$ rpki-client -vvf rpki-rsync.idnic.net/repo/b3327ffd-1e2e-4c52-9717-65f85e6359e5/0/3130332e3139312e36332e302f32342d3234203d3e20313338313135.roa File: 3130332e3139312e36332e302f32342d3234203d3e20313338313135.roa (raw, json) Hash identifier: dEG+unW2666RsnDsfqu11wDmAZTNa9qhZWenf3Lht9c= Subject key identifier: 5D:D2:94:44:A1:48:75:6A:70:56:6F:46:8A:B0:3D:30:E5:D8:7D:81 Certificate issuer: /CN=CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859 Certificate serial: 38BD4BE8AEC5BF7B32E808BDBD8C0512862F3F92 Authority key identifier: CE:CF:0F:1B:53:F6:EA:34:8D:F8:C9:63:CB:A0:68:6B:E4:BD:78:59 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b3327ffd-1e2e-4c52-9717-65f85e6359e5/0/3130332e3139312e36332e302f32342d3234203d3e20313338313135.roa Signing time: Sun 03 May 2026 03:00:42 +0000 ROA not before: Sun 03 May 2026 02:55:42 +0000 ROA not after: Sun 02 May 2027 03:00:42 +0000 asID: 138115 IP address blocks: 103.191.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b3327ffd-1e2e-4c52-9717-65f85e6359e5/0/CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859.crl rsync://rpki-rsync.idnic.net/repo/b3327ffd-1e2e-4c52-9717-65f85e6359e5/0/CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:bd:4b:e8:ae:c5:bf:7b:32:e8:08:bd:bd:8c:05:12:86:2f:3f:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859 Validity Not Before: May 3 02:55:42 2026 GMT Not After : May 2 03:00:42 2027 GMT Subject: CN=5DD29444A148756A70566F468AB03D30E5D87D81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:70:e3:73:cd:67:22:3a:4f:4f:62:e5:6a:1d: c8:3d:23:c7:aa:cb:6d:82:ed:85:08:cd:0f:9e:f4: ed:38:e6:9f:2f:65:ee:22:73:36:63:91:4a:24:51: f8:4c:fd:e8:31:b4:34:88:8f:6c:cb:b6:b7:f0:e0: e3:37:42:a9:a3:76:2d:61:57:42:28:23:32:bb:b8: 95:32:ab:22:ec:df:b6:03:56:53:c2:a1:9d:99:bb: ce:84:f2:b0:ec:3f:7f:df:b0:79:b9:c3:15:03:48: e4:10:18:2e:3b:2e:f1:86:be:66:1e:0b:08:ef:45: b8:3c:f5:44:ed:ed:8e:c8:40:ae:0e:d0:f3:a6:99: 0f:70:33:52:40:ed:17:57:4c:53:fe:2f:00:c1:7a: 3b:92:74:bb:2c:23:f4:ac:5a:64:ca:47:e5:13:27: 73:b9:49:72:a0:92:d6:69:2c:96:0d:2a:ca:d4:71: e2:87:fa:62:30:04:39:75:4e:12:d9:40:9d:d8:4c: 7a:81:f9:00:cf:ad:8f:9f:44:aa:9b:99:61:56:cf: 42:87:7c:65:ae:6b:96:04:40:81:7f:94:74:35:54: f4:62:5a:e0:28:db:b4:83:3b:3d:bb:d2:14:77:70: c5:b4:32:73:3b:6c:93:e3:07:26:cf:64:30:7e:75: 41:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D2:94:44:A1:48:75:6A:70:56:6F:46:8A:B0:3D:30:E5:D8:7D:81 X509v3 Authority Key Identifier: keyid:CE:CF:0F:1B:53:F6:EA:34:8D:F8:C9:63:CB:A0:68:6B:E4:BD:78:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b3327ffd-1e2e-4c52-9717-65f85e6359e5/0/CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CECF0F1B53F6EA348DF8C963CBA0686BE4BD7859.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b3327ffd-1e2e-4c52-9717-65f85e6359e5/0/3130332e3139312e36332e302f32342d3234203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.63.0/24 Signature Algorithm: sha256WithRSAEncryption 74:e4:b6:f2:28:28:8e:3f:cb:c0:c3:6f:20:96:74:1b:fe:70: 30:33:26:fc:67:36:89:92:f1:0d:5b:1f:a9:39:6e:4d:3f:d5: 06:ae:39:5b:a6:7d:62:25:de:5c:d8:83:03:15:8b:84:bb:5a: 1e:ca:33:17:63:0b:b2:fe:d4:89:e9:1c:41:4e:0b:4c:cf:9a: 21:c6:68:44:90:70:77:46:e8:2b:66:56:32:49:f7:23:66:a9: 44:4c:e9:2a:de:15:73:46:9d:03:98:6c:cd:ee:b9:a7:ca:45: 8c:67:d2:45:95:cf:54:ef:5d:c4:1c:5d:db:ce:90:5a:bb:64: a2:c8:61:19:b8:5e:06:65:57:e6:5b:69:9a:53:ab:8a:ce:73: 9c:bd:a9:df:be:42:b4:98:2d:79:75:4a:f9:ef:29:4a:7d:2b: ab:68:66:0a:be:fa:1d:55:c2:f4:dc:b4:84:fe:67:59:8e:da: d2:3a:a5:f8:02:11:8b:42:32:00:60:65:6d:60:c5:69:35:03: eb:86:ef:60:91:b3:24:cf:00:35:91:f4:81:a6:05:9a:4a:26: 66:9f:6f:49:eb:45:9e:4d:3f:e3:0e:a0:ab:ba:cc:5c:4b:8f: 4e:9d:18:e4:88:af:db:52:54:dc:eb:bb:df:2a:fd:30:eb:9f: 19:8c:8c:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOL1L6K7Fv3sy6Ai9vYwFEoYvP5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDRjBGMUI1M0Y2RUEzNDhERjhDOTYzQ0JBMDY4NkJF NEJENzg1OTAeFw0yNjA1MDMwMjU1NDJaFw0yNzA1MDIwMzAwNDJaMDMxMTAvBgNV BAMTKDVERDI5NDQ0QTE0ODc1NkE3MDU2NkY0NjhBQjAzRDMwRTVEODdEODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMcONzzWciOk9PYuVqHcg9I8eq y22C7YUIzQ+e9O045p8vZe4iczZjkUokUfhM/egxtDSIj2zLtrfw4OM3Qqmjdi1h V0IoIzK7uJUyqyLs37YDVlPCoZ2Zu86E8rDsP3/fsHm5wxUDSOQQGC47LvGGvmYe CwjvRbg89UTt7Y7IQK4O0POmmQ9wM1JA7RdXTFP+LwDBejuSdLssI/SsWmTKR+UT J3O5SXKgktZpLJYNKsrUceKH+mIwBDl1ThLZQJ3YTHqB+QDPrY+fRKqbmWFWz0KH fGWua5YEQIF/lHQ1VPRiWuAo27SDOz270hR3cMW0MnM7bJPjBybPZDB+dUFlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXdKURKFIdWpwVm9GirA9MOXYfYEwHwYDVR0j BBgwFoAUzs8PG1P26jSN+Mljy6Boa+S9eFkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjMzMjdmZmQtMWUyZS00YzUyLTk3MTctNjVmODVlNjM1OWU1LzAvQ0VDRjBGMUI1 M0Y2RUEzNDhERjhDOTYzQ0JBMDY4NkJFNEJENzg1OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRUNGMEYxQjUzRjZFQTM0OERGOEM5NjNDQkEwNjg2QkU0QkQ3 ODU5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IzMzI3ZmZkLTFlMmUtNGM1Mi05 NzE3LTY1Zjg1ZTYzNTllNS8wLzMxMzAzMzJlMzEzOTMxMmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ78/MA0GCSqG SIb3DQEBCwUAA4IBAQB05LbyKCiOP8vAw28glnQb/nAwMyb8ZzaJkvENWx+pOW5N P9UGrjlbpn1iJd5c2IMDFYuEu1oeyjMXYwuy/tSJ6RxBTgtMz5ohxmhEkHB3Rugr ZlYySfcjZqlETOkq3hVzRp0DmGzN7rmnykWMZ9JFlc9U713EHF3bzpBau2SiyGEZ uF4GZVfmW2maU6uKznOcvanfvkK0mC15dUr57ylKfSuraGYKvvodVcL03LSE/mdZ jtrSOqX4AhGLQjIAYGVtYMVpNQPrhu9gkbMkzwA1kfSBpgWaSiZmn29J60WeTT/j DqCrusxcS49OnRjkiK/bUlTc67vfKv0w658ZjIxl -----END CERTIFICATE-----Generated at Wed May 13 04:19:24 2026 by rpki-client