$ rpki-client -vvf rpki-rsync.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa File: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (raw, json) Hash identifier: 3Da0wSVO79CXcT4/2ct9HlMI+w8ZYFGpqAbvRWk65hU= Subject key identifier: 82:0C:00:02:AE:BC:45:F6:D3:28:4A:08:08:22:3D:CD:C3:DA:3A:E5 Certificate issuer: /CN=9970795F3B277481EE73EA3A16E4FA33964C92D3 Certificate serial: 3D4E5158BCFB55D14DCDC4AFFFD869C9202BB43F Authority key identifier: 99:70:79:5F:3B:27:74:81:EE:73:EA:3A:16:E4:FA:33:96:4C:92:D3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9970795F3B277481EE73EA3A16E4FA33964C92D3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa Signing time: Sun 03 May 2026 03:02:05 +0000 ROA not before: Sun 03 May 2026 02:57:05 +0000 ROA not after: Sun 02 May 2027 03:02:05 +0000 asID: 141093 IP address blocks: 103.156.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/9970795F3B277481EE73EA3A16E4FA33964C92D3.crl rsync://rpki-rsync.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/9970795F3B277481EE73EA3A16E4FA33964C92D3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9970795F3B277481EE73EA3A16E4FA33964C92D3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:4e:51:58:bc:fb:55:d1:4d:cd:c4:af:ff:d8:69:c9:20:2b:b4:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9970795F3B277481EE73EA3A16E4FA33964C92D3 Validity Not Before: May 3 02:57:05 2026 GMT Not After : May 2 03:02:05 2027 GMT Subject: CN=820C0002AEBC45F6D3284A0808223DCDC3DA3AE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:98:0f:fd:d5:6c:d3:f1:5c:07:6e:83:dc:56: 6b:56:86:c6:54:f0:9a:e2:d8:b6:c5:b0:63:36:71: 6c:24:ce:b3:ee:cb:3d:15:e8:59:5a:af:f1:9c:56: cf:9a:c9:3e:a0:40:5c:65:f6:13:08:16:0b:94:17: c1:69:1c:58:ce:a3:40:d1:c2:1d:ee:7e:72:c4:cd: 7f:d6:bd:b8:4a:8c:63:22:22:c0:05:80:09:e7:95: 8d:a0:52:27:d9:77:0d:15:15:70:8d:98:d9:d5:d9: b8:01:c8:45:7e:84:26:06:bc:34:80:98:07:f7:59: 9c:1b:d1:56:72:16:ce:4c:a4:d2:84:ad:92:59:06: 02:a8:d1:15:b9:0e:bb:6b:3d:9b:a6:03:0c:b8:4d: 9f:9a:20:de:34:49:31:33:7d:0d:74:b6:21:6d:e0: cc:a4:9a:06:11:bd:42:e3:9d:72:ad:a5:ea:d4:f9: cf:8b:a6:92:0d:1d:08:69:b2:a3:09:ae:55:d7:52: c4:13:08:eb:4b:d5:9d:90:cc:d0:b7:2c:6d:9e:b3: b3:f7:0b:e5:77:92:4a:b2:79:f2:19:7f:21:4b:4d: 87:d0:05:8f:61:30:04:b9:e8:d7:f6:0b:6b:46:8e: 01:0a:7f:d8:3c:de:e7:17:bd:05:42:7e:e5:a6:dc: fd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0C:00:02:AE:BC:45:F6:D3:28:4A:08:08:22:3D:CD:C3:DA:3A:E5 X509v3 Authority Key Identifier: keyid:99:70:79:5F:3B:27:74:81:EE:73:EA:3A:16:E4:FA:33:96:4C:92:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/9970795F3B277481EE73EA3A16E4FA33964C92D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9970795F3B277481EE73EA3A16E4FA33964C92D3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.146.0/23 Signature Algorithm: sha256WithRSAEncryption 56:d2:5c:c2:42:fe:af:ba:10:07:20:47:3b:75:ed:dc:c0:72: b6:f5:d2:90:30:bf:cc:58:43:82:60:a8:52:a5:3a:6e:bc:ba: 6e:af:62:f1:6e:a8:a5:bb:e7:d9:53:bf:a6:11:a5:d5:90:72: 6b:ab:5f:e2:ac:3f:7c:03:ec:15:c3:09:08:0e:77:a2:21:24: 0a:75:5e:3a:50:ee:ee:bd:36:1e:24:da:46:9d:30:ac:2a:b7: f9:0f:a9:29:5a:c4:60:b5:02:c5:c0:cb:53:fb:ea:a7:2f:39: 33:93:98:7c:f4:56:4c:70:95:30:f0:73:b3:ab:0c:af:4f:bc: 3b:7c:e6:49:e2:8f:a3:3f:53:46:9f:1e:45:9f:2a:ca:e9:15: 9a:50:3e:1a:77:a8:4b:1d:c7:f7:2f:dd:6e:bf:28:ce:17:0a: 97:f3:bf:ee:0c:1f:32:74:e8:2c:25:ef:bd:ef:d0:c7:04:61: 13:80:20:67:57:a2:7f:f8:b5:ec:53:61:ec:1d:9b:5a:d0:68: 67:35:2e:88:3b:61:31:30:ff:be:13:c0:82:78:3a:61:34:96: 36:8b:9f:16:8a:e3:02:09:61:2a:b0:54:d1:80:d2:4b:89:42: 37:bf:89:a8:62:3f:f6:51:ed:90:40:9d:88:da:05:8d:2b:c5: fd:36:9c:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPU5RWLz7VdFNzcSv/9hpySArtD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTk3MDc5NUYzQjI3NzQ4MUVFNzNFQTNBMTZFNEZBMzM5 NjRDOTJEMzAeFw0yNjA1MDMwMjU3MDVaFw0yNzA1MDIwMzAyMDVaMDMxMTAvBgNV BAMTKDgyMEMwMDAyQUVCQzQ1RjZEMzI4NEEwODA4MjIzRENEQzNEQTNBRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTmA/91WzT8VwHboPcVmtWhsZU 8Jri2LbFsGM2cWwkzrPuyz0V6Flar/GcVs+ayT6gQFxl9hMIFguUF8FpHFjOo0DR wh3ufnLEzX/WvbhKjGMiIsAFgAnnlY2gUifZdw0VFXCNmNnV2bgByEV+hCYGvDSA mAf3WZwb0VZyFs5MpNKErZJZBgKo0RW5DrtrPZumAwy4TZ+aIN40STEzfQ10tiFt 4MykmgYRvULjnXKtperU+c+LppINHQhpsqMJrlXXUsQTCOtL1Z2QzNC3LG2es7P3 C+V3kkqyefIZfyFLTYfQBY9hMAS56Nf2C2tGjgEKf9g83ucXvQVCfuWm3P0ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUggwAAq68RfbTKEoICCI9zcPaOuUwHwYDVR0j BBgwFoAUmXB5XzsndIHuc+o6FuT6M5ZMktMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yjg5OWExNWItZDVhZS00NWVjLTgwMTItYTZjYWFiM2RkODhiLzAvOTk3MDc5NUYz QjI3NzQ4MUVFNzNFQTNBMTZFNEZBMzM5NjRDOTJEMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OTcwNzk1RjNCMjc3NDgxRUU3M0VBM0ExNkU0RkEzMzk2NEM5 MkQzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I4OTlhMTViLWQ1YWUtNDVlYy04 MDEyLWE2Y2FhYjNkZDg4Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnJIwDQYJ KoZIhvcNAQELBQADggEBAFbSXMJC/q+6EAcgRzt17dzAcrb10pAwv8xYQ4JgqFKl Om68um6vYvFuqKW759lTv6YRpdWQcmurX+KsP3wD7BXDCQgOd6IhJAp1XjpQ7u69 Nh4k2kadMKwqt/kPqSlaxGC1AsXAy1P76qcvOTOTmHz0VkxwlTDwc7OrDK9PvDt8 5knij6M/U0afHkWfKsrpFZpQPhp3qEsdx/cv3W6/KM4XCpfzv+4MHzJ06Cwl773v 0McEYROAIGdXon/4texTYewdm1rQaGc1Log7YTEw/74TwIJ4OmE0ljaLnxaK4wIJ YSqwVNGA0kuJQje/iahiP/ZR7ZBAnYjaBY0rxf02nOM= -----END CERTIFICATE-----Generated at Wed May 13 07:11:15 2026 by rpki-client