$ rpki-client -vvf rpki-rsync.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa File: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (raw, json) Hash identifier: bF7MXIfp5h8uckMq7JCvq4uvQ9qMJ5YCdRjxIwunYqI= Subject key identifier: A7:0A:9F:DB:5F:8E:DD:02:09:B7:A9:65:2F:68:42:16:23:2A:44:C3 Certificate issuer: /CN=5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10 Certificate serial: 1E98B61E565EE2F5E4B8DB95D85C5E5141F6DA85 Authority key identifier: 5D:13:BF:84:B8:D9:1A:8A:1A:C8:08:62:27:D5:9F:1D:C1:EA:3F:10 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa Signing time: Sun 03 May 2026 03:00:24 +0000 ROA not before: Sun 03 May 2026 02:55:24 +0000 ROA not after: Sun 02 May 2027 03:00:24 +0000 asID: 141120 IP address blocks: 103.235.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10.crl rsync://rpki-rsync.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:98:b6:1e:56:5e:e2:f5:e4:b8:db:95:d8:5c:5e:51:41:f6:da:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10 Validity Not Before: May 3 02:55:24 2026 GMT Not After : May 2 03:00:24 2027 GMT Subject: CN=A70A9FDB5F8EDD0209B7A9652F684216232A44C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ef:cd:67:c6:25:eb:58:36:57:ca:61:0c:95: ac:99:4f:42:60:2a:dd:db:6a:34:de:49:77:2f:0c: fb:da:6a:93:7e:46:d0:e1:38:55:76:13:45:0b:f2: 06:4a:eb:94:58:91:07:d5:7c:15:53:04:a5:33:63: 06:28:4c:23:a8:9d:bb:98:cc:2c:89:77:7e:25:ae: 9d:50:fe:ac:b5:08:9a:f4:f1:73:2b:08:48:d1:32: 98:82:0a:6e:53:3d:06:e1:5b:24:d2:92:72:4e:16: c1:68:f6:47:07:50:d7:67:b3:48:8f:f2:52:dd:bd: ae:fe:cf:95:79:94:50:fa:55:42:fa:b0:1d:80:3c: 5b:bc:3c:ab:1d:74:0f:cf:f0:a1:94:7d:ab:1c:b0: 47:bf:6a:c2:c4:fe:19:5c:fd:49:cf:a7:2c:f7:7c: 67:cc:b3:93:01:72:60:68:5b:ab:4c:85:43:52:64: 33:86:2a:f8:f9:1f:1e:85:ea:df:d5:7d:e5:42:c9: 38:50:9b:c6:58:0f:e1:f8:ac:a4:59:c2:02:dd:31: a6:e8:9a:48:9e:13:15:35:9c:0d:fc:99:95:f8:a8: 38:3f:8a:a4:ec:bc:57:a0:06:b0:e2:da:46:d0:d7: a9:41:7b:50:46:2a:3b:88:fd:c9:34:58:af:73:d8: 63:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0A:9F:DB:5F:8E:DD:02:09:B7:A9:65:2F:68:42:16:23:2A:44:C3 X509v3 Authority Key Identifier: keyid:5D:13:BF:84:B8:D9:1A:8A:1A:C8:08:62:27:D5:9F:1D:C1:EA:3F:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D13BF84B8D91A8A1AC8086227D59F1DC1EA3F10.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.74.0/24 Signature Algorithm: sha256WithRSAEncryption a7:3b:f9:77:7b:c4:30:e2:a3:aa:1e:f8:a3:21:fa:ab:0c:e0: 5c:c1:8c:f6:94:50:9d:c0:20:66:85:5e:0b:9f:ab:f9:72:38: 14:7d:1d:60:46:c4:51:ac:00:63:ea:98:0e:6b:bb:43:27:75: a1:8b:1e:2a:c6:fe:f2:12:a7:5c:4d:e3:8e:db:3f:8f:5b:d8: 9f:7b:44:56:27:eb:d1:4e:8c:36:42:78:b0:cf:61:ba:1d:6c: 78:20:2c:cd:b3:a8:28:24:19:10:26:de:4a:2b:19:4d:93:bf: ad:f2:36:c9:38:b8:e2:8e:27:98:73:0f:26:bb:25:e5:39:4d: cc:37:57:c4:fc:a9:5e:94:7a:e9:6e:73:09:eb:79:b9:f7:09: 46:86:0a:31:09:ab:17:49:aa:50:94:3d:6b:0c:dd:70:fa:1a: 5a:ff:f1:23:51:c9:8b:54:15:6b:31:ec:bb:34:e5:f9:9a:59: f2:45:e9:70:d1:5b:38:e5:8c:77:16:2d:4e:d2:47:61:d5:74: d6:71:05:be:f2:80:80:f1:ad:a4:69:60:13:51:a9:d3:19:1a: df:b9:aa:c0:0b:1e:82:e8:db:45:97:c7:6c:3c:15:36:6c:b6: f4:2e:40:a8:5a:01:30:ea:40:41:1a:78:08:41:cb:18:47:3b: 8a:0e:e0:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHpi2HlZe4vXkuNuV2FxeUUH22oUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQxM0JGODRCOEQ5MUE4QTFBQzgwODYyMjdENTlGMURD MUVBM0YxMDAeFw0yNjA1MDMwMjU1MjRaFw0yNzA1MDIwMzAwMjRaMDMxMTAvBgNV BAMTKEE3MEE5RkRCNUY4RUREMDIwOUI3QTk2NTJGNjg0MjE2MjMyQTQ0QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy781nxiXrWDZXymEMlayZT0Jg Kt3bajTeSXcvDPvaapN+RtDhOFV2E0UL8gZK65RYkQfVfBVTBKUzYwYoTCOonbuY zCyJd34lrp1Q/qy1CJr08XMrCEjRMpiCCm5TPQbhWyTSknJOFsFo9kcHUNdns0iP 8lLdva7+z5V5lFD6VUL6sB2APFu8PKsddA/P8KGUfascsEe/asLE/hlc/UnPpyz3 fGfMs5MBcmBoW6tMhUNSZDOGKvj5Hx6F6t/VfeVCyThQm8ZYD+H4rKRZwgLdMabo mkieExU1nA38mZX4qDg/iqTsvFegBrDi2kbQ16lBe1BGKjuI/ck0WK9z2GOzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpwqf21+O3QIJt6llL2hCFiMqRMMwHwYDVR0j BBgwFoAUXRO/hLjZGooayAhiJ9WfHcHqPxAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjFhNzdhZGQtYTQ5YS00YzhmLWE3MzUtZWY5NmMzM2FiMjlmLzAvNUQxM0JGODRC OEQ5MUE4QTFBQzgwODYyMjdENTlGMURDMUVBM0YxMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDEzQkY4NEI4RDkxQThBMUFDODA4NjIyN0Q1OUYxREMxRUEz RjEwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMxMzAzMzJlMzIzMzM1MmUzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tKMA0GCSqG SIb3DQEBCwUAA4IBAQCnO/l3e8Qw4qOqHvijIfqrDOBcwYz2lFCdwCBmhV4Ln6v5 cjgUfR1gRsRRrABj6pgOa7tDJ3Whix4qxv7yEqdcTeOO2z+PW9ife0RWJ+vRTow2 Qniwz2G6HWx4ICzNs6goJBkQJt5KKxlNk7+t8jbJOLjijieYcw8muyXlOU3MN1fE /KlelHrpbnMJ63m59wlGhgoxCasXSapQlD1rDN1w+hpa//EjUcmLVBVrMey7NOX5 mlnyRelw0Vs45Yx3Fi1O0kdh1XTWcQW+8oCA8a2kaWATUanTGRrfuarACx6C6NtF l8dsPBU2bLb0LkCoWgEw6kBBGngIQcsYRzuKDuBQ -----END CERTIFICATE-----Generated at Wed May 13 04:26:51 2026 by rpki-client