$ rpki-client -vvf rpki-rsync.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa File: 3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa (raw, json) Hash identifier: a2G2EWwhE4yFuhZ5jYn9ulCDBjyOhc2EYKslZtlGFac= Subject key identifier: D0:30:56:B8:E1:DE:A6:F2:18:B1:D0:70:9F:F6:13:53:64:78:37:0B Certificate issuer: /CN=24707B538B36DD7E0788B2B83162969B177EE4B9 Certificate serial: 6D257FB8E500C53722978721A0B6554E4A47F022 Authority key identifier: 24:70:7B:53:8B:36:DD:7E:07:88:B2:B8:31:62:96:9B:17:7E:E4:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/24707B538B36DD7E0788B2B83162969B177EE4B9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa Signing time: Sun 03 May 2026 02:48:20 +0000 ROA not before: Sun 03 May 2026 02:43:20 +0000 ROA not after: Sun 02 May 2027 02:48:20 +0000 asID: 133800 IP address blocks: 103.103.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/24707B538B36DD7E0788B2B83162969B177EE4B9.crl rsync://rpki-rsync.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/24707B538B36DD7E0788B2B83162969B177EE4B9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/24707B538B36DD7E0788B2B83162969B177EE4B9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:25:7f:b8:e5:00:c5:37:22:97:87:21:a0:b6:55:4e:4a:47:f0:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24707B538B36DD7E0788B2B83162969B177EE4B9 Validity Not Before: May 3 02:43:20 2026 GMT Not After : May 2 02:48:20 2027 GMT Subject: CN=D03056B8E1DEA6F218B1D0709FF613536478370B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:61:67:35:79:f0:06:df:42:b0:1d:c1:ef:8f: f7:d8:ec:3b:11:02:40:41:3a:9a:50:39:f2:28:c6: b2:8f:c2:99:47:00:2d:39:d8:8f:5d:78:a6:97:69: 71:10:d2:09:9f:07:9a:76:96:88:18:34:42:95:08: 70:78:05:c6:d4:26:ee:22:1d:69:fa:4b:d1:ce:a4: a6:49:44:9d:49:16:44:c5:aa:e5:21:ac:64:43:97: 36:90:ee:88:47:8e:c8:b7:f7:cd:76:b5:c0:70:02: a3:00:26:9d:ad:7a:98:34:d5:84:1c:fe:86:7f:05: aa:a5:23:b3:6a:d1:5f:59:b3:1f:ea:0a:a2:3a:08: db:fc:9a:08:90:0e:bc:ad:05:42:a3:42:85:79:2f: c8:3a:9b:5d:f9:63:0f:99:e4:8b:b0:8a:00:45:1b: 43:74:65:d4:bc:76:75:e7:1e:f4:39:5e:74:f4:78: 46:30:18:b0:a4:7a:a5:a4:e4:ff:fe:07:62:95:31: f4:23:ca:5c:41:02:cb:ff:87:31:e9:df:c1:9e:e1: 49:c7:bd:0d:ed:5f:16:f5:b3:06:c8:35:82:a3:d1: 18:bc:65:42:fe:25:7f:ae:fe:84:5e:be:50:2d:04: f3:48:f1:d2:aa:75:7d:6e:87:b4:5e:65:a4:1a:8d: da:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:30:56:B8:E1:DE:A6:F2:18:B1:D0:70:9F:F6:13:53:64:78:37:0B X509v3 Authority Key Identifier: keyid:24:70:7B:53:8B:36:DD:7E:07:88:B2:B8:31:62:96:9B:17:7E:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/24707B538B36DD7E0788B2B83162969B177EE4B9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/24707B538B36DD7E0788B2B83162969B177EE4B9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.20.0/22 Signature Algorithm: sha256WithRSAEncryption 73:16:71:9e:df:a5:a2:b5:b0:0e:d3:c5:10:19:92:1b:8a:ea: 85:c4:cd:ed:a0:ec:08:38:22:eb:12:d4:71:2a:44:8a:a6:87: 24:23:59:cf:70:01:8c:ad:79:cb:9d:f3:eb:13:ec:f7:0c:d3: 74:d3:a0:dd:2a:ea:6d:16:41:be:0e:7a:bc:84:b9:0e:2d:f9: b7:f1:06:1f:26:35:57:ac:60:fb:c5:89:69:d4:fd:c1:1a:9a: 2f:f7:e9:92:53:ff:37:d8:7c:72:c1:81:3f:b4:22:85:b0:2b: 49:73:b2:83:52:16:f2:9a:0a:77:0a:66:d2:0a:6a:36:35:2a: e3:81:cc:df:11:36:9b:66:95:19:e5:4f:b6:d4:e8:61:56:bf: 02:ff:38:24:ec:de:0d:65:72:b8:3a:fb:bc:6f:00:31:80:25: 58:f4:17:5e:8f:0c:bb:2e:65:fc:cf:f4:5f:7a:92:61:37:64: 82:5c:f1:80:7b:b9:05:8b:a7:95:fb:5a:5e:b5:53:d3:a6:dd: 56:50:56:a4:d0:d5:69:16:40:0e:8a:4e:70:92:4d:4e:b4:c7: 17:a0:21:13:95:68:f1:f1:ff:06:40:45:01:4a:a1:16:ae:54: 83:be:bd:e4:62:09:a4:6a:6e:d0:63:b4:15:52:44:f6:0b:bf: df:48:b6:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbSV/uOUAxTcil4choLZVTkpH8CIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQ3MDdCNTM4QjM2REQ3RTA3ODhCMkI4MzE2Mjk2OUIx NzdFRTRCOTAeFw0yNjA1MDMwMjQzMjBaFw0yNzA1MDIwMjQ4MjBaMDMxMTAvBgNV BAMTKEQwMzA1NkI4RTFERUE2RjIxOEIxRDA3MDlGRjYxMzUzNjQ3ODM3MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEYWc1efAG30KwHcHvj/fY7DsR AkBBOppQOfIoxrKPwplHAC052I9deKaXaXEQ0gmfB5p2logYNEKVCHB4BcbUJu4i HWn6S9HOpKZJRJ1JFkTFquUhrGRDlzaQ7ohHjsi39812tcBwAqMAJp2tepg01YQc /oZ/BaqlI7Nq0V9Zsx/qCqI6CNv8mgiQDrytBUKjQoV5L8g6m135Yw+Z5IuwigBF G0N0ZdS8dnXnHvQ5XnT0eEYwGLCkeqWk5P/+B2KVMfQjylxBAsv/hzHp38Ge4UnH vQ3tXxb1swbINYKj0Ri8ZUL+JX+u/oRevlAtBPNI8dKqdX1uh7ReZaQajdp/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0DBWuOHepvIYsdBwn/YTU2R4NwswHwYDVR0j BBgwFoAUJHB7U4s23X4HiLK4MWKWmxd+5LkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODY2MjQ3ZjktMWVlYy00OTAxLWJhNDItOWRmMjY0MjRmNWI4LzAvMjQ3MDdCNTM4 QjM2REQ3RTA3ODhCMkI4MzE2Mjk2OUIxNzdFRTRCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNDcwN0I1MzhCMzZERDdFMDc4OEIyQjgzMTYyOTY5QjE3N0VF NEI5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2NjI0N2Y5LTFlZWMtNDkwMS1i YTQyLTlkZjI2NDI0ZjViOC8wLzMxMzAzMzJlMzEzMDMzMmUzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2cUMA0GCSqG SIb3DQEBCwUAA4IBAQBzFnGe36WitbAO08UQGZIbiuqFxM3toOwIOCLrEtRxKkSK pockI1nPcAGMrXnLnfPrE+z3DNN006DdKuptFkG+Dnq8hLkOLfm38QYfJjVXrGD7 xYlp1P3BGpov9+mSU/832HxywYE/tCKFsCtJc7KDUhbymgp3CmbSCmo2NSrjgczf ETabZpUZ5U+21OhhVr8C/zgk7N4NZXK4Ovu8bwAxgCVY9Bdejwy7LmX8z/RfepJh N2SCXPGAe7kFi6eV+1petVPTpt1WUFak0NVpFkAOik5wkk1OtMcXoCETlWjx8f8G QEUBSqEWrlSDvr3kYgmkam7QY7QVUkT2C7/fSLYg -----END CERTIFICATE-----Generated at Wed May 13 05:55:02 2026 by rpki-client