$ rpki-client -vvf rpki-rsync.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa File: 3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa (raw, json) Hash identifier: 2oQBF0OAu+x3jbAGDBl7jZuo1w7C20ONHzk/GqcpbO8= Subject key identifier: 93:F5:9A:99:C4:04:CD:B1:BB:5E:16:BC:3B:42:90:40:EE:CE:05:BA Certificate issuer: /CN=4AC5DC4172AAF4319622F4E1C03FFE431F27E584 Certificate serial: 68B395FA73F29CABF05A909B8D8D98FD80CA7110 Authority key identifier: 4A:C5:DC:41:72:AA:F4:31:96:22:F4:E1:C0:3F:FE:43:1F:27:E5:84 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4AC5DC4172AAF4319622F4E1C03FFE431F27E584.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa Signing time: Sun 03 May 2026 02:56:26 +0000 ROA not before: Sun 03 May 2026 02:51:26 +0000 ROA not after: Sun 02 May 2027 02:56:26 +0000 asID: 141071 IP address blocks: 103.97.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/4AC5DC4172AAF4319622F4E1C03FFE431F27E584.crl rsync://rpki-rsync.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/4AC5DC4172AAF4319622F4E1C03FFE431F27E584.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4AC5DC4172AAF4319622F4E1C03FFE431F27E584.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:20:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:b3:95:fa:73:f2:9c:ab:f0:5a:90:9b:8d:8d:98:fd:80:ca:71:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC5DC4172AAF4319622F4E1C03FFE431F27E584 Validity Not Before: May 3 02:51:26 2026 GMT Not After : May 2 02:56:26 2027 GMT Subject: CN=93F59A99C404CDB1BB5E16BC3B429040EECE05BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f0:63:6f:ba:07:51:7f:60:00:cd:7a:29:63: f2:5d:96:b0:03:de:35:2a:a8:45:40:0c:1d:71:82: 0d:30:f3:bf:79:4c:38:dc:3e:69:59:0e:c7:3c:26: e5:f4:f4:70:5b:73:c7:dc:ec:d8:0d:27:d6:58:f2: c1:dc:4c:ef:f0:89:d7:5d:3c:9b:44:c3:2d:8e:86: b1:5d:19:a1:e7:9c:fa:64:e5:b5:8f:a9:3e:34:8d: 01:57:1d:0e:37:38:1b:5c:66:5e:d3:a6:aa:d9:92: a7:ce:6a:90:7e:b6:4f:76:de:41:fd:f9:6c:9f:ad: fb:c1:c5:b7:07:b9:b1:61:15:26:cf:d5:2a:8d:d7: 54:5f:f0:18:7e:a5:a4:07:dc:6b:be:b5:18:c8:25: 24:bf:53:05:e8:82:e2:9a:1f:31:e6:f0:da:bb:95: 0e:c9:90:66:fe:18:fa:d4:b4:f1:f8:e5:c2:e2:00: fd:17:2c:cd:43:60:db:66:5b:a5:44:32:50:25:bb: ce:6a:1c:d5:90:63:d3:17:15:3b:e5:f2:a2:09:da: 56:84:d6:ea:00:9d:64:29:91:69:71:82:de:a5:0c: c3:2e:7f:65:e7:d8:e0:53:33:ff:04:81:7f:a8:9e: 65:e4:43:c2:74:8d:5a:bb:40:45:29:56:5c:ea:19: 15:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F5:9A:99:C4:04:CD:B1:BB:5E:16:BC:3B:42:90:40:EE:CE:05:BA X509v3 Authority Key Identifier: keyid:4A:C5:DC:41:72:AA:F4:31:96:22:F4:E1:C0:3F:FE:43:1F:27:E5:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/4AC5DC4172AAF4319622F4E1C03FFE431F27E584.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4AC5DC4172AAF4319622F4E1C03FFE431F27E584.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.140.0/24 Signature Algorithm: sha256WithRSAEncryption 70:55:0f:7b:fd:54:05:4f:20:ce:41:46:61:e2:68:b4:de:50: f2:2f:bb:70:22:9c:95:a3:42:cc:55:7d:12:08:20:0f:8d:45: ff:14:9e:82:0b:78:40:56:7c:94:71:29:df:f0:5b:99:ed:89: 70:0d:b4:94:db:26:ea:24:0e:4a:4c:e8:d9:72:db:2f:58:25: c7:a0:c4:c8:76:e4:59:e3:79:85:83:f1:6a:c6:42:16:5f:61: 3d:20:b4:ac:9c:2a:89:ad:f2:ea:a0:e8:1e:e0:13:d6:f3:56: 6c:5a:19:57:0d:e5:e3:33:4d:b6:db:76:68:da:85:72:a4:4b: 8d:d5:7b:31:0b:41:1c:3f:43:5b:62:22:66:7c:bb:8a:49:29: 08:50:29:90:04:d3:82:5c:54:5f:af:ce:87:7f:bb:5d:02:96: 22:07:cf:3d:99:5d:c9:c5:7b:e4:37:8b:47:d2:1e:cd:e9:15: a5:13:e6:b8:8b:0f:71:4f:cd:e7:c2:29:f3:43:44:dc:92:e2: 4c:64:37:dc:79:d3:cb:aa:14:14:64:c2:e5:e5:13:20:b4:94: 26:25:83:ba:42:ff:c6:99:b2:5f:15:00:13:ea:80:34:6c:f9: 8d:a1:59:75:8d:76:d0:75:bb:07:66:91:6c:a6:7c:d1:01:40: f6:ac:05:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaLOV+nPynKvwWpCbjY2Y/YDKcRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDNURDNDE3MkFBRjQzMTk2MjJGNEUxQzAzRkZFNDMx RjI3RTU4NDAeFw0yNjA1MDMwMjUxMjZaFw0yNzA1MDIwMjU2MjZaMDMxMTAvBgNV BAMTKDkzRjU5QTk5QzQwNENEQjFCQjVFMTZCQzNCNDI5MDQwRUVDRTA1QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH8GNvugdRf2AAzXopY/JdlrAD 3jUqqEVADB1xgg0w8795TDjcPmlZDsc8JuX09HBbc8fc7NgNJ9ZY8sHcTO/widdd PJtEwy2OhrFdGaHnnPpk5bWPqT40jQFXHQ43OBtcZl7TpqrZkqfOapB+tk923kH9 +WyfrfvBxbcHubFhFSbP1SqN11Rf8Bh+paQH3Gu+tRjIJSS/UwXoguKaHzHm8Nq7 lQ7JkGb+GPrUtPH45cLiAP0XLM1DYNtmW6VEMlAlu85qHNWQY9MXFTvl8qIJ2laE 1uoAnWQpkWlxgt6lDMMuf2Xn2OBTM/8EgX+onmXkQ8J0jVq7QEUpVlzqGRWLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUk/WamcQEzbG7Xha8O0KQQO7OBbowHwYDVR0j BBgwFoAUSsXcQXKq9DGWIvThwD/+Qx8n5YQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTQwMTQzNmItMDI2Ny00NjZiLWEzNDAtZTI4OGQyZTkzNGE4LzAvNEFDNURDNDE3 MkFBRjQzMTk2MjJGNEUxQzAzRkZFNDMxRjI3RTU4NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QUM1REM0MTcyQUFGNDMxOTYyMkY0RTFDMDNGRkU0MzFGMjdF NTg0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E0MDE0MzZiLTAyNjctNDY2Yi1h MzQwLWUyODhkMmU5MzRhOC8wLzMxMzAzMzJlMzkzNzJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2GMMA0GCSqG SIb3DQEBCwUAA4IBAQBwVQ97/VQFTyDOQUZh4mi03lDyL7twIpyVo0LMVX0SCCAP jUX/FJ6CC3hAVnyUcSnf8FuZ7YlwDbSU2ybqJA5KTOjZctsvWCXHoMTIduRZ43mF g/FqxkIWX2E9ILSsnCqJrfLqoOge4BPW81ZsWhlXDeXjM02223Zo2oVypEuN1Xsx C0EcP0NbYiJmfLuKSSkIUCmQBNOCXFRfr86Hf7tdApYiB889mV3JxXvkN4tH0h7N 6RWlE+a4iw9xT83nwinzQ0TckuJMZDfcedPLqhQUZMLl5RMgtJQmJYO6Qv/GmbJf FQAT6oA0bPmNoVl1jXbQdbsHZpFspnzRAUD2rAXB -----END CERTIFICATE-----Generated at Wed May 13 06:26:03 2026 by rpki-client