$ rpki-client -vvf rpki-rsync.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa File: 3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa (raw, json) Hash identifier: DT0k1jYnw4OjyEhmmqbUNUqGWP5UkTu1MpqB2VuvB0M= Subject key identifier: DB:B2:F1:04:13:85:0E:0B:55:32:55:D0:EF:67:4B:E6:19:AA:21:49 Certificate issuer: /CN=AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E Certificate serial: 72F3700469569CBAFF6A5A458695F3EE1706D970 Authority key identifier: AF:1A:DF:58:3A:C5:00:30:27:28:1A:4E:CA:BF:7D:DE:3A:A3:5E:6E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa Signing time: Sun 03 May 2026 03:01:02 +0000 ROA not before: Sun 03 May 2026 02:56:02 +0000 ROA not after: Sun 02 May 2027 03:01:02 +0000 asID: 136091 IP address blocks: 103.83.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E.crl rsync://rpki-rsync.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f3:70:04:69:56:9c:ba:ff:6a:5a:45:86:95:f3:ee:17:06:d9:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E Validity Not Before: May 3 02:56:02 2026 GMT Not After : May 2 03:01:02 2027 GMT Subject: CN=DBB2F10413850E0B553255D0EF674BE619AA2149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fc:4b:99:7b:7f:93:a7:5c:00:44:0e:f8:58: a7:ee:83:56:d3:fe:ad:07:f1:0c:ee:16:d4:e9:98: ca:73:3a:87:19:ac:56:b5:c5:23:c8:26:e6:96:dd: a3:8d:ce:cb:ca:5c:8d:40:f4:14:2d:f8:46:36:16: 35:5f:dc:09:da:45:26:69:70:ef:32:8a:01:9b:f8: 28:71:14:de:7d:d5:69:8f:72:a5:47:f8:fb:c9:0c: c8:15:60:aa:1b:b0:74:ac:20:d7:5e:26:67:85:60: 4a:39:8e:85:f2:05:3b:e5:31:4f:b5:a0:eb:e6:fe: 17:59:8c:85:26:5b:57:31:0b:54:12:ce:fa:a3:5b: c8:dd:a0:bc:73:92:97:93:8a:90:e9:a3:c1:b4:53: f3:5e:da:2c:b7:63:77:b5:f7:33:60:52:bf:b7:b3: df:e9:fc:73:4d:41:4a:9f:94:22:59:71:62:ee:11: 2f:45:1a:fe:08:c8:7f:f3:e0:ba:f0:44:a6:09:c4: 13:1d:82:cf:cc:34:c3:cb:60:11:fb:c8:7f:dd:1c: 1b:81:60:be:20:bf:b5:81:c1:e0:63:eb:36:cc:29: 37:2b:47:7d:74:94:0a:eb:9e:a9:45:96:42:b5:a6: 83:f8:39:34:f8:67:41:ab:43:ae:dc:63:d6:d6:65: a7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B2:F1:04:13:85:0E:0B:55:32:55:D0:EF:67:4B:E6:19:AA:21:49 X509v3 Authority Key Identifier: keyid:AF:1A:DF:58:3A:C5:00:30:27:28:1A:4E:CA:BF:7D:DE:3A:A3:5E:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF1ADF583AC5003027281A4ECABF7DDE3AA35E6E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.198.0/24 Signature Algorithm: sha256WithRSAEncryption 80:82:8e:55:95:4a:6c:bb:9b:71:a2:bd:36:2e:bb:d9:bd:ba: 6c:67:96:9f:9e:90:10:24:29:8d:80:81:32:1b:1a:8e:55:2c: 25:e5:3c:fc:b2:83:0c:ee:9b:d9:0b:56:22:81:14:ba:48:c7: 8f:1c:43:b7:3e:08:64:77:3b:b5:cd:eb:ae:bf:17:4a:2b:c4: d0:e3:8f:41:22:8f:0a:b0:b5:61:ca:a5:ef:bb:67:53:d7:eb: cc:40:e6:b6:a1:60:02:fc:78:c0:42:ca:d5:46:91:e1:eb:aa: 94:74:ee:2a:57:ec:76:5c:f4:47:36:de:13:92:d2:12:2c:df: b3:f1:be:1c:87:ba:f2:b1:e3:9d:ea:84:7b:e3:20:bc:a3:b5: e1:b8:73:cd:95:23:0b:5e:1f:ba:c5:81:42:38:4b:2b:c3:8d: b7:08:72:66:af:30:7d:fa:31:98:af:3d:ce:0d:71:ee:db:89: 83:c4:4d:b6:23:ed:b5:e2:47:8d:7d:a9:77:06:b6:f5:0c:51: 81:e2:79:43:bd:52:fb:df:45:30:a2:1f:22:95:cd:84:cf:c6: bd:af:cf:83:51:d1:0e:62:9e:c2:88:48:71:4f:e1:ae:fe:fe: d6:1b:20:22:5a:1d:80:46:c4:10:12:40:13:b9:44:89:64:dc: 35:5d:45:f3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcvNwBGlWnLr/alpFhpXz7hcG2XAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYxQURGNTgzQUM1MDAzMDI3MjgxQTRFQ0FCRjdEREUz QUEzNUU2RTAeFw0yNjA1MDMwMjU2MDJaFw0yNzA1MDIwMzAxMDJaMDMxMTAvBgNV BAMTKERCQjJGMTA0MTM4NTBFMEI1NTMyNTVEMEVGNjc0QkU2MTlBQTIxNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/EuZe3+Tp1wARA74WKfug1bT /q0H8QzuFtTpmMpzOocZrFa1xSPIJuaW3aONzsvKXI1A9BQt+EY2FjVf3AnaRSZp cO8yigGb+ChxFN591WmPcqVH+PvJDMgVYKobsHSsINdeJmeFYEo5joXyBTvlMU+1 oOvm/hdZjIUmW1cxC1QSzvqjW8jdoLxzkpeTipDpo8G0U/Ne2iy3Y3e19zNgUr+3 s9/p/HNNQUqflCJZcWLuES9FGv4IyH/z4LrwRKYJxBMdgs/MNMPLYBH7yH/dHBuB YL4gv7WBweBj6zbMKTcrR310lArrnqlFlkK1poP4OTT4Z0GrQ67cY9bWZaetAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU27LxBBOFDgtVMlXQ72dL5hmqIUkwHwYDVR0j BBgwFoAUrxrfWDrFADAnKBpOyr993jqjXm4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjRiZjg2NDEtYmY3MC00ZTNmLTk4NzEtZWUyNmEzM2RiM2EyLzAvQUYxQURGNTgz QUM1MDAzMDI3MjgxQTRFQ0FCRjdEREUzQUEzNUU2RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjFBREY1ODNBQzUwMDMwMjcyODFBNEVDQUJGN0RERTNBQTM1 RTZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I0YmY4NjQxLWJmNzAtNGUzZi05 ODcxLWVlMjZhMzNkYjNhMi8wLzMxMzAzMzJlMzgzMzJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1PGMA0GCSqG SIb3DQEBCwUAA4IBAQCAgo5VlUpsu5txor02LrvZvbpsZ5afnpAQJCmNgIEyGxqO VSwl5Tz8soMM7pvZC1YigRS6SMePHEO3Pghkdzu1zeuuvxdKK8TQ449BIo8KsLVh yqXvu2dT1+vMQOa2oWAC/HjAQsrVRpHh66qUdO4qV+x2XPRHNt4TktISLN+z8b4c h7ryseOd6oR74yC8o7XhuHPNlSMLXh+6xYFCOEsrw423CHJmrzB9+jGYrz3ODXHu 24mDxE22I+214keNfal3Brb1DFGB4nlDvVL730Uwoh8ilc2Ez8a9r8+DUdEOYp7C iEhxT+Gu/v7WGyAiWh2ARsQQEkATuUSJZNw1XUXz -----END CERTIFICATE-----Generated at Wed May 13 00:43:25 2026 by rpki-client