$ rpki-client -vvf rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31372e302f32342d3234203d3e20313335343632.roa File: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (raw, json) Hash identifier: lI29Pn9PS61mVywxJrefD11DZjjtEbyEF7MkqWi1LZ4= Subject key identifier: DC:C9:6C:98:98:04:56:EB:EC:F1:9E:52:EA:F4:E9:42:4C:3E:7E:C7 Certificate issuer: /CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Certificate serial: 0B6A4A71395A77812E97E4F43FA98D982297E7E0 Authority key identifier: A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31372e302f32342d3234203d3e20313335343632.roa Signing time: Sun 03 May 2026 02:48:27 +0000 ROA not before: Sun 03 May 2026 02:43:27 +0000 ROA not after: Sun 02 May 2027 02:48:27 +0000 asID: 135462 IP address blocks: 103.70.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6a:4a:71:39:5a:77:81:2e:97:e4:f4:3f:a9:8d:98:22:97:e7:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Validity Not Before: May 3 02:43:27 2026 GMT Not After : May 2 02:48:27 2027 GMT Subject: CN=DCC96C98980456EBECF19E52EAF4E9424C3E7EC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:f5:9f:c7:8e:35:b8:01:8f:67:33:7a:7d: bd:f6:97:5e:a3:80:3e:7d:a1:f9:fc:56:6b:59:15: 0b:98:50:1c:e6:d1:38:94:ec:75:e7:33:4a:f9:cd: a6:34:33:78:ea:ab:f2:41:34:b7:80:71:51:27:6f: e0:84:ee:07:17:18:f4:b0:ed:cf:2f:92:d6:f0:a1: a5:6f:3a:1f:29:37:c0:35:81:2b:d1:28:8c:bb:fc: df:2e:3c:bd:cc:ec:89:c0:01:3e:0c:0c:a0:06:bf: 63:92:91:1a:5e:75:0c:27:1f:28:a8:4b:aa:7c:79: 1d:db:79:2f:1d:20:75:4d:ed:94:f4:ea:5e:ee:8c: 29:e6:73:b5:d2:10:80:7e:c8:cd:f8:20:3f:d7:89: 13:77:f0:de:e3:1b:20:0a:50:09:a8:f2:d3:51:76: 2e:7a:72:7f:d1:e8:1b:9c:80:76:66:6f:c9:4e:39: 34:40:8b:07:92:92:48:e1:9e:89:cb:52:a2:f4:65: ae:21:4d:bf:9e:67:7d:d8:ef:02:82:ee:10:11:00: 61:d4:15:fc:e9:90:9e:57:1f:40:e1:87:5b:51:f6: ac:d8:d0:99:ff:2f:fd:ac:c2:92:13:4d:f1:a9:d3: 61:bc:c5:67:1d:be:d1:ad:3b:0d:b8:ad:c4:3c:20: d4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C9:6C:98:98:04:56:EB:EC:F1:9E:52:EA:F4:E9:42:4C:3E:7E:C7 X509v3 Authority Key Identifier: keyid:A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31372e302f32342d3234203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.17.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:f3:3e:0b:d4:73:06:42:f0:cd:d3:db:3e:27:24:54:6e:9f: 25:aa:5d:d9:25:6d:7d:93:9d:9b:d8:6e:61:a5:8d:de:52:4c: 9d:3a:8e:52:9b:cf:6e:38:e1:4d:68:b4:d6:03:d4:10:df:8a: 67:18:83:12:78:17:b1:ad:2b:c5:79:06:2c:07:e8:d0:e7:ca: 99:cc:9c:3f:cd:cb:6a:19:e0:6c:47:74:9e:6b:5b:02:94:18: de:6a:5f:59:e4:e3:28:ec:99:54:2e:54:47:61:bd:1f:a4:e2: 2d:f6:59:94:1d:20:4c:9d:06:50:d5:91:3a:db:57:12:da:f1: 0b:1b:bc:e8:0b:5f:5d:19:16:fb:5a:7c:a0:b8:5f:2a:9c:5a: c0:16:55:9f:90:83:11:d9:d1:9a:eb:1f:2d:5f:0e:0f:48:ac: 63:1a:88:95:4c:13:43:1e:2f:10:87:dc:03:11:14:d2:b5:1c: a4:38:bb:11:a8:c4:f8:53:ea:43:47:fc:29:29:8c:47:97:0f: a8:f7:25:44:4f:4d:32:f7:19:fb:0e:91:45:e7:01:26:a7:d3: 7b:4d:d0:2b:1c:0d:86:f0:7f:aa:e8:e6:42:f2:fe:28:11:24: 3a:f5:d1:f6:a2:85:95:98:89:fe:44:70:1b:90:bf:d7:9c:00: b2:90:92:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC2pKcTlad4Eul+T0P6mNmCKX5+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThEMjExQTU0MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4 MEJBNDU4QTAeFw0yNjA1MDMwMjQzMjdaFw0yNzA1MDIwMjQ4MjdaMDMxMTAvBgNV BAMTKERDQzk2Qzk4OTgwNDU2RUJFQ0YxOUU1MkVBRjRFOTQyNEMzRTdFQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMc/Wfx441uAGPZzN6fb32l16j gD59ofn8VmtZFQuYUBzm0TiU7HXnM0r5zaY0M3jqq/JBNLeAcVEnb+CE7gcXGPSw 7c8vktbwoaVvOh8pN8A1gSvRKIy7/N8uPL3M7InAAT4MDKAGv2OSkRpedQwnHyio S6p8eR3beS8dIHVN7ZT06l7ujCnmc7XSEIB+yM34ID/XiRN38N7jGyAKUAmo8tNR di56cn/R6BucgHZmb8lOOTRAiweSkkjhnonLUqL0Za4hTb+eZ33Y7wKC7hARAGHU FfzpkJ5XH0Dhh1tR9qzY0Jn/L/2swpITTfGp02G8xWcdvtGtOw24rcQ8INShAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3MlsmJgEVuvs8Z5S6vTpQkw+fscwHwYDVR0j BBgwFoAUqNIRpUCgpXxdastQMgkbGoC6RYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4NDQtNGU2YzdhM2M5N2Q5LzAvQThEMjExQTU0 MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4MEJBNDU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOEQyMTFBNTQwQTBBNTdDNUQ2QUNCNTAzMjA5MUIxQTgwQkE0 NThBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGETANBgkqhkiG 9w0BAQsFAAOCAQEAf/M+C9RzBkLwzdPbPickVG6fJapd2SVtfZOdm9huYaWN3lJM nTqOUpvPbjjhTWi01gPUEN+KZxiDEngXsa0rxXkGLAfo0OfKmcycP83LahngbEd0 nmtbApQY3mpfWeTjKOyZVC5UR2G9H6TiLfZZlB0gTJ0GUNWROttXEtrxCxu86Atf XRkW+1p8oLhfKpxawBZVn5CDEdnRmusfLV8OD0isYxqIlUwTQx4vEIfcAxEU0rUc pDi7EajE+FPqQ0f8KSmMR5cPqPclRE9NMvcZ+w6RRecBJqfTe03QKxwNhvB/qujm QvL+KBEkOvXR9qKFlZiJ/kRwG5C/15wAspCSUQ== -----END CERTIFICATE-----Generated at Wed May 13 02:18:50 2026 by rpki-client