$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa File: 3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa (raw, json) Hash identifier: ymqzNsOJhmLcRFDDsoYR0MwzS6+nUhmsNkUUP+/NCsk= Subject key identifier: 3A:FC:77:BA:E7:0D:E8:30:D7:0A:70:96:41:04:FD:E6:FC:F6:22:CC Certificate issuer: /CN=CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C Certificate serial: 64B7E855D0A67B1A2B5506ED2C7724B1EEA26ADB Authority key identifier: CE:62:0D:0F:51:CB:0E:E1:C8:DF:26:4C:48:8C:E3:4D:0C:F3:3C:1C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa Signing time: Sun 03 May 2026 02:50:25 +0000 ROA not before: Sun 03 May 2026 02:45:25 +0000 ROA not after: Sun 02 May 2027 02:50:25 +0000 asID: 58819 IP address blocks: 103.240.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.crl rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b7:e8:55:d0:a6:7b:1a:2b:55:06:ed:2c:77:24:b1:ee:a2:6a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C Validity Not Before: May 3 02:45:25 2026 GMT Not After : May 2 02:50:25 2027 GMT Subject: CN=3AFC77BAE70DE830D70A70964104FDE6FCF622CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f9:81:87:5a:79:52:b2:09:0a:2b:57:53:b9: 57:d7:1f:b6:fd:44:eb:c8:7b:7e:e4:f6:b5:48:ca: 4a:91:c9:32:57:82:7a:76:98:a4:a2:e1:46:c2:2a: cc:1d:d8:a7:99:33:45:05:84:f8:4b:2d:a5:b6:f7: c3:65:84:9b:ae:d5:27:45:b2:60:31:8e:a0:ef:a5: 25:76:df:b7:4d:24:5e:ce:20:89:e7:58:34:0d:af: e7:90:c3:d1:c1:0a:5f:a9:c1:3a:d6:da:87:f6:1a: 04:05:a2:c2:e5:41:88:d9:f6:ce:1b:7e:ef:16:fc: d9:9c:01:8d:13:5d:ba:17:68:e6:e6:23:5c:03:c4: 59:ed:c8:39:94:9a:b8:54:93:9f:8d:65:1f:f8:0c: bd:6f:3b:44:53:8d:29:95:d7:16:fb:2f:f7:bb:b4: 66:ad:ac:d7:26:4f:6b:16:68:54:ec:cb:08:aa:72: 40:68:ba:14:80:95:d9:f5:99:bd:1e:d3:76:17:27: a0:e5:72:f1:ef:60:84:84:42:25:e4:af:f1:ed:4f: a9:0c:cd:b3:51:2c:c1:b5:86:25:69:84:ca:41:a1: 4f:02:b1:82:e8:20:14:5a:41:7a:05:f8:95:57:aa: 1d:3c:ad:b4:98:6e:64:a0:25:3b:be:04:73:89:42: bc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:FC:77:BA:E7:0D:E8:30:D7:0A:70:96:41:04:FD:E6:FC:F6:22:CC X509v3 Authority Key Identifier: keyid:CE:62:0D:0F:51:CB:0E:E1:C8:DF:26:4C:48:8C:E3:4D:0C:F3:3C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.108.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:ea:58:4e:97:1b:da:31:40:3b:b3:5d:22:6f:d1:55:f1:a3: 18:03:b7:af:d5:c7:44:9d:42:21:76:84:5f:e6:a0:17:59:ca: 6e:d2:ec:8c:21:ab:93:fd:65:56:37:79:fd:ea:42:e1:79:02: 37:9a:4d:44:74:22:da:95:64:0a:9b:5a:b2:49:86:d7:ea:a8: 6e:64:3f:cc:44:ac:02:bc:a1:7e:0b:d8:58:0e:bb:98:6d:25: b9:07:26:4f:d1:89:15:c3:1b:75:7d:88:24:c4:09:c6:2e:a9: 85:89:bd:5a:4f:fd:2b:b7:f6:93:9f:13:67:91:3a:f1:03:33: ac:5d:69:49:fb:3c:6f:e1:29:5d:62:92:f6:3b:eb:8f:58:c0: f9:70:f2:ed:8f:f8:92:32:99:29:2c:39:9f:e3:a0:cd:a6:1c: 83:e9:dc:07:02:9b:61:04:2e:ef:63:e3:8a:9a:c9:d2:ac:e6: 3a:a2:d4:2e:b6:e9:97:3b:a1:80:4a:74:84:e1:ba:bb:69:7b: 37:ab:c7:75:65:af:81:52:fd:e4:09:e2:2a:0f:19:69:22:8d: 33:75:64:22:15:53:4f:a7:64:5d:fd:61:7d:c0:49:14:f9:95: 58:ce:2b:9a:60:95:68:fb:8f:6d:16:4c:cc:da:5d:83:8e:9d: 16:db:ea:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZLfoVdCmexorVQbtLHckse6iatswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U2MjBEMEY1MUNCMEVFMUM4REYyNjRDNDg4Q0UzNEQw Q0YzM0MxQzAeFw0yNjA1MDMwMjQ1MjVaFw0yNzA1MDIwMjUwMjVaMDMxMTAvBgNV BAMTKDNBRkM3N0JBRTcwREU4MzBENzBBNzA5NjQxMDRGREU2RkNGNjIyQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT+YGHWnlSsgkKK1dTuVfXH7b9 ROvIe37k9rVIykqRyTJXgnp2mKSi4UbCKswd2KeZM0UFhPhLLaW298NlhJuu1SdF smAxjqDvpSV237dNJF7OIInnWDQNr+eQw9HBCl+pwTrW2of2GgQFosLlQYjZ9s4b fu8W/NmcAY0TXboXaObmI1wDxFntyDmUmrhUk5+NZR/4DL1vO0RTjSmV1xb7L/e7 tGatrNcmT2sWaFTsywiqckBouhSAldn1mb0e03YXJ6DlcvHvYISEQiXkr/HtT6kM zbNRLMG1hiVphMpBoU8CsYLoIBRaQXoF+JVXqh08rbSYbmSgJTu+BHOJQrxTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOvx3uucN6DDXCnCWQQT95vz2IswwHwYDVR0j BBgwFoAUzmIND1HLDuHI3yZMSIzjTQzzPBwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQwM2FmMDEtZjIzOS00YTFmLTgxY2QtNDEwNmJlYmIyYTIyLzAvQ0U2MjBEMEY1 MUNCMEVFMUM4REYyNjRDNDg4Q0UzNEQwQ0YzM0MxQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRTYyMEQwRjUxQ0IwRUUxQzhERjI2NEM0ODhDRTM0RDBDRjMz QzFDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/BsMA0GCSqG SIb3DQEBCwUAA4IBAQCa6lhOlxvaMUA7s10ib9FV8aMYA7ev1cdEnUIhdoRf5qAX Wcpu0uyMIauT/WVWN3n96kLheQI3mk1EdCLalWQKm1qySYbX6qhuZD/MRKwCvKF+ C9hYDruYbSW5ByZP0YkVwxt1fYgkxAnGLqmFib1aT/0rt/aTnxNnkTrxAzOsXWlJ +zxv4SldYpL2O+uPWMD5cPLtj/iSMpkpLDmf46DNphyD6dwHApthBC7vY+OKmsnS rOY6otQutumXO6GASnSE4bq7aXs3q8d1Za+BUv3kCeIqDxlpIo0zdWQiFVNPp2Rd /WF9wEkU+ZVYziuaYJVo+49tFkzM2l2Djp0W2+ow -----END CERTIFICATE-----Generated at Wed May 13 14:50:30 2026 by rpki-client