$ rpki-client -vvf rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa File: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 6Vl16dNzoeRKzBu/UGaBeg+RN1aOl59gJEJPta3Z5U4= Subject key identifier: AB:28:48:D1:20:A9:F4:69:6C:5D:33:12:92:E3:2F:86:65:50:FB:77 Certificate issuer: /CN=67EFB834694FDF326541D90AA7679322947189B3 Certificate serial: 02DDA17909AFAB483FA78D5E1F7AB8112C52A895 Authority key identifier: 67:EF:B8:34:69:4F:DF:32:65:41:D9:0A:A7:67:93:22:94:71:89:B3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67EFB834694FDF326541D90AA7679322947189B3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa Signing time: Sun 03 May 2026 03:06:09 +0000 ROA not before: Sun 03 May 2026 03:01:09 +0000 ROA not after: Sun 02 May 2027 03:06:09 +0000 asID: 139952 IP address blocks: 103.149.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/67EFB834694FDF326541D90AA7679322947189B3.crl rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/67EFB834694FDF326541D90AA7679322947189B3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67EFB834694FDF326541D90AA7679322947189B3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:dd:a1:79:09:af:ab:48:3f:a7:8d:5e:1f:7a:b8:11:2c:52:a8:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67EFB834694FDF326541D90AA7679322947189B3 Validity Not Before: May 3 03:01:09 2026 GMT Not After : May 2 03:06:09 2027 GMT Subject: CN=AB2848D120A9F4696C5D331292E32F866550FB77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:68:2c:82:c6:83:3b:c7:1b:db:c5:0a:48:20: 79:19:0c:73:da:99:77:59:3e:fb:61:21:a6:c4:8e: 32:6a:fa:a9:3b:8a:24:82:98:db:56:bc:1d:7f:dd: d3:b7:ee:03:e0:eb:40:65:99:ff:ef:7a:f7:36:4f: af:96:db:b1:b7:92:0d:ee:7e:49:d3:2a:02:72:6d: 5a:68:a6:7b:36:74:35:21:95:11:55:0b:37:c0:d8: d0:8d:c7:f2:85:22:ff:79:55:0d:bf:b1:83:c7:93: 89:08:51:79:84:b7:c5:fa:f8:1c:07:23:c5:fb:99: c1:5e:5c:70:75:01:5a:82:4e:3a:4c:f5:47:51:68: c6:20:4d:5f:f2:dc:91:3c:05:ec:05:4b:11:b1:d7: ac:21:cb:70:d9:05:4a:79:0c:9d:18:a0:6e:ec:5f: 78:3e:23:d4:cd:ea:30:51:52:6d:7d:44:05:f5:9a: 0a:30:3d:97:62:20:b6:db:7a:6a:28:8a:b7:12:95: 5c:d2:27:1f:0f:a2:2e:49:0c:e8:df:57:d9:c8:82: 38:cc:a3:68:45:52:e0:ab:8b:20:9a:39:16:2e:77: 2e:9e:8e:e0:11:9a:72:a4:4b:68:4f:13:a3:66:33: bb:77:d4:a0:cf:cb:ee:83:fc:db:9a:20:25:5a:e5: ac:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:28:48:D1:20:A9:F4:69:6C:5D:33:12:92:E3:2F:86:65:50:FB:77 X509v3 Authority Key Identifier: keyid:67:EF:B8:34:69:4F:DF:32:65:41:D9:0A:A7:67:93:22:94:71:89:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/67EFB834694FDF326541D90AA7679322947189B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67EFB834694FDF326541D90AA7679322947189B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.121.0/24 Signature Algorithm: sha256WithRSAEncryption c2:be:35:47:f0:cf:8b:af:2e:7a:b2:f1:11:3c:6d:84:cd:db: 1c:24:80:95:28:05:e4:8a:ef:18:d9:4c:06:b0:db:2d:06:07: 3d:3e:d0:62:82:1b:b7:62:7d:11:e6:c9:32:1e:4a:dc:8d:20: 15:da:e7:50:4f:df:47:34:2d:b4:7f:ac:ae:03:1b:0d:57:67: 24:3e:78:80:d8:ce:d8:a0:09:22:5d:15:d6:cf:3a:c6:dd:e9: 62:5d:ea:52:01:fc:f2:7b:e0:54:6d:8f:b4:5e:dd:66:65:8a: 14:f6:e3:7d:ad:03:30:a1:df:74:63:2e:0d:1c:71:94:46:f3: 80:6f:bd:05:52:cc:ec:c9:5a:27:b8:ca:76:33:62:fa:b2:29: 44:27:47:c1:1d:c4:09:f4:74:36:d7:20:c2:bb:31:12:61:e3: 8d:f1:ba:0c:29:40:db:83:68:1e:1b:6d:c8:b1:dd:87:99:f0: 40:f2:75:87:2d:44:bf:a4:a1:2a:ef:cb:ca:e1:8c:ca:b2:33: 7e:96:3a:ae:37:5e:4c:bf:65:7a:cc:7d:33:16:4b:92:a1:dc: b8:41:14:53:09:b0:9f:91:f0:13:e8:3c:8a:38:dd:18:69:00: 4e:57:bd:01:54:ed:15:32:79:b8:58:44:e5:60:bb:18:60:d4: f8:64:3e:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAt2heQmvq0g/p41eH3q4ESxSqJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdFRkI4MzQ2OTRGREYzMjY1NDFEOTBBQTc2NzkzMjI5 NDcxODlCMzAeFw0yNjA1MDMwMzAxMDlaFw0yNzA1MDIwMzA2MDlaMDMxMTAvBgNV BAMTKEFCMjg0OEQxMjBBOUY0Njk2QzVEMzMxMjkyRTMyRjg2NjU1MEZCNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLaCyCxoM7xxvbxQpIIHkZDHPa mXdZPvthIabEjjJq+qk7iiSCmNtWvB1/3dO37gPg60Blmf/vevc2T6+W27G3kg3u fknTKgJybVpopns2dDUhlRFVCzfA2NCNx/KFIv95VQ2/sYPHk4kIUXmEt8X6+BwH I8X7mcFeXHB1AVqCTjpM9UdRaMYgTV/y3JE8BewFSxGx16why3DZBUp5DJ0YoG7s X3g+I9TN6jBRUm19RAX1mgowPZdiILbbemooircSlVzSJx8Poi5JDOjfV9nIgjjM o2hFUuCriyCaORYudy6ejuARmnKkS2hPE6NmM7t31KDPy+6D/NuaICVa5ax9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqyhI0SCp9GlsXTMSkuMvhmVQ+3cwHwYDVR0j BBgwFoAUZ++4NGlP3zJlQdkKp2eTIpRxibMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzhkMGU2NDAtMjJlOS00NDFjLTg2MzQtZjk1MjUzMDdkYTc2LzAvNjdFRkI4MzQ2 OTRGREYzMjY1NDFEOTBBQTc2NzkzMjI5NDcxODlCMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82N0VGQjgzNDY5NEZERjMyNjU0MUQ5MEFBNzY3OTMyMjk0NzE4 OUIzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXkwDQYJ KoZIhvcNAQELBQADggEBAMK+NUfwz4uvLnqy8RE8bYTN2xwkgJUoBeSK7xjZTAaw 2y0GBz0+0GKCG7difRHmyTIeStyNIBXa51BP30c0LbR/rK4DGw1XZyQ+eIDYztig CSJdFdbPOsbd6WJd6lIB/PJ74FRtj7Re3WZlihT2432tAzCh33RjLg0ccZRG84Bv vQVSzOzJWie4ynYzYvqyKUQnR8EdxAn0dDbXIMK7MRJh443xugwpQNuDaB4bbcix 3YeZ8EDydYctRL+koSrvy8rhjMqyM36WOq43Xky/ZXrMfTMWS5Kh3LhBFFMJsJ+R 8BPoPIo43RhpAE5XvQFU7RUyebhYROVguxhg1PhkPuk= -----END CERTIFICATE-----Generated at Wed May 13 12:51:04 2026 by rpki-client