$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa File: 3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa (raw, json) Hash identifier: OEqKbqVoV+spRdzW+aE4+2tFsdczawhoz6Mphx/Zguc= Subject key identifier: 73:7D:23:E3:C9:5D:7D:7D:09:EA:F7:8A:3A:F4:CA:B5:EE:6C:01:26 Certificate issuer: /CN=25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B Certificate serial: 1D7F9AB40E6E425117FAFF55975959EF457EC83F Authority key identifier: 25:DF:CC:E8:53:93:67:30:6B:FE:98:EC:BC:25:4B:3C:D0:FF:3F:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa Signing time: Sun 03 May 2026 02:57:55 +0000 ROA not before: Sun 03 May 2026 02:52:55 +0000 ROA not after: Sun 02 May 2027 02:57:55 +0000 asID: 139446 IP address blocks: 103.145.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.crl rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7f:9a:b4:0e:6e:42:51:17:fa:ff:55:97:59:59:ef:45:7e:c8:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B Validity Not Before: May 3 02:52:55 2026 GMT Not After : May 2 02:57:55 2027 GMT Subject: CN=737D23E3C95D7D7D09EAF78A3AF4CAB5EE6C0126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d5:6c:55:e1:47:fa:0f:b6:95:90:2d:e6:a2: ac:4c:0b:6f:25:95:d0:0c:bf:f1:e9:fb:2a:fc:60: 4c:46:2f:01:6e:ab:5c:57:1f:79:35:59:da:74:bd: 5e:be:a7:3b:20:40:9e:a0:a4:ec:f7:c4:fd:50:90: dc:b9:27:4e:24:87:c3:d6:06:cd:8a:34:a1:23:08: b2:ff:28:ce:33:5e:3c:05:e0:af:77:33:bf:35:a5: dc:86:16:93:30:7f:48:06:e6:ac:4c:25:d8:e3:6f: a5:ae:6a:3f:45:62:25:4c:00:54:95:56:b9:ba:70: 13:38:7d:a9:6d:8f:bb:0d:7b:0f:02:e9:ec:83:9d: 12:07:0b:aa:f4:96:6b:83:f0:e9:23:15:cd:e2:b2: 77:d2:ae:0d:17:71:c8:a4:da:43:ac:58:5f:08:89: 9a:d7:06:29:e0:41:20:c3:35:53:af:a5:92:68:74: 83:ec:59:ed:8f:8e:a8:29:d8:77:2d:31:96:3a:31: 6c:0e:d6:4c:c4:0f:07:60:9e:07:6c:3d:c4:69:f1: eb:46:a6:77:9d:e9:b7:51:4f:48:6b:d6:92:e2:c7: 45:ff:39:74:60:8c:f0:d9:58:53:f2:ef:81:b0:91: 50:ea:4c:a0:bd:16:96:59:25:92:c3:52:b5:ec:8e: 05:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:7D:23:E3:C9:5D:7D:7D:09:EA:F7:8A:3A:F4:CA:B5:EE:6C:01:26 X509v3 Authority Key Identifier: keyid:25:DF:CC:E8:53:93:67:30:6B:FE:98:EC:BC:25:4B:3C:D0:FF:3F:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25DFCCE8539367306BFE98ECBC254B3CD0FF3F5B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.108.0/24 Signature Algorithm: sha256WithRSAEncryption 42:07:6d:07:6c:da:7f:05:bd:ab:c0:38:77:72:e5:f0:a9:77: ff:02:74:a7:fd:43:a1:b5:9b:68:0a:f3:7e:7c:b2:cf:83:0a: c4:15:e8:52:bf:c4:02:cf:e6:af:af:44:ca:5e:a5:fe:79:8f: ee:d2:4a:c1:fd:23:db:50:eb:f1:92:9d:5b:b3:65:ea:a5:0d: cb:46:49:96:ae:67:e7:52:0d:5e:d6:31:e0:e3:e6:da:d9:2f: e3:74:0a:60:2b:65:9c:35:45:6e:c9:04:ff:97:24:4f:12:2b: 56:ce:2c:0e:9f:e9:cf:5c:ef:6c:4a:84:39:84:a3:1b:8d:38: 7f:26:61:75:3e:af:b3:fe:e0:b3:bd:eb:c3:75:3e:97:9e:25: 07:c9:22:9d:81:24:a7:a8:d2:55:a4:10:6d:64:4e:ed:7d:b2: 35:fd:3f:af:e9:8d:2f:10:4b:62:3f:71:25:af:b4:c7:5f:5f: 3a:fd:5e:cb:a9:60:d4:0d:f3:7f:3f:fa:71:03:b5:50:11:f3: 33:10:9a:88:7d:3f:d1:86:4d:52:56:40:fa:0c:e1:16:06:51: 51:0e:43:2c:fe:19:b6:da:c1:f5:78:6e:7d:cd:3f:da:ae:11: 82:9c:1e:5e:20:f4:bf:2a:ed:4c:5e:bb:ed:29:70:89:6e:c6: 2c:bc:68:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHX+atA5uQlEX+v9Vl1lZ70V+yD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVERkNDRTg1MzkzNjczMDZCRkU5OEVDQkMyNTRCM0NE MEZGM0Y1QjAeFw0yNjA1MDMwMjUyNTVaFw0yNzA1MDIwMjU3NTVaMDMxMTAvBgNV BAMTKDczN0QyM0UzQzk1RDdEN0QwOUVBRjc4QTNBRjRDQUI1RUU2QzAxMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr1WxV4Uf6D7aVkC3moqxMC28l ldAMv/Hp+yr8YExGLwFuq1xXH3k1Wdp0vV6+pzsgQJ6gpOz3xP1QkNy5J04kh8PW Bs2KNKEjCLL/KM4zXjwF4K93M781pdyGFpMwf0gG5qxMJdjjb6Wuaj9FYiVMAFSV Vrm6cBM4faltj7sNew8C6eyDnRIHC6r0lmuD8OkjFc3isnfSrg0Xccik2kOsWF8I iZrXBingQSDDNVOvpZJodIPsWe2Pjqgp2HctMZY6MWwO1kzEDwdgngdsPcRp8etG pned6bdRT0hr1pLix0X/OXRgjPDZWFPy74GwkVDqTKC9FpZZJZLDUrXsjgX9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc30j48ldfX0J6veKOvTKte5sASYwHwYDVR0j BBgwFoAUJd/M6FOTZzBr/pjsvCVLPND/P1swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YThjMDY4ZGEtZjljNS00MDM2LTg1NGItOTIyY2FhOTNmMzI0LzAvMjVERkNDRTg1 MzkzNjczMDZCRkU5OEVDQkMyNTRCM0NEMEZGM0Y1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNURGQ0NFODUzOTM2NzMwNkJGRTk4RUNCQzI1NEIzQ0QwRkYz RjVCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4YzA2OGRhLWY5YzUtNDAzNi04 NTRiLTkyMmNhYTkzZjMyNC8wLzMxMzAzMzJlMzEzNDM1MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkWwwDQYJ KoZIhvcNAQELBQADggEBAEIHbQds2n8FvavAOHdy5fCpd/8CdKf9Q6G1m2gK8358 ss+DCsQV6FK/xALP5q+vRMpepf55j+7SSsH9I9tQ6/GSnVuzZeqlDctGSZauZ+dS DV7WMeDj5trZL+N0CmArZZw1RW7JBP+XJE8SK1bOLA6f6c9c72xKhDmEoxuNOH8m YXU+r7P+4LO968N1PpeeJQfJIp2BJKeo0lWkEG1kTu19sjX9P6/pjS8QS2I/cSWv tMdfXzr9XsupYNQN838/+nEDtVAR8zMQmoh9P9GGTVJWQPoM4RYGUVEOQyz+Gbba wfV4bn3NP9quEYKcHl4g9L8q7Uxeu+0pcIluxiy8aCo= -----END CERTIFICATE-----Generated at Wed May 13 14:53:32 2026 by rpki-client