$ rpki-client -vvf rpki-rsync.idnic.net/repo/af5fa54d-248e-423c-9e49-d6e6bfbbf78b/0/3130332e3139312e3136352e302f32342d3234203d3e20313439393235.roa File: 3130332e3139312e3136352e302f32342d3234203d3e20313439393235.roa (raw, json) Hash identifier: /I/1xW7rsK7gJcZw8w0G3A5/hDeO0oqDDXrZo6p7Qtc= Subject key identifier: 3E:9E:22:2F:8F:6C:14:47:70:74:14:54:1F:C9:93:7A:AF:7B:CA:09 Certificate issuer: /CN=DDEC072A927751DCC8B6944CA460F1D90792C4BA Certificate serial: 6FF2ECFE0382D20AE2AC33B35A7A943C4C5DBF35 Authority key identifier: DD:EC:07:2A:92:77:51:DC:C8:B6:94:4C:A4:60:F1:D9:07:92:C4:BA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDEC072A927751DCC8B6944CA460F1D90792C4BA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/af5fa54d-248e-423c-9e49-d6e6bfbbf78b/0/3130332e3139312e3136352e302f32342d3234203d3e20313439393235.roa Signing time: Sun 03 May 2026 02:59:45 +0000 ROA not before: Sun 03 May 2026 02:54:45 +0000 ROA not after: Sun 02 May 2027 02:59:45 +0000 asID: 149925 IP address blocks: 103.191.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/af5fa54d-248e-423c-9e49-d6e6bfbbf78b/0/DDEC072A927751DCC8B6944CA460F1D90792C4BA.crl rsync://rpki-rsync.idnic.net/repo/af5fa54d-248e-423c-9e49-d6e6bfbbf78b/0/DDEC072A927751DCC8B6944CA460F1D90792C4BA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDEC072A927751DCC8B6944CA460F1D90792C4BA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f2:ec:fe:03:82:d2:0a:e2:ac:33:b3:5a:7a:94:3c:4c:5d:bf:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDEC072A927751DCC8B6944CA460F1D90792C4BA Validity Not Before: May 3 02:54:45 2026 GMT Not After : May 2 02:59:45 2027 GMT Subject: CN=3E9E222F8F6C1447707414541FC9937AAF7BCA09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9a:29:71:ce:37:f5:d0:00:5a:52:f0:34:a0: dc:b4:af:ab:cf:29:3d:01:2f:8d:1e:7a:41:b6:83: e0:38:22:38:0c:37:b1:e9:41:f5:60:5a:0a:41:c8: f4:27:b4:54:63:aa:9c:14:d1:a7:2e:9d:83:67:02: 20:c4:cc:3a:e7:b1:1d:0b:31:75:6c:68:d9:0a:79: 69:58:de:25:b0:0a:c1:1d:40:6b:b0:75:f1:58:e6: ca:4d:f9:9f:a3:80:76:44:0a:c6:dc:4b:ee:5c:4d: 80:6d:bc:56:6f:18:75:df:61:e3:fb:0b:8e:6f:1f: bf:20:e5:9c:3f:57:d4:98:7a:ac:45:fd:b5:ca:0c: a5:69:18:d3:0b:c7:34:43:43:6f:4e:ae:04:17:f0: f4:2b:19:a5:05:07:f8:91:da:91:14:14:f2:13:1f: 98:16:3e:79:fd:fe:bb:db:30:88:1e:4e:ee:5f:62: 3a:a3:92:b4:88:68:90:20:4c:00:25:d2:3d:73:c0: 83:af:41:b1:e5:25:fa:ee:77:06:7e:34:7c:59:8e: 78:67:56:82:37:ba:6a:d3:aa:d2:11:63:7e:9b:85: a4:fe:f5:67:fa:52:e9:4f:20:10:58:f4:f5:3f:15: db:70:03:5f:e4:57:0a:43:d5:52:d8:ac:d5:68:e5: e2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9E:22:2F:8F:6C:14:47:70:74:14:54:1F:C9:93:7A:AF:7B:CA:09 X509v3 Authority Key Identifier: keyid:DD:EC:07:2A:92:77:51:DC:C8:B6:94:4C:A4:60:F1:D9:07:92:C4:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/af5fa54d-248e-423c-9e49-d6e6bfbbf78b/0/DDEC072A927751DCC8B6944CA460F1D90792C4BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DDEC072A927751DCC8B6944CA460F1D90792C4BA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/af5fa54d-248e-423c-9e49-d6e6bfbbf78b/0/3130332e3139312e3136352e302f32342d3234203d3e20313439393235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.165.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:cb:0d:0d:e1:1c:c9:d9:7c:91:67:2e:70:0e:ef:ef:41:f0: 8d:3a:c1:8d:01:37:48:37:31:c5:9c:1b:d3:dc:e8:3c:26:5d: c4:52:5f:28:b0:7a:1a:76:93:09:2d:d0:66:dc:7c:53:e1:36: 7f:04:1f:64:8e:5b:18:a9:8c:f6:fd:ac:f0:4f:8c:10:28:90: 2d:08:f3:01:3c:27:25:59:04:29:e2:e6:29:c0:46:40:12:f2: c8:d0:6d:4a:63:b9:3e:44:90:0e:a4:ea:7d:2c:fc:44:da:82: cc:bf:95:21:a9:af:b7:ba:7a:98:8a:dd:8e:72:a3:c1:0e:f5: 4c:88:40:88:a0:7c:89:6b:a8:d0:14:12:91:9c:fc:ab:e9:ec: 0d:8f:ef:ce:8c:15:8e:d1:bf:74:3d:f0:1f:f0:df:a7:bf:8d: cd:97:5d:32:ca:29:a1:00:7a:e2:e6:cb:d6:26:51:f1:61:78: 3e:6c:5f:26:1d:c8:f3:cd:f2:28:a4:d3:05:1c:32:51:7d:74: 9a:5c:4e:5e:75:e5:78:f4:c4:23:6d:64:f8:ed:66:52:de:77: 2c:a4:80:53:42:40:f9:78:52:e2:54:b3:0b:d8:33:c2:d0:77: 79:db:79:74:ad:38:fe:cb:d6:32:15:ef:e6:90:89:ca:00:ca: 66:c6:01:bc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb/Ls/gOC0grirDOzWnqUPExdvzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERFQzA3MkE5Mjc3NTFEQ0M4QjY5NDRDQTQ2MEYxRDkw NzkyQzRCQTAeFw0yNjA1MDMwMjU0NDVaFw0yNzA1MDIwMjU5NDVaMDMxMTAvBgNV BAMTKDNFOUUyMjJGOEY2QzE0NDc3MDc0MTQ1NDFGQzk5MzdBQUY3QkNBMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCimilxzjf10ABaUvA0oNy0r6vP KT0BL40eekG2g+A4IjgMN7HpQfVgWgpByPQntFRjqpwU0acunYNnAiDEzDrnsR0L MXVsaNkKeWlY3iWwCsEdQGuwdfFY5spN+Z+jgHZECsbcS+5cTYBtvFZvGHXfYeP7 C45vH78g5Zw/V9SYeqxF/bXKDKVpGNMLxzRDQ29OrgQX8PQrGaUFB/iR2pEUFPIT H5gWPnn9/rvbMIgeTu5fYjqjkrSIaJAgTAAl0j1zwIOvQbHlJfrudwZ+NHxZjnhn VoI3umrTqtIRY36bhaT+9Wf6UulPIBBY9PU/FdtwA1/kVwpD1VLYrNVo5eItAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPp4iL49sFEdwdBRUH8mTeq97ygkwHwYDVR0j BBgwFoAU3ewHKpJ3UdzItpRMpGDx2QeSxLowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWY1ZmE1NGQtMjQ4ZS00MjNjLTllNDktZDZlNmJmYmJmNzhiLzAvRERFQzA3MkE5 Mjc3NTFEQ0M4QjY5NDRDQTQ2MEYxRDkwNzkyQzRCQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EREVDMDcyQTkyNzc1MURDQzhCNjk0NENBNDYwRjFEOTA3OTJD NEJBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FmNWZhNTRkLTI0OGUtNDIzYy05 ZTQ5LWQ2ZTZiZmJiZjc4Yi8wLzMxMzAzMzJlMzEzOTMxMmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMyMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv6UwDQYJ KoZIhvcNAQELBQADggEBAB/LDQ3hHMnZfJFnLnAO7+9B8I06wY0BN0g3McWcG9Pc 6DwmXcRSXyiwehp2kwkt0GbcfFPhNn8EH2SOWxipjPb9rPBPjBAokC0I8wE8JyVZ BCni5inARkAS8sjQbUpjuT5EkA6k6n0s/ETagsy/lSGpr7e6epiK3Y5yo8EO9UyI QIigfIlrqNAUEpGc/Kvp7A2P786MFY7Rv3Q98B/w36e/jc2XXTLKKaEAeuLmy9Ym UfFheD5sXyYdyPPN8iik0wUcMlF9dJpcTl515Xj0xCNtZPjtZlLedyykgFNCQPl4 UuJUswvYM8LQd3nbeXStOP7L1jIV7+aQicoAymbGAbw= -----END CERTIFICATE-----Generated at Wed May 13 03:58:39 2026 by rpki-client