$ rpki-client -vvf rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa File: 3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: oXW42mmGQUgoWkxhSR0n+zgivDmIH7l+dG/1UKZo3a4= Subject key identifier: 16:F5:9E:82:D5:E6:0A:90:AD:EC:A3:54:03:0F:40:39:5E:FC:53:0D Certificate issuer: /CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Certificate serial: 792C6AE24F39544BAA65EC25D76C5CE280FECCDC Authority key identifier: CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa Signing time: Sun 03 May 2026 03:08:07 +0000 ROA not before: Sun 03 May 2026 03:03:07 +0000 ROA not after: Sun 02 May 2027 03:08:07 +0000 asID: 131717 IP address blocks: 103.25.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2c:6a:e2:4f:39:54:4b:aa:65:ec:25:d7:6c:5c:e2:80:fe:cc:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Validity Not Before: May 3 03:03:07 2026 GMT Not After : May 2 03:08:07 2027 GMT Subject: CN=16F59E82D5E60A90ADECA354030F40395EFC530D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:4d:be:cb:35:a4:f4:4b:48:5a:eb:b3:81:c9: 82:8a:9c:2d:04:f1:e6:d8:bc:fd:2b:5e:e5:fa:3f: f6:d6:94:d2:21:bc:9e:85:ec:58:f2:b9:a1:79:69: 80:1f:50:9b:20:ca:ab:e6:fc:9b:83:88:30:af:32: ed:79:85:0c:cc:46:5f:57:fd:d0:a0:23:b3:3c:21: d5:a0:13:06:cc:b2:bf:3a:0d:59:5a:7f:70:16:c8: ad:18:ff:77:f7:19:8c:15:47:10:ef:e3:27:3f:07: be:7f:0e:33:c2:b3:35:dc:f6:28:f7:1e:34:c5:28: b0:c8:c3:90:36:d3:f1:c2:f6:ac:49:76:7c:11:24: 34:b1:b9:87:e2:eb:83:0a:ca:7d:c8:a7:36:f2:ec: 59:7b:f8:01:7d:8a:6f:93:1d:b0:6f:0e:cd:f8:5f: 00:07:ae:92:c9:df:e5:22:02:bb:5c:7f:7d:5e:d2: da:fb:94:84:a9:85:2c:0c:ab:d1:d5:2a:30:83:a2: f7:87:3f:2f:c2:ac:d9:4e:a7:ce:f6:e1:d7:f1:47: 4d:c6:f9:17:33:1e:45:7c:20:be:82:b8:fe:37:5f: 3f:87:60:9e:e0:02:09:40:9c:1b:b4:43:1f:99:dc: d7:2d:72:a4:90:d4:8f:70:b5:6a:73:96:5f:b9:c4: 7e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F5:9E:82:D5:E6:0A:90:AD:EC:A3:54:03:0F:40:39:5E:FC:53:0D X509v3 Authority Key Identifier: keyid:CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.166.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:f3:c7:92:c2:44:99:b7:57:ba:8d:91:bb:71:0d:9a:82:25: 0f:b6:c6:14:25:20:64:ac:cd:a4:c8:18:73:0e:5b:4e:20:2d: 18:15:bf:23:12:13:94:bf:a5:69:97:4d:3a:6f:0f:07:a6:c2: ee:cc:42:2f:50:f6:75:8f:f5:a6:0c:64:92:89:f6:bd:51:06: ab:4e:7d:e6:27:fb:87:a5:03:02:a7:21:37:ff:f5:38:2e:f4: f9:f7:fe:c6:ae:5b:2b:2a:bb:38:02:99:15:22:e2:bc:cd:4a: 97:35:4d:57:dd:2b:33:a4:07:6a:4c:d5:62:24:2b:c9:99:b4: cd:fd:65:38:e7:1d:a0:3a:c2:cf:d4:dd:a6:91:b1:cf:0f:7f: ec:cc:6b:04:c0:fd:81:ec:a6:6b:ea:23:0e:bc:e7:67:55:3e: f3:2f:14:9a:0c:b9:fb:ce:3e:ca:f2:ff:07:55:e5:cc:db:63: 78:27:ab:96:67:1b:f4:81:60:44:7e:6c:65:b6:3b:22:d9:e7: e9:23:58:2e:f1:a4:df:66:9d:ac:d9:b9:ae:cd:fb:80:4a:ae: 00:6e:2a:a5:15:43:8c:3b:b5:ab:5c:dc:19:24:82:26:f6:2f: 83:0d:bb:7a:35:67:2d:be:fe:58:c3:fe:84:22:e6:7a:72:3a: 5e:2d:ad:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeSxq4k85VEuqZewl12xc4oD+zNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0IwQTYwNkZEMDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5 QTkyOTU5RjAeFw0yNjA1MDMwMzAzMDdaFw0yNzA1MDIwMzA4MDdaMDMxMTAvBgNV BAMTKDE2RjU5RTgyRDVFNjBBOTBBREVDQTM1NDAzMEY0MDM5NUVGQzUzMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOTb7LNaT0S0ha67OByYKKnC0E 8ebYvP0rXuX6P/bWlNIhvJ6F7FjyuaF5aYAfUJsgyqvm/JuDiDCvMu15hQzMRl9X /dCgI7M8IdWgEwbMsr86DVlaf3AWyK0Y/3f3GYwVRxDv4yc/B75/DjPCszXc9ij3 HjTFKLDIw5A20/HC9qxJdnwRJDSxuYfi64MKyn3Ipzby7Fl7+AF9im+THbBvDs34 XwAHrpLJ3+UiArtcf31e0tr7lISphSwMq9HVKjCDoveHPy/CrNlOp8724dfxR03G +RczHkV8IL6CuP43Xz+HYJ7gAglAnBu0Qx+Z3NctcqSQ1I9wtWpzll+5xH4nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFvWegtXmCpCt7KNUAw9AOV78Uw0wHwYDVR0j BBgwFoAUywpgb9BkLmi1ISrnUZU+C5qSlZ8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA3NDcxYTMtZWU1My00OTljLTlmMmQtY2YxNmIxZTRhMzUzLzAvQ0IwQTYwNkZE MDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5QTkyOTU5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQjBBNjA2RkQwNjQyRTY4QjUyMTJBRTc1MTk1M0UwQjlBOTI5 NTlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzIzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxmmMA0GCSqG SIb3DQEBCwUAA4IBAQAe88eSwkSZt1e6jZG7cQ2agiUPtsYUJSBkrM2kyBhzDltO IC0YFb8jEhOUv6Vpl006bw8HpsLuzEIvUPZ1j/WmDGSSifa9UQarTn3mJ/uHpQMC pyE3//U4LvT59/7GrlsrKrs4ApkVIuK8zUqXNU1X3SszpAdqTNViJCvJmbTN/WU4 5x2gOsLP1N2mkbHPD3/szGsEwP2B7KZr6iMOvOdnVT7zLxSaDLn7zj7K8v8HVeXM 22N4J6uWZxv0gWBEfmxltjsi2efpI1gu8aTfZp2s2bmuzfuASq4AbiqlFUOMO7Wr XNwZJIIm9i+DDbt6NWctvv5Yw/6EIuZ6cjpeLa3P -----END CERTIFICATE-----Generated at Wed May 13 05:58:18 2026 by rpki-client