$ rpki-client -vvf rpki-rsync.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa File: 3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa (raw, json) Hash identifier: H29DiGXAuolahNiG0w85WM8CZEw5FJ4zYtAOWOwpwGM= Subject key identifier: BD:84:33:A9:DF:F4:45:5C:64:41:EA:D0:3E:83:0D:48:44:59:28:9D Certificate issuer: /CN=98E2D88430E0F6BCECDC35B8596FF471265D238B Certificate serial: 35905C331D5A0AEA498EEF0C7F9B90D2E161EC5E Authority key identifier: 98:E2:D8:84:30:E0:F6:BC:EC:DC:35:B8:59:6F:F4:71:26:5D:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/98E2D88430E0F6BCECDC35B8596FF471265D238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa Signing time: Sun 03 May 2026 02:57:53 +0000 ROA not before: Sun 03 May 2026 02:52:53 +0000 ROA not after: Sun 02 May 2027 02:57:53 +0000 asID: 141912 IP address blocks: 103.161.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/98E2D88430E0F6BCECDC35B8596FF471265D238B.crl rsync://rpki-rsync.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/98E2D88430E0F6BCECDC35B8596FF471265D238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/98E2D88430E0F6BCECDC35B8596FF471265D238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:90:5c:33:1d:5a:0a:ea:49:8e:ef:0c:7f:9b:90:d2:e1:61:ec:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98E2D88430E0F6BCECDC35B8596FF471265D238B Validity Not Before: May 3 02:52:53 2026 GMT Not After : May 2 02:57:53 2027 GMT Subject: CN=BD8433A9DFF4455C6441EAD03E830D484459289D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:75:88:e3:55:7e:98:5f:df:4b:17:52:eb:9b: 62:f7:00:fe:3c:54:de:17:16:5a:7e:c0:e2:2a:ca: f5:6c:60:17:6b:d0:3b:4a:06:c6:2e:ef:bc:78:58: e1:54:52:d5:ba:7a:77:c4:fc:17:78:ec:1b:3a:56: cf:5a:14:56:4f:78:e0:90:0a:3a:42:57:4e:05:b9: ad:1b:19:c2:45:14:c9:cf:c7:3d:34:bd:ca:c3:70: 8b:97:36:8c:31:a1:e8:a4:ca:91:d1:52:93:b6:b7: a2:70:4c:8e:5a:54:04:92:1b:ee:0c:62:74:24:8a: c7:03:10:d2:ca:d6:44:04:7a:b6:43:33:27:58:a9: 71:30:84:47:13:b5:be:b1:8d:0b:cb:82:ad:06:90: 56:41:b8:33:e6:9f:54:94:40:e8:67:f0:08:3d:c9: 13:ee:41:93:32:b5:19:25:94:da:7d:6b:86:af:63: bd:26:b5:50:49:e2:a1:19:aa:7a:bd:a0:a9:24:d2: 09:b5:38:08:71:99:3b:6f:b3:a3:21:e5:0e:f7:17: a3:b0:8f:8f:ab:fe:a5:97:71:e0:50:41:d1:7b:ce: 9b:62:7a:42:00:69:82:99:38:cc:a0:fe:f8:4a:6f: fc:0d:a1:8f:0e:94:3c:88:f0:a9:dc:3d:9a:ff:b9: 22:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:84:33:A9:DF:F4:45:5C:64:41:EA:D0:3E:83:0D:48:44:59:28:9D X509v3 Authority Key Identifier: keyid:98:E2:D8:84:30:E0:F6:BC:EC:DC:35:B8:59:6F:F4:71:26:5D:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/98E2D88430E0F6BCECDC35B8596FF471265D238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/98E2D88430E0F6BCECDC35B8596FF471265D238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.108.0/24 Signature Algorithm: sha256WithRSAEncryption 95:f0:7f:7e:31:d4:11:07:39:5e:3b:92:fd:4e:ed:ba:6c:d5: 98:17:58:21:dd:be:30:0a:e0:10:d8:e9:f8:d0:73:fc:c2:b5: 4d:67:7d:ca:d0:5f:d9:49:b8:47:d8:31:6d:58:7a:a2:15:75: 24:69:c7:b3:fb:f0:5e:42:cf:90:18:d9:ef:c9:4b:c5:91:72: 23:90:78:cc:44:0c:40:9e:71:ba:40:08:2e:7e:a9:52:f3:17: bc:fb:87:b4:38:57:b0:85:a1:7d:18:13:f2:99:7f:01:bf:28: fb:2f:d7:c5:f1:2c:3b:0c:94:a0:df:96:09:84:3e:ac:06:9e: a3:b8:1d:2e:dd:5a:fb:df:af:b3:17:39:02:c1:3f:22:df:c3: 6c:e2:86:48:3e:29:e2:c1:43:8d:28:21:17:c5:e4:75:52:de: 9b:41:2e:03:ec:26:9b:f0:d8:4c:7b:0c:27:c2:63:48:05:0c: d0:21:f2:75:0e:60:f0:8a:c3:9f:d3:a3:c7:d4:11:34:30:da: ca:72:65:70:87:eb:a6:55:4b:84:95:10:b3:b5:1e:93:f7:76: 47:d6:e2:01:6a:23:25:fc:d0:72:ba:16:3e:95:27:21:46:36: 0f:70:e7:ee:85:9d:41:aa:d7:0d:0e:66:36:c8:55:d2:b2:e9: da:c9:a0:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNZBcMx1aCupJju8Mf5uQ0uFh7F4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThFMkQ4ODQzMEUwRjZCQ0VDREMzNUI4NTk2RkY0NzEy NjVEMjM4QjAeFw0yNjA1MDMwMjUyNTNaFw0yNzA1MDIwMjU3NTNaMDMxMTAvBgNV BAMTKEJEODQzM0E5REZGNDQ1NUM2NDQxRUFEMDNFODMwRDQ4NDQ1OTI4OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDedYjjVX6YX99LF1Lrm2L3AP48 VN4XFlp+wOIqyvVsYBdr0DtKBsYu77x4WOFUUtW6enfE/Bd47Bs6Vs9aFFZPeOCQ CjpCV04Fua0bGcJFFMnPxz00vcrDcIuXNowxoeikypHRUpO2t6JwTI5aVASSG+4M YnQkiscDENLK1kQEerZDMydYqXEwhEcTtb6xjQvLgq0GkFZBuDPmn1SUQOhn8Ag9 yRPuQZMytRkllNp9a4avY70mtVBJ4qEZqnq9oKkk0gm1OAhxmTtvs6Mh5Q73F6Ow j4+r/qWXceBQQdF7zptiekIAaYKZOMyg/vhKb/wNoY8OlDyI8KncPZr/uSI7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvYQzqd/0RVxkQerQPoMNSERZKJ0wHwYDVR0j BBgwFoAUmOLYhDDg9rzs3DW4WW/0cSZdI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTg5YTA2NjEtMzFlZS00OWEyLWFlOWYtZjZkNTczYTE3ZGY3LzAvOThFMkQ4ODQz MEUwRjZCQ0VDREMzNUI4NTk2RkY0NzEyNjVEMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OEUyRDg4NDMwRTBGNkJDRUNEQzM1Qjg1OTZGRjQ3MTI2NUQy MzhCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4OWEwNjYxLTMxZWUtNDlhMi1h ZTlmLWY2ZDU3M2ExN2RmNy8wLzMxMzAzMzJlMzEzNjMxMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoWwwDQYJ KoZIhvcNAQELBQADggEBAJXwf34x1BEHOV47kv1O7bps1ZgXWCHdvjAK4BDY6fjQ c/zCtU1nfcrQX9lJuEfYMW1YeqIVdSRpx7P78F5Cz5AY2e/JS8WRciOQeMxEDECe cbpACC5+qVLzF7z7h7Q4V7CFoX0YE/KZfwG/KPsv18XxLDsMlKDflgmEPqwGnqO4 HS7dWvvfr7MXOQLBPyLfw2zihkg+KeLBQ40oIRfF5HVS3ptBLgPsJpvw2Ex7DCfC Y0gFDNAh8nUOYPCKw5/To8fUETQw2spyZXCH66ZVS4SVELO1HpP3dkfW4gFqIyX8 0HK6Fj6VJyFGNg9w5+6FnUGq1w0OZjbIVdKy6drJoIU= -----END CERTIFICATE-----Generated at Wed May 13 12:41:52 2026 by rpki-client