$ rpki-client -vvf rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa File: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (raw, json) Hash identifier: Tf1EVsRaCkdXitEPeo2GAGcjlLdYQ1D5kk2M9WCpy3U= Subject key identifier: D4:C3:7C:40:91:31:40:EA:D7:D2:AA:BD:85:1C:CE:CE:81:C9:B9:99 Certificate issuer: /CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Certificate serial: 43D61FC373866141C287D4F0D5EB84B0C1862825 Authority key identifier: A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa Signing time: Sun 03 May 2026 02:48:27 +0000 ROA not before: Sun 03 May 2026 02:43:27 +0000 ROA not after: Sun 02 May 2027 02:48:27 +0000 asID: 135462 IP address blocks: 103.70.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d6:1f:c3:73:86:61:41:c2:87:d4:f0:d5:eb:84:b0:c1:86:28:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Validity Not Before: May 3 02:43:27 2026 GMT Not After : May 2 02:48:27 2027 GMT Subject: CN=D4C37C40913140EAD7D2AABD851CCECE81C9B999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:8b:5a:3f:13:9b:31:6a:f3:db:52:65:2f: e2:05:55:e0:ec:f8:cb:60:08:bf:10:c1:14:06:30: b6:9e:c7:d2:93:3c:e3:d1:05:7d:34:e5:8a:58:60: d4:cd:b1:20:14:7c:0a:57:5c:f3:2e:26:46:3a:42: 75:8f:26:27:e5:a5:3e:3d:85:0e:b3:75:b6:2c:d7: 4d:17:ab:a9:42:44:d6:a5:e4:e3:8c:62:03:32:5b: 07:24:2e:2e:b8:0d:3e:da:d8:fd:ba:97:98:3c:ce: 4a:f3:e4:8f:17:83:66:d9:f9:0b:f5:c2:fc:ca:a0: 39:5b:6f:8e:2d:ec:5a:da:d3:be:ae:9e:b5:04:49: 0d:7c:d2:c6:ef:ec:be:78:c9:f0:16:86:2d:5d:1c: 62:67:ad:6f:fb:09:77:ac:fa:08:6f:f4:30:07:db: 28:16:78:50:16:e1:e5:37:03:06:a3:74:cd:db:8c: db:92:fd:b0:63:5a:b0:d8:0a:a8:81:76:d2:ee:52: 1e:01:56:81:04:72:eb:1c:19:35:46:6c:9f:ea:9d: e2:51:95:72:ef:e0:b5:d6:73:f0:73:f5:6d:57:c2: 9a:37:e7:d1:23:b1:5a:6b:10:ff:05:e0:a0:ef:ef: 01:70:95:a0:68:80:8e:27:45:76:cc:7f:d6:c1:04: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C3:7C:40:91:31:40:EA:D7:D2:AA:BD:85:1C:CE:CE:81:C9:B9:99 X509v3 Authority Key Identifier: keyid:A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.16.0/22 Signature Algorithm: sha256WithRSAEncryption 40:f1:8a:23:9e:d4:f2:df:98:5d:77:70:5a:3e:65:e5:2b:39: 87:bf:5d:84:94:0e:2f:b3:ab:28:08:8c:d7:60:ad:55:65:e2: e3:4c:e4:6a:d4:4a:4d:c7:7e:eb:c9:1b:d6:79:2c:41:05:6e: d8:4c:ff:6c:4f:bc:ff:79:d4:4b:81:50:b0:38:57:80:cd:af: 09:3b:01:89:57:b8:e6:da:e9:a6:b0:61:14:d3:d9:65:d0:73: 51:24:82:5f:c6:60:05:61:a6:96:4d:37:fd:37:71:c2:b1:0b: dc:4f:b6:83:c6:4e:97:0a:32:c0:57:5f:c6:6e:70:b0:4f:a8: 52:8f:54:ab:b1:e9:e9:85:39:3e:22:7b:42:89:95:4b:37:00: 15:bc:d4:dc:a7:f6:c3:71:7b:77:6b:78:fb:7b:cc:17:f5:ef: 41:8b:36:a0:e7:79:87:37:54:8f:be:e7:56:02:3c:cd:88:2a: 91:d7:f0:9d:0d:10:b8:b4:c2:9e:a6:ce:83:7d:43:3e:9b:bb: 7b:ff:06:44:40:3b:08:26:12:63:21:56:e2:58:25:06:f2:b9: 2d:82:35:e1:39:8a:7c:92:d0:5c:79:89:23:5f:37:9c:36:0d: 56:66:c7:06:6b:52:cd:11:98:b2:7e:28:7c:c5:9b:35:b5:1a: 56:ed:f1:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ9Yfw3OGYUHCh9Tw1euEsMGGKCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThEMjExQTU0MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4 MEJBNDU4QTAeFw0yNjA1MDMwMjQzMjdaFw0yNzA1MDIwMjQ4MjdaMDMxMTAvBgNV BAMTKEQ0QzM3QzQwOTEzMTQwRUFEN0QyQUFCRDg1MUNDRUNFODFDOUI5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9m4taPxObMWrz21JlL+IFVeDs +MtgCL8QwRQGMLaex9KTPOPRBX005YpYYNTNsSAUfApXXPMuJkY6QnWPJiflpT49 hQ6zdbYs100Xq6lCRNal5OOMYgMyWwckLi64DT7a2P26l5g8zkrz5I8Xg2bZ+Qv1 wvzKoDlbb44t7Fra076unrUESQ180sbv7L54yfAWhi1dHGJnrW/7CXes+ghv9DAH 2ygWeFAW4eU3AwajdM3bjNuS/bBjWrDYCqiBdtLuUh4BVoEEcuscGTVGbJ/qneJR lXLv4LXWc/Bz9W1Xwpo359EjsVprEP8F4KDv7wFwlaBogI4nRXbMf9bBBAjXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1MN8QJExQOrX0qq9hRzOzoHJuZkwHwYDVR0j BBgwFoAUqNIRpUCgpXxdastQMgkbGoC6RYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4NDQtNGU2YzdhM2M5N2Q5LzAvQThEMjExQTU0 MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4MEJBNDU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOEQyMTFBNTQwQTBBNTdDNUQ2QUNCNTAzMjA5MUIxQTgwQkE0 NThBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzNjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdGEDANBgkqhkiG 9w0BAQsFAAOCAQEAQPGKI57U8t+YXXdwWj5l5Ss5h79dhJQOL7OrKAiM12CtVWXi 40zkatRKTcd+68kb1nksQQVu2Ez/bE+8/3nUS4FQsDhXgM2vCTsBiVe45trpprBh FNPZZdBzUSSCX8ZgBWGmlk03/TdxwrEL3E+2g8ZOlwoywFdfxm5wsE+oUo9Uq7Hp 6YU5PiJ7QomVSzcAFbzU3Kf2w3F7d2t4+3vMF/XvQYs2oOd5hzdUj77nVgI8zYgq kdfwnQ0QuLTCnqbOg31DPpu7e/8GREA7CCYSYyFW4lglBvK5LYI14TmKfJLQXHmJ I183nDYNVmbHBmtSzRGYsn4ofMWbNbUaVu3xAA== -----END CERTIFICATE-----Generated at Wed May 13 02:20:22 2026 by rpki-client