$ rpki-client -vvf rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa File: 3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: qR5fJsbozBhXPJh8WuiE5z4yLvoKQfTANugzq/ELLiU= Subject key identifier: B5:BA:8C:F8:2C:9A:22:66:8A:F8:1A:68:0B:DF:9B:43:6D:8C:DB:7F Certificate issuer: /CN=3B905656ECAB5F25C747565B1F6158A544607342 Certificate serial: 0C8A34E9B8754559AB98BEE22E529B6690045866 Authority key identifier: 3B:90:56:56:EC:AB:5F:25:C7:47:56:5B:1F:61:58:A5:44:60:73:42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B905656ECAB5F25C747565B1F6158A544607342.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa Signing time: Sun 03 May 2026 02:55:33 +0000 ROA not before: Sun 03 May 2026 02:50:33 +0000 ROA not after: Sun 02 May 2027 02:55:33 +0000 asID: 149883 IP address blocks: 103.156.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3B905656ECAB5F25C747565B1F6158A544607342.crl rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3B905656ECAB5F25C747565B1F6158A544607342.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B905656ECAB5F25C747565B1F6158A544607342.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8a:34:e9:b8:75:45:59:ab:98:be:e2:2e:52:9b:66:90:04:58:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B905656ECAB5F25C747565B1F6158A544607342 Validity Not Before: May 3 02:50:33 2026 GMT Not After : May 2 02:55:33 2027 GMT Subject: CN=B5BA8CF82C9A22668AF81A680BDF9B436D8CDB7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5d:c4:cf:36:f5:35:32:8d:e7:72:e2:c7:db: 55:60:a9:b5:2e:87:4c:fe:e2:55:fa:c8:38:e7:db: 8f:3e:71:5b:e0:02:4d:1c:8b:b4:e1:b7:a7:d8:fc: 75:ed:07:81:ba:68:f6:74:1c:5f:12:30:27:a7:89: 64:cd:6e:4a:c7:0c:52:03:24:14:b6:8d:e5:3f:bb: aa:18:20:86:58:b1:a4:e2:ad:e3:04:eb:65:c7:ee: 00:ee:dd:5b:05:59:70:02:01:c0:4a:0b:76:68:c2: 98:ff:6a:15:62:ac:6d:e7:31:e1:f4:bc:19:cf:07: 36:fd:1a:99:ea:ab:f5:fb:b3:9d:4c:69:5d:2d:6b: 3e:c7:a0:e0:04:a1:76:49:48:be:eb:6f:8e:46:a4: 56:df:ca:68:bd:46:e0:69:fa:19:13:da:81:36:2b: a6:30:46:d5:03:fe:e5:45:a5:67:7c:82:e2:c0:45: 79:12:92:a0:d0:1b:96:f1:b6:6a:08:98:ab:3c:f1: 22:5a:12:eb:4b:9d:df:3e:e6:95:5a:67:9b:7b:cd: 35:90:78:2d:bb:06:8a:bb:78:58:9a:bf:c0:72:76: 2c:47:01:6a:c2:7c:a7:18:5b:9a:96:dd:50:fa:16: d2:f1:43:02:fc:b2:75:38:8f:40:a5:73:b2:77:f7: ea:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BA:8C:F8:2C:9A:22:66:8A:F8:1A:68:0B:DF:9B:43:6D:8C:DB:7F X509v3 Authority Key Identifier: keyid:3B:90:56:56:EC:AB:5F:25:C7:47:56:5B:1F:61:58:A5:44:60:73:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3B905656ECAB5F25C747565B1F6158A544607342.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B905656ECAB5F25C747565B1F6158A544607342.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.140.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:07:f3:8b:cc:c9:31:fc:1e:16:75:4a:78:ca:d1:f7:32:f1: 85:f7:00:37:39:0d:e7:f8:33:0b:fc:05:6d:e5:80:7f:1e:f0: be:52:8e:98:d3:10:3e:48:50:47:dd:61:e8:c6:db:0d:09:e8: f0:9d:2b:bf:1c:8c:90:97:f7:86:39:dd:aa:8b:03:f5:28:74: 01:c5:a8:b0:17:1a:c5:36:d3:80:bf:42:cc:99:bd:98:e6:4e: ef:01:ea:31:fa:5a:2b:de:b4:08:65:a2:03:c0:a2:32:eb:aa: 4e:52:ed:c6:c2:1d:2b:a3:da:fa:b2:18:3e:96:bf:da:a4:ec: 84:5b:c4:ca:77:bf:c7:3e:43:91:bf:4f:53:08:da:da:69:58: 46:14:92:00:36:ac:05:14:e5:04:de:97:47:30:8c:9d:e3:85: 6b:2b:62:14:db:42:b4:7d:fa:95:63:3f:c5:19:9a:f5:59:d8: 83:77:87:32:4d:0d:16:07:d4:8d:f5:1a:c3:e7:a5:00:05:73: e5:fd:3c:a6:ac:e5:8e:82:59:fc:01:96:b3:69:63:ac:ae:4c: 1d:10:93:d8:e4:8f:49:d9:ea:47:cf:89:33:95:0b:d8:44:5a: 64:f8:91:ab:6f:2d:6c:59:7d:04:48:b9:39:66:ee:bf:56:bc: 29:70:cf:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDIo06bh1RVmrmL7iLlKbZpAEWGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I5MDU2NTZFQ0FCNUYyNUM3NDc1NjVCMUY2MTU4QTU0 NDYwNzM0MjAeFw0yNjA1MDMwMjUwMzNaFw0yNzA1MDIwMjU1MzNaMDMxMTAvBgNV BAMTKEI1QkE4Q0Y4MkM5QTIyNjY4QUY4MUE2ODBCREY5QjQzNkQ4Q0RCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNXcTPNvU1Mo3ncuLH21VgqbUu h0z+4lX6yDjn248+cVvgAk0ci7Tht6fY/HXtB4G6aPZ0HF8SMCeniWTNbkrHDFID JBS2jeU/u6oYIIZYsaTireME62XH7gDu3VsFWXACAcBKC3Zowpj/ahVirG3nMeH0 vBnPBzb9Gpnqq/X7s51MaV0taz7HoOAEoXZJSL7rb45GpFbfymi9RuBp+hkT2oE2 K6YwRtUD/uVFpWd8guLARXkSkqDQG5bxtmoImKs88SJaEutLnd8+5pVaZ5t7zTWQ eC27Boq7eFiav8BydixHAWrCfKcYW5qW3VD6FtLxQwL8snU4j0Clc7J39+r3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtbqM+CyaImaK+BpoC9+bQ22M238wHwYDVR0j BBgwFoAUO5BWVuyrXyXHR1ZbH2FYpURgc0IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA5MTc5M2UtYmQ2OS00NWE0LTk3YTgtYzY4YWEzZGQ0N2EzLzAvM0I5MDU2NTZF Q0FCNUYyNUM3NDc1NjVCMUY2MTU4QTU0NDYwNzM0Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjkwNTY1NkVDQUI1RjI1Qzc0NzU2NUIxRjYxNThBNTQ0NjA3 MzQyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwOTE3OTNlLWJkNjktNDVhNC05 N2E4LWM2OGFhM2RkNDdhMy8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnIwwDQYJ KoZIhvcNAQELBQADggEBADoH84vMyTH8HhZ1SnjK0fcy8YX3ADc5Def4Mwv8BW3l gH8e8L5SjpjTED5IUEfdYejG2w0J6PCdK78cjJCX94Y53aqLA/UodAHFqLAXGsU2 04C/QsyZvZjmTu8B6jH6WivetAhlogPAojLrqk5S7cbCHSuj2vqyGD6Wv9qk7IRb xMp3v8c+Q5G/T1MI2tppWEYUkgA2rAUU5QTel0cwjJ3jhWsrYhTbQrR9+pVjP8UZ mvVZ2IN3hzJNDRYH1I31GsPnpQAFc+X9PKas5Y6CWfwBlrNpY6yuTB0Qk9jkj0nZ 6kfPiTOVC9hEWmT4katvLWxZfQRIuTlm7r9WvClwzzY= -----END CERTIFICATE-----Generated at Wed May 13 07:38:36 2026 by rpki-client