$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e352e302f32342d3234203d3e203338373533.roa File: 3130332e32392e352e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: 8M0+y9ZbVtGJPFkP1eoXpxiSSeAXHiaaKDfENMCVk0E= Subject key identifier: D3:D4:7B:DB:32:97:9B:15:22:3C:50:DD:E0:C3:68:C2:C2:DF:C2:C6 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 0372968DEFC6B43BA541E7980A2634D69B149188 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e352e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:28 +0000 ROA not before: Sun 03 May 2026 02:50:28 +0000 ROA not after: Sun 02 May 2027 02:55:28 +0000 asID: 38753 IP address blocks: 103.29.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:72:96:8d:ef:c6:b4:3b:a5:41:e7:98:0a:26:34:d6:9b:14:91:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:28 2026 GMT Not After : May 2 02:55:28 2027 GMT Subject: CN=D3D47BDB32979B15223C50DDE0C368C2C2DFC2C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4d:11:d3:79:58:d6:7c:e7:ba:92:f5:ea:b8: a4:f6:d7:48:0e:36:5a:fa:5e:3a:19:84:70:83:28: ba:6e:69:ca:e1:c1:86:3d:eb:f1:ff:ed:31:56:96: f4:81:be:fb:4b:da:6a:3a:3d:36:f5:ee:43:f8:79: 62:b8:35:b9:4b:4a:cb:cc:b6:68:66:c4:ea:6e:e3: 88:d7:b5:20:a8:e8:04:82:06:fd:ec:c2:96:83:9c: f8:f4:dc:9d:ef:60:92:12:9d:1a:cf:d5:ae:11:f2: 05:70:d2:40:29:9a:f1:8c:a0:90:df:e7:de:5a:71: d9:f0:21:38:1a:fa:a9:a0:6f:70:73:23:20:0e:a8: 42:11:dd:ed:06:0b:0d:90:16:aa:17:fe:78:e2:73: 6f:92:cb:0f:fb:c3:0d:81:da:c5:86:a0:ab:a9:c4: 07:cf:06:60:e0:e7:ba:a3:c3:b4:17:f7:f0:9a:b1: 0e:74:0d:b7:73:da:68:71:24:ce:bf:ad:b1:6f:ce: 24:bc:15:5e:4d:40:d2:17:10:7e:93:86:3c:12:f1: 9f:be:21:56:3e:d0:43:83:37:65:71:5e:71:86:e8: ad:8b:53:6f:58:af:4e:e5:5e:e7:17:84:41:52:b8: ae:3c:0f:71:6a:0e:d3:eb:55:9c:82:be:76:2a:11: 5d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D4:7B:DB:32:97:9B:15:22:3C:50:DD:E0:C3:68:C2:C2:DF:C2:C6 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e352e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.5.0/24 Signature Algorithm: sha256WithRSAEncryption 08:8c:d8:b9:2c:73:96:7d:50:ac:fd:8f:6f:7d:18:df:5a:d4: 51:e4:82:e8:d5:fa:81:ab:b1:46:9f:5c:d1:ff:d2:8c:6a:40: 7d:b3:83:4c:c1:c2:d3:45:8a:fa:22:5d:91:12:5b:49:b8:a9: 77:30:d5:15:fe:bd:0f:fd:b2:c1:60:57:61:5e:92:7a:33:4a: b1:e4:b0:e9:46:f9:13:1c:b6:31:dc:ca:02:62:81:42:95:c3: 0f:a9:5b:33:fa:4e:3c:7b:aa:a0:97:eb:db:4e:c2:5e:47:40: d7:96:b1:64:0f:43:bf:0f:c0:3b:5c:c4:ef:16:e3:11:88:be: b9:f0:70:07:29:f4:7d:ce:43:f1:72:7d:af:7b:ae:2d:2b:b6: ce:9f:4f:97:c0:17:fd:c0:0f:eb:95:23:49:0d:75:3f:fc:08: 8f:61:23:b9:e1:aa:6a:da:20:8d:ad:19:bf:39:40:9d:5e:a8: 83:98:0a:c4:c5:7b:bb:e2:e8:ff:5f:a2:90:b9:ab:d6:71:84: fb:e1:40:d0:87:0a:33:05:0d:8e:9e:5e:4f:f6:eb:09:fc:54: e7:3e:1e:d7:7c:33:b5:64:7a:3e:9f:a1:0f:89:2e:9f:76:a0: a6:1d:d4:fc:b1:40:ad:ef:52:19:c5:cc:93:5f:4c:09:b6:01: 1f:e6:03:ca -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUA3KWje/GtDulQeeYCiY01psUkYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjhaFw0yNzA1MDIwMjU1MjhaMDMxMTAvBgNV BAMTKEQzRDQ3QkRCMzI5NzlCMTUyMjNDNTBEREUwQzM2OEMyQzJERkMyQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwTRHTeVjWfOe6kvXquKT210gO Nlr6XjoZhHCDKLpuacrhwYY96/H/7TFWlvSBvvtL2mo6PTb17kP4eWK4NblLSsvM tmhmxOpu44jXtSCo6ASCBv3swpaDnPj03J3vYJISnRrP1a4R8gVw0kApmvGMoJDf 595acdnwITga+qmgb3BzIyAOqEIR3e0GCw2QFqoX/njic2+Syw/7ww2B2sWGoKup xAfPBmDg57qjw7QX9/CasQ50Dbdz2mhxJM6/rbFvziS8FV5NQNIXEH6ThjwS8Z++ IVY+0EODN2VxXnGG6K2LU29Yr07lXucXhEFSuK48D3FqDtPrVZyCvnYqEV07AgMB AAGjggItMIICKTAdBgNVHQ4EFgQU09R72zKXmxUiPFDd4MNowsLfwsYwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzEzMDMzMmUzMjM5MmUzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHQUwDQYJKoZIhvcNAQEL BQADggEBAAiM2Lksc5Z9UKz9j299GN9a1FHkgujV+oGrsUafXNH/0oxqQH2zg0zB wtNFivoiXZESW0m4qXcw1RX+vQ/9ssFgV2FeknozSrHksOlG+RMctjHcygJigUKV ww+pWzP6Tjx7qqCX69tOwl5HQNeWsWQPQ78PwDtcxO8W4xGIvrnwcAcp9H3OQ/Fy fa97ri0rts6fT5fAF/3AD+uVI0kNdT/8CI9hI7nhqmraII2tGb85QJ1eqIOYCsTF e7vi6P9fopC5q9ZxhPvhQNCHCjMFDY6eXk/26wn8VOc+Htd8M7Vkej6foQ+JLp92 oKYd1PyxQK3vUhnFzJNfTAm2AR/mA8o= -----END CERTIFICATE-----Generated at Wed May 13 03:58:47 2026 by rpki-client