$ rpki-client -vvf rpki-rsync.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa File: 3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa (raw, json) Hash identifier: 2ktJ+LGrBdyxqO+5Ni21bj0NM08xpyYMFhaaSWYusJY= Subject key identifier: 37:7A:AD:C7:E7:A8:AB:AE:64:EA:B4:C1:CF:C9:1B:86:89:DC:E5:26 Certificate issuer: /CN=4BD77983D98742985400276FF0F5959696EA7807 Certificate serial: 3211EE6503CCF6F7AD77C00FBBE33DBBE65358BD Authority key identifier: 4B:D7:79:83:D9:87:42:98:54:00:27:6F:F0:F5:95:96:96:EA:78:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4BD77983D98742985400276FF0F5959696EA7807.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa Signing time: Sun 03 May 2026 02:48:28 +0000 ROA not before: Sun 03 May 2026 02:43:28 +0000 ROA not after: Sun 02 May 2027 02:48:28 +0000 asID: 133834 IP address blocks: 103.58.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/4BD77983D98742985400276FF0F5959696EA7807.crl rsync://rpki-rsync.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/4BD77983D98742985400276FF0F5959696EA7807.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4BD77983D98742985400276FF0F5959696EA7807.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:11:ee:65:03:cc:f6:f7:ad:77:c0:0f:bb:e3:3d:bb:e6:53:58:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BD77983D98742985400276FF0F5959696EA7807 Validity Not Before: May 3 02:43:28 2026 GMT Not After : May 2 02:48:28 2027 GMT Subject: CN=377AADC7E7A8ABAE64EAB4C1CFC91B8689DCE526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:74:c7:eb:c3:a9:5f:4a:ad:9a:07:4b:6f: 1a:f9:ff:8f:6d:95:d9:85:c7:4e:0e:ee:6b:93:e5: 2c:e0:b8:74:43:60:19:63:6a:b1:4d:49:21:ce:d0: 42:d9:55:24:32:7d:35:31:e4:54:15:d8:d5:88:bf: dd:02:67:e0:6e:25:72:64:a6:89:81:ac:df:5a:a2: a6:fd:0a:ca:84:f9:7c:89:40:5f:79:93:89:43:93: f3:54:51:63:83:0e:3f:93:5b:16:63:1e:78:db:4d: d2:5d:4f:d5:2b:68:68:d3:08:50:cf:85:76:a2:75: 10:43:c8:34:91:5e:6c:3f:d2:e6:1d:2d:fd:39:f2: 8b:7b:31:1f:da:46:df:ba:42:00:db:3b:10:43:7f: 51:89:cc:25:ca:02:66:cf:0b:09:fa:d7:ac:a8:d7: 09:5c:05:f3:38:8c:91:77:80:07:89:ef:c8:e0:9f: 15:0a:b0:4c:ad:a4:db:6b:aa:1c:c4:b6:86:7b:4b: 9d:24:b3:ed:3d:85:4a:7c:f4:83:29:22:29:ae:79: 6e:73:9b:df:9b:e2:92:0c:64:de:f8:a8:1c:19:d0: 0b:d2:31:24:46:a6:90:a8:4a:68:5c:3f:e0:ac:f2: 05:be:b2:bb:ac:63:b3:e1:00:92:de:b5:1a:ff:7a: ac:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7A:AD:C7:E7:A8:AB:AE:64:EA:B4:C1:CF:C9:1B:86:89:DC:E5:26 X509v3 Authority Key Identifier: keyid:4B:D7:79:83:D9:87:42:98:54:00:27:6F:F0:F5:95:96:96:EA:78:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/4BD77983D98742985400276FF0F5959696EA7807.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4BD77983D98742985400276FF0F5959696EA7807.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.104.0/22 Signature Algorithm: sha256WithRSAEncryption c5:6c:6a:ad:0f:41:8a:49:c1:4d:60:78:af:5f:9d:b3:78:33: 78:de:7c:5c:2c:fe:e3:11:ee:da:8b:16:be:45:41:f2:0c:92: 73:d6:95:77:b5:7f:1f:a1:61:34:8e:95:10:18:2e:3e:d3:48: 8a:fa:2a:2c:ad:f5:e5:9f:2f:24:72:2d:74:13:40:2c:32:20: 77:de:08:1d:46:ba:f7:b3:1c:b8:4b:22:8d:80:3b:5b:d9:11: 38:7d:93:c0:29:cc:ef:6d:8d:fe:eb:0f:c9:a3:0c:a8:35:45: 00:26:ad:a9:06:53:d8:a1:c1:1b:09:ec:69:88:ab:bc:fd:7c: fb:a9:af:35:6a:00:22:af:75:7d:e4:bb:69:e7:e6:ab:23:ca: c1:56:72:cb:9c:bc:c5:6e:c1:86:7b:fe:1f:3e:4d:bc:a3:8b: 2a:7f:2b:db:1c:07:fa:20:ee:2e:45:ab:38:7c:73:08:45:ef: 53:39:04:77:c9:5d:09:2e:e0:84:7b:6f:7f:fb:26:8c:5b:25: d3:66:23:b4:cd:85:c3:c0:1f:13:2a:3a:43:ad:d5:93:6f:25: 04:39:34:1c:25:49:e5:90:2f:5a:0d:2d:fc:a8:dc:a0:5c:58: 8e:9c:12:ce:6e:77:8f:1c:62:2d:45:f9:e9:1c:08:40:2f:a0: 48:9a:b1:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMhHuZQPM9vetd8APu+M9u+ZTWL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJENzc5ODNEOTg3NDI5ODU0MDAyNzZGRjBGNTk1OTY5 NkVBNzgwNzAeFw0yNjA1MDMwMjQzMjhaFw0yNzA1MDIwMjQ4MjhaMDMxMTAvBgNV BAMTKDM3N0FBREM3RTdBOEFCQUU2NEVBQjRDMUNGQzkxQjg2ODlEQ0U1MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC93XTH68OpX0qtmgdLbxr5/49t ldmFx04O7muT5SzguHRDYBljarFNSSHO0ELZVSQyfTUx5FQV2NWIv90CZ+BuJXJk pomBrN9aoqb9CsqE+XyJQF95k4lDk/NUUWODDj+TWxZjHnjbTdJdT9UraGjTCFDP hXaidRBDyDSRXmw/0uYdLf058ot7MR/aRt+6QgDbOxBDf1GJzCXKAmbPCwn616yo 1wlcBfM4jJF3gAeJ78jgnxUKsEytpNtrqhzEtoZ7S50ks+09hUp89IMpIimueW5z m9+b4pIMZN74qBwZ0AvSMSRGppCoSmhcP+Cs8gW+srusY7PhAJLetRr/eqwbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN3qtx+eoq65k6rTBz8kbhonc5SYwHwYDVR0j BBgwFoAUS9d5g9mHQphUACdv8PWVlpbqeAcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODcxYWRhOWUtZTJhOS00MDBlLThkZmYtOWJlNDgxYWJhNTgzLzAvNEJENzc5ODNE OTg3NDI5ODU0MDAyNzZGRjBGNTk1OTY5NkVBNzgwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QkQ3Nzk4M0Q5ODc0Mjk4NTQwMDI3NkZGMEY1OTU5Njk2RUE3 ODA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3MWFkYTllLWUyYTktNDAwZS04 ZGZmLTliZTQ4MWFiYTU4My8wLzMxMzAzMzJlMzUzODJlMzEzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzpoMA0GCSqG SIb3DQEBCwUAA4IBAQDFbGqtD0GKScFNYHivX52zeDN43nxcLP7jEe7aixa+RUHy DJJz1pV3tX8foWE0jpUQGC4+00iK+iosrfXlny8kci10E0AsMiB33ggdRrr3sxy4 SyKNgDtb2RE4fZPAKczvbY3+6w/JowyoNUUAJq2pBlPYocEbCexpiKu8/Xz7qa81 agAir3V95Ltp5+arI8rBVnLLnLzFbsGGe/4fPk28o4sqfyvbHAf6IO4uRas4fHMI Re9TOQR3yV0JLuCEe29/+yaMWyXTZiO0zYXDwB8TKjpDrdWTbyUEOTQcJUnlkC9a DS38qNygXFiOnBLObnePHGItRfnpHAhAL6BImrEw -----END CERTIFICATE-----Generated at Wed May 13 02:52:08 2026 by rpki-client