$ rpki-client -vvf rpki-rsync.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa File: 3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa (raw, json) Hash identifier: CWiHRINpO5Qg8fxSyLkjZNquyJPum3NXHas+YJralQU= Subject key identifier: AF:D8:DE:AF:7C:07:BF:D4:C2:07:31:68:C8:CB:A7:46:C1:15:5E:00 Certificate issuer: /CN=D697630349B220DF8CC6B12F2E1478386BFA976D Certificate serial: 49272E81411925A0AB916399AF99B8FC5D0C608B Authority key identifier: D6:97:63:03:49:B2:20:DF:8C:C6:B1:2F:2E:14:78:38:6B:FA:97:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D697630349B220DF8CC6B12F2E1478386BFA976D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa Signing time: Sun 03 May 2026 02:55:58 +0000 ROA not before: Sun 03 May 2026 02:50:58 +0000 ROA not after: Sun 02 May 2027 02:55:58 +0000 asID: 141602 IP address blocks: 103.159.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/D697630349B220DF8CC6B12F2E1478386BFA976D.crl rsync://rpki-rsync.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/D697630349B220DF8CC6B12F2E1478386BFA976D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D697630349B220DF8CC6B12F2E1478386BFA976D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:27:2e:81:41:19:25:a0:ab:91:63:99:af:99:b8:fc:5d:0c:60:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D697630349B220DF8CC6B12F2E1478386BFA976D Validity Not Before: May 3 02:50:58 2026 GMT Not After : May 2 02:55:58 2027 GMT Subject: CN=AFD8DEAF7C07BFD4C2073168C8CBA746C1155E00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:53:73:24:ad:64:60:f1:38:1f:33:59:c8:0b: 3d:bb:57:24:3f:06:1a:74:22:94:e2:6f:92:aa:81: d6:56:0a:8c:3d:81:fb:23:62:dd:0b:aa:bc:bc:2a: 57:d3:26:28:14:9e:e4:cb:d9:11:1d:28:9c:36:4f: f7:0a:6c:e2:fc:74:21:b6:96:90:f7:39:7f:2a:05: f6:bb:5d:34:32:3a:a1:35:27:25:dd:83:63:52:46: d5:4d:47:df:f1:4f:01:f8:55:3e:c4:03:5f:37:90: ae:4b:92:f6:9b:45:2b:4c:98:5d:92:80:51:5e:72: 2e:2a:e0:df:cf:2a:a2:b5:b3:18:08:3a:29:30:70: b6:4f:18:6b:8e:ce:4a:9a:17:18:9c:f8:fe:6a:1b: 3c:01:4d:fd:7c:0e:5b:bd:e8:fc:7b:f2:61:ce:d7: 4b:05:66:6a:9d:94:85:26:7c:98:8f:cc:f8:02:72: a3:96:5d:4b:9c:39:90:e4:fb:25:78:a8:4b:63:51: a2:51:87:4c:eb:a9:3a:3a:a5:74:b5:57:0e:71:00: b8:28:60:26:02:a4:cd:54:31:16:4b:c7:40:9f:de: d0:74:1d:26:90:69:8d:57:fb:aa:fa:25:3d:9f:a9: 00:c1:fc:89:9d:b5:d5:3e:19:77:e6:51:79:46:0a: 16:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D8:DE:AF:7C:07:BF:D4:C2:07:31:68:C8:CB:A7:46:C1:15:5E:00 X509v3 Authority Key Identifier: keyid:D6:97:63:03:49:B2:20:DF:8C:C6:B1:2F:2E:14:78:38:6B:FA:97:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/D697630349B220DF8CC6B12F2E1478386BFA976D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D697630349B220DF8CC6B12F2E1478386BFA976D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.113.0/24 Signature Algorithm: sha256WithRSAEncryption 28:70:ae:d1:8b:ef:d5:27:9d:a8:37:df:18:1e:74:e1:69:63: ea:cb:fd:03:f3:86:45:70:8f:e8:c7:87:0c:c6:a1:5c:9e:53: 49:c8:d3:80:6b:12:59:5b:e3:eb:00:18:f2:d3:92:fc:ee:24: 26:75:92:34:65:7c:0e:4c:05:d1:62:79:bb:54:e8:ed:e0:0b: f7:a2:c8:74:ed:24:a0:42:2b:90:4e:fa:d4:2b:45:11:5d:be: 90:17:31:c4:c2:13:bc:74:3b:b3:cb:75:2d:46:8c:b3:71:10: e3:1f:c1:35:03:a8:d3:f0:b8:5d:b9:f0:58:77:db:ab:66:52: 3c:1f:c6:9d:8d:a6:4b:f1:ff:6b:26:19:cb:b9:84:65:a3:dc: 90:ff:38:1a:20:87:bb:9f:8b:0a:8e:50:9f:ba:06:ce:ac:a2: fd:1f:d2:65:04:b7:5a:c7:a2:84:22:e0:ff:15:52:d4:fc:24: e7:71:6c:0f:32:f1:7f:25:33:fd:ef:71:6c:7e:c0:14:c1:7f: b1:da:b4:24:9b:f5:e7:81:53:3b:49:7e:1d:c5:70:3b:7a:0b: 68:b6:7f:58:1b:6c:96:6c:d0:b3:aa:d5:90:a1:5a:26:03:23: bf:37:76:d9:f5:58:60:84:b0:7f:32:1c:1d:a0:4a:9f:48:8d: af:8a:b0:08 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSScugUEZJaCrkWOZr5m4/F0MYIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY5NzYzMDM0OUIyMjBERjhDQzZCMTJGMkUxNDc4Mzg2 QkZBOTc2RDAeFw0yNjA1MDMwMjUwNThaFw0yNzA1MDIwMjU1NThaMDMxMTAvBgNV BAMTKEFGRDhERUFGN0MwN0JGRDRDMjA3MzE2OEM4Q0JBNzQ2QzExNTVFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYU3MkrWRg8TgfM1nICz27VyQ/ Bhp0IpTib5KqgdZWCow9gfsjYt0Lqry8KlfTJigUnuTL2REdKJw2T/cKbOL8dCG2 lpD3OX8qBfa7XTQyOqE1JyXdg2NSRtVNR9/xTwH4VT7EA183kK5LkvabRStMmF2S gFFeci4q4N/PKqK1sxgIOikwcLZPGGuOzkqaFxic+P5qGzwBTf18Dlu96Px78mHO 10sFZmqdlIUmfJiPzPgCcqOWXUucOZDk+yV4qEtjUaJRh0zrqTo6pXS1Vw5xALgo YCYCpM1UMRZLx0Cf3tB0HSaQaY1X+6r6JT2fqQDB/ImdtdU+GXfmUXlGChbXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUr9jer3wHv9TCBzFoyMunRsEVXgAwHwYDVR0j BBgwFoAU1pdjA0myIN+MxrEvLhR4OGv6l20wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTE5OGY3ZjgtZTcxNS00Yjc5LWFmMzItMmU1MTU0MWEzNGZmLzAvRDY5NzYzMDM0 OUIyMjBERjhDQzZCMTJGMkUxNDc4Mzg2QkZBOTc2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENjk3NjMwMzQ5QjIyMERGOENDNkIxMkYyRTE0NzgzODZCRkE5 NzZELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ExOThmN2Y4LWU3MTUtNGI3OS1h ZjMyLTJlNTE1NDFhMzRmZi8wLzMxMzAzMzJlMzEzNTM5MmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnn3EwDQYJ KoZIhvcNAQELBQADggEBAChwrtGL79Unnag33xgedOFpY+rL/QPzhkVwj+jHhwzG oVyeU0nI04BrEllb4+sAGPLTkvzuJCZ1kjRlfA5MBdFiebtU6O3gC/eiyHTtJKBC K5BO+tQrRRFdvpAXMcTCE7x0O7PLdS1GjLNxEOMfwTUDqNPwuF258Fh326tmUjwf xp2Npkvx/2smGcu5hGWj3JD/OBogh7ufiwqOUJ+6Bs6sov0f0mUEt1rHooQi4P8V UtT8JOdxbA8y8X8lM/3vcWx+wBTBf7HatCSb9eeBUztJfh3FcDt6C2i2f1gbbJZs 0LOq1ZChWiYDI783dtn1WGCEsH8yHB2gSp9Ija+KsAg= -----END CERTIFICATE-----Generated at Wed May 13 03:55:14 2026 by rpki-client