$ rpki-client -vvf rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa File: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: LzSAsxWA0fgKh1RMMG/YhgW6mMukUQNYLTHnbdaiIMo= Subject key identifier: 3A:45:6D:6C:93:22:DD:77:B8:70:40:A3:14:79:73:90:61:26:47:A4 Certificate issuer: /CN=67EFB834694FDF326541D90AA7679322947189B3 Certificate serial: 03CD22A0B637C0735E8F1DE931D26C1AF34E97E3 Authority key identifier: 67:EF:B8:34:69:4F:DF:32:65:41:D9:0A:A7:67:93:22:94:71:89:B3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67EFB834694FDF326541D90AA7679322947189B3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa Signing time: Sun 03 May 2026 03:06:08 +0000 ROA not before: Sun 03 May 2026 03:01:08 +0000 ROA not after: Sun 02 May 2027 03:06:08 +0000 asID: 139952 IP address blocks: 103.149.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/67EFB834694FDF326541D90AA7679322947189B3.crl rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/67EFB834694FDF326541D90AA7679322947189B3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67EFB834694FDF326541D90AA7679322947189B3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:cd:22:a0:b6:37:c0:73:5e:8f:1d:e9:31:d2:6c:1a:f3:4e:97:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67EFB834694FDF326541D90AA7679322947189B3 Validity Not Before: May 3 03:01:08 2026 GMT Not After : May 2 03:06:08 2027 GMT Subject: CN=3A456D6C9322DD77B87040A314797390612647A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8c:29:ea:fb:e6:fc:7f:09:81:80:39:5d:69: 9a:42:8f:d6:89:65:bb:c2:30:34:fa:ab:fb:ba:c9: 70:cc:7d:b2:d5:18:ea:51:4c:06:c3:96:71:7b:11: 09:9c:f7:9b:f7:e0:d3:44:46:dc:9e:31:2b:15:6c: 2b:c4:dc:97:64:74:65:6c:d0:4b:a1:7f:b5:98:94: 2e:9f:13:d0:fb:ac:09:37:1b:b8:61:5a:10:c5:9a: 9e:be:ff:17:2e:eb:ea:07:7b:db:81:99:b7:a0:39: 5b:14:34:57:ab:30:aa:7a:f3:cc:4c:5e:09:17:93: 0e:3d:fc:99:6f:f0:b9:21:22:a9:30:13:fe:6c:7f: d5:14:ed:3f:0c:40:17:87:47:85:55:dc:58:4b:1a: a4:07:97:03:3a:75:b3:55:c8:a1:aa:93:2f:1b:62: d9:bf:e2:01:04:a4:68:14:2e:b2:3c:5e:22:be:d1: 52:48:bf:d2:47:e8:86:93:ce:48:6f:bb:93:26:bd: cf:89:23:8f:d6:68:d3:7f:37:bb:b7:ca:0c:b5:94: c5:11:ee:56:72:04:d2:00:c3:09:45:63:12:5f:5f: 14:07:e9:87:7c:83:d4:43:bd:e4:d0:ea:47:0a:b5: aa:77:56:92:3b:9e:90:6f:4a:7a:c1:5e:38:80:81: 64:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:45:6D:6C:93:22:DD:77:B8:70:40:A3:14:79:73:90:61:26:47:A4 X509v3 Authority Key Identifier: keyid:67:EF:B8:34:69:4F:DF:32:65:41:D9:0A:A7:67:93:22:94:71:89:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/67EFB834694FDF326541D90AA7679322947189B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67EFB834694FDF326541D90AA7679322947189B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:ba:c4:5d:2b:a3:d4:d8:0a:0d:9a:2f:3e:e1:d7:de:b8:a8: 8e:7e:5a:31:f4:9f:7b:40:3f:e4:1b:c6:b7:07:7b:e9:13:fe: 0f:2c:60:4f:a7:ea:22:07:7e:24:74:6a:49:f5:cb:6b:77:4f: 98:6b:6b:77:15:3d:b3:00:bd:f1:1d:ef:b7:5a:5d:a5:11:ff: 31:52:52:18:bb:ef:e6:6b:31:ec:4b:a0:85:8f:86:86:20:6d: 75:78:4b:66:46:4a:1e:95:02:49:f7:93:42:a2:2f:0b:18:fc: a7:ca:3c:91:79:b7:9d:39:2d:75:54:c5:d5:42:e7:d1:99:08: 7b:f0:52:00:f4:73:68:40:ee:fc:78:d4:02:50:6f:ca:9a:77: 96:86:de:1b:a1:b3:59:bd:c5:a2:76:7f:20:d5:26:b6:11:06: 60:11:f1:05:6d:bd:8f:7d:3d:50:86:2e:28:b6:0e:b7:93:e3: af:b2:fc:e5:eb:f1:0e:e6:b8:8a:63:43:a9:f5:b5:c7:a9:ec: 53:e9:46:6d:a1:54:52:30:08:fb:a7:a8:55:8f:4a:e3:5c:9f: f7:74:78:85:41:26:d5:6e:c4:c9:6e:ca:82:7d:78:f9:19:ab: ee:24:fd:32:ea:48:bc:da:ed:30:b2:b5:ea:15:cd:6d:06:de: ee:6d:bb:6a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA80ioLY3wHNejx3pMdJsGvNOl+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdFRkI4MzQ2OTRGREYzMjY1NDFEOTBBQTc2NzkzMjI5 NDcxODlCMzAeFw0yNjA1MDMwMzAxMDhaFw0yNzA1MDIwMzA2MDhaMDMxMTAvBgNV BAMTKDNBNDU2RDZDOTMyMkRENzdCODcwNDBBMzE0Nzk3MzkwNjEyNjQ3QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvjCnq++b8fwmBgDldaZpCj9aJ ZbvCMDT6q/u6yXDMfbLVGOpRTAbDlnF7EQmc95v34NNERtyeMSsVbCvE3JdkdGVs 0Euhf7WYlC6fE9D7rAk3G7hhWhDFmp6+/xcu6+oHe9uBmbegOVsUNFerMKp688xM XgkXkw49/Jlv8LkhIqkwE/5sf9UU7T8MQBeHR4VV3FhLGqQHlwM6dbNVyKGqky8b Ytm/4gEEpGgULrI8XiK+0VJIv9JH6IaTzkhvu5Mmvc+JI4/WaNN/N7u3ygy1lMUR 7lZyBNIAwwlFYxJfXxQH6Yd8g9RDveTQ6kcKtap3VpI7npBvSnrBXjiAgWQPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOkVtbJMi3Xe4cECjFHlzkGEmR6QwHwYDVR0j BBgwFoAUZ++4NGlP3zJlQdkKp2eTIpRxibMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzhkMGU2NDAtMjJlOS00NDFjLTg2MzQtZjk1MjUzMDdkYTc2LzAvNjdFRkI4MzQ2 OTRGREYzMjY1NDFEOTBBQTc2NzkzMjI5NDcxODlCMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82N0VGQjgzNDY5NEZERjMyNjU0MUQ5MEFBNzY3OTMyMjk0NzE4 OUIzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXgwDQYJ KoZIhvcNAQELBQADggEBAC26xF0ro9TYCg2aLz7h1964qI5+WjH0n3tAP+QbxrcH e+kT/g8sYE+n6iIHfiR0akn1y2t3T5hra3cVPbMAvfEd77daXaUR/zFSUhi77+Zr MexLoIWPhoYgbXV4S2ZGSh6VAkn3k0KiLwsY/KfKPJF5t505LXVUxdVC59GZCHvw UgD0c2hA7vx41AJQb8qad5aG3huhs1m9xaJ2fyDVJrYRBmAR8QVtvY99PVCGLii2 DreT46+y/OXr8Q7muIpjQ6n1tcep7FPpRm2hVFIwCPunqFWPSuNcn/d0eIVBJtVu xMluyoJ9ePkZq+4k/TLqSLza7TCyteoVzW0G3u5tu2o= -----END CERTIFICATE-----Generated at Wed May 13 13:31:03 2026 by rpki-client