$ rpki-client -vvf rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa File: 3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa (raw, json) Hash identifier: WV8Z97xrGgFHwypp6SwSp1IloS8eHHkMOVgWyPQX300= Subject key identifier: A8:C0:5F:A2:3B:E2:ED:2A:5C:66:9E:C4:CB:AE:54:DA:6D:DF:DC:81 Certificate issuer: /CN=A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81 Certificate serial: 66B5536ACC64E64A51552473401A121E9B2ECE5F Authority key identifier: A9:2D:7A:2C:E9:CB:AA:FD:76:3A:38:0C:28:FA:DD:D1:A3:C7:EA:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa Signing time: Sun 03 May 2026 02:58:16 +0000 ROA not before: Sun 03 May 2026 02:53:16 +0000 ROA not after: Sun 02 May 2027 02:58:16 +0000 asID: 139427 IP address blocks: 103.144.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.crl rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b5:53:6a:cc:64:e6:4a:51:55:24:73:40:1a:12:1e:9b:2e:ce:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81 Validity Not Before: May 3 02:53:16 2026 GMT Not After : May 2 02:58:16 2027 GMT Subject: CN=A8C05FA23BE2ED2A5C669EC4CBAE54DA6DDFDC81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b3:da:92:74:57:ae:53:8b:9d:40:7e:8e:9f: 58:3f:48:8a:c3:17:da:fe:5c:67:1a:73:85:6b:63: 84:e3:34:e9:6b:6a:4f:5e:d3:e8:e7:6c:90:9c:5c: 0a:e4:f8:52:d2:10:da:57:52:9a:9c:60:e6:6b:45: 5c:96:16:e1:2f:49:04:a4:cb:0f:8d:34:6f:15:96: 70:b3:48:dc:5d:1d:e7:62:41:7c:55:cb:68:f7:ee: 66:00:1a:3f:2a:3f:d0:a7:20:85:c9:39:ec:5c:1a: 42:a7:84:d6:a6:ce:1f:71:4b:4b:da:62:0e:ad:b9: 0b:f6:60:9c:93:e3:53:6d:82:29:c6:88:76:a8:24: c0:49:8a:a2:62:2e:d2:b2:4a:8b:33:57:89:28:67: 9d:80:9d:d5:68:25:b4:f5:7e:fe:49:e1:94:95:d9: f6:f9:17:d9:0e:29:ab:7a:d1:34:aa:95:f7:78:c0: c6:37:8d:a9:bc:a4:9c:87:b8:44:b7:23:75:d3:c6: 17:6d:f9:1c:91:6f:11:2f:cf:87:84:71:52:25:1d: e5:4a:8e:4d:45:87:f5:4c:a3:e7:cf:4c:74:de:00: 96:56:40:33:03:b2:dd:2b:bb:d5:6e:24:b1:b5:22: ef:7f:f7:25:eb:5f:98:1f:3d:d7:cf:4d:aa:61:f4: 6f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C0:5F:A2:3B:E2:ED:2A:5C:66:9E:C4:CB:AE:54:DA:6D:DF:DC:81 X509v3 Authority Key Identifier: keyid:A9:2D:7A:2C:E9:CB:AA:FD:76:3A:38:0C:28:FA:DD:D1:A3:C7:EA:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.134.0/24 Signature Algorithm: sha256WithRSAEncryption 49:41:f6:2e:e0:d9:79:dc:23:69:e5:7a:28:08:b1:a8:63:98: ab:da:33:f1:67:65:cd:60:ac:8f:e5:00:db:8c:e1:75:f5:c3: 8b:c3:49:c6:2d:d1:e9:85:77:b9:c2:07:ca:ef:5e:1c:9c:09: 11:12:4b:5d:50:57:8d:f8:8d:9f:de:71:85:56:09:8f:36:0b: 7a:da:f8:cc:8e:fa:b9:f0:d9:5c:95:0c:71:f4:70:49:96:97: 44:f5:5e:62:64:c9:70:79:8a:e1:62:4f:70:12:b5:1f:8a:6c: 60:06:3d:04:2c:8a:e1:65:f0:ac:df:b2:69:79:13:d3:d6:85: 62:7d:1b:b7:fe:ba:a5:e2:d0:73:d4:2d:78:cb:4b:09:da:5a: b6:21:a8:c6:93:e3:67:9c:eb:eb:ad:fe:e9:f7:5a:b5:0b:b9: c1:e2:2b:eb:4e:41:64:34:7d:71:df:6a:1c:58:47:1e:ee:94: c1:29:b5:e6:4e:f5:b9:a8:35:38:52:40:e8:e4:09:27:0b:38: a4:3e:45:eb:b1:b3:cb:55:10:2d:4f:de:af:82:56:97:1c:67: fd:05:52:fd:83:9c:c2:7c:5a:ad:16:99:1a:6d:98:71:a8:39: 9e:61:b3:ed:76:84:e6:1e:e7:33:53:ca:d4:36:73:45:b0:de: 50:a7:47:d2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZrVTasxk5kpRVSRzQBoSHpsuzl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkyRDdBMkNFOUNCQUFGRDc2M0EzODBDMjhGQURERDFB M0M3RUE4MTAeFw0yNjA1MDMwMjUzMTZaFw0yNzA1MDIwMjU4MTZaMDMxMTAvBgNV BAMTKEE4QzA1RkEyM0JFMkVEMkE1QzY2OUVDNENCQUU1NERBNkRERkRDODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYs9qSdFeuU4udQH6On1g/SIrD F9r+XGcac4VrY4TjNOlrak9e0+jnbJCcXArk+FLSENpXUpqcYOZrRVyWFuEvSQSk yw+NNG8VlnCzSNxdHediQXxVy2j37mYAGj8qP9CnIIXJOexcGkKnhNamzh9xS0va Yg6tuQv2YJyT41NtginGiHaoJMBJiqJiLtKySoszV4koZ52AndVoJbT1fv5J4ZSV 2fb5F9kOKat60TSqlfd4wMY3jam8pJyHuES3I3XTxhdt+RyRbxEvz4eEcVIlHeVK jk1Fh/VMo+fPTHTeAJZWQDMDst0ru9VuJLG1Iu9/9yXrX5gfPdfPTaph9G/RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqMBfojvi7SpcZp7Ey65U2m3f3IEwHwYDVR0j BBgwFoAUqS16LOnLqv12OjgMKPrd0aPH6oEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWE5MTRhZGEtYTlhYS00ZDdmLTllNDctNTk0YmNiN2E3MGFiLzAvQTkyRDdBMkNF OUNCQUFGRDc2M0EzODBDMjhGQURERDFBM0M3RUE4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOTJEN0EyQ0U5Q0JBQUZENzYzQTM4MEMyOEZBREREMUEzQzdF QTgxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhOTE0YWRhLWE5YWEtNGQ3Zi05 ZTQ3LTU5NGJjYjdhNzBhYi8wLzMxMzAzMzJlMzEzNDM0MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkIYwDQYJ KoZIhvcNAQELBQADggEBAElB9i7g2XncI2nleigIsahjmKvaM/FnZc1grI/lANuM 4XX1w4vDScYt0emFd7nCB8rvXhycCRESS11QV434jZ/ecYVWCY82C3ra+MyO+rnw 2VyVDHH0cEmWl0T1XmJkyXB5iuFiT3AStR+KbGAGPQQsiuFl8Kzfsml5E9PWhWJ9 G7f+uqXi0HPULXjLSwnaWrYhqMaT42ec6+ut/un3WrULucHiK+tOQWQ0fXHfahxY Rx7ulMEpteZO9bmoNThSQOjkCScLOKQ+Reuxs8tVEC1P3q+CVpccZ/0FUv2DnMJ8 Wq0WmRptmHGoOZ5hs+12hOYe5zNTytQ2c0Ww3lCnR9I= -----END CERTIFICATE-----Generated at Wed May 13 00:43:28 2026 by rpki-client