$ rpki-client -vvf rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39382e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: SGuts0/+uyJce0bHFyKC5/STYlo5gf3uXrTdV1Kngrs= Subject key identifier: 02:4D:B6:A6:13:A6:7D:5B:44:BD:E0:E3:84:58:BF:26:22:6C:66:C4 Certificate issuer: /CN=DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425 Certificate serial: 2E8C5FCD03007A6F9CF75A2C1D12B0999D565AC4 Authority key identifier: DF:34:17:50:0C:E0:95:64:B4:A4:CE:AF:ED:E4:A7:6C:DF:A5:A4:25 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa Signing time: Sun 03 May 2026 03:00:49 +0000 ROA not before: Sun 03 May 2026 02:55:49 +0000 ROA not after: Sun 02 May 2027 03:00:49 +0000 asID: 17538 IP address blocks: 103.151.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.crl rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:8c:5f:cd:03:00:7a:6f:9c:f7:5a:2c:1d:12:b0:99:9d:56:5a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425 Validity Not Before: May 3 02:55:49 2026 GMT Not After : May 2 03:00:49 2027 GMT Subject: CN=024DB6A613A67D5B44BDE0E38458BF26226C66C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:f8:9a:84:53:6a:22:b2:6c:b0:e6:84:d5: 37:a5:be:de:f3:bd:9e:2d:f2:6d:bd:16:3f:e2:12: a2:e0:0e:22:fa:28:db:1c:63:a9:7e:d9:d4:bb:b0: c5:e8:ed:ca:4a:70:35:42:f9:a3:ed:55:e5:a3:04: 70:ea:0d:f5:e2:cb:01:72:60:7d:cd:d1:6a:2a:93: 79:0e:41:71:0a:23:47:b8:8f:52:8c:e7:73:a5:7f: e6:4c:c4:5b:0a:6b:a3:64:ca:95:f3:1a:65:d9:14: 00:48:2a:56:da:da:4b:aa:8f:1d:a5:1e:ea:03:14: 81:b6:a7:56:2e:ca:64:ec:5f:b3:4c:d3:f3:a2:67: af:6d:6a:e1:4b:64:d9:6b:78:69:7e:f1:5b:7b:7e: 6f:a2:97:f7:61:6a:e0:ac:82:64:fb:df:aa:3e:a5: 2e:1b:29:8e:f0:b6:5e:a3:fd:67:bc:51:50:53:50: 0d:86:e5:63:04:dd:56:51:25:14:18:f6:49:c0:d2: 30:5c:f3:fa:e6:ae:71:76:e6:66:f4:82:26:a7:69: 4e:b5:ca:8e:bf:06:74:be:9d:c0:51:4b:bd:c0:69: 4b:7d:7f:f6:f3:bc:d4:84:a3:54:5d:39:0a:31:54: c3:dd:11:d5:78:a7:b7:a9:59:02:bf:a5:08:76:96: 9d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4D:B6:A6:13:A6:7D:5B:44:BD:E0:E3:84:58:BF:26:22:6C:66:C4 X509v3 Authority Key Identifier: keyid:DF:34:17:50:0C:E0:95:64:B4:A4:CE:AF:ED:E4:A7:6C:DF:A5:A4:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.98.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:f5:34:38:f3:7c:28:2f:eb:1e:82:cb:09:f7:97:e2:a0:b8: b8:1e:8b:a1:64:e5:e4:c2:48:4c:e6:cb:8f:7c:30:4e:32:a5: 30:4b:99:a1:c0:08:53:b3:db:b7:d6:ca:aa:31:0e:0f:9c:a8: 4d:ef:e9:5e:2a:9c:e3:e6:66:ff:5d:ab:cc:e8:42:44:13:0c: c4:7c:41:e4:30:95:8d:fe:2f:35:a5:1d:62:4c:14:7b:4c:b5: 5c:9f:29:3f:62:98:2b:fa:12:a5:b4:f8:6a:72:00:49:c9:0e: 8f:eb:f4:5d:c6:b4:35:84:e0:73:a1:74:b7:e1:86:7d:07:52: 86:e8:29:52:4c:6b:d0:05:f1:c5:fb:6e:6c:93:40:86:57:4b: d0:fd:08:98:bb:95:b0:ec:92:55:e8:c3:74:0e:56:fe:62:03: 28:a7:20:e4:d5:62:bd:6e:02:9b:23:3a:c0:14:ab:94:55:07: 6b:19:4b:fb:25:d3:e6:40:4f:fe:ad:8c:6d:01:ba:8f:c9:2b: 56:1f:e5:53:c4:b9:ea:34:bc:8a:da:5f:8d:21:0e:61:25:51: ce:48:5e:c8:84:c2:86:ad:ad:8f:4c:e8:7d:bc:4c:10:71:8d: 83:5b:99:95:21:62:90:d4:c7:01:c5:ee:f5:64:2e:19:9e:bd: 85:8a:36:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULoxfzQMAem+c91osHRKwmZ1WWsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYzNDE3NTAwQ0UwOTU2NEI0QTRDRUFGRURFNEE3NkNE RkE1QTQyNTAeFw0yNjA1MDMwMjU1NDlaFw0yNzA1MDIwMzAwNDlaMDMxMTAvBgNV BAMTKDAyNERCNkE2MTNBNjdENUI0NEJERTBFMzg0NThCRjI2MjI2QzY2QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4dviahFNqIrJssOaE1Telvt7z vZ4t8m29Fj/iEqLgDiL6KNscY6l+2dS7sMXo7cpKcDVC+aPtVeWjBHDqDfXiywFy YH3N0Woqk3kOQXEKI0e4j1KM53Olf+ZMxFsKa6NkypXzGmXZFABIKlba2kuqjx2l HuoDFIG2p1YuymTsX7NM0/OiZ69tauFLZNlreGl+8Vt7fm+il/dhauCsgmT736o+ pS4bKY7wtl6j/We8UVBTUA2G5WME3VZRJRQY9knA0jBc8/rmrnF25mb0gianaU61 yo6/BnS+ncBRS73AaUt9f/bzvNSEo1RdOQoxVMPdEdV4p7epWQK/pQh2lp0FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAk22phOmfVtEveDjhFi/JiJsZsQwHwYDVR0j BBgwFoAU3zQXUAzglWS0pM6v7eSnbN+lpCUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjM3ODVlNjUtNTFlMi00YjFiLTgyZjktZTc1M2FkNGIyNDBmLzAvREYzNDE3NTAw Q0UwOTU2NEI0QTRDRUFGRURFNEE3NkNERkE1QTQyNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERjM0MTc1MDBDRTA5NTY0QjRBNENFQUZFREU0QTc2Q0RGQTVB NDI1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYjANBgkqhkiG 9w0BAQsFAAOCAQEADfU0OPN8KC/rHoLLCfeX4qC4uB6LoWTl5MJITObLj3wwTjKl MEuZocAIU7Pbt9bKqjEOD5yoTe/pXiqc4+Zm/12rzOhCRBMMxHxB5DCVjf4vNaUd YkwUe0y1XJ8pP2KYK/oSpbT4anIASckOj+v0Xca0NYTgc6F0t+GGfQdShugpUkxr 0AXxxftubJNAhldL0P0ImLuVsOySVejDdA5W/mIDKKcg5NVivW4CmyM6wBSrlFUH axlL+yXT5kBP/q2MbQG6j8krVh/lU8S56jS8itpfjSEOYSVRzkheyITChq2tj0zo fbxMEHGNg1uZlSFikNTHAcXu9WQuGZ69hYo28w== -----END CERTIFICATE-----Generated at Wed May 13 02:50:37 2026 by rpki-client