$ rpki-client -vvf rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39392e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: cHi+wDASSXBvEYUwne4ghJo+D7FzU4toHGViW0cqxos= Subject key identifier: 11:0D:EB:95:FB:CF:2A:6F:51:A4:6D:81:74:97:C1:A1:42:2D:42:76 Certificate issuer: /CN=DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425 Certificate serial: 12793FFB9A5EF54B6C836C21D7F6266E48B67545 Authority key identifier: DF:34:17:50:0C:E0:95:64:B4:A4:CE:AF:ED:E4:A7:6C:DF:A5:A4:25 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa Signing time: Sun 03 May 2026 03:00:50 +0000 ROA not before: Sun 03 May 2026 02:55:50 +0000 ROA not after: Sun 02 May 2027 03:00:50 +0000 asID: 17538 IP address blocks: 103.151.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.crl rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:79:3f:fb:9a:5e:f5:4b:6c:83:6c:21:d7:f6:26:6e:48:b6:75:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425 Validity Not Before: May 3 02:55:50 2026 GMT Not After : May 2 03:00:50 2027 GMT Subject: CN=110DEB95FBCF2A6F51A46D817497C1A1422D4276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2f:68:72:70:ab:62:c7:8d:8a:0b:63:18:44: 69:e9:1a:7e:e3:2b:51:dc:00:fc:b2:dd:09:57:1d: 94:ce:e1:f0:88:5b:22:da:f0:fa:04:69:dd:a3:c1: 6d:08:a3:ec:63:cb:c0:76:1a:1a:01:10:98:cd:2f: 05:1e:fb:c7:d2:52:d1:a5:c4:4b:c5:62:1a:3b:6c: 05:4a:16:09:db:b6:23:55:6a:93:be:c4:f6:5b:ff: 33:b0:f5:6e:72:4a:cd:af:d8:cb:ab:47:de:d6:74: 92:25:bd:64:ba:93:d8:24:8c:62:98:e8:e8:51:41: 46:e5:7c:25:0a:b2:51:5e:12:42:42:13:30:a9:83: 2f:55:04:e5:90:19:2d:2e:58:6a:30:f6:05:03:c1: d5:b6:f5:2d:72:ab:7b:b5:d3:2c:e0:82:6b:1a:76: 7f:82:56:17:31:da:5e:dd:0e:95:90:5f:c8:23:80: 75:fa:44:f0:48:17:4f:4d:6f:16:51:21:be:1a:36: 69:88:2f:77:1b:ab:77:f6:48:32:b3:06:80:5c:03: b7:f7:50:49:71:27:88:9a:71:2c:db:24:86:77:ba: 2d:86:2d:6c:72:8b:e4:a7:9d:ef:f3:d8:7e:ea:5b: 86:c7:9b:33:73:33:49:e3:64:32:21:dd:c6:8b:46: 31:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0D:EB:95:FB:CF:2A:6F:51:A4:6D:81:74:97:C1:A1:42:2D:42:76 X509v3 Authority Key Identifier: keyid:DF:34:17:50:0C:E0:95:64:B4:A4:CE:AF:ED:E4:A7:6C:DF:A5:A4:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.99.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:5b:3c:3c:3f:53:85:91:94:b8:c2:cd:38:78:7a:8a:ab:c9: 69:b5:6a:78:a6:8a:a8:c3:b4:73:21:4b:df:9f:54:ab:4b:2b: 57:fb:6b:37:d3:9a:5b:97:00:49:82:23:f7:d9:04:a4:e5:5b: 09:05:46:15:26:19:dd:4d:0b:65:ba:9d:1e:e6:c1:65:a0:22: 7e:8d:33:74:a5:21:9d:e6:36:06:fe:ad:20:4f:00:37:f8:6a: 9f:2e:d0:fc:ce:af:ad:a7:a7:ac:50:4c:62:75:dd:ef:fe:4a: bf:2c:18:df:c4:b1:a9:75:d3:e7:c5:3c:95:67:27:9c:6e:8a: 70:b5:c3:b1:a5:46:e8:cf:cf:23:fc:6e:e8:06:70:b7:35:e2: 1e:43:b7:f7:68:8f:22:6b:d6:f2:c2:c7:e0:d8:13:19:30:7f: c0:c9:51:13:8d:74:63:81:91:b2:94:96:8a:c8:62:d4:3c:dd: 45:fd:d1:d2:6c:fe:6b:99:45:ec:70:74:b0:d0:61:3d:ac:5c: dc:76:c6:59:56:ab:bb:09:62:40:b2:b7:95:28:81:41:6b:d0: f0:9b:de:3c:f0:52:6e:b1:1a:f1:b1:a5:6c:5d:61:f0:25:56: 1e:d4:54:1a:47:a8:6e:b9:6d:73:ea:48:3a:25:48:a8:e7:aa: 09:f7:bb:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEnk/+5pe9Utsg2wh1/Ymbki2dUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYzNDE3NTAwQ0UwOTU2NEI0QTRDRUFGRURFNEE3NkNE RkE1QTQyNTAeFw0yNjA1MDMwMjU1NTBaFw0yNzA1MDIwMzAwNTBaMDMxMTAvBgNV BAMTKDExMERFQjk1RkJDRjJBNkY1MUE0NkQ4MTc0OTdDMUExNDIyRDQyNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmL2hycKtix42KC2MYRGnpGn7j K1HcAPyy3QlXHZTO4fCIWyLa8PoEad2jwW0Io+xjy8B2GhoBEJjNLwUe+8fSUtGl xEvFYho7bAVKFgnbtiNVapO+xPZb/zOw9W5ySs2v2MurR97WdJIlvWS6k9gkjGKY 6OhRQUblfCUKslFeEkJCEzCpgy9VBOWQGS0uWGow9gUDwdW29S1yq3u10yzggmsa dn+CVhcx2l7dDpWQX8gjgHX6RPBIF09NbxZRIb4aNmmIL3cbq3f2SDKzBoBcA7f3 UElxJ4iacSzbJIZ3ui2GLWxyi+Snne/z2H7qW4bHmzNzM0njZDIh3caLRjGNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEQ3rlfvPKm9RpG2BdJfBoUItQnYwHwYDVR0j BBgwFoAU3zQXUAzglWS0pM6v7eSnbN+lpCUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjM3ODVlNjUtNTFlMi00YjFiLTgyZjktZTc1M2FkNGIyNDBmLzAvREYzNDE3NTAw Q0UwOTU2NEI0QTRDRUFGRURFNEE3NkNERkE1QTQyNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERjM0MTc1MDBDRTA5NTY0QjRBNENFQUZFREU0QTc2Q0RGQTVB NDI1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYzANBgkqhkiG 9w0BAQsFAAOCAQEAG1s8PD9ThZGUuMLNOHh6iqvJabVqeKaKqMO0cyFL359Uq0sr V/trN9OaW5cASYIj99kEpOVbCQVGFSYZ3U0LZbqdHubBZaAifo0zdKUhneY2Bv6t IE8AN/hqny7Q/M6vraenrFBMYnXd7/5KvywY38SxqXXT58U8lWcnnG6KcLXDsaVG 6M/PI/xu6AZwtzXiHkO392iPImvW8sLH4NgTGTB/wMlRE410Y4GRspSWishi1Dzd Rf3R0mz+a5lF7HB0sNBhPaxc3HbGWVaruwliQLK3lSiBQWvQ8JvePPBSbrEa8bGl bF1h8CVWHtRUGkeobrltc+pIOiVIqOeqCfe7dg== -----END CERTIFICATE-----Generated at Wed May 13 02:26:51 2026 by rpki-client