$ rpki-client -vvf rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa File: 3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa (raw, json) Hash identifier: a3+GsbTZLmVRS7NxLcoTxVxS7Q4Y+JKlGjV758bCCgw= Subject key identifier: 6B:89:AB:99:72:D3:B4:6F:24:A6:56:3D:62:BE:B7:E2:67:7E:48:F8 Certificate issuer: /CN=36987F1D265142449AF11F138E84E3AE2398BB71 Certificate serial: 3E90C6DCEC19BF05CA753094336730509EA59724 Authority key identifier: 36:98:7F:1D:26:51:42:44:9A:F1:1F:13:8E:84:E3:AE:23:98:BB:71 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa Signing time: Sun 03 May 2026 03:09:15 +0000 ROA not before: Sun 03 May 2026 03:04:15 +0000 ROA not after: Sun 02 May 2027 03:09:15 +0000 asID: 137338 IP address blocks: 103.112.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.crl rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:90:c6:dc:ec:19:bf:05:ca:75:30:94:33:67:30:50:9e:a5:97:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36987F1D265142449AF11F138E84E3AE2398BB71 Validity Not Before: May 3 03:04:15 2026 GMT Not After : May 2 03:09:15 2027 GMT Subject: CN=6B89AB9972D3B46F24A6563D62BEB7E2677E48F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d5:e6:c8:1c:57:15:2e:a5:92:e3:8e:bf:45: 7c:ce:d0:c4:6e:bf:16:28:97:f3:04:f3:0e:01:c1: 52:d9:b2:76:50:9e:ae:19:1a:f6:88:b1:1f:1d:4b: fa:a1:34:20:46:72:f2:ad:62:28:a2:2c:d6:19:9c: 04:6a:1a:39:13:ed:9a:6f:d1:5a:a3:09:96:a6:6c: 84:00:dc:8d:eb:38:7a:d6:18:33:28:e8:b4:b0:6f: 8c:d5:ef:60:2b:b7:79:5b:18:de:c5:a3:7a:4f:12: c5:e2:0a:fc:ec:24:96:7f:b2:83:e3:04:5f:1d:ba: dc:dd:85:92:b9:b9:6f:53:dc:94:de:83:cd:f2:dd: 0b:1d:7c:fd:83:0d:b1:7b:ab:b6:b3:89:f4:85:15: aa:dd:4a:8d:1a:4b:d4:04:3e:78:d6:5d:47:ca:19: 42:ca:75:c7:fb:f5:38:54:8f:3f:d5:18:79:38:bc: f6:c2:48:2b:d1:82:fd:77:74:a5:87:31:37:e7:1f: 4a:a7:00:2b:03:b0:ca:e0:3c:4d:57:68:c3:b8:47: bd:a2:81:b1:bf:94:c0:0d:b7:ab:1a:58:39:ee:35: ea:f8:73:9a:6c:22:82:83:4d:e9:0c:fa:f9:d5:5d: c1:5d:63:83:37:4b:38:de:d9:8b:b3:49:e0:58:e9: a3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:89:AB:99:72:D3:B4:6F:24:A6:56:3D:62:BE:B7:E2:67:7E:48:F8 X509v3 Authority Key Identifier: keyid:36:98:7F:1D:26:51:42:44:9A:F1:1F:13:8E:84:E3:AE:23:98:BB:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.223.0/24 Signature Algorithm: sha256WithRSAEncryption 02:af:2e:d0:f0:6d:5f:c2:13:ce:a3:a1:da:8d:64:fd:d6:46: 12:80:6f:cd:89:65:59:cd:aa:c6:48:4d:ca:04:af:78:75:61: 5f:3c:51:94:c6:df:1f:e7:26:c8:4d:ef:7b:03:73:ff:de:7b: ac:83:b4:95:65:66:e9:4a:3a:a7:0d:bf:87:38:39:4b:16:09: 52:b1:e4:cd:ad:02:f9:9a:2d:5c:32:d7:c5:0b:59:e7:9a:f4: bb:21:7b:02:0c:ae:d3:0a:51:e1:d6:39:98:6b:0a:77:a6:66: 79:7e:49:91:a8:6b:52:3c:93:32:1c:17:38:d8:15:ed:99:3d: 2d:81:f2:0d:d5:cd:eb:ff:33:6d:a7:32:21:66:e2:55:d1:7f: a9:dc:52:69:3e:5e:18:10:2b:90:36:2b:73:c6:f1:86:23:1d: 93:77:2c:ca:d9:a1:be:28:a9:0c:15:a9:81:bc:d5:d3:51:fc: d9:89:c5:8b:08:be:56:4b:2a:7a:28:05:36:bb:04:52:27:99: 6a:ce:ef:58:c0:ef:ae:40:b5:dc:71:fb:67:ad:dd:a3:57:d1: 3f:2f:6b:d8:89:2b:1f:5e:e7:2b:34:b6:a1:ad:f5:08:24:82: 23:d4:ae:83:55:1b:b3:6b:4d:d7:c4:f5:3a:41:71:58:de:a1: 6e:c7:8f:31 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPpDG3OwZvwXKdTCUM2cwUJ6llyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY5ODdGMUQyNjUxNDI0NDlBRjExRjEzOEU4NEUzQUUy Mzk4QkI3MTAeFw0yNjA1MDMwMzA0MTVaFw0yNzA1MDIwMzA5MTVaMDMxMTAvBgNV BAMTKDZCODlBQjk5NzJEM0I0NkYyNEE2NTYzRDYyQkVCN0UyNjc3RTQ4RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+1ebIHFcVLqWS446/RXzO0MRu vxYol/ME8w4BwVLZsnZQnq4ZGvaIsR8dS/qhNCBGcvKtYiiiLNYZnARqGjkT7Zpv 0VqjCZambIQA3I3rOHrWGDMo6LSwb4zV72Art3lbGN7Fo3pPEsXiCvzsJJZ/soPj BF8dutzdhZK5uW9T3JTeg83y3QsdfP2DDbF7q7azifSFFardSo0aS9QEPnjWXUfK GULKdcf79ThUjz/VGHk4vPbCSCvRgv13dKWHMTfnH0qnACsDsMrgPE1XaMO4R72i gbG/lMANt6saWDnuNer4c5psIoKDTekM+vnVXcFdY4M3Szje2YuzSeBY6aOZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa4mrmXLTtG8kplY9Yr634md+SPgwHwYDVR0j BBgwFoAUNph/HSZRQkSa8R8TjoTjriOYu3EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDJkNmQwZGYtYzIxZS00OTFjLWIxMTYtNGExZDlhMmM3NGJlLzAvMzY5ODdGMUQy NjUxNDI0NDlBRjExRjEzOEU4NEUzQUUyMzk4QkI3MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNjk4N0YxRDI2NTE0MjQ0OUFGMTFGMTM4RTg0RTNBRTIzOThC QjcxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QyZDZkMGRmLWMyMWUtNDkxYy1i MTE2LTRhMWQ5YTJjNzRiZS8wLzMxMzAzMzJlMzEzMTMyMmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncN8wDQYJ KoZIhvcNAQELBQADggEBAAKvLtDwbV/CE86jodqNZP3WRhKAb82JZVnNqsZITcoE r3h1YV88UZTG3x/nJshN73sDc//ee6yDtJVlZulKOqcNv4c4OUsWCVKx5M2tAvma LVwy18ULWeea9LshewIMrtMKUeHWOZhrCnemZnl+SZGoa1I8kzIcFzjYFe2ZPS2B 8g3Vzev/M22nMiFm4lXRf6ncUmk+XhgQK5A2K3PG8YYjHZN3LMrZob4oqQwVqYG8 1dNR/NmJxYsIvlZLKnooBTa7BFInmWrO71jA765Atdxx+2et3aNX0T8va9iJKx9e 5ys0tqGt9QgkgiPUroNVG7NrTdfE9TpBcVjeoW7HjzE= -----END CERTIFICATE-----Generated at Wed May 13 04:36:26 2026 by rpki-client