$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa File: 3130332e32392e342e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: tzKAtY8BxjnA04N/9bfLtmxGKRQm8v8NUAfl6dFIxI8= Subject key identifier: 9B:5E:CD:68:E7:06:88:3D:05:28:44:FC:79:32:59:83:B8:9E:55:1A Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 7606E2FFB660A5DADAC5A91B4C35FD594E91A542 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:25 +0000 ROA not before: Sun 03 May 2026 02:50:25 +0000 ROA not after: Sun 02 May 2027 02:55:25 +0000 asID: 38753 IP address blocks: 103.29.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:06:e2:ff:b6:60:a5:da:da:c5:a9:1b:4c:35:fd:59:4e:91:a5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:25 2026 GMT Not After : May 2 02:55:25 2027 GMT Subject: CN=9B5ECD68E706883D052844FC79325983B89E551A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:20:e5:68:07:24:c8:f4:7a:d3:90:2b:9a:78: b5:ba:ec:b3:ce:73:25:fe:6c:b6:a2:18:3c:b0:6e: 47:17:5a:83:44:9e:2d:76:e2:ad:24:fa:39:22:b8: 6d:b8:bb:e8:b4:77:a5:6a:ae:a4:69:94:44:67:e9: f2:78:fa:1f:d9:7e:c5:31:f3:10:50:05:28:9f:47: 91:7a:4d:0f:95:17:12:75:c4:64:a2:12:09:d3:27: a3:1c:e3:70:43:37:54:59:fc:88:92:70:77:bc:cd: 06:bb:5d:ee:25:07:b7:8f:22:7d:f5:49:fb:c3:0c: 83:b2:2f:a3:cf:20:a6:23:93:eb:50:0c:4f:3c:d1: 71:d1:7e:58:79:1e:d3:12:83:76:8d:5c:25:7a:4d: f0:b4:98:91:2c:a4:0b:b8:e6:4b:b2:54:79:01:9a: 80:f7:7c:6b:3a:2a:cf:e6:d2:39:2f:07:12:65:2d: b8:f3:55:20:e4:dd:fa:0c:7f:08:2a:41:9b:d3:08: 82:22:d8:dc:4f:76:8a:dd:1d:ca:86:e2:e0:d6:04: 42:7c:cd:58:44:e9:f6:44:03:74:51:db:25:c6:4f: a5:9a:e0:b0:c9:68:1d:89:66:b8:69:f1:90:cc:b3: 0e:b0:b7:5e:d6:47:a2:c0:56:05:58:85:46:f4:44: f2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5E:CD:68:E7:06:88:3D:05:28:44:FC:79:32:59:83:B8:9E:55:1A X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.4.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:8a:b0:d2:07:83:47:90:53:54:38:d3:02:be:b9:a9:5d:7f: 8b:44:fb:e3:d4:11:6a:56:cd:39:4a:cc:19:0d:08:67:47:bb: 13:72:9e:56:0b:2d:17:a0:58:ad:9e:c8:7e:50:22:dc:3b:8c: 4f:60:7f:61:5b:d3:c9:53:9b:f7:d6:12:4c:16:78:8a:9e:04: 46:7e:70:3e:26:27:fe:cb:84:13:c9:28:1b:cc:56:58:e9:01: 6a:a3:04:76:ea:43:94:d1:9c:de:78:9b:13:a9:27:bb:c5:94: 4b:54:c4:71:42:4a:e2:b5:0c:09:ac:fa:09:06:0f:61:26:c3: e7:c8:11:38:4d:39:43:1a:0a:1c:4e:8a:dd:72:35:67:cf:5b: 9d:64:27:25:28:de:a4:94:2e:b9:4d:b6:a3:48:c8:54:ac:50: 82:d3:c2:55:de:26:97:76:a7:99:73:00:bd:0c:2e:0d:7c:5b: 37:8e:e8:81:1a:f5:a1:95:52:e5:50:e2:bc:0a:90:7e:bb:e2: 27:8d:23:69:ce:8e:53:c6:10:6f:47:52:17:39:28:90:eb:7c: c6:d0:55:18:f6:4a:a9:df:04:d7:ac:f0:9c:ec:bb:ba:4e:65: 8d:29:c3:5a:88:df:3c:4a:57:54:47:72:f1:82:d8:85:56:11: 8b:17:01:4e -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUdgbi/7ZgpdraxakbTDX9WU6RpUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjVaFw0yNzA1MDIwMjU1MjVaMDMxMTAvBgNV BAMTKDlCNUVDRDY4RTcwNjg4M0QwNTI4NDRGQzc5MzI1OTgzQjg5RTU1MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZIOVoByTI9HrTkCuaeLW67LPO cyX+bLaiGDywbkcXWoNEni124q0k+jkiuG24u+i0d6VqrqRplERn6fJ4+h/ZfsUx 8xBQBSifR5F6TQ+VFxJ1xGSiEgnTJ6Mc43BDN1RZ/IiScHe8zQa7Xe4lB7ePIn31 SfvDDIOyL6PPIKYjk+tQDE880XHRflh5HtMSg3aNXCV6TfC0mJEspAu45kuyVHkB moD3fGs6Ks/m0jkvBxJlLbjzVSDk3foMfwgqQZvTCIIi2NxPdordHcqG4uDWBEJ8 zVhE6fZEA3RR2yXGT6Wa4LDJaB2JZrhp8ZDMsw6wt17WR6LAVgVYhUb0RPIVAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUm17NaOcGiD0FKET8eTJZg7ieVRowHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzEzMDMzMmUzMjM5MmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHQQwDQYJKoZIhvcNAQEL BQADggEBAG2KsNIHg0eQU1Q40wK+ualdf4tE++PUEWpWzTlKzBkNCGdHuxNynlYL LRegWK2eyH5QItw7jE9gf2Fb08lTm/fWEkwWeIqeBEZ+cD4mJ/7LhBPJKBvMVljp AWqjBHbqQ5TRnN54mxOpJ7vFlEtUxHFCSuK1DAms+gkGD2Emw+fIEThNOUMaChxO it1yNWfPW51kJyUo3qSULrlNtqNIyFSsUILTwlXeJpd2p5lzAL0MLg18WzeO6IEa 9aGVUuVQ4rwKkH674ieNI2nOjlPGEG9HUhc5KJDrfMbQVRj2SqnfBNes8Jzsu7pO ZY0pw1qI3zxKV1RHcvGC2IVWEYsXAU4= -----END CERTIFICATE-----Generated at Wed May 13 04:20:06 2026 by rpki-client