$ rpki-client -vvf rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa File: 3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa (raw, json) Hash identifier: 9v+/PAaAE3kB2jpL2nLAR6QUmzPRV+VwUIaowltdzjk= Subject key identifier: B9:4D:B8:66:29:E1:26:B6:3A:FE:58:3F:76:5B:F6:E3:EE:B2:0F:BC Certificate issuer: /CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Certificate serial: 761D45F48EF5E46719DE3C40BC3B5180289E60E9 Authority key identifier: C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa Signing time: Sun 03 May 2026 02:53:59 +0000 ROA not before: Sun 03 May 2026 02:48:59 +0000 ROA not after: Sun 02 May 2027 02:53:59 +0000 asID: 139972 IP address blocks: 103.147.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:1d:45:f4:8e:f5:e4:67:19:de:3c:40:bc:3b:51:80:28:9e:60:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Validity Not Before: May 3 02:48:59 2026 GMT Not After : May 2 02:53:59 2027 GMT Subject: CN=B94DB86629E126B63AFE583F765BF6E3EEB20FBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:67:f9:94:7d:23:28:98:95:96:65:ad:e2:64: 03:6e:81:0c:d1:73:b2:b1:39:45:34:59:e2:ef:d0: 80:d2:e4:6d:fb:5a:58:49:b2:7a:fd:4c:93:43:cb: 94:a3:5f:58:19:84:11:f2:ce:45:48:f6:a8:3f:bc: ac:d5:1a:24:5f:54:75:01:f8:eb:8e:85:d4:79:8f: 9c:09:17:7a:d2:87:43:e5:7e:41:34:36:2d:40:8c: 0d:51:d7:9c:cf:46:16:7f:75:7b:33:17:a2:1b:c2: 10:bb:c2:62:9e:6e:17:3f:c1:8c:14:85:d3:73:c5: fa:ec:96:25:9c:92:f7:49:d7:97:66:95:72:fb:28: 3a:ee:50:84:7d:71:49:0a:dc:f0:6c:4c:e5:96:35: 24:ce:ed:86:4c:94:d0:fa:93:57:be:15:38:17:e4: 5f:fe:b7:b6:e0:64:e0:38:48:c9:65:63:d7:7a:84: 52:db:a2:93:6b:64:c7:bb:09:56:25:49:ab:f3:9b: b7:2f:2c:08:6d:2f:c4:7a:94:96:e6:35:bd:6f:a8: 89:70:b1:06:7d:e9:cd:ce:59:72:cd:c9:37:b1:af: a0:14:40:06:cd:1b:6c:62:9f:13:e3:f1:28:0a:33: 41:90:d5:f5:3d:2d:d7:e8:9e:65:62:b8:f3:eb:7d: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4D:B8:66:29:E1:26:B6:3A:FE:58:3F:76:5B:F6:E3:EE:B2:0F:BC X509v3 Authority Key Identifier: keyid:C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.247.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:04:62:7c:14:f4:d5:ef:a7:01:b9:fc:bb:99:1a:ef:13:11: 0b:ad:c0:f5:dc:a3:6b:78:8c:10:38:d9:84:b2:4d:40:b7:bf: 6a:a3:e9:65:b9:cf:fb:0d:2f:1d:56:d2:47:b1:55:c6:75:9e: 2f:6a:90:d0:c9:f1:cd:fc:21:04:38:4e:02:ba:7f:a0:50:d5: 31:2c:eb:e5:b3:6a:15:b1:77:ca:c3:9f:37:3e:08:0d:49:3e: e7:4f:f2:ec:54:27:32:41:90:5f:85:55:f9:1f:93:bc:51:f3: 3d:fb:ca:21:80:b4:13:f9:ad:f4:c7:b4:94:0d:10:df:8b:ee: 32:bc:68:bf:2d:cf:17:41:eb:a3:f9:fa:c0:7b:ed:d9:28:df: 1b:50:ca:ce:62:9a:50:d6:02:5d:8b:dc:fe:bf:32:51:cc:f4: 72:4c:db:92:eb:26:12:22:fb:8e:b2:a8:b3:56:43:38:ae:dd: 8b:6b:62:de:68:63:e7:55:15:ed:a3:61:16:88:51:77:97:1d: dd:b9:2e:af:2a:a4:81:50:e5:1b:e0:df:82:92:37:ba:a2:0a: 5e:e9:cc:b3:82:21:3f:a0:ee:4c:51:06:37:b9:da:36:dd:85: ea:97:f0:7b:58:9a:89:5f:04:2b:95:6e:da:42:39:ab:06:e7: a9:b1:f8:d0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdh1F9I715GcZ3jxAvDtRgCieYOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBNEFCNDA3MjZENENFREQ2NjNEMUMzNEVCQkU4MTdG QTQ0QzQyQzAeFw0yNjA1MDMwMjQ4NTlaFw0yNzA1MDIwMjUzNTlaMDMxMTAvBgNV BAMTKEI5NERCODY2MjlFMTI2QjYzQUZFNTgzRjc2NUJGNkUzRUVCMjBGQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXZ/mUfSMomJWWZa3iZANugQzR c7KxOUU0WeLv0IDS5G37WlhJsnr9TJNDy5SjX1gZhBHyzkVI9qg/vKzVGiRfVHUB +OuOhdR5j5wJF3rSh0PlfkE0Ni1AjA1R15zPRhZ/dXszF6IbwhC7wmKebhc/wYwU hdNzxfrsliWckvdJ15dmlXL7KDruUIR9cUkK3PBsTOWWNSTO7YZMlND6k1e+FTgX 5F/+t7bgZOA4SMllY9d6hFLbopNrZMe7CVYlSavzm7cvLAhtL8R6lJbmNb1vqIlw sQZ96c3OWXLNyTexr6AUQAbNG2xinxPj8SgKM0GQ1fU9LdfonmViuPPrfdSZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuU24ZinhJrY6/lg/dlv24+6yD7wwHwYDVR0j BBgwFoAUwaSrQHJtTO3WY9HDTrvoF/pExCwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTllZWJmN2MtZmUzOC00NmE5LTgzMTEtZTA1M2ZjYTUwZGZkLzAvQzFBNEFCNDA3 MjZENENFREQ2NjNEMUMzNEVCQkU4MTdGQTQ0QzQyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMUE0QUI0MDcyNkQ0Q0VERDY2M0QxQzM0RUJCRTgxN0ZBNDRD NDJDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMxMzAzMzJlMzEzNDM3MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/cwDQYJ KoZIhvcNAQELBQADggEBAC4EYnwU9NXvpwG5/LuZGu8TEQutwPXco2t4jBA42YSy TUC3v2qj6WW5z/sNLx1W0kexVcZ1ni9qkNDJ8c38IQQ4TgK6f6BQ1TEs6+WzahWx d8rDnzc+CA1JPudP8uxUJzJBkF+FVfkfk7xR8z37yiGAtBP5rfTHtJQNEN+L7jK8 aL8tzxdB66P5+sB77dko3xtQys5imlDWAl2L3P6/MlHM9HJM25LrJhIi+46yqLNW Qziu3YtrYt5oY+dVFe2jYRaIUXeXHd25Lq8qpIFQ5Rvg34KSN7qiCl7pzLOCIT+g 7kxRBje52jbdheqX8HtYmolfBCuVbtpCOasG56mx+NA= -----END CERTIFICATE-----Generated at Wed May 13 00:44:20 2026 by rpki-client