$ rpki-client -vvf rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa File: 3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa (raw, json) Hash identifier: dpRjxkyvMZSuMwoiOFiEbs0aVfBM9F5a6WoDjj2reGk= Subject key identifier: B0:AF:65:37:42:BC:9D:E4:FB:5A:F1:EB:3E:25:F5:F3:13:27:2D:65 Certificate issuer: /CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Certificate serial: 5A3D03D760868E576373B7BE7ACE2D33DD1A1A3C Authority key identifier: 2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa Signing time: Sun 03 May 2026 02:52:11 +0000 ROA not before: Sun 03 May 2026 02:47:11 +0000 ROA not after: Sun 02 May 2027 02:52:11 +0000 asID: 131736 IP address blocks: 103.132.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:3d:03:d7:60:86:8e:57:63:73:b7:be:7a:ce:2d:33:dd:1a:1a:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Validity Not Before: May 3 02:47:11 2026 GMT Not After : May 2 02:52:11 2027 GMT Subject: CN=B0AF653742BC9DE4FB5AF1EB3E25F5F313272D65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:e0:a8:f2:d5:f2:44:a7:9a:d5:05:ae:f1: ad:4f:cd:da:5d:cc:2d:10:e7:b8:61:33:67:b1:78: e1:0d:70:4b:77:5d:62:63:78:80:29:d1:ca:3b:b6: 07:be:9e:7a:0b:58:11:43:07:fd:b2:9d:9b:56:4a: 95:3d:79:6f:2a:60:78:4d:bf:d3:9e:49:4f:6f:fe: d5:bf:74:7e:e4:cf:ac:58:fb:b5:86:78:f6:bc:dd: 52:3e:b4:8e:09:e1:a2:f7:55:9c:31:89:75:28:17: ef:0f:86:85:96:1e:f6:a6:ac:e2:81:5d:d4:15:e7: f2:cc:86:5b:9e:d8:52:e8:8e:3d:d1:f7:79:ba:e1: fd:da:fc:99:45:fa:0f:17:8a:8a:4d:0a:50:a7:cf: ef:88:52:ba:cd:e7:35:fd:31:6a:a7:8e:17:2e:4c: 0e:0b:7b:24:8c:8b:4e:e5:a5:85:89:85:04:74:dc: 68:04:02:eb:3a:ae:57:48:7b:3d:27:fb:dc:e8:36: 90:5c:c4:a0:49:4b:e6:e4:ea:15:e5:30:76:b3:a4: d9:e5:0d:5b:8e:88:f7:b1:b8:ed:40:39:17:ff:75: b3:ae:71:3c:e1:0b:30:1b:c2:60:24:f5:be:8f:12: 23:1c:fb:41:3f:d1:77:85:3a:fb:00:79:07:31:c1: c8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AF:65:37:42:BC:9D:E4:FB:5A:F1:EB:3E:25:F5:F3:13:27:2D:65 X509v3 Authority Key Identifier: keyid:2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.15.0/24 Signature Algorithm: sha256WithRSAEncryption 28:99:8e:4f:b0:70:ac:21:4b:cb:1f:5a:db:c9:2a:3c:75:0b: b0:ce:20:aa:1b:50:10:87:9d:0b:23:4d:6c:39:99:ac:44:da: 60:d0:46:f5:6f:eb:f1:14:48:e3:54:90:c4:c2:07:13:25:b0: 02:96:7b:cd:15:6c:03:c5:4f:93:b0:e6:c5:7d:01:f6:c0:ce: ac:ef:b8:01:ec:20:ee:b3:a2:76:1a:89:d4:ee:51:20:7f:9c: 85:d5:26:d3:d6:a5:e4:43:fe:d9:ce:5e:dd:d3:3f:1d:1b:af: 36:14:e2:ed:f5:6e:e2:78:c1:83:69:69:96:a6:ff:86:76:31: 8c:bd:83:77:d1:2e:a2:d9:69:fd:3e:37:9a:d3:f8:a3:3f:e2: bf:8f:b8:26:9c:6b:c2:c8:1b:74:3a:a7:b8:d7:ff:a9:6b:2c: 5a:44:01:c9:29:14:8e:07:bc:ad:4e:24:d2:37:d4:b0:70:28: 4d:16:80:fe:b7:ed:1d:99:ae:f6:97:c1:80:b0:71:fc:ff:f2: 65:2f:5f:32:ab:fa:d9:f1:3b:37:ff:56:e2:0c:a8:3a:4e:f3: e6:f5:3d:90:a9:cd:16:b1:d5:46:40:fa:c6:ea:42:71:c6:1a: b0:79:3f:4d:73:a6:37:6d:c3:3f:d5:70:32:60:3e:88:d5:31: 1c:a2:bb:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWj0D12CGjldjc7e+es4tM90aGjwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVBQjIyREVEQTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1 MkI4QkQ3MDAeFw0yNjA1MDMwMjQ3MTFaFw0yNzA1MDIwMjUyMTFaMDMxMTAvBgNV BAMTKEIwQUY2NTM3NDJCQzlERTRGQjVBRjFFQjNFMjVGNUYzMTMyNzJENjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7leCo8tXyRKea1QWu8a1Pzdpd zC0Q57hhM2exeOENcEt3XWJjeIAp0co7tge+nnoLWBFDB/2ynZtWSpU9eW8qYHhN v9OeSU9v/tW/dH7kz6xY+7WGePa83VI+tI4J4aL3VZwxiXUoF+8PhoWWHvamrOKB XdQV5/LMhlue2FLojj3R93m64f3a/JlF+g8XiopNClCnz++IUrrN5zX9MWqnjhcu TA4LeySMi07lpYWJhQR03GgEAus6rldIez0n+9zoNpBcxKBJS+bk6hXlMHazpNnl DVuOiPexuO1AORf/dbOucTzhCzAbwmAk9b6PEiMc+0E/0XeFOvsAeQcxwchHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsK9lN0K8neT7WvHrPiX18xMnLWUwHwYDVR0j BBgwFoAULqsi3toXyGM1IMdlwb7OaFK4vXAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI1Y2RhMzYtNjkzYS00YzFhLWJhOWUtZTBlMTc4MTEyMTQwLzAvMkVBQjIyREVE QTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1MkI4QkQ3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRUFCMjJERURBMTdDODYzMzUyMEM3NjVDMUJFQ0U2ODUyQjhC RDcwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMxMzAzMzJlMzEzMzMyMmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4QPMA0GCSqG SIb3DQEBCwUAA4IBAQAomY5PsHCsIUvLH1rbySo8dQuwziCqG1AQh50LI01sOZms RNpg0Eb1b+vxFEjjVJDEwgcTJbAClnvNFWwDxU+TsObFfQH2wM6s77gB7CDus6J2 GonU7lEgf5yF1SbT1qXkQ/7Zzl7d0z8dG682FOLt9W7ieMGDaWmWpv+GdjGMvYN3 0S6i2Wn9Pjea0/ijP+K/j7gmnGvCyBt0Oqe41/+payxaRAHJKRSOB7ytTiTSN9Sw cChNFoD+t+0dma72l8GAsHH8//JlL18yq/rZ8Ts3/1biDKg6TvPm9T2Qqc0WsdVG QPrG6kJxxhqweT9Nc6Y3bcM/1XAyYD6I1TEcorvt -----END CERTIFICATE-----Generated at Wed May 13 05:25:08 2026 by rpki-client