$ rpki-client -vvf rpki-rsync.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32332d3234203d3e20313430343532.roa File: 3130332e3135332e33342e302f32332d3234203d3e20313430343532.roa (raw, json) Hash identifier: K/vlRNC+KQ5JyA0pwiIFS/TmPu7i6jVh0r5OiRdmy0A= Subject key identifier: 75:59:1E:68:76:BA:F8:F8:55:86:61:13:FC:94:B2:18:AC:10:55:D1 Certificate issuer: /CN=BAD1403588CA8E7E1F9A4B306C6B8BE29079793E Certificate serial: 357B94BFA5D3DD2F9E5A10E8FB04347E5696B7A9 Authority key identifier: BA:D1:40:35:88:CA:8E:7E:1F:9A:4B:30:6C:6B:8B:E2:90:79:79:3E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAD1403588CA8E7E1F9A4B306C6B8BE29079793E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32332d3234203d3e20313430343532.roa Signing time: Sun 03 May 2026 03:02:44 +0000 ROA not before: Sun 03 May 2026 02:57:44 +0000 ROA not after: Sun 02 May 2027 03:02:44 +0000 asID: 140452 IP address blocks: 103.153.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/BAD1403588CA8E7E1F9A4B306C6B8BE29079793E.crl rsync://rpki-rsync.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/BAD1403588CA8E7E1F9A4B306C6B8BE29079793E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAD1403588CA8E7E1F9A4B306C6B8BE29079793E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:7b:94:bf:a5:d3:dd:2f:9e:5a:10:e8:fb:04:34:7e:56:96:b7:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAD1403588CA8E7E1F9A4B306C6B8BE29079793E Validity Not Before: May 3 02:57:44 2026 GMT Not After : May 2 03:02:44 2027 GMT Subject: CN=75591E6876BAF8F855866113FC94B218AC1055D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:44:fc:d8:8c:f3:49:16:d3:8a:17:1d:70:36: eb:b0:84:b9:02:e5:5a:f5:ee:d2:fd:5e:85:b4:4d: 1d:e2:6c:35:29:73:72:02:94:d8:3e:0a:81:1a:0d: 3b:6b:1d:b2:a6:55:7f:35:9c:7e:a5:fa:2b:50:a2: 59:06:bb:fb:59:30:b8:5d:6f:15:69:82:e3:14:24: 3f:f6:61:2c:b1:87:e6:3c:f4:fb:08:5f:51:fb:29: 85:33:53:2d:b9:34:42:7c:0c:57:32:d1:0a:a6:dd: b7:4b:d5:fe:06:d9:c6:9c:97:bf:58:b9:e7:f1:d9: 8b:28:cf:96:e0:a4:dc:47:e0:98:da:dc:86:17:45: 69:dd:3a:5e:18:1e:ba:e6:62:08:75:fb:1e:2d:21: 97:71:d9:fe:e4:07:5f:2c:aa:71:8c:06:c6:69:d3: d2:d9:7b:11:0e:8d:9d:4d:ba:ea:0e:2d:5e:23:f9: 07:6d:1b:00:69:12:06:1f:03:d0:73:d7:a7:e8:63: c8:34:31:fb:75:5a:29:66:f1:ed:3a:60:3f:eb:4f: 5d:f4:a4:3b:5e:28:83:b8:3f:55:1e:02:1c:30:55: 51:16:04:6b:34:8e:37:7b:64:46:73:8c:11:37:60: 69:56:d0:b1:b4:c9:d3:c1:25:41:f1:6d:79:20:33: 51:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:59:1E:68:76:BA:F8:F8:55:86:61:13:FC:94:B2:18:AC:10:55:D1 X509v3 Authority Key Identifier: keyid:BA:D1:40:35:88:CA:8E:7E:1F:9A:4B:30:6C:6B:8B:E2:90:79:79:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/BAD1403588CA8E7E1F9A4B306C6B8BE29079793E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAD1403588CA8E7E1F9A4B306C6B8BE29079793E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32332d3234203d3e20313430343532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.34.0/23 Signature Algorithm: sha256WithRSAEncryption 64:2a:d2:b5:d4:8d:cc:1d:9a:95:b8:2d:1b:37:ad:82:e6:e0: 55:36:46:2e:90:85:50:8a:16:83:7f:e9:e7:a7:48:60:02:96: 43:6f:e8:90:4e:ef:85:8d:66:88:61:e2:03:d1:95:47:db:96: f8:68:1a:35:f1:17:36:c8:7f:ad:db:4a:91:b7:af:0d:6a:9b: 8f:eb:fd:0d:cc:0c:a3:91:91:cd:cd:3d:f6:09:4b:91:9c:71: b0:c5:3c:03:46:61:37:e9:f7:f4:47:40:16:f8:31:25:37:33: 12:83:8d:da:81:d6:d6:86:a8:5e:4a:1f:c7:c7:7f:67:6c:18: 70:1c:ac:19:b0:9c:20:f3:4f:da:d7:7f:02:f1:ad:35:4d:5b: 3a:a6:85:a9:7b:08:e6:52:2c:7c:7b:6b:06:61:3e:00:d0:a4: f3:b9:6b:eb:8d:a5:72:40:b9:d8:ef:39:09:eb:60:b2:30:47: 43:fa:2f:c6:c1:c7:68:4d:38:8f:8b:06:ec:4e:35:6f:7a:e5: ac:5e:9b:a8:1c:09:fa:41:3f:6e:c9:7b:3f:99:e0:8b:45:2d: f7:bb:28:db:b6:61:9b:05:33:e7:a7:86:f3:7a:e7:51:3e:20: 99:be:b5:30:02:6d:a5:f9:fc:d0:c2:e5:5a:92:02:50:e5:7e: 87:d8:dc:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNXuUv6XT3S+eWhDo+wQ0flaWt6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFEMTQwMzU4OENBOEU3RTFGOUE0QjMwNkM2QjhCRTI5 MDc5NzkzRTAeFw0yNjA1MDMwMjU3NDRaFw0yNzA1MDIwMzAyNDRaMDMxMTAvBgNV BAMTKDc1NTkxRTY4NzZCQUY4Rjg1NTg2NjExM0ZDOTRCMjE4QUMxMDU1RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChRPzYjPNJFtOKFx1wNuuwhLkC 5Vr17tL9XoW0TR3ibDUpc3IClNg+CoEaDTtrHbKmVX81nH6l+itQolkGu/tZMLhd bxVpguMUJD/2YSyxh+Y89PsIX1H7KYUzUy25NEJ8DFcy0Qqm3bdL1f4G2cacl79Y uefx2Ysoz5bgpNxH4Jja3IYXRWndOl4YHrrmYgh1+x4tIZdx2f7kB18sqnGMBsZp 09LZexEOjZ1NuuoOLV4j+QdtGwBpEgYfA9Bz16foY8g0Mft1Wilm8e06YD/rT130 pDteKIO4P1UeAhwwVVEWBGs0jjd7ZEZzjBE3YGlW0LG0ydPBJUHxbXkgM1ErAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdVkeaHa6+PhVhmET/JSyGKwQVdEwHwYDVR0j BBgwFoAUutFANYjKjn4fmkswbGuL4pB5eT4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmRjNDFjMWEtZTA4OC00ZWY2LTlkMjgtODE0YzYxNDU2ZDMwLzAvQkFEMTQwMzU4 OENBOEU3RTFGOUE0QjMwNkM2QjhCRTI5MDc5NzkzRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQUQxNDAzNTg4Q0E4RTdFMUY5QTRCMzA2QzZCOEJFMjkwNzk3 OTNFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkYzQxYzFhLWUwODgtNGVmNi05 ZDI4LTgxNGM2MTQ1NmQzMC8wLzMxMzAzMzJlMzEzNTMzMmUzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5kiMA0GCSqG SIb3DQEBCwUAA4IBAQBkKtK11I3MHZqVuC0bN62C5uBVNkYukIVQihaDf+nnp0hg ApZDb+iQTu+FjWaIYeID0ZVH25b4aBo18Rc2yH+t20qRt68NapuP6/0NzAyjkZHN zT32CUuRnHGwxTwDRmE36ff0R0AW+DElNzMSg43agdbWhqheSh/Hx39nbBhwHKwZ sJwg80/a138C8a01TVs6poWpewjmUix8e2sGYT4A0KTzuWvrjaVyQLnY7zkJ62Cy MEdD+i/GwcdoTTiPiwbsTjVveuWsXpuoHAn6QT9uyXs/meCLRS33uyjbtmGbBTPn p4bzeudRPiCZvrUwAm2l+fzQwuVakgJQ5X6H2Ny6 -----END CERTIFICATE-----Generated at Wed May 13 03:47:36 2026 by rpki-client