$ rpki-client -vvf rpki-rsync.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa File: 3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa (raw, json) Hash identifier: 2fSfsDWFAVE0WXc/cYm1cwmYQpM+GCRAEbjcX25Cqow= Subject key identifier: 2A:1E:88:14:4D:0C:83:AA:B0:9B:47:81:23:26:6F:A4:B0:B6:17:1C Certificate issuer: /CN=742B2CA940D91E6FA38A4468F89C390CA2BDD2CA Certificate serial: 1B251468E244CEC886DCF6CDCA5BE211F2FF4DF6 Authority key identifier: 74:2B:2C:A9:40:D9:1E:6F:A3:8A:44:68:F8:9C:39:0C:A2:BD:D2:CA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/742B2CA940D91E6FA38A4468F89C390CA2BDD2CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa Signing time: Sun 03 May 2026 03:05:54 +0000 ROA not before: Sun 03 May 2026 03:00:54 +0000 ROA not after: Sun 02 May 2027 03:05:54 +0000 asID: 139405 IP address blocks: 103.143.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/742B2CA940D91E6FA38A4468F89C390CA2BDD2CA.crl rsync://rpki-rsync.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/742B2CA940D91E6FA38A4468F89C390CA2BDD2CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/742B2CA940D91E6FA38A4468F89C390CA2BDD2CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:25:14:68:e2:44:ce:c8:86:dc:f6:cd:ca:5b:e2:11:f2:ff:4d:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=742B2CA940D91E6FA38A4468F89C390CA2BDD2CA Validity Not Before: May 3 03:00:54 2026 GMT Not After : May 2 03:05:54 2027 GMT Subject: CN=2A1E88144D0C83AAB09B478123266FA4B0B6171C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:85:22:b3:70:b1:6c:4e:40:59:4c:06:e1:b8: 96:9f:48:ff:ec:16:28:53:9d:33:8a:c1:f3:99:ae: 44:cd:63:37:94:4a:62:b8:43:11:d8:0c:3a:47:b5: 5c:51:6c:db:e2:fc:08:21:00:1e:80:82:54:cd:3c: b8:c5:28:10:69:40:8d:fa:cd:3b:5e:0c:a5:d8:85: 7c:83:35:6c:83:07:d6:e2:bd:37:00:2c:55:ee:0b: cb:af:96:73:e8:f7:03:33:c7:dc:31:00:cd:f6:53: 24:e3:de:d8:1b:8b:46:30:00:ec:51:b6:1d:72:6c: 54:00:5b:58:8a:26:24:66:bf:5e:b3:dd:8f:74:8c: b9:1a:de:b7:22:b7:b6:ea:ac:04:ab:5e:47:d9:56: 29:80:fa:8c:82:1d:2e:b5:73:1f:52:d1:1f:ad:e1: 92:e1:3d:74:56:f4:c7:2d:f4:5d:be:8a:ad:50:d9: 04:ce:9c:ff:88:b1:a0:9e:af:dd:f8:aa:8a:5e:66: 73:60:31:aa:ff:eb:e6:79:b0:66:68:70:0c:a3:47: 23:0f:40:65:28:b0:b4:9c:02:0c:5e:6c:19:63:0d: 36:3d:22:0e:53:f2:3b:96:da:7d:be:6c:3b:7a:82: ea:a3:e3:92:b9:fe:3a:11:2f:a4:d2:b1:3d:3a:94: 4b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:1E:88:14:4D:0C:83:AA:B0:9B:47:81:23:26:6F:A4:B0:B6:17:1C X509v3 Authority Key Identifier: keyid:74:2B:2C:A9:40:D9:1E:6F:A3:8A:44:68:F8:9C:39:0C:A2:BD:D2:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/742B2CA940D91E6FA38A4468F89C390CA2BDD2CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/742B2CA940D91E6FA38A4468F89C390CA2BDD2CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.20.0/24 Signature Algorithm: sha256WithRSAEncryption 14:0d:75:c9:3c:27:4a:1f:89:83:46:47:3b:0c:a8:1c:f8:cf: c6:e0:a0:e9:bd:b0:80:c6:af:39:32:61:59:36:24:5c:96:37: 18:19:40:21:66:3c:7a:58:4f:01:93:61:99:69:e6:b5:9a:87: 90:33:21:2c:55:ca:75:74:e7:05:f6:3d:7a:83:6d:43:60:31: 65:59:0b:cd:41:ce:91:00:d8:b4:b2:bf:8b:d0:53:85:b9:cb: 9f:97:8e:e9:b4:ec:c6:7b:36:9f:ad:86:ef:a2:d7:0a:d0:fc: f0:f8:be:5c:75:37:e4:9b:fe:d8:da:1e:21:d4:b1:a9:da:8f: 5a:55:c2:bb:a4:6e:f7:4b:d7:33:58:a2:0a:ed:6c:0f:77:50: 52:40:91:29:77:e2:a3:39:d3:b9:af:4a:f9:34:61:60:c5:3e: 03:8e:66:bf:05:4b:e3:21:6d:12:e9:de:60:95:75:79:8e:3e: 48:d7:70:f5:17:ef:d5:83:db:ef:ba:51:63:b9:ff:dc:fb:d0: f0:d4:25:db:2f:60:ce:3f:06:e7:23:45:62:f6:e3:08:11:df: 0a:f7:08:90:db:e8:80:02:67:04:51:f5:84:81:65:f1:cf:13: 24:52:92:11:49:2e:68:5d:87:a6:ff:ad:08:a6:8e:ab:82:57: 5e:d0:b6:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGyUUaOJEzsiG3PbNylviEfL/TfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQyQjJDQTk0MEQ5MUU2RkEzOEE0NDY4Rjg5QzM5MENB MkJERDJDQTAeFw0yNjA1MDMwMzAwNTRaFw0yNzA1MDIwMzA1NTRaMDMxMTAvBgNV BAMTKDJBMUU4ODE0NEQwQzgzQUFCMDlCNDc4MTIzMjY2RkE0QjBCNjE3MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAhSKzcLFsTkBZTAbhuJafSP/s FihTnTOKwfOZrkTNYzeUSmK4QxHYDDpHtVxRbNvi/AghAB6AglTNPLjFKBBpQI36 zTteDKXYhXyDNWyDB9bivTcALFXuC8uvlnPo9wMzx9wxAM32UyTj3tgbi0YwAOxR th1ybFQAW1iKJiRmv16z3Y90jLka3rcit7bqrASrXkfZVimA+oyCHS61cx9S0R+t 4ZLhPXRW9Mct9F2+iq1Q2QTOnP+IsaCer934qopeZnNgMar/6+Z5sGZocAyjRyMP QGUosLScAgxebBljDTY9Ig5T8juW2n2+bDt6guqj45K5/joRL6TSsT06lEttAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKh6IFE0Mg6qwm0eBIyZvpLC2FxwwHwYDVR0j BBgwFoAUdCssqUDZHm+jikRo+Jw5DKK90sowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzc4YzNjNjktMzZkMC00YWU4LWE4ZGYtNjNkM2Y0NGNjZDhkLzAvNzQyQjJDQTk0 MEQ5MUU2RkEzOEE0NDY4Rjg5QzM5MENBMkJERDJDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83NDJCMkNBOTQwRDkxRTZGQTM4QTQ0NjhGODlDMzkwQ0EyQkRE MkNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M3OGMzYzY5LTM2ZDAtNGFlOC1h OGRmLTYzZDNmNDRjY2Q4ZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ48UMA0GCSqG SIb3DQEBCwUAA4IBAQAUDXXJPCdKH4mDRkc7DKgc+M/G4KDpvbCAxq85MmFZNiRc ljcYGUAhZjx6WE8Bk2GZaea1moeQMyEsVcp1dOcF9j16g21DYDFlWQvNQc6RANi0 sr+L0FOFucufl47ptOzGezafrYbvotcK0Pzw+L5cdTfkm/7Y2h4h1LGp2o9aVcK7 pG73S9czWKIK7WwPd1BSQJEpd+KjOdO5r0r5NGFgxT4Djma/BUvjIW0S6d5glXV5 jj5I13D1F+/Vg9vvulFjuf/c+9Dw1CXbL2DOPwbnI0Vi9uMIEd8K9wiQ2+iAAmcE UfWEgWXxzxMkUpIRSS5oXYem/60Ipo6rglde0La7 -----END CERTIFICATE-----Generated at Wed May 13 02:47:44 2026 by rpki-client