$ rpki-client -vvf rpki-rsync.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa File: 3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa (raw, json) Hash identifier: KJ7p2DQB9uLZReoNNtXLeW/ntHP0ly/9EgDzYMeS9tA= Subject key identifier: C5:7A:7D:5E:60:4B:07:A0:56:F6:98:10:F3:2C:77:D1:95:33:1A:77 Certificate issuer: /CN=DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A Certificate serial: 63F1FEB2D976F85D344F590409FF0A12289F8113 Authority key identifier: DE:7C:DE:1E:AB:9B:0E:FB:E8:0E:07:87:47:EE:60:FD:AE:F8:FE:2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa Signing time: Sun 03 May 2026 03:01:58 +0000 ROA not before: Sun 03 May 2026 02:56:58 +0000 ROA not after: Sun 02 May 2027 03:01:58 +0000 asID: 142374 IP address blocks: 103.171.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A.crl rsync://rpki-rsync.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f1:fe:b2:d9:76:f8:5d:34:4f:59:04:09:ff:0a:12:28:9f:81:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A Validity Not Before: May 3 02:56:58 2026 GMT Not After : May 2 03:01:58 2027 GMT Subject: CN=C57A7D5E604B07A056F69810F32C77D195331A77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3f:a4:53:4c:be:43:56:ed:97:15:82:83:af: 2e:fd:a6:8c:95:1e:df:6b:bf:d4:84:f2:3f:f0:6e: 1a:90:f0:df:7b:1e:3e:76:4d:70:5a:b3:54:fa:aa: 0a:15:d7:f8:28:e0:af:42:df:49:2d:74:d0:21:ef: 9b:4d:c3:61:b2:f7:b9:da:37:96:14:fd:fa:1e:70: 21:77:e9:d5:f2:33:92:ef:2c:b9:a9:2f:f9:4c:f5: 7a:8a:b5:6f:20:5d:5d:00:df:59:75:d8:df:f8:59: 6f:84:ed:d7:61:ea:b4:1b:50:75:7e:28:5b:c6:a4: e4:be:89:44:0f:00:bb:85:62:f1:60:29:26:c4:44: cc:f1:0c:b4:cc:28:d5:29:56:5d:fc:9e:4e:d5:00: 41:1f:5f:0b:02:fa:8e:8b:6a:5e:6b:38:be:2b:0e: 31:e3:98:f0:26:68:90:59:4c:3c:d7:31:01:54:08: 54:74:49:80:23:89:de:b3:ad:fe:3a:1d:0c:55:83: 37:09:6d:ca:3d:d6:bd:28:37:4c:ce:8a:bc:de:3f: ea:33:84:22:95:df:0f:2e:6f:28:71:83:3a:e1:7d: 3f:c3:f1:08:2e:e1:00:57:c6:72:a8:69:94:3b:fe: 4b:44:7a:ad:87:80:a4:4c:b9:a0:e0:42:9f:03:a9: 97:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:7A:7D:5E:60:4B:07:A0:56:F6:98:10:F3:2C:77:D1:95:33:1A:77 X509v3 Authority Key Identifier: keyid:DE:7C:DE:1E:AB:9B:0E:FB:E8:0E:07:87:47:EE:60:FD:AE:F8:FE:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE7CDE1EAB9B0EFBE80E078747EE60FDAEF8FE2A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.185.0/24 Signature Algorithm: sha256WithRSAEncryption 04:61:8b:8e:7d:14:f7:f8:c2:06:13:64:6e:dd:c5:28:1f:8d: 88:a0:68:0d:8c:13:a2:95:32:40:12:4c:ad:82:1c:5e:e3:6a: c5:49:99:53:9c:a5:73:23:7e:99:e5:53:b8:ef:f2:a0:21:4c: 72:39:a7:75:e9:0a:10:7d:fb:3e:e3:3a:6c:e7:ab:0d:ed:9d: bb:5c:3d:25:62:76:8c:ad:aa:ab:4a:9a:aa:12:b5:5b:4e:0e: 83:fc:80:b4:64:9d:25:bd:5b:a4:b6:8e:d7:3c:59:7f:dd:6f: 6f:46:e7:3c:c1:98:6a:c9:b1:b3:5e:3d:d6:dc:c6:23:da:7f: ca:fb:e7:74:42:08:c2:e8:06:77:0b:1c:f8:58:0c:c4:9e:80: 22:b6:03:40:17:d2:38:ff:04:56:dc:06:da:d9:f5:6c:0d:47: 33:cb:d2:ce:10:b8:6e:3b:0d:f8:21:49:25:1e:66:a6:9c:2d: c2:0d:38:18:d0:d1:0a:2b:65:b4:fb:67:18:fe:9c:6c:87:93: 5c:fd:80:38:32:3d:85:6b:25:4e:b8:a5:73:9d:cf:46:b2:22: 4b:da:67:3e:3e:d6:46:67:cf:8c:9d:b0:5a:c8:86:fa:17:b1: 0c:c6:d3:56:a8:44:df:2e:d4:e8:52:8c:15:a6:20:c5:08:f8: 1f:3d:f7:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY/H+stl2+F00T1kECf8KEiifgRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU3Q0RFMUVBQjlCMEVGQkU4MEUwNzg3NDdFRTYwRkRB RUY4RkUyQTAeFw0yNjA1MDMwMjU2NThaFw0yNzA1MDIwMzAxNThaMDMxMTAvBgNV BAMTKEM1N0E3RDVFNjA0QjA3QTA1NkY2OTgxMEYzMkM3N0QxOTUzMzFBNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsP6RTTL5DVu2XFYKDry79poyV Ht9rv9SE8j/wbhqQ8N97Hj52TXBas1T6qgoV1/go4K9C30ktdNAh75tNw2Gy97na N5YU/foecCF36dXyM5LvLLmpL/lM9XqKtW8gXV0A31l12N/4WW+E7ddh6rQbUHV+ KFvGpOS+iUQPALuFYvFgKSbERMzxDLTMKNUpVl38nk7VAEEfXwsC+o6Lal5rOL4r DjHjmPAmaJBZTDzXMQFUCFR0SYAjid6zrf46HQxVgzcJbco91r0oN0zOirzeP+oz hCKV3w8ubyhxgzrhfT/D8Qgu4QBXxnKoaZQ7/ktEeq2HgKRMuaDgQp8DqZeVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxXp9XmBLB6BW9pgQ8yx30ZUzGncwHwYDVR0j BBgwFoAU3nzeHqubDvvoDgeHR+5g/a74/iowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yjg1NWY0NTAtZWI3Zi00YTI2LWE2YzQtZjk4MjdlZTBhNWI4LzAvREU3Q0RFMUVB QjlCMEVGQkU4MEUwNzg3NDdFRTYwRkRBRUY4RkUyQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERTdDREUxRUFCOUIwRUZCRTgwRTA3ODc0N0VFNjBGREFFRjhG RTJBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I4NTVmNDUwLWViN2YtNGEyNi1h NmM0LWY5ODI3ZWUwYTViOC8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7kwDQYJ KoZIhvcNAQELBQADggEBAARhi459FPf4wgYTZG7dxSgfjYigaA2ME6KVMkASTK2C HF7jasVJmVOcpXMjfpnlU7jv8qAhTHI5p3XpChB9+z7jOmznqw3tnbtcPSVidoyt qqtKmqoStVtODoP8gLRknSW9W6S2jtc8WX/db29G5zzBmGrJsbNePdbcxiPaf8r7 53RCCMLoBncLHPhYDMSegCK2A0AX0jj/BFbcBtrZ9WwNRzPL0s4QuG47DfghSSUe ZqacLcINOBjQ0QorZbT7Zxj+nGyHk1z9gDgyPYVrJU64pXOdz0ayIkvaZz4+1kZn z4ydsFrIhvoXsQzG01aoRN8u1OhSjBWmIMUI+B899yc= -----END CERTIFICATE-----Generated at Wed May 13 13:30:22 2026 by rpki-client