$ rpki-client -vvf rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31372e302f32342d3234203d3e20313338303830.roa File: 3130332e3133312e31372e302f32342d3234203d3e20313338303830.roa (raw, json) Hash identifier: bXRUilxrcrzJiP9PjPQFqMqVk2Gw/CWvQhfR/EgAeXU= Subject key identifier: F3:D3:75:B5:A9:A5:79:4A:29:72:57:E9:63:E7:5C:3D:CF:2B:B5:1D Certificate issuer: /CN=3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2 Certificate serial: 2EA7237F96B7B9C7E670011ACCC2F0B76CE4AD14 Authority key identifier: 38:99:C9:2D:D0:D4:2F:93:D7:DA:85:40:34:FD:88:BA:B4:A5:AF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31372e302f32342d3234203d3e20313338303830.roa Signing time: Sun 03 May 2026 02:53:41 +0000 ROA not before: Sun 03 May 2026 02:48:41 +0000 ROA not after: Sun 02 May 2027 02:53:41 +0000 asID: 138080 IP address blocks: 103.131.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.crl rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a7:23:7f:96:b7:b9:c7:e6:70:01:1a:cc:c2:f0:b7:6c:e4:ad:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2 Validity Not Before: May 3 02:48:41 2026 GMT Not After : May 2 02:53:41 2027 GMT Subject: CN=F3D375B5A9A5794A297257E963E75C3DCF2BB51D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f2:33:15:b3:25:ca:3c:1e:d9:1e:45:c0:66: a1:6c:91:62:0b:61:0b:f1:2a:9e:20:f0:e3:a5:85: 29:7d:6a:bc:d3:fe:80:c1:62:b5:0a:1e:11:0b:7e: d0:74:87:8e:af:2a:e6:5c:6c:e8:e8:35:80:64:99: a3:5b:32:9b:24:ba:4c:d0:9c:11:ae:41:62:26:95: ff:62:38:02:b4:54:50:6e:69:91:06:48:2b:b9:1a: 87:56:1c:56:07:0a:09:11:21:8a:05:43:03:e8:78: d7:d4:ac:31:3c:5f:ec:bb:df:5b:e9:7f:8c:9d:97: 31:f2:8c:df:08:bc:5e:dc:f3:bd:2f:73:ed:0f:e6: ad:39:a1:e2:24:6e:c2:ba:40:e1:06:9d:2c:6a:43: 37:6c:e9:44:b1:bd:5c:a5:03:d9:22:83:2b:20:5d: 59:6c:c5:7b:69:a9:9b:68:5b:2b:0e:47:4e:a2:65: 42:35:e7:9b:ef:6f:53:b6:af:2c:8c:a7:3c:b7:75: f7:04:b3:d8:5f:b3:cd:a7:00:2a:00:b1:12:22:e9: d5:1d:d0:fe:ed:f5:62:a4:d3:21:1b:b9:72:fd:47: f4:d4:ea:15:9d:d6:72:06:20:c6:07:93:44:8e:30: e5:51:f0:7e:68:40:b5:a1:2a:e9:eb:26:03:28:e7: 12:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D3:75:B5:A9:A5:79:4A:29:72:57:E9:63:E7:5C:3D:CF:2B:B5:1D X509v3 Authority Key Identifier: keyid:38:99:C9:2D:D0:D4:2F:93:D7:DA:85:40:34:FD:88:BA:B4:A5:AF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31372e302f32342d3234203d3e20313338303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.17.0/24 Signature Algorithm: sha256WithRSAEncryption ac:4d:1c:e6:54:11:45:5e:77:a1:6e:4e:8c:26:79:0f:de:9c: 4f:e4:9d:a9:22:21:d5:61:ca:96:61:d6:e9:72:20:e1:8f:8e: 76:b1:ae:df:41:9d:13:50:e0:06:1a:62:5d:fa:1b:cd:59:7d: 55:83:d7:bf:3e:b3:2c:12:d7:dd:26:79:0e:05:74:75:90:6b: 9a:65:e1:25:22:87:1a:82:4f:a0:b5:c6:c2:f9:80:44:da:cf: af:d6:00:7d:c1:36:7d:f8:3f:b1:75:3e:07:9a:c0:ed:3a:8d: 9e:8c:6b:96:87:c2:95:8b:43:a5:bc:5e:10:e7:03:d3:10:27: 5f:cb:31:47:0a:99:02:5f:3e:b9:83:fb:83:30:d8:4b:cb:48: b1:0d:42:49:62:38:d1:24:ba:a0:ad:bb:24:6e:c0:cb:64:66: cf:c1:73:e9:a6:cd:9e:30:0a:8e:79:8b:eb:46:0d:ca:aa:b9: 9e:12:68:98:24:1f:a0:a5:4f:55:79:df:86:cf:78:9f:39:25: 15:28:f5:a9:c1:8e:06:af:44:ed:0d:5a:fb:77:c5:78:e2:c8: 14:0d:9d:78:cb:9b:95:5b:60:75:9c:f7:b6:aa:0d:05:f7:70: 86:c8:ce:80:0a:df:2b:03:7c:b0:43:aa:39:f2:c7:ba:3e:87: f6:2f:4d:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULqcjf5a3ucfmcAEazMLwt2zkrRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5OUM5MkREMEQ0MkY5M0Q3REE4NTQwMzRGRDg4QkFC NEE1QUZEMjAeFw0yNjA1MDMwMjQ4NDFaFw0yNzA1MDIwMjUzNDFaMDMxMTAvBgNV BAMTKEYzRDM3NUI1QTlBNTc5NEEyOTcyNTdFOTYzRTc1QzNEQ0YyQkI1MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD8jMVsyXKPB7ZHkXAZqFskWIL YQvxKp4g8OOlhSl9arzT/oDBYrUKHhELftB0h46vKuZcbOjoNYBkmaNbMpskukzQ nBGuQWImlf9iOAK0VFBuaZEGSCu5GodWHFYHCgkRIYoFQwPoeNfUrDE8X+y731vp f4ydlzHyjN8IvF7c870vc+0P5q05oeIkbsK6QOEGnSxqQzds6USxvVylA9kigysg XVlsxXtpqZtoWysOR06iZUI155vvb1O2ryyMpzy3dfcEs9hfs82nACoAsRIi6dUd 0P7t9WKk0yEbuXL9R/TU6hWd1nIGIMYHk0SOMOVR8H5oQLWhKunrJgMo5xK1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU89N1tamleUopclfpY+dcPc8rtR0wHwYDVR0j BBgwFoAUOJnJLdDUL5PX2oVANP2IurSlr9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTkwNGY2NzAtN2RhYy00Y2Y0LTk5MWQtNTA1MzllM2QzZjVlLzAvMzg5OUM5MkRE MEQ0MkY5M0Q3REE4NTQwMzRGRDg4QkFCNEE1QUZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zODk5QzkyREQwRDQyRjkzRDdEQTg1NDAzNEZEODhCQUI0QTVB RkQyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5MDRmNjcwLTdkYWMtNGNmNC05 OTFkLTUwNTM5ZTNkM2Y1ZS8wLzMxMzAzMzJlMzEzMzMxMmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4MRMA0GCSqG SIb3DQEBCwUAA4IBAQCsTRzmVBFFXnehbk6MJnkP3pxP5J2pIiHVYcqWYdbpciDh j452sa7fQZ0TUOAGGmJd+hvNWX1Vg9e/PrMsEtfdJnkOBXR1kGuaZeElIocagk+g tcbC+YBE2s+v1gB9wTZ9+D+xdT4HmsDtOo2ejGuWh8KVi0OlvF4Q5wPTECdfyzFH CpkCXz65g/uDMNhLy0ixDUJJYjjRJLqgrbskbsDLZGbPwXPpps2eMAqOeYvrRg3K qrmeEmiYJB+gpU9Ved+Gz3ifOSUVKPWpwY4Gr0TtDVr7d8V44sgUDZ14y5uVW2B1 nPe2qg0F93CGyM6ACt8rA3ywQ6o58se6Pof2L01s -----END CERTIFICATE-----Generated at Wed May 13 08:28:48 2026 by rpki-client