$ rpki-client -vvf rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/3130332e3235332e3132372e302f32342d3234203d3e20313530393839.roa File: 3130332e3235332e3132372e302f32342d3234203d3e20313530393839.roa (raw, json) Hash identifier: dZhfKdQv3o4ubnF31yoaIvJtkGW4D/+D/cLAtWAUEM0= Subject key identifier: 8C:35:49:61:4F:D4:5E:60:30:A1:48:A1:EC:D0:AB:5D:60:B4:67:B2 Certificate issuer: /CN=2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE Certificate serial: 78A4979136E8AA5496B90B9028C19C76F978854F Authority key identifier: 2A:A2:C2:03:9F:F7:2E:89:6E:CE:6F:0E:3E:AD:38:A0:28:1A:75:AE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/3130332e3235332e3132372e302f32342d3234203d3e20313530393839.roa Signing time: Sun 03 May 2026 03:09:27 +0000 ROA not before: Sun 03 May 2026 03:04:27 +0000 ROA not after: Sun 02 May 2027 03:09:27 +0000 asID: 150989 IP address blocks: 103.253.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.crl rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:a4:97:91:36:e8:aa:54:96:b9:0b:90:28:c1:9c:76:f9:78:85:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE Validity Not Before: May 3 03:04:27 2026 GMT Not After : May 2 03:09:27 2027 GMT Subject: CN=8C3549614FD45E6030A148A1ECD0AB5D60B467B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0c:52:6d:b2:01:d2:56:3d:83:a7:59:93:2c: 42:9d:10:b6:f3:b6:77:d2:a0:34:93:86:84:2a:c1: d9:38:43:4d:85:99:21:e5:6a:c1:b7:71:36:62:d7: 60:44:3b:24:ce:19:e5:ac:1c:fd:0d:a4:52:8a:3e: a7:fe:5e:e9:38:56:7a:19:48:98:88:2f:59:d2:04: c2:6c:bc:89:10:f9:29:f1:45:31:e3:f1:18:4a:af: fb:e0:e7:cd:8e:9a:aa:91:f6:b8:c0:4d:51:91:cc: 46:7a:62:b7:45:a8:dd:a2:ca:50:42:6b:b6:44:06: 5b:87:79:6f:8e:ab:33:15:4e:52:1a:67:0d:c6:ee: ce:c7:94:98:ce:8c:d4:83:ff:a1:22:22:06:c7:be: b8:70:57:b0:21:cd:7f:2b:0f:b0:c7:22:04:80:30: ed:d8:df:50:b7:cb:4a:15:09:bd:01:96:38:f8:4e: b4:49:e6:7b:6d:74:63:c1:b9:ad:01:4d:fc:41:60: 28:d9:31:87:14:89:a3:84:b4:21:57:bd:fb:93:83: e1:77:5f:1c:92:97:7f:b1:5d:c6:5e:a6:76:54:8e: aa:81:f1:5c:f9:e9:be:03:8d:44:8d:b5:19:f5:c5: 33:cb:2f:bc:5e:13:4f:7b:b1:6c:2c:2f:be:dd:26: cc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:35:49:61:4F:D4:5E:60:30:A1:48:A1:EC:D0:AB:5D:60:B4:67:B2 X509v3 Authority Key Identifier: keyid:2A:A2:C2:03:9F:F7:2E:89:6E:CE:6F:0E:3E:AD:38:A0:28:1A:75:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/3130332e3235332e3132372e302f32342d3234203d3e20313530393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.127.0/24 Signature Algorithm: sha256WithRSAEncryption 84:82:c7:e5:81:64:59:e7:4f:cf:3f:57:3c:20:3d:70:24:ea: e2:f2:d0:4e:68:83:41:de:53:28:ae:8b:31:46:c5:27:4a:af: c0:62:b9:7f:57:f2:85:be:70:d3:9b:f9:09:f7:30:2e:d0:8e: 5a:d9:b0:4f:d3:b1:6b:de:43:c3:8e:99:15:a0:c9:de:c8:2f: 3b:08:5e:b7:1a:f3:1b:f2:f1:8f:47:79:df:c2:f6:21:ec:d2: 7b:93:6e:ef:73:68:12:cc:68:4b:33:1e:ad:c6:99:75:f6:cd: f3:09:e1:50:66:09:19:48:03:3f:dc:ec:dd:f4:ef:14:d6:52: 47:91:2c:0f:d4:98:1e:4a:e1:64:77:cb:98:c0:a7:f2:95:2f: e4:66:96:ac:94:c8:7a:70:c0:9e:46:90:a0:b2:e2:de:3d:93: 79:0f:c7:fe:2a:61:70:d5:1e:4c:e9:8b:8e:a2:23:9a:53:2a: 18:a7:07:68:0c:7c:f2:6c:3f:cd:95:81:70:a7:0a:8f:55:c7: f3:26:96:85:62:09:a6:bf:29:90:22:f0:9e:e3:15:8f:3a:78: 9b:42:7c:83:73:36:cb:25:18:df:e9:59:21:ab:76:5b:1b:37: ed:33:39:81:a8:5f:c9:e9:6a:6d:1b:54:cf:1b:ad:5e:6f:25: 44:59:73:a1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeKSXkTboqlSWuQuQKMGcdvl4hU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBMkMyMDM5RkY3MkU4OTZFQ0U2RjBFM0VBRDM4QTAy ODFBNzVBRTAeFw0yNjA1MDMwMzA0MjdaFw0yNzA1MDIwMzA5MjdaMDMxMTAvBgNV BAMTKDhDMzU0OTYxNEZENDVFNjAzMEExNDhBMUVDRDBBQjVENjBCNDY3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVDFJtsgHSVj2Dp1mTLEKdELbz tnfSoDSThoQqwdk4Q02FmSHlasG3cTZi12BEOyTOGeWsHP0NpFKKPqf+Xuk4VnoZ SJiIL1nSBMJsvIkQ+SnxRTHj8RhKr/vg582OmqqR9rjATVGRzEZ6YrdFqN2iylBC a7ZEBluHeW+OqzMVTlIaZw3G7s7HlJjOjNSD/6EiIgbHvrhwV7AhzX8rD7DHIgSA MO3Y31C3y0oVCb0Bljj4TrRJ5nttdGPBua0BTfxBYCjZMYcUiaOEtCFXvfuTg+F3 XxySl3+xXcZepnZUjqqB8Vz56b4DjUSNtRn1xTPLL7xeE097sWwsL77dJsxXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjDVJYU/UXmAwoUih7NCrXWC0Z7IwHwYDVR0j BBgwFoAUKqLCA5/3Loluzm8OPq04oCgada4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDNlMjdkYTktZTZlNi00NGE1LTk4ZjQtNTkwZWI1YTFiZDY1LzAvMkFBMkMyMDM5 RkY3MkU4OTZFQ0U2RjBFM0VBRDM4QTAyODFBNzVBRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQUEyQzIwMzlGRjcyRTg5NkVDRTZGMEUzRUFEMzhBMDI4MUE3 NUFFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzZTI3ZGE5LWU2ZTYtNDRhNS05 OGY0LTU5MGViNWExYmQ2NS8wLzMxMzAzMzJlMzIzNTMzMmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/X8wDQYJ KoZIhvcNAQELBQADggEBAISCx+WBZFnnT88/VzwgPXAk6uLy0E5og0HeUyiuizFG xSdKr8BiuX9X8oW+cNOb+Qn3MC7QjlrZsE/TsWveQ8OOmRWgyd7ILzsIXrca8xvy 8Y9Hed/C9iHs0nuTbu9zaBLMaEszHq3GmXX2zfMJ4VBmCRlIAz/c7N307xTWUkeR LA/UmB5K4WR3y5jAp/KVL+RmlqyUyHpwwJ5GkKCy4t49k3kPx/4qYXDVHkzpi46i I5pTKhinB2gMfPJsP82VgXCnCo9Vx/MmloViCaa/KZAi8J7jFY86eJtCfINzNssl GN/pWSGrdlsbN+0zOYGoX8npam0bVM8brV5vJURZc6E= -----END CERTIFICATE-----Generated at Wed May 13 03:47:55 2026 by rpki-client