$ rpki-client -vvf rpki-rsync.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa File: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: C+h1+9cN0GpUOXDh90MHekCqY6uk6Swn27VB4kNaByQ= Subject key identifier: 01:1F:17:7E:D4:5F:70:5B:93:C1:8C:0E:E7:CC:63:A7:40:CB:4F:4E Certificate issuer: /CN=A785B4C890C9E26CFCE6849FEF009B041D31D5F2 Certificate serial: 488C7C337837D678C91EF76383DD93AFF86E32F2 Authority key identifier: A7:85:B4:C8:90:C9:E2:6C:FC:E6:84:9F:EF:00:9B:04:1D:31:D5:F2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A785B4C890C9E26CFCE6849FEF009B041D31D5F2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa Signing time: Sun 03 May 2026 02:57:05 +0000 ROA not before: Sun 03 May 2026 02:52:05 +0000 ROA not after: Sun 02 May 2027 02:57:05 +0000 asID: 136052 IP address blocks: 103.59.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/A785B4C890C9E26CFCE6849FEF009B041D31D5F2.crl rsync://rpki-rsync.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/A785B4C890C9E26CFCE6849FEF009B041D31D5F2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A785B4C890C9E26CFCE6849FEF009B041D31D5F2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:8c:7c:33:78:37:d6:78:c9:1e:f7:63:83:dd:93:af:f8:6e:32:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A785B4C890C9E26CFCE6849FEF009B041D31D5F2 Validity Not Before: May 3 02:52:05 2026 GMT Not After : May 2 02:57:05 2027 GMT Subject: CN=011F177ED45F705B93C18C0EE7CC63A740CB4F4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:91:98:25:79:53:de:ff:c5:b0:ac:00:a2:be: 1f:f4:b6:1d:f4:64:43:73:9d:6a:a4:38:08:ec:6e: e6:b8:90:70:6e:e5:4e:4d:e5:f6:0f:f1:fd:b7:aa: 59:1f:06:24:ab:d1:c7:b3:0b:54:9c:c0:b1:89:96: 9d:91:13:4a:a6:b6:22:82:75:88:c2:0c:0d:d9:f2: de:5c:34:a7:20:00:dc:59:a7:3f:91:f8:ac:d9:85: ab:98:41:08:4d:a3:12:7b:74:e9:6f:75:c8:61:39: df:c3:7d:62:fe:67:70:22:9b:51:03:63:14:aa:5e: 96:d2:35:0e:89:d9:3f:f2:b7:d9:b4:39:4e:2e:2c: 4d:58:1d:da:df:af:d8:75:b3:5a:87:8b:5b:ef:a0: 24:41:a9:09:72:b6:b9:8c:ce:ef:0e:db:46:dc:9d: c4:26:ba:61:84:05:fa:6a:6f:f6:cf:c5:7f:a7:13: af:f0:23:fc:23:1a:c8:e5:f1:1f:3c:f0:0d:b9:84: f4:13:c0:50:4d:f2:d3:23:60:fe:1c:38:9f:9f:c2: 7a:42:ac:d1:db:b9:85:a7:73:08:5a:cd:6c:e4:61: 07:44:cb:b0:1f:7f:ae:0e:3e:9a:ad:00:93:ec:d3: 87:63:32:b2:45:5a:4c:91:da:1c:a2:90:1c:47:0d: 51:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1F:17:7E:D4:5F:70:5B:93:C1:8C:0E:E7:CC:63:A7:40:CB:4F:4E X509v3 Authority Key Identifier: keyid:A7:85:B4:C8:90:C9:E2:6C:FC:E6:84:9F:EF:00:9B:04:1D:31:D5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/A785B4C890C9E26CFCE6849FEF009B041D31D5F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A785B4C890C9E26CFCE6849FEF009B041D31D5F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.94.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:ff:16:8b:08:72:bc:e2:c1:9f:9b:47:b1:94:75:17:ad:4a: b4:51:9a:ed:ca:8c:13:16:20:a2:f8:e1:86:b2:d7:73:ad:31: 66:29:6b:71:48:cc:e6:39:7c:2a:54:84:f3:f7:ae:a4:2c:11: c9:18:6f:b9:61:46:da:2a:9b:ff:48:a5:0b:f0:8d:f1:40:6a: be:ba:e0:47:44:f5:0c:ae:b8:12:ee:d2:ca:f5:95:4d:a2:d9: 9c:a0:67:60:64:20:b1:68:26:4d:1f:30:b0:46:82:89:47:7d: 7e:69:c2:8b:b4:7f:ab:b1:16:32:f6:cd:c9:d1:bc:80:2c:50: 2f:b5:e4:9a:51:25:ba:59:78:a3:dd:8a:17:19:e0:aa:4e:8f: 75:fd:13:5d:37:20:62:01:83:4b:cf:22:90:ee:42:d2:ea:55: df:b3:9d:20:5a:69:81:88:73:19:b1:dd:8d:9a:c1:d3:84:64: 62:20:d6:9a:01:32:87:62:51:32:93:32:d0:81:83:35:4d:3c: b7:aa:42:1a:c0:20:61:f8:b2:2d:42:98:8f:e8:87:0a:dd:3c: 97:d3:11:98:77:4a:52:af:5e:6e:1a:4c:e0:c7:84:0c:e2:35: dc:7a:a1:31:8c:5d:37:81:41:2e:8c:f2:e9:2a:fd:e9:66:ca: 8e:a2:41:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSIx8M3g31njJHvdjg92Tr/huMvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4NUI0Qzg5MEM5RTI2Q0ZDRTY4NDlGRUYwMDlCMDQx RDMxRDVGMjAeFw0yNjA1MDMwMjUyMDVaFw0yNzA1MDIwMjU3MDVaMDMxMTAvBgNV BAMTKDAxMUYxNzdFRDQ1RjcwNUI5M0MxOEMwRUU3Q0M2M0E3NDBDQjRGNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3kZgleVPe/8WwrACivh/0th30 ZENznWqkOAjsbua4kHBu5U5N5fYP8f23qlkfBiSr0cezC1ScwLGJlp2RE0qmtiKC dYjCDA3Z8t5cNKcgANxZpz+R+KzZhauYQQhNoxJ7dOlvdchhOd/DfWL+Z3Aim1ED YxSqXpbSNQ6J2T/yt9m0OU4uLE1YHdrfr9h1s1qHi1vvoCRBqQlytrmMzu8O20bc ncQmumGEBfpqb/bPxX+nE6/wI/wjGsjl8R888A25hPQTwFBN8tMjYP4cOJ+fwnpC rNHbuYWncwhazWzkYQdEy7Aff64OPpqtAJPs04djMrJFWkyR2hyikBxHDVGDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAR8XftRfcFuTwYwO58xjp0DLT04wHwYDVR0j BBgwFoAUp4W0yJDJ4mz85oSf7wCbBB0x1fIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY2YThmMjgtOWEwMy00Mzc2LWI2MTItMzFmNWFkMWMxZWQ2LzAvQTc4NUI0Qzg5 MEM5RTI2Q0ZDRTY4NDlGRUYwMDlCMDQxRDMxRDVGMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BNzg1QjRDODkwQzlFMjZDRkNFNjg0OUZFRjAwOUIwNDFEMzFE NUYyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2NmE4ZjI4LTlhMDMtNDM3Ni1i NjEyLTMxZjVhZDFjMWVkNi8wLzMxMzAzMzJlMzUzOTJlMzkzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc7XjANBgkqhkiG 9w0BAQsFAAOCAQEATv8WiwhyvOLBn5tHsZR1F61KtFGa7cqMExYgovjhhrLXc60x ZilrcUjM5jl8KlSE8/eupCwRyRhvuWFG2iqb/0ilC/CN8UBqvrrgR0T1DK64Eu7S yvWVTaLZnKBnYGQgsWgmTR8wsEaCiUd9fmnCi7R/q7EWMvbNydG8gCxQL7XkmlEl ull4o92KFxngqk6Pdf0TXTcgYgGDS88ikO5C0upV37OdIFppgYhzGbHdjZrB04Rk YiDWmgEyh2JRMpMy0IGDNU08t6pCGsAgYfiyLUKYj+iHCt08l9MRmHdKUq9ebhpM 4MeEDOI13HqhMYxdN4FBLozy6Sr96WbKjqJBtQ== -----END CERTIFICATE-----Generated at Wed May 13 08:24:56 2026 by rpki-client