$ rpki-client -vvf rpki-rsync.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa File: 3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa (raw, json) Hash identifier: UROVvNQkBLkgNHOadPoNQ+qS5gW9uF+lG16ZZ4rQo7Y= Subject key identifier: 4C:37:F9:FF:27:78:25:3B:8D:4E:35:25:4C:99:DD:53:7E:B3:6E:BA Certificate issuer: /CN=A1E11F793F01828AF09B99BCD923D78E53C244F8 Certificate serial: 39789D8A6C526C9153D68A0F24E4D06F632D8210 Authority key identifier: A1:E1:1F:79:3F:01:82:8A:F0:9B:99:BC:D9:23:D7:8E:53:C2:44:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A1E11F793F01828AF09B99BCD923D78E53C244F8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa Signing time: Sun 03 May 2026 03:07:42 +0000 ROA not before: Sun 03 May 2026 03:02:42 +0000 ROA not after: Sun 02 May 2027 03:07:42 +0000 asID: 142387 IP address blocks: 103.172.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/A1E11F793F01828AF09B99BCD923D78E53C244F8.crl rsync://rpki-rsync.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/A1E11F793F01828AF09B99BCD923D78E53C244F8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A1E11F793F01828AF09B99BCD923D78E53C244F8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:78:9d:8a:6c:52:6c:91:53:d6:8a:0f:24:e4:d0:6f:63:2d:82:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1E11F793F01828AF09B99BCD923D78E53C244F8 Validity Not Before: May 3 03:02:42 2026 GMT Not After : May 2 03:07:42 2027 GMT Subject: CN=4C37F9FF2778253B8D4E35254C99DD537EB36EBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4d:e6:33:10:b9:32:47:02:36:76:1a:bc:cc: 2e:db:4d:96:a0:84:48:f0:3a:43:29:9b:55:7d:fa: 89:cd:43:78:2a:6a:ef:2f:06:34:f6:26:72:f5:62: 48:36:26:2e:7e:6e:09:cf:06:ba:7e:eb:5d:85:54: 61:b6:19:1f:08:6e:6c:fd:d2:1a:dd:58:cf:4c:02: e4:58:8a:f9:e6:82:88:5b:35:2f:55:a7:19:64:e5: 67:74:e1:2e:a7:af:b5:e8:32:f6:85:60:08:fa:29: b5:ff:e0:1d:46:49:74:85:6e:be:a8:b6:11:fa:0a: 99:f7:c5:88:50:3b:35:83:cb:20:9b:e8:9a:7a:81: 88:e4:58:52:fb:7f:71:3a:7c:d9:86:54:8c:3f:28: fd:a9:d5:18:64:95:f1:5f:de:19:d1:f5:63:8c:57: 92:da:58:3b:64:aa:db:16:5a:54:22:16:e9:2c:d0: a5:4d:1f:57:b3:a7:79:44:71:60:ab:33:12:07:21: 1f:e4:b4:3a:99:4e:04:37:3d:8a:53:01:18:ec:f6: 63:d3:bf:76:45:69:89:f3:db:5c:84:40:8c:d7:58: 08:51:59:f2:37:d7:da:93:d7:da:34:09:fa:e8:53: 12:69:cd:82:0d:01:ef:2d:e4:3f:97:4e:90:c5:33: 98:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:37:F9:FF:27:78:25:3B:8D:4E:35:25:4C:99:DD:53:7E:B3:6E:BA X509v3 Authority Key Identifier: keyid:A1:E1:1F:79:3F:01:82:8A:F0:9B:99:BC:D9:23:D7:8E:53:C2:44:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/A1E11F793F01828AF09B99BCD923D78E53C244F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A1E11F793F01828AF09B99BCD923D78E53C244F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.25.0/24 Signature Algorithm: sha256WithRSAEncryption 99:31:3e:3a:e2:35:0d:de:75:25:2e:b1:3d:21:d9:a5:ec:4e: 4e:30:bc:6f:77:a0:03:79:4e:45:e1:e2:98:69:79:98:b6:a6: 58:4d:10:23:b8:d0:c7:a7:fa:15:3d:35:6e:fd:09:7d:fd:ee: 4a:e8:06:95:d0:e8:0a:03:43:22:23:56:35:d7:3f:ff:12:b4: 71:fc:fc:e1:67:b8:77:7c:09:a1:2d:7d:ad:9a:f9:39:ce:e0: dd:3f:4e:62:ad:c8:ce:8a:f7:4a:b9:e3:21:88:6c:24:4d:86: 7e:ac:bc:50:71:5a:e2:f1:d2:1d:9f:97:bd:db:98:af:77:c3: b9:89:1b:52:b2:5d:f4:ab:79:52:91:dc:7b:74:f2:9e:e8:89: f5:ea:b7:90:ad:58:ee:12:42:4a:93:42:02:79:b8:27:e6:fa: de:4e:28:01:64:85:85:58:18:46:25:c9:93:cf:ac:e9:2a:56: 93:a1:6a:cf:80:5f:e7:3f:b4:e1:fd:ed:2f:44:bb:e3:3e:46: e9:37:64:dd:6b:0d:86:01:63:0f:2d:b1:c8:ee:eb:06:be:66: ca:d5:0f:e4:7c:66:bd:f6:8d:07:8f:07:9b:ab:64:9f:cf:ad: c9:9a:60:30:eb:50:1d:e9:f5:c6:61:6d:92:43:99:87:f7:73: 41:ca:55:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOXidimxSbJFT1ooPJOTQb2MtghAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFMTFGNzkzRjAxODI4QUYwOUI5OUJDRDkyM0Q3OEU1 M0MyNDRGODAeFw0yNjA1MDMwMzAyNDJaFw0yNzA1MDIwMzA3NDJaMDMxMTAvBgNV BAMTKDRDMzdGOUZGMjc3ODI1M0I4RDRFMzUyNTRDOTlERDUzN0VCMzZFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUTeYzELkyRwI2dhq8zC7bTZag hEjwOkMpm1V9+onNQ3gqau8vBjT2JnL1Ykg2Ji5+bgnPBrp+612FVGG2GR8Ibmz9 0hrdWM9MAuRYivnmgohbNS9Vpxlk5Wd04S6nr7XoMvaFYAj6KbX/4B1GSXSFbr6o thH6Cpn3xYhQOzWDyyCb6Jp6gYjkWFL7f3E6fNmGVIw/KP2p1RhklfFf3hnR9WOM V5LaWDtkqtsWWlQiFuks0KVNH1ezp3lEcWCrMxIHIR/ktDqZTgQ3PYpTARjs9mPT v3ZFaYnz21yEQIzXWAhRWfI319qT19o0CfroUxJpzYINAe8t5D+XTpDFM5gXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTDf5/yd4JTuNTjUlTJndU36zbrowHwYDVR0j BBgwFoAUoeEfeT8Bgorwm5m82SPXjlPCRPgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2YwYmExZTctZDE0Mi00N2NkLThkOGYtMmEzNzJiOTIyMjIzLzAvQTFFMTFGNzkz RjAxODI4QUYwOUI5OUJDRDkyM0Q3OEU1M0MyNDRGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMUUxMUY3OTNGMDE4MjhBRjA5Qjk5QkNEOTIzRDc4RTUzQzI0 NEY4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NmMGJhMWU3LWQxNDItNDdjZC04 ZDhmLTJhMzcyYjkyMjIyMy8wLzMxMzAzMzJlMzEzNzMyMmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6wZMA0GCSqG SIb3DQEBCwUAA4IBAQCZMT464jUN3nUlLrE9Idml7E5OMLxvd6ADeU5F4eKYaXmY tqZYTRAjuNDHp/oVPTVu/Ql9/e5K6AaV0OgKA0MiI1Y11z//ErRx/PzhZ7h3fAmh LX2tmvk5zuDdP05ircjOivdKueMhiGwkTYZ+rLxQcVri8dIdn5e925ivd8O5iRtS sl30q3lSkdx7dPKe6In16reQrVjuEkJKk0ICebgn5vreTigBZIWFWBhGJcmTz6zp KlaToWrPgF/nP7Th/e0vRLvjPkbpN2Tdaw2GAWMPLbHI7usGvmbK1Q/kfGa99o0H jwebq2Sfz63JmmAw61Ad6fXGYW2SQ5mH93NBylUb -----END CERTIFICATE-----Generated at Wed May 13 05:14:40 2026 by rpki-client