$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa File: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (raw, json) Hash identifier: vqX/mtnN0W8RLZb7l8bNIZx8LnJh0g2gbraFilNseKo= Subject key identifier: B1:8E:19:84:DF:97:AF:81:52:65:51:2C:7C:18:EA:38:20:F4:F1:E9 Certificate issuer: /CN=E97B01E9B103A0595C106FBDB4EA9635F3812B44 Certificate serial: 24D9A43A0F4E1D8F8A4C00FB55C7BE1D860152FC Authority key identifier: E9:7B:01:E9:B1:03:A0:59:5C:10:6F:BD:B4:EA:96:35:F3:81:2B:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E97B01E9B103A0595C106FBDB4EA9635F3812B44.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa Signing time: Sun 03 May 2026 02:49:47 +0000 ROA not before: Sun 03 May 2026 02:44:47 +0000 ROA not after: Sun 02 May 2027 02:49:47 +0000 asID: 140421 IP address blocks: 103.148.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/E97B01E9B103A0595C106FBDB4EA9635F3812B44.crl rsync://rpki-rsync.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/E97B01E9B103A0595C106FBDB4EA9635F3812B44.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E97B01E9B103A0595C106FBDB4EA9635F3812B44.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:d9:a4:3a:0f:4e:1d:8f:8a:4c:00:fb:55:c7:be:1d:86:01:52:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E97B01E9B103A0595C106FBDB4EA9635F3812B44 Validity Not Before: May 3 02:44:47 2026 GMT Not After : May 2 02:49:47 2027 GMT Subject: CN=B18E1984DF97AF815265512C7C18EA3820F4F1E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9a:77:ee:40:a6:37:e0:5a:01:c7:ea:a7:9b: cb:85:bf:39:71:11:c6:42:eb:4e:bc:4c:e2:5d:cd: 0f:59:1f:9c:b7:20:9f:19:60:94:11:a0:4f:32:c0: de:23:21:1b:5d:e3:4e:23:0a:85:f8:27:f1:2d:49: 00:a1:11:ea:8c:eb:e1:12:47:cf:db:99:6a:c3:f4: 91:18:0c:73:60:11:ae:66:08:12:1d:4e:4f:5a:c5: 1c:bd:ee:55:1f:4e:a6:6d:6b:e2:ba:db:9f:9b:28: 77:e6:94:b6:7b:4a:7b:c2:0f:c0:3d:c6:85:e8:8a: b1:6b:d7:9d:3e:d2:d3:0b:17:ee:8d:35:ae:05:3e: 3d:01:4c:59:dd:e2:1e:f0:9f:97:cf:0e:cd:95:e7: a4:d2:de:fd:4b:9e:fa:99:6b:e3:b8:41:76:23:3f: 99:1d:9f:02:47:11:60:19:2d:ac:79:2a:bc:c5:64: 64:1f:e7:21:8e:c3:24:20:00:0a:44:03:7e:9c:9f: 20:92:ab:8d:e8:5a:d0:ac:11:91:66:81:0c:c4:67: 6f:d1:2e:44:10:ba:20:b4:ad:0a:d2:56:c9:13:99: 47:10:3c:86:77:0b:ce:8f:6b:8d:27:69:98:6e:28: f2:16:8d:13:00:18:b6:69:d2:ca:3f:4f:c4:dc:11: a6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8E:19:84:DF:97:AF:81:52:65:51:2C:7C:18:EA:38:20:F4:F1:E9 X509v3 Authority Key Identifier: keyid:E9:7B:01:E9:B1:03:A0:59:5C:10:6F:BD:B4:EA:96:35:F3:81:2B:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/E97B01E9B103A0595C106FBDB4EA9635F3812B44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E97B01E9B103A0595C106FBDB4EA9635F3812B44.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.89.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:3d:22:05:36:15:33:9f:e3:82:93:da:7b:a9:08:8a:b5:f0: a1:0a:23:f4:8b:cd:4f:c2:c0:94:b5:7d:63:fe:d9:d0:71:9f: d1:a9:6f:bf:83:50:12:29:9f:7d:4d:77:b9:6f:4b:77:c7:b1: 58:4d:3f:68:20:4a:87:41:9e:06:fd:c9:40:14:b3:28:c2:68: 7b:96:d3:e3:b7:84:f2:ab:f2:a9:ff:99:c5:e1:e9:1c:55:8a: 40:1d:51:69:ba:c4:74:57:78:42:a3:f5:e2:6c:a0:6c:ff:34: 34:0b:14:07:8b:b3:ea:79:29:40:d9:90:a0:c3:bf:2d:bc:35: a7:de:73:bf:e9:e4:99:84:07:9c:f3:7b:af:e1:9c:b1:de:81: 4d:6b:2a:70:30:0e:bf:02:bd:ad:f9:26:43:d6:ec:0f:7a:fc: 70:78:24:aa:da:29:cc:94:ed:4d:43:e8:f9:45:b1:6e:26:95: 72:93:6c:9f:6d:8b:ae:1d:e9:38:91:d9:41:a3:d7:4d:80:97: 90:00:89:d1:85:b8:c8:4a:a8:f9:13:34:1b:bc:e1:57:96:cd: 1e:91:f3:97:c1:97:41:9c:d4:1c:1e:ec:3e:09:fb:b8:0e:da: 6e:78:74:6b:da:6f:7e:ae:fb:5a:c9:50:d4:eb:47:ba:a9:01: 3a:d1:6d:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJNmkOg9OHY+KTAD7Vce+HYYBUvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk3QjAxRTlCMTAzQTA1OTVDMTA2RkJEQjRFQTk2MzVG MzgxMkI0NDAeFw0yNjA1MDMwMjQ0NDdaFw0yNzA1MDIwMjQ5NDdaMDMxMTAvBgNV BAMTKEIxOEUxOTg0REY5N0FGODE1MjY1NTEyQzdDMThFQTM4MjBGNEYxRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCamnfuQKY34FoBx+qnm8uFvzlx EcZC6068TOJdzQ9ZH5y3IJ8ZYJQRoE8ywN4jIRtd404jCoX4J/EtSQChEeqM6+ES R8/bmWrD9JEYDHNgEa5mCBIdTk9axRy97lUfTqZta+K625+bKHfmlLZ7SnvCD8A9 xoXoirFr150+0tMLF+6NNa4FPj0BTFnd4h7wn5fPDs2V56TS3v1LnvqZa+O4QXYj P5kdnwJHEWAZLax5KrzFZGQf5yGOwyQgAApEA36cnyCSq43oWtCsEZFmgQzEZ2/R LkQQuiC0rQrSVskTmUcQPIZ3C86Pa40naZhuKPIWjRMAGLZp0so/T8TcEaazAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsY4ZhN+Xr4FSZVEsfBjqOCD08ekwHwYDVR0j BBgwFoAU6XsB6bEDoFlcEG+9tOqWNfOBK0QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI3MmVjYTQtNzNhZC00ZTBiLWE2YTYtN2E2NTY5OGI3M2JlLzAvRTk3QjAxRTlC MTAzQTA1OTVDMTA2RkJEQjRFQTk2MzVGMzgxMkI0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FOTdCMDFFOUIxMDNBMDU5NUMxMDZGQkRCNEVBOTYzNUYzODEy QjQ0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMxMzAzMzJlMzEzNDM4MmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RZMA0GCSqG SIb3DQEBCwUAA4IBAQAqPSIFNhUzn+OCk9p7qQiKtfChCiP0i81PwsCUtX1j/tnQ cZ/RqW+/g1ASKZ99TXe5b0t3x7FYTT9oIEqHQZ4G/clAFLMowmh7ltPjt4Tyq/Kp /5nF4ekcVYpAHVFpusR0V3hCo/XibKBs/zQ0CxQHi7PqeSlA2ZCgw78tvDWn3nO/ 6eSZhAec83uv4Zyx3oFNaypwMA6/Ar2t+SZD1uwPevxweCSq2inMlO1NQ+j5RbFu JpVyk2yfbYuuHek4kdlBo9dNgJeQAInRhbjISqj5EzQbvOFXls0ekfOXwZdBnNQc Huw+Cfu4DtpueHRr2m9+rvtayVDU60e6qQE60W3m -----END CERTIFICATE-----Generated at Wed May 13 02:15:54 2026 by rpki-client