaFw0yNzA1MDIwMjQ3NDVaMDMxMTAvBgNV BAMTKDFFRkJEMTdCNUU2NTU4MTk2ODE1QkI2MjA4NjI1NTAxMjEzREI4NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1pjcVRtF8gR+TUhGJ8kWE/a5U poxul64jn3DauIiHwdQ3zOSYAn0vU7usELMzvxbJVOCJCyPngBNplAAPKzHHvxGD lR59I2FkLKG1AyQuEDtvVL6x+hczthmub3nwMcPkw0KW20TS8gBU9gfB8p+w8z8z A/USMBc0HQ9ciswpPDZWOkftoMgNJSXUn6+pvS8DLRfptkITl7OQ9JT+pLJ64KuV S7VhppLZtdVCd4P+85eW4Ve74IS3DTrv10L6NgDHOHI5pRHegU140WNokY4xLonO JoggiXDwax4BOGx9kb+aFWcXd0IBCMpY51xYQyf9hD4/X3Eza6nM5zARvUb5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHvvRe15lWBloFbtiCGJVASE9uEMwHwYDVR0j BBgwFoAUAqq1B0S1sjVbAVoxUq0RAf3YCgYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODU5YzdjOTYtN2FiYi00NWFjLWEwY2ItZDdmZmQwOWMxODc2LzAvMDJBQUI1MDc0 NEI1QjIzNTVCMDE1QTMxNTJBRDExMDFGREQ4MEEwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMkFBQjUwNzQ0QjVCMjM1NUIwMTVBMzE1MkFEMTEwMUZERDgw QTA2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1OWM3Yzk2LTdhYmItNDVhYy1h MGNiLWQ3ZmZkMDljMTg3Ni8wLzMxMzAzMzJlMzEzODM2MmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7oiMA0GCSqG SIb3DQEBCwUAA4IBAQAlSC6txUw7sA5MJnbxUh4UueDgaNetaTkCLHsYwPv8fkYH 20ArnI0EEP+kOpIT8EEy/DMC+ByJVw+6J2I3qEf/DG3jlD4Sf83NuP3S2i8oL/EW QTakJRrfSvVK6P1jZRT/CMcKT9lTN8+lhLI+uUCinMK1PByMO+kksUi3oJRhqrZY pQ7NuzYfdRyJZLuIt28mOuPTTpw3UAxcp4tsgvcimL99+KEBfzofmnR9LdsYKcWi 0OCPm8R0ugOKLP+MwB2Zt4+wqawBssezdeXq/n0vJ1i4LfSUyG+peAJpIyh/1wlN ClfzetV5ac6NX0XAQP0RiqhE2ic4huu8cBteXkLd -----END CERTIFICATE-----Generated at Wed May 13 04:48:08 2026 by rpki-client