$ rpki-client -vvf rpki-rsync.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/3130332e3231312e3130372e302f32342d3234203d3e20313530393938.roa File: 3130332e3231312e3130372e302f32342d3234203d3e20313530393938.roa (raw, json) Hash identifier: abHJVxNnwaoboRz133X3G8MnlftrvDuOlkNRl1NWN8Q= Subject key identifier: 96:BB:10:D4:2A:F1:3C:43:94:4C:DB:A3:4E:6A:D0:FF:3F:7C:2E:2A Certificate issuer: /CN=1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346 Certificate serial: 364FD08F3825E86041FA3F5C49C6FCA1287BFEED Authority key identifier: 1C:F2:17:AA:EB:C8:A5:B8:BA:FA:D3:F7:EF:49:BE:BC:61:FB:E3:46 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/3130332e3231312e3130372e302f32342d3234203d3e20313530393938.roa Signing time: Sun 03 May 2026 02:57:52 +0000 ROA not before: Sun 03 May 2026 02:52:52 +0000 ROA not after: Sun 02 May 2027 02:57:52 +0000 asID: 150998 IP address blocks: 103.211.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346.crl rsync://rpki-rsync.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:4f:d0:8f:38:25:e8:60:41:fa:3f:5c:49:c6:fc:a1:28:7b:fe:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346 Validity Not Before: May 3 02:52:52 2026 GMT Not After : May 2 02:57:52 2027 GMT Subject: CN=96BB10D42AF13C43944CDBA34E6AD0FF3F7C2E2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:f6:eb:8a:0f:3e:54:d9:29:44:96:67:76: 18:89:c9:19:90:59:a1:ad:1f:db:43:cb:58:8b:4d: db:22:71:db:b2:6d:e3:14:c4:03:1f:5b:eb:6f:9a: b9:34:5a:eb:3f:14:a6:63:70:43:dc:0d:ad:ef:48: 86:4e:ab:91:c8:3e:70:8c:41:01:33:d1:cc:b6:51: fa:e1:66:f4:62:c6:cc:7d:9e:59:ed:e5:2c:b3:c3: 72:0e:bb:55:dc:06:8a:61:70:52:83:75:48:08:e3: a4:07:4f:ac:88:ed:5c:54:b4:0a:37:10:22:f6:03: d8:03:23:69:93:10:70:0d:a1:64:eb:21:6e:45:28: cb:f1:3f:3a:75:24:34:ab:55:cd:e3:04:d3:04:a1: e9:14:79:e9:79:3e:b4:9a:c3:87:12:82:0b:12:96: bd:ea:51:2a:94:53:08:2b:64:a6:8d:3f:4f:66:c9: e5:fb:74:40:e2:fa:03:ca:12:6c:51:79:f7:b5:b7: 8b:41:86:f6:6e:c4:87:8a:2d:a4:1b:46:10:ff:63: 19:7b:f3:16:1e:cd:0e:66:61:d6:b6:60:61:e2:13: 6a:ff:d7:00:7a:30:41:f1:b8:fc:1f:b1:b8:e3:9f: f2:ed:34:93:d2:fe:84:94:9c:23:5c:a9:cf:8d:50: 24:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BB:10:D4:2A:F1:3C:43:94:4C:DB:A3:4E:6A:D0:FF:3F:7C:2E:2A X509v3 Authority Key Identifier: keyid:1C:F2:17:AA:EB:C8:A5:B8:BA:FA:D3:F7:EF:49:BE:BC:61:FB:E3:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1CF217AAEBC8A5B8BAFAD3F7EF49BEBC61FBE346.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/3130332e3231312e3130372e302f32342d3234203d3e20313530393938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.107.0/24 Signature Algorithm: sha256WithRSAEncryption 75:67:b5:7a:2e:7c:f6:3a:8d:33:fa:5e:7c:e9:dd:ad:f4:8a: 4f:32:50:fc:62:7b:67:d5:ac:c5:0a:92:a6:9d:04:35:bc:f5: 9b:24:48:7a:d3:b0:fb:64:fa:67:22:ef:59:bc:90:9c:1e:c4: 7b:ea:2d:d1:37:3d:34:1d:91:fc:9b:f1:ab:a0:ee:57:35:fb: 88:0e:5a:83:84:3c:f5:a4:81:17:8f:40:c9:da:a7:54:08:7e: 0e:42:8a:6d:1b:d1:f5:7b:04:0c:c0:b5:ae:4f:fb:93:61:fc: a4:69:cc:fc:a1:4d:d9:f9:12:4c:f0:3a:0f:30:7a:98:eb:9f: 00:65:f0:96:07:c4:75:c4:a3:2e:1a:d3:19:4f:95:40:4e:fd: 7c:03:38:4b:ff:9f:39:11:b0:1a:b2:e2:e4:c2:2e:98:29:62: 44:77:8e:15:b3:56:1e:cb:a8:c0:d8:38:b5:5c:6c:a5:d1:b1: 34:95:9f:c7:8d:de:4b:f7:47:0b:fa:92:84:52:c6:f9:bd:03: c6:8d:4e:18:e2:23:89:a9:31:21:3c:6a:7e:3a:da:3c:24:8c: d4:ab:4b:27:a6:3b:c1:2a:c9:e1:99:bb:f5:a3:f1:9f:37:d2: 37:08:94:ec:10:07:1e:ca:01:48:65:f6:c6:b4:d3:91:87:63: b9:b0:6a:a1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNk/Qjzgl6GBB+j9cScb8oSh7/u0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNGMjE3QUFFQkM4QTVCOEJBRkFEM0Y3RUY0OUJFQkM2 MUZCRTM0NjAeFw0yNjA1MDMwMjUyNTJaFw0yNzA1MDIwMjU3NTJaMDMxMTAvBgNV BAMTKDk2QkIxMEQ0MkFGMTNDNDM5NDRDREJBMzRFNkFEMEZGM0Y3QzJFMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5jvbrig8+VNkpRJZndhiJyRmQ WaGtH9tDy1iLTdsicduybeMUxAMfW+tvmrk0Wus/FKZjcEPcDa3vSIZOq5HIPnCM QQEz0cy2UfrhZvRixsx9nlnt5Syzw3IOu1XcBophcFKDdUgI46QHT6yI7VxUtAo3 ECL2A9gDI2mTEHANoWTrIW5FKMvxPzp1JDSrVc3jBNMEoekUeel5PrSaw4cSggsS lr3qUSqUUwgrZKaNP09myeX7dEDi+gPKEmxRefe1t4tBhvZuxIeKLaQbRhD/Yxl7 8xYezQ5mYda2YGHiE2r/1wB6MEHxuPwfsbjjn/LtNJPS/oSUnCNcqc+NUCTTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlrsQ1CrxPEOUTNujTmrQ/z98LiowHwYDVR0j BBgwFoAUHPIXquvIpbi6+tP370m+vGH740YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTg3OGMwNjItYjA5Mi00MDI1LTliNjgtYmZlYjliNjVhNWEwLzAvMUNGMjE3QUFF QkM4QTVCOEJBRkFEM0Y3RUY0OUJFQkM2MUZCRTM0Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQ0YyMTdBQUVCQzhBNUI4QkFGQUQzRjdFRjQ5QkVCQzYxRkJF MzQ2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4NzhjMDYyLWIwOTItNDAyNS05 YjY4LWJmZWI5YjY1YTVhMC8wLzMxMzAzMzJlMzIzMTMxMmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn02swDQYJ KoZIhvcNAQELBQADggEBAHVntXoufPY6jTP6Xnzp3a30ik8yUPxie2fVrMUKkqad BDW89ZskSHrTsPtk+mci71m8kJwexHvqLdE3PTQdkfyb8aug7lc1+4gOWoOEPPWk gRePQMnap1QIfg5Cim0b0fV7BAzAta5P+5Nh/KRpzPyhTdn5EkzwOg8wepjrnwBl 8JYHxHXEoy4a0xlPlUBO/XwDOEv/nzkRsBqy4uTCLpgpYkR3jhWzVh7LqMDYOLVc bKXRsTSVn8eN3kv3Rwv6koRSxvm9A8aNThjiI4mpMSE8an462jwkjNSrSyemO8Eq yeGZu/Wj8Z830jcIlOwQBx7KAUhl9sa005GHY7mwaqE= -----END CERTIFICATE-----Generated at Wed May 13 02:26:06 2026 by rpki-client