$ rpki-client -vvf rpki-rsync.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/3130332e3130312e35322e302f32342d3234203d3e20313336383433.roa File: 3130332e3130312e35322e302f32342d3234203d3e20313336383433.roa (raw, json) Hash identifier: nZbaKSWu9s5rV55piHeXvkmOotMmTZ35vGIFuNTZyR0= Subject key identifier: 55:19:35:28:D0:6F:FB:9E:4B:2D:16:7D:5F:2B:C8:79:FD:1F:9E:1E Certificate issuer: /CN=1D643B1C6E629DF042A8F3A55F9B999045E5B20E Certificate serial: 657ECEF8083885A4CF830DFEC6789FC772EF759E Authority key identifier: 1D:64:3B:1C:6E:62:9D:F0:42:A8:F3:A5:5F:9B:99:90:45:E5:B2:0E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D643B1C6E629DF042A8F3A55F9B999045E5B20E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/3130332e3130312e35322e302f32342d3234203d3e20313336383433.roa Signing time: Sun 03 May 2026 03:06:40 +0000 ROA not before: Sun 03 May 2026 03:01:40 +0000 ROA not after: Sun 02 May 2027 03:06:40 +0000 asID: 136843 IP address blocks: 103.101.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/1D643B1C6E629DF042A8F3A55F9B999045E5B20E.crl rsync://rpki-rsync.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/1D643B1C6E629DF042A8F3A55F9B999045E5B20E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D643B1C6E629DF042A8F3A55F9B999045E5B20E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:7e:ce:f8:08:38:85:a4:cf:83:0d:fe:c6:78:9f:c7:72:ef:75:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D643B1C6E629DF042A8F3A55F9B999045E5B20E Validity Not Before: May 3 03:01:40 2026 GMT Not After : May 2 03:06:40 2027 GMT Subject: CN=55193528D06FFB9E4B2D167D5F2BC879FD1F9E1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:62:71:02:a6:a9:b9:6a:31:a4:e9:8b:95:6a: 1c:66:9d:b1:bd:d7:79:5b:33:5e:8f:63:73:1b:16: b2:2e:b1:a2:ec:a0:e8:ac:ec:70:fe:f7:34:32:ea: 02:fa:2e:df:fc:6f:e1:91:fe:85:5a:c4:2c:d8:ef: 4a:ca:dd:87:f4:06:1b:b3:40:3a:d5:e2:a7:0a:ee: 42:b9:2b:d1:b8:1f:cf:99:3a:3d:fe:15:a7:fd:84: 3c:2f:87:b0:a2:89:db:b6:88:32:d7:ab:ca:d9:7f: db:dc:ca:0d:a4:62:05:80:02:01:58:56:b6:8a:cc: 64:d0:43:20:bc:9d:b8:95:11:14:84:08:80:ea:c4: 4c:ae:cb:14:0c:65:f6:b0:c8:1f:03:bf:fc:30:8a: 07:86:0d:5d:26:38:4d:7e:41:b9:df:e6:ce:bf:c1: d7:75:27:ce:93:e0:f2:1d:31:27:8d:9f:e2:cd:17: 70:df:fd:8d:67:4c:b2:5a:5f:17:2c:e2:85:31:20: ed:60:c6:73:b4:30:c7:95:70:0a:3e:c2:6f:3d:b2: 1b:49:ee:50:43:d8:e3:e0:5b:e4:28:cd:c3:00:39: a4:5c:2c:ae:8d:cf:a1:cc:7d:d1:43:d2:13:d6:59: 6d:a6:7d:06:d9:8b:c0:42:fd:9b:97:85:eb:53:97: 1a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:19:35:28:D0:6F:FB:9E:4B:2D:16:7D:5F:2B:C8:79:FD:1F:9E:1E X509v3 Authority Key Identifier: keyid:1D:64:3B:1C:6E:62:9D:F0:42:A8:F3:A5:5F:9B:99:90:45:E5:B2:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/1D643B1C6E629DF042A8F3A55F9B999045E5B20E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D643B1C6E629DF042A8F3A55F9B999045E5B20E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/3130332e3130312e35322e302f32342d3234203d3e20313336383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.52.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:0f:c9:4f:d0:0a:3e:f3:de:92:a1:e4:ba:5f:62:7f:9b:cc: 04:f7:db:00:8f:73:4e:96:09:50:c8:99:c0:5d:41:5a:90:79: 00:4e:e5:d8:80:99:3c:6d:df:3e:b7:63:43:54:41:29:fd:81: 77:e2:45:13:ef:74:50:e8:d3:16:b5:aa:d1:09:19:cd:62:20: b8:55:47:02:b2:18:48:25:a6:e5:c6:ce:4b:47:0c:c8:62:d4: 59:1f:62:d8:4c:d5:79:53:8c:12:35:2c:f5:d3:9c:a7:0c:a2: 19:2e:fc:97:98:8b:d0:2b:82:1b:e6:49:5f:b0:e8:d2:85:fd: 98:e3:95:95:16:41:5f:a0:be:d4:1c:65:35:6b:92:95:10:02: 1a:fb:9e:4d:1b:06:ed:a8:2e:82:9d:11:58:b0:27:ed:e1:18: f7:0a:19:8c:5c:e7:e3:b6:5f:5f:50:88:af:10:c2:2a:c8:08: 52:e7:d0:c3:6e:c9:ab:a1:18:11:a8:62:b8:22:81:fb:de:2d: 92:31:cb:ca:7d:95:11:b2:4a:c3:12:1a:a8:10:63:80:bd:66: c6:e2:05:95:6e:e8:03:4a:d9:f6:33:23:7f:fd:99:a7:62:c6: cf:da:cc:43:7a:24:b7:39:a4:29:57:12:40:f0:15:78:dd:ab: 2b:19:51:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZX7O+Ag4haTPgw3+xnifx3LvdZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ2NDNCMUM2RTYyOURGMDQyQThGM0E1NUY5Qjk5OTA0 NUU1QjIwRTAeFw0yNjA1MDMwMzAxNDBaFw0yNzA1MDIwMzA2NDBaMDMxMTAvBgNV BAMTKDU1MTkzNTI4RDA2RkZCOUU0QjJEMTY3RDVGMkJDODc5RkQxRjlFMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaYnECpqm5ajGk6YuVahxmnbG9 13lbM16PY3MbFrIusaLsoOis7HD+9zQy6gL6Lt/8b+GR/oVaxCzY70rK3Yf0Bhuz QDrV4qcK7kK5K9G4H8+ZOj3+Faf9hDwvh7Ciidu2iDLXq8rZf9vcyg2kYgWAAgFY VraKzGTQQyC8nbiVERSECIDqxEyuyxQMZfawyB8Dv/wwigeGDV0mOE1+Qbnf5s6/ wdd1J86T4PIdMSeNn+LNF3Df/Y1nTLJaXxcs4oUxIO1gxnO0MMeVcAo+wm89shtJ 7lBD2OPgW+QozcMAOaRcLK6Nz6HMfdFD0hPWWW2mfQbZi8BC/ZuXhetTlxqxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVRk1KNBv+55LLRZ9XyvIef0fnh4wHwYDVR0j BBgwFoAUHWQ7HG5infBCqPOlX5uZkEXlsg4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2EwYjRmMTUtNzcyMC00ZjJhLTgzNDMtOGUzN2ZhZTg3YTU0LzAvMUQ2NDNCMUM2 RTYyOURGMDQyQThGM0E1NUY5Qjk5OTA0NUU1QjIwRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRDY0M0IxQzZFNjI5REYwNDJBOEYzQTU1RjlCOTk5MDQ1RTVC MjBFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NhMGI0ZjE1LTc3MjAtNGYyYS04 MzQzLThlMzdmYWU4N2E1NC8wLzMxMzAzMzJlMzEzMDMxMmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2U0MA0GCSqG SIb3DQEBCwUAA4IBAQAMD8lP0Ao+896SoeS6X2J/m8wE99sAj3NOlglQyJnAXUFa kHkATuXYgJk8bd8+t2NDVEEp/YF34kUT73RQ6NMWtarRCRnNYiC4VUcCshhIJabl xs5LRwzIYtRZH2LYTNV5U4wSNSz105ynDKIZLvyXmIvQK4Ib5klfsOjShf2Y45WV FkFfoL7UHGU1a5KVEAIa+55NGwbtqC6CnRFYsCft4Rj3ChmMXOfjtl9fUIivEMIq yAhS59DDbsmroRgRqGK4IoH73i2SMcvKfZURskrDEhqoEGOAvWbG4gWVbugDStn2 MyN//ZmnYsbP2sxDeiS3OaQpVxJA8BV43asrGVFw -----END CERTIFICATE-----Generated at Wed May 13 05:28:36 2026 by rpki-client