$ rpki-client -vvf rpki-rsync.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa File: 3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa (raw, json) Hash identifier: 3B/Kcnz6SN3QWJKso2FwDZnb6H6gRFM38JAa0O3o8qk= Subject key identifier: 23:BF:C4:01:3D:49:B8:00:E6:41:0A:9B:DE:40:31:71:B6:B5:E8:F3 Certificate issuer: /CN=FA42FC8A1B17265914F1521A1079D35F1FD46A36 Certificate serial: 7038B0F48D03365A7841D833BDF4B8D4A3A1AFA4 Authority key identifier: FA:42:FC:8A:1B:17:26:59:14:F1:52:1A:10:79:D3:5F:1F:D4:6A:36 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FA42FC8A1B17265914F1521A1079D35F1FD46A36.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa Signing time: Sun 03 May 2026 02:54:16 +0000 ROA not before: Sun 03 May 2026 02:49:16 +0000 ROA not after: Sun 02 May 2027 02:54:16 +0000 asID: 149737 IP address blocks: 103.188.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/FA42FC8A1B17265914F1521A1079D35F1FD46A36.crl rsync://rpki-rsync.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/FA42FC8A1B17265914F1521A1079D35F1FD46A36.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FA42FC8A1B17265914F1521A1079D35F1FD46A36.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:38:b0:f4:8d:03:36:5a:78:41:d8:33:bd:f4:b8:d4:a3:a1:af:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA42FC8A1B17265914F1521A1079D35F1FD46A36 Validity Not Before: May 3 02:49:16 2026 GMT Not After : May 2 02:54:16 2027 GMT Subject: CN=23BFC4013D49B800E6410A9BDE403171B6B5E8F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:30:83:d7:62:b0:29:72:d5:ee:03:b9:ed:f6: 88:0c:f4:59:31:5e:8c:a6:b8:76:a6:6c:88:58:95: a1:63:a2:b7:7a:c1:05:4a:d4:bb:8b:3d:e1:cc:94: 57:4a:03:4d:f9:9a:bc:14:ed:bd:df:7a:d8:2c:8e: b0:e5:e9:a2:d6:e2:84:9d:f5:6a:8f:3f:e7:77:99: ac:1c:86:07:5c:f2:d1:b2:06:57:cb:6e:0b:cd:67: a5:65:53:fb:eb:d9:a8:f3:e3:f8:dd:e9:d3:6a:41: 4a:6f:d2:3c:91:47:10:b6:4d:d7:64:c5:09:3e:7a: 18:0e:a3:97:21:7a:9c:c3:1c:dd:8f:12:aa:79:b3: a8:2d:9f:09:07:42:64:82:9d:14:98:67:be:11:9e: 06:0b:9d:7d:d1:eb:30:91:1d:b7:78:db:27:b1:e1: ea:3e:64:74:a5:82:18:e4:7b:86:72:e1:83:13:9e: 72:64:fc:76:55:09:a9:9a:f4:4a:7e:a8:25:33:97: a8:bc:23:f6:41:36:ad:52:ed:be:11:96:de:cd:6c: 0b:c6:2d:2a:d1:c7:97:d8:67:da:bb:5a:81:bb:09: 69:f8:cc:6b:7f:7a:08:3c:52:c3:87:a7:93:c7:f0: 91:7e:ff:27:44:ee:e3:b6:18:00:d8:ea:04:c7:3d: 1f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BF:C4:01:3D:49:B8:00:E6:41:0A:9B:DE:40:31:71:B6:B5:E8:F3 X509v3 Authority Key Identifier: keyid:FA:42:FC:8A:1B:17:26:59:14:F1:52:1A:10:79:D3:5F:1F:D4:6A:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/FA42FC8A1B17265914F1521A1079D35F1FD46A36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FA42FC8A1B17265914F1521A1079D35F1FD46A36.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.252.0/24 Signature Algorithm: sha256WithRSAEncryption 36:ea:a2:f6:e8:c8:e4:16:a9:e5:17:3a:7d:61:2d:64:8d:66: 2f:2c:62:ed:ab:ab:cf:12:8f:07:4a:c6:70:fa:3f:63:0a:c5: 01:f7:6d:54:2c:55:01:8a:28:c6:03:bf:56:98:d7:80:33:0d: 75:7b:b3:4f:75:ca:b4:cf:77:45:35:8c:7d:01:82:af:98:0c: 74:fd:63:40:ae:ee:e0:b2:e6:41:c2:a7:3d:79:35:79:3a:d7: 65:fc:a8:69:16:9f:5f:c0:bf:0f:1f:f9:9b:96:86:36:06:2f: bd:19:79:17:72:38:68:7d:f9:a5:71:e7:d6:b1:c5:80:be:20: cd:57:9c:8b:93:d2:67:bb:77:0d:c8:3d:e9:21:0b:ba:7c:d6: 83:23:00:75:99:05:9c:21:ad:9b:ab:32:3e:40:e0:eb:5e:3f: 33:43:47:28:ef:2d:36:c4:26:32:ad:e1:f7:51:0a:81:0c:a6: f2:22:60:1c:c1:3d:36:1c:e9:30:d9:04:ae:c9:4b:1b:dc:13: b4:a1:5c:5e:aa:0f:0d:24:bd:f4:07:42:31:5d:8d:8c:be:28: 36:8a:ea:86:37:83:f7:3d:de:2f:4f:d9:d8:e2:70:ec:04:0c: e4:27:84:9b:77:bf:32:b6:88:00:50:72:4d:e1:4e:68:be:4d: 05:f0:ff:ca -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcDiw9I0DNlp4QdgzvfS41KOhr6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE0MkZDOEExQjE3MjY1OTE0RjE1MjFBMTA3OUQzNUYx RkQ0NkEzNjAeFw0yNjA1MDMwMjQ5MTZaFw0yNzA1MDIwMjU0MTZaMDMxMTAvBgNV BAMTKDIzQkZDNDAxM0Q0OUI4MDBFNjQxMEE5QkRFNDAzMTcxQjZCNUU4RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYMIPXYrApctXuA7nt9ogM9Fkx XoymuHambIhYlaFjord6wQVK1LuLPeHMlFdKA035mrwU7b3fetgsjrDl6aLW4oSd 9WqPP+d3mawchgdc8tGyBlfLbgvNZ6VlU/vr2ajz4/jd6dNqQUpv0jyRRxC2Tddk xQk+ehgOo5chepzDHN2PEqp5s6gtnwkHQmSCnRSYZ74RngYLnX3R6zCRHbd42yex 4eo+ZHSlghjke4Zy4YMTnnJk/HZVCama9Ep+qCUzl6i8I/ZBNq1S7b4Rlt7NbAvG LSrRx5fYZ9q7WoG7CWn4zGt/egg8UsOHp5PH8JF+/ydE7uO2GADY6gTHPR+XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUI7/EAT1JuADmQQqb3kAxcba16PMwHwYDVR0j BBgwFoAU+kL8ihsXJlkU8VIaEHnTXx/UajYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWFlZDA5OGItNDliMS00ZjUzLWI3NWEtMjczZTExYzI1MTQ5LzAvRkE0MkZDOEEx QjE3MjY1OTE0RjE1MjFBMTA3OUQzNUYxRkQ0NkEzNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQTQyRkM4QTFCMTcyNjU5MTRGMTUyMUExMDc5RDM1RjFGRDQ2 QTM2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzlhZWQwOThiLTQ5YjEtNGY1My1i NzVhLTI3M2UxMWMyNTE0OS8wLzMxMzAzMzJlMzEzODM4MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvPwwDQYJ KoZIhvcNAQELBQADggEBADbqovboyOQWqeUXOn1hLWSNZi8sYu2rq88SjwdKxnD6 P2MKxQH3bVQsVQGKKMYDv1aY14AzDXV7s091yrTPd0U1jH0Bgq+YDHT9Y0Cu7uCy 5kHCpz15NXk612X8qGkWn1/Avw8f+ZuWhjYGL70ZeRdyOGh9+aVx59axxYC+IM1X nIuT0me7dw3IPekhC7p81oMjAHWZBZwhrZurMj5A4OtePzNDRyjvLTbEJjKt4fdR CoEMpvIiYBzBPTYc6TDZBK7JSxvcE7ShXF6qDw0kvfQHQjFdjYy+KDaK6oY3g/c9 3i9P2djicOwEDOQnhJt3vzK2iABQck3hTmi+TQXw/8o= -----END CERTIFICATE-----Generated at Wed May 13 12:02:22 2026 by rpki-client