$ rpki-client -vvf rpki-rsync.idnic.net/repo/9795a378-d69e-452e-ac67-3b749039a8c8/0/3130332e3136312e3131342e302f32332d3234203d3e20313431363132.roa File: 3130332e3136312e3131342e302f32332d3234203d3e20313431363132.roa (raw, json) Hash identifier: AuCdih88NSq35lOqDy4yw7F/uYDNOpEkZusC24B4jX8= Subject key identifier: 5A:94:7F:F8:FC:5A:68:67:22:1D:02:50:E3:37:BF:1D:7F:72:DE:F9 Certificate issuer: /CN=EAA4FE45195D514CCA759DE1CF2124DCD840A8DB Certificate serial: 39D5E8464A4C3ECEAFE6662A5506155DD1C30E49 Authority key identifier: EA:A4:FE:45:19:5D:51:4C:CA:75:9D:E1:CF:21:24:DC:D8:40:A8:DB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAA4FE45195D514CCA759DE1CF2124DCD840A8DB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9795a378-d69e-452e-ac67-3b749039a8c8/0/3130332e3136312e3131342e302f32332d3234203d3e20313431363132.roa Signing time: Sun 03 May 2026 02:53:20 +0000 ROA not before: Sun 03 May 2026 02:48:20 +0000 ROA not after: Sun 02 May 2027 02:53:20 +0000 asID: 141612 IP address blocks: 103.161.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9795a378-d69e-452e-ac67-3b749039a8c8/0/EAA4FE45195D514CCA759DE1CF2124DCD840A8DB.crl rsync://rpki-rsync.idnic.net/repo/9795a378-d69e-452e-ac67-3b749039a8c8/0/EAA4FE45195D514CCA759DE1CF2124DCD840A8DB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAA4FE45195D514CCA759DE1CF2124DCD840A8DB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:18:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d5:e8:46:4a:4c:3e:ce:af:e6:66:2a:55:06:15:5d:d1:c3:0e:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAA4FE45195D514CCA759DE1CF2124DCD840A8DB Validity Not Before: May 3 02:48:20 2026 GMT Not After : May 2 02:53:20 2027 GMT Subject: CN=5A947FF8FC5A6867221D0250E337BF1D7F72DEF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a4:e6:cd:18:c9:4c:8d:07:d5:8e:e8:fc:a0: 62:a2:7f:f5:8c:c5:be:3b:cf:de:eb:8f:38:6a:02: 50:af:59:de:db:33:81:76:46:de:23:b2:0f:37:db: 39:e2:bd:9c:aa:88:b7:37:c9:1a:cc:cd:5e:a7:f2: 0a:49:b0:6e:89:4b:33:c4:91:e7:0b:30:37:84:87: 4d:c8:30:1a:76:9d:27:e1:00:7d:f2:0e:27:17:47: 7e:28:23:7d:19:de:99:44:43:38:29:dd:17:a5:32: c4:5f:e0:df:7f:76:14:e2:ca:de:7e:fa:6f:68:87: 7c:23:ce:24:39:20:71:c2:46:1c:54:06:88:9a:d5: 07:14:56:83:e1:54:82:55:0b:c4:e2:84:1d:fb:f5: a3:a3:17:3e:44:17:cd:72:8c:4e:c0:cf:4d:66:00: 78:9e:24:30:f8:18:33:11:f7:5b:78:ce:8a:43:0d: 5e:2a:9a:fe:d7:35:eb:16:8a:27:81:bd:c2:60:c2: bc:91:01:aa:39:f0:34:b3:41:e5:4b:3e:4b:3a:62: d4:e8:c4:72:03:ef:e2:86:de:50:79:18:ae:3d:2b: 83:66:b1:cc:b7:56:ba:29:e8:5b:c6:24:51:5d:f0: 2d:84:c5:af:54:bc:f1:a1:c1:c4:50:a2:ec:d8:2e: 33:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:94:7F:F8:FC:5A:68:67:22:1D:02:50:E3:37:BF:1D:7F:72:DE:F9 X509v3 Authority Key Identifier: keyid:EA:A4:FE:45:19:5D:51:4C:CA:75:9D:E1:CF:21:24:DC:D8:40:A8:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9795a378-d69e-452e-ac67-3b749039a8c8/0/EAA4FE45195D514CCA759DE1CF2124DCD840A8DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAA4FE45195D514CCA759DE1CF2124DCD840A8DB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9795a378-d69e-452e-ac67-3b749039a8c8/0/3130332e3136312e3131342e302f32332d3234203d3e20313431363132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.114.0/23 Signature Algorithm: sha256WithRSAEncryption 90:6a:c3:2a:dd:a4:6a:39:51:f4:f1:97:87:30:bc:15:33:28: 65:1b:d3:35:d9:b6:51:0c:dc:ca:0d:e8:86:78:c3:32:84:0d: 87:9f:ae:64:92:e3:c7:ff:29:24:70:88:98:e5:6e:8a:f9:e2: 22:4b:14:80:45:72:ab:71:f7:3e:dc:5b:22:86:f2:7b:f8:20: 58:72:49:d9:ba:af:18:e3:41:df:35:3d:8e:e6:3b:68:1b:6a: a9:c2:d1:d1:f0:a7:7f:7f:c0:fc:ab:11:87:63:13:ac:cb:86: 5f:b2:e5:4e:66:ec:0e:0f:fd:ba:04:bf:38:da:f2:88:1d:ef: 04:90:13:0c:ed:57:f0:90:62:5f:4a:28:6c:0b:a8:80:d6:2c: a2:00:48:cc:99:b1:3b:9a:74:39:6c:89:5e:8a:ba:fc:65:20: bb:7e:da:36:94:1f:c7:49:24:dc:36:e5:b1:07:8c:74:00:c2: c7:8f:fa:95:43:13:c3:dc:18:51:15:6f:0c:42:a6:d0:85:e5: 7b:27:b6:4f:7a:a9:7e:45:b4:a1:2e:51:81:4b:6b:e0:c8:07: fd:47:17:d8:9f:28:b2:c7:37:78:68:f2:9d:d3:17:67:24:c6: 7e:c0:98:72:ac:f3:30:54:89:27:a1:ed:72:0e:c4:25:a9:be: 46:9e:09:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOdXoRkpMPs6v5mYqVQYVXdHDDkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFBNEZFNDUxOTVENTE0Q0NBNzU5REUxQ0YyMTI0RENE ODQwQThEQjAeFw0yNjA1MDMwMjQ4MjBaFw0yNzA1MDIwMjUzMjBaMDMxMTAvBgNV BAMTKDVBOTQ3RkY4RkM1QTY4NjcyMjFEMDI1MEUzMzdCRjFEN0Y3MkRFRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkpObNGMlMjQfVjuj8oGKif/WM xb47z97rjzhqAlCvWd7bM4F2Rt4jsg832znivZyqiLc3yRrMzV6n8gpJsG6JSzPE kecLMDeEh03IMBp2nSfhAH3yDicXR34oI30Z3plEQzgp3RelMsRf4N9/dhTiyt5+ +m9oh3wjziQ5IHHCRhxUBoia1QcUVoPhVIJVC8TihB379aOjFz5EF81yjE7Az01m AHieJDD4GDMR91t4zopDDV4qmv7XNesWiieBvcJgwryRAao58DSzQeVLPks6YtTo xHID7+KG3lB5GK49K4Nmscy3Vrop6FvGJFFd8C2Exa9UvPGhwcRQouzYLjMbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWpR/+PxaaGciHQJQ4ze/HX9y3vkwHwYDVR0j BBgwFoAU6qT+RRldUUzKdZ3hzyEk3NhAqNswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTc5NWEzNzgtZDY5ZS00NTJlLWFjNjctM2I3NDkwMzlhOGM4LzAvRUFBNEZFNDUx OTVENTE0Q0NBNzU5REUxQ0YyMTI0RENEODQwQThEQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUE0RkU0NTE5NUQ1MTRDQ0E3NTlERTFDRjIxMjREQ0Q4NDBB OERCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk3OTVhMzc4LWQ2OWUtNDUyZS1h YzY3LTNiNzQ5MDM5YThjOC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnoXIwDQYJ KoZIhvcNAQELBQADggEBAJBqwyrdpGo5UfTxl4cwvBUzKGUb0zXZtlEM3MoN6IZ4 wzKEDYefrmSS48f/KSRwiJjlbor54iJLFIBFcqtx9z7cWyKG8nv4IFhySdm6rxjj Qd81PY7mO2gbaqnC0dHwp39/wPyrEYdjE6zLhl+y5U5m7A4P/boEvzja8ogd7wSQ EwztV/CQYl9KKGwLqIDWLKIASMyZsTuadDlsiV6KuvxlILt+2jaUH8dJJNw25bEH jHQAwseP+pVDE8PcGFEVbwxCptCF5Xsntk96qX5FtKEuUYFLa+DIB/1HF9ifKLLH N3ho8p3TF2ckxn7AmHKs8zBUiSeh7XIOxCWpvkaeCZQ= -----END CERTIFICATE-----Generated at Wed May 13 04:03:26 2026 by rpki-client