$ rpki-client -vvf rpki-rsync.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa File: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (raw, json) Hash identifier: sJco2gFyjRbFkYkBOL4SjT5LogqtsvE6E0crTfpTSo4= Subject key identifier: F5:87:9E:79:39:08:A0:DC:C5:AB:73:D0:B0:4A:EF:6C:D5:37:B2:02 Certificate issuer: /CN=39EF560E07C0B42EF0457F7D5A70F8DBFF24C798 Certificate serial: 7351E551406E50FF743315647D152110370C754D Authority key identifier: 39:EF:56:0E:07:C0:B4:2E:F0:45:7F:7D:5A:70:F8:DB:FF:24:C7:98 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/39EF560E07C0B42EF0457F7D5A70F8DBFF24C798.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa Signing time: Sun 03 May 2026 02:49:23 +0000 ROA not before: Sun 03 May 2026 02:44:23 +0000 ROA not after: Sun 02 May 2027 02:49:23 +0000 asID: 149920 IP address blocks: 103.191.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/39EF560E07C0B42EF0457F7D5A70F8DBFF24C798.crl rsync://rpki-rsync.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/39EF560E07C0B42EF0457F7D5A70F8DBFF24C798.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/39EF560E07C0B42EF0457F7D5A70F8DBFF24C798.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:51:e5:51:40:6e:50:ff:74:33:15:64:7d:15:21:10:37:0c:75:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EF560E07C0B42EF0457F7D5A70F8DBFF24C798 Validity Not Before: May 3 02:44:23 2026 GMT Not After : May 2 02:49:23 2027 GMT Subject: CN=F5879E793908A0DCC5AB73D0B04AEF6CD537B202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:ae:e2:2a:20:31:05:34:57:c3:b8:c2:cf:04: 37:ed:75:6c:2f:9e:47:2b:86:0e:8b:88:35:3d:05: 18:bf:6a:1e:0e:e3:62:de:b3:08:43:80:96:c8:a9: d8:31:1c:53:bf:22:53:33:72:44:e0:2c:b5:91:c5: 06:b1:36:db:9d:c1:d7:54:bf:ae:46:d6:0f:79:52: 3b:db:77:ab:08:a0:e9:fb:44:0e:cf:9e:7c:d8:03: 96:7b:f9:90:47:97:db:42:fd:60:8a:7b:73:88:6f: 89:e6:94:76:7a:ab:d6:49:94:5e:84:88:2b:a3:d1: 5b:aa:c3:8b:52:e9:2a:75:7d:0c:b8:42:26:42:d5: 12:be:e8:9a:cd:e9:77:fc:65:ee:5b:e2:f1:22:46: 30:94:10:b5:e4:9a:0c:c4:de:b6:f6:3d:37:32:61: d8:17:b9:d8:79:d4:cd:10:ce:20:e8:7c:e8:5a:53: c7:23:4a:a0:0f:de:37:a3:54:11:bb:f2:63:47:46: 62:45:9a:bf:7a:0d:64:8e:a8:cc:ad:4e:df:70:5e: dc:a3:3c:06:c5:d0:27:60:45:5b:a1:71:fc:fc:d2: 87:37:21:85:85:0d:8d:e6:c4:49:42:da:5b:6c:c6: 9f:bf:b8:bb:c7:b1:2d:a4:b9:67:04:12:16:07:ba: 8e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:87:9E:79:39:08:A0:DC:C5:AB:73:D0:B0:4A:EF:6C:D5:37:B2:02 X509v3 Authority Key Identifier: keyid:39:EF:56:0E:07:C0:B4:2E:F0:45:7F:7D:5A:70:F8:DB:FF:24:C7:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/39EF560E07C0B42EF0457F7D5A70F8DBFF24C798.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/39EF560E07C0B42EF0457F7D5A70F8DBFF24C798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.129.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:8f:3d:4b:a4:7b:82:46:2c:ea:dc:9f:57:e8:cd:4c:e5:54: 25:62:65:77:4b:96:3f:44:75:df:67:f4:63:92:3a:8f:bd:53: 44:9e:a7:52:c9:a5:b4:0d:cd:d9:eb:67:59:5d:b1:6a:c1:3a: 96:71:c0:95:2a:10:6a:d8:8f:65:2f:79:a1:74:56:37:87:1e: 8b:a8:28:93:ea:ac:b5:d1:bc:34:57:04:6c:ab:c6:ee:dc:47: be:68:74:9b:28:ab:ce:c4:64:45:7b:f1:7c:96:32:e6:ad:a9: 72:23:77:fd:cc:0b:fe:53:36:3e:fe:52:42:a3:67:62:e9:4f: e1:1f:67:e2:95:26:98:1b:f6:37:02:dc:1f:7f:ef:37:a0:e5: cb:54:4a:58:c8:0f:b6:ad:aa:91:61:5c:ab:c0:32:66:ae:1f: cc:4e:f0:2d:34:b8:09:7e:31:2f:ec:83:92:5d:39:dd:1c:40: a9:87:6a:f2:6d:74:cf:82:d2:15:ec:13:00:43:13:2d:40:8a: b8:8e:f0:af:92:40:16:4b:55:19:48:4d:91:16:e9:ee:2e:e7: b7:a8:32:a8:9f:a1:20:c7:6c:26:e3:64:1f:ae:c0:eb:74:fc: 03:45:7e:5b:05:3b:3a:93:e1:5a:cb:25:9a:6b:00:67:fb:f0: d4:f1:f1:06 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc1HlUUBuUP90MxVkfRUhEDcMdU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzlFRjU2MEUwN0MwQjQyRUYwNDU3RjdENUE3MEY4REJG RjI0Qzc5ODAeFw0yNjA1MDMwMjQ0MjNaFw0yNzA1MDIwMjQ5MjNaMDMxMTAvBgNV BAMTKEY1ODc5RTc5MzkwOEEwRENDNUFCNzNEMEIwNEFFRjZDRDUzN0IyMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPruIqIDEFNFfDuMLPBDftdWwv nkcrhg6LiDU9BRi/ah4O42LeswhDgJbIqdgxHFO/IlMzckTgLLWRxQaxNtudwddU v65G1g95Ujvbd6sIoOn7RA7PnnzYA5Z7+ZBHl9tC/WCKe3OIb4nmlHZ6q9ZJlF6E iCuj0Vuqw4tS6Sp1fQy4QiZC1RK+6JrN6Xf8Ze5b4vEiRjCUELXkmgzE3rb2PTcy YdgXudh51M0QziDofOhaU8cjSqAP3jejVBG78mNHRmJFmr96DWSOqMytTt9wXtyj PAbF0CdgRVuhcfz80oc3IYWFDY3mxElC2ltsxp+/uLvHsS2kuWcEEhYHuo7PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9YeeeTkIoNzFq3PQsErvbNU3sgIwHwYDVR0j BBgwFoAUOe9WDgfAtC7wRX99WnD42/8kx5gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGFkMzM3NzAtZjE1MS00M2YzLTk1NjktNmEyN2Q3NTA0MjQwLzAvMzlFRjU2MEUw N0MwQjQyRUYwNDU3RjdENUE3MEY4REJGRjI0Qzc5OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOUVGNTYwRTA3QzBCNDJFRjA0NTdGN0Q1QTcwRjhEQkZGMjRD Nzk4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhhZDMzNzcwLWYxNTEtNDNmMy05 NTY5LTZhMjdkNzUwNDI0MC8wLzMxMzAzMzJlMzEzOTMxMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv4EwDQYJ KoZIhvcNAQELBQADggEBAG+PPUuke4JGLOrcn1fozUzlVCViZXdLlj9Edd9n9GOS Oo+9U0Sep1LJpbQNzdnrZ1ldsWrBOpZxwJUqEGrYj2UveaF0VjeHHouoKJPqrLXR vDRXBGyrxu7cR75odJsoq87EZEV78XyWMuatqXIjd/3MC/5TNj7+UkKjZ2LpT+Ef Z+KVJpgb9jcC3B9/7zeg5ctUSljID7atqpFhXKvAMmauH8xO8C00uAl+MS/sg5Jd Od0cQKmHavJtdM+C0hXsEwBDEy1AiriO8K+SQBZLVRlITZEW6e4u57eoMqifoSDH bCbjZB+uwOt0/ANFflsFOzqT4VrLJZprAGf78NTx8QY= -----END CERTIFICATE-----Generated at Wed May 13 15:43:47 2026 by rpki-client