$ rpki-client -vvf rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa File: 3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa (raw, json) Hash identifier: 6Np+q+5XOW4vxlMbVGZKdZf5J6Gwh/BuKQFsPk2H03I= Subject key identifier: 08:07:46:05:E3:6F:45:3E:79:65:05:BB:23:58:D4:36:B8:DC:55:3A Certificate issuer: /CN=91196A98FE2E2236BB65CE28DCB5923E551C9CA5 Certificate serial: 19791A0F728CBACA50922D1CD34B967B4D8A1403 Authority key identifier: 91:19:6A:98:FE:2E:22:36:BB:65:CE:28:DC:B5:92:3E:55:1C:9C:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa Signing time: Sun 03 May 2026 03:09:46 +0000 ROA not before: Sun 03 May 2026 03:04:46 +0000 ROA not after: Sun 02 May 2027 03:09:46 +0000 asID: 38758 IP address blocks: 103.131.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.crl rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:79:1a:0f:72:8c:ba:ca:50:92:2d:1c:d3:4b:96:7b:4d:8a:14:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91196A98FE2E2236BB65CE28DCB5923E551C9CA5 Validity Not Before: May 3 03:04:46 2026 GMT Not After : May 2 03:09:46 2027 GMT Subject: CN=08074605E36F453E796505BB2358D436B8DC553A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:25:62:0b:97:ca:88:61:99:c2:11:69:f7:74: 94:2e:8d:75:c1:f4:80:99:af:47:e7:a6:68:50:a8: 5d:00:53:7c:cd:db:64:8c:21:3f:35:fe:75:34:8c: 30:f3:e0:31:25:95:6e:95:49:42:10:2c:cf:ee:ea: dd:15:1a:0a:e2:88:b8:e8:7e:9a:e9:dc:e4:bd:86: 78:ce:cb:8d:18:b1:da:46:4c:01:4e:3b:ef:89:99: e0:1b:ce:0a:67:5c:02:3f:01:12:8f:ed:62:0c:11: 55:7b:2d:14:ca:08:6a:73:2f:eb:c9:72:e3:9d:f4: d9:54:22:0b:19:52:59:66:b7:fe:33:59:25:1d:c5: 2e:6f:d6:3d:9d:c5:06:32:a6:2f:b9:47:90:e2:5e: 43:71:8b:42:7b:33:58:f8:b2:19:a1:35:1f:9b:47: 0c:c6:cf:d0:26:4b:1a:d2:19:c1:da:22:33:1a:13: 09:21:99:c2:09:b6:7b:f8:95:81:1c:54:40:64:72: 50:ed:ab:eb:d7:1d:ce:e1:bd:a3:32:88:1c:dc:68: 15:f2:89:54:e8:24:53:5b:4a:12:66:37:a7:b7:76: 1c:52:7c:c7:c6:4d:b8:6a:f8:8b:da:e8:1f:8a:20: 8d:a0:13:0b:aa:d8:22:40:9e:f0:5a:aa:6e:07:7e: ee:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:07:46:05:E3:6F:45:3E:79:65:05:BB:23:58:D4:36:B8:DC:55:3A X509v3 Authority Key Identifier: keyid:91:19:6A:98:FE:2E:22:36:BB:65:CE:28:DC:B5:92:3E:55:1C:9C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.219.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:02:10:4c:b2:55:2f:2b:53:36:04:e6:dd:74:f7:4a:a6:77: dd:f3:a7:1c:6d:af:eb:f7:16:f0:ea:6d:d1:e2:f8:ba:3b:d5: 60:cc:fa:21:07:80:39:ee:1a:7f:2a:a6:9b:de:84:ee:93:30: 11:e5:35:bb:9b:05:5e:8e:eb:f3:51:bf:d8:f2:09:1d:77:46: 42:d2:4b:f8:be:0e:f3:19:ef:9c:a8:58:47:12:32:4d:69:13: 27:d7:68:c8:c0:1b:24:de:a6:f6:f9:48:f9:a9:6e:0c:ed:73: 63:49:26:6b:12:82:e2:fd:db:bb:cf:ba:b8:7e:22:e6:6a:38: 02:56:06:d2:ae:fb:29:58:ae:f9:44:fd:9f:fb:84:49:ef:61: 27:b6:a7:df:1c:1f:3c:fe:c3:64:a5:e4:ee:a3:f3:57:2f:49: 20:d6:77:ca:03:3d:e2:b1:80:90:db:94:f5:4d:0e:ef:f9:b5: e0:ce:6f:a0:f5:fb:c4:1b:0f:93:7a:c7:4f:0c:ae:5b:ed:ba: bb:99:ec:46:67:c7:4c:48:3f:71:35:86:f1:37:d8:ba:7f:31: 7a:4a:93:5d:46:76:7e:cd:95:84:6d:e7:61:77:50:1d:69:3e: 90:bf:49:a4:44:2e:02:9b:4a:a6:b0:1a:41:79:0d:80:18:49: 73:2a:34:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGXkaD3KMuspQki0c00uWe02KFAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTExOTZBOThGRTJFMjIzNkJCNjVDRTI4RENCNTkyM0U1 NTFDOUNBNTAeFw0yNjA1MDMwMzA0NDZaFw0yNzA1MDIwMzA5NDZaMDMxMTAvBgNV BAMTKDA4MDc0NjA1RTM2RjQ1M0U3OTY1MDVCQjIzNThENDM2QjhEQzU1M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwJWILl8qIYZnCEWn3dJQujXXB 9ICZr0fnpmhQqF0AU3zN22SMIT81/nU0jDDz4DEllW6VSUIQLM/u6t0VGgriiLjo fprp3OS9hnjOy40YsdpGTAFOO++JmeAbzgpnXAI/ARKP7WIMEVV7LRTKCGpzL+vJ cuOd9NlUIgsZUllmt/4zWSUdxS5v1j2dxQYypi+5R5DiXkNxi0J7M1j4shmhNR+b RwzGz9AmSxrSGcHaIjMaEwkhmcIJtnv4lYEcVEBkclDtq+vXHc7hvaMyiBzcaBXy iVToJFNbShJmN6e3dhxSfMfGTbhq+Iva6B+KII2gEwuq2CJAnvBaqm4Hfu5xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCAdGBeNvRT55ZQW7I1jUNrjcVTowHwYDVR0j BBgwFoAUkRlqmP4uIja7Zc4o3LWSPlUcnKUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDU1M2VkYWItNGEzZC00NGU0LThkOTYtNjI1YTFjMjAzNzhkLzAvOTExOTZBOThG RTJFMjIzNkJCNjVDRTI4RENCNTkyM0U1NTFDOUNBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MTE5NkE5OEZFMkUyMjM2QkI2NUNFMjhEQ0I1OTIzRTU1MUM5 Q0E1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q1NTNlZGFiLTRhM2QtNDRlNC04 ZDk2LTYyNWExYzIwMzc4ZC8wLzMxMzAzMzJlMzEzMzMxMmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4PbMA0GCSqG SIb3DQEBCwUAA4IBAQBKAhBMslUvK1M2BObddPdKpnfd86ccba/r9xbw6m3R4vi6 O9VgzPohB4A57hp/Kqab3oTukzAR5TW7mwVejuvzUb/Y8gkdd0ZC0kv4vg7zGe+c qFhHEjJNaRMn12jIwBsk3qb2+Uj5qW4M7XNjSSZrEoLi/du7z7q4fiLmajgCVgbS rvspWK75RP2f+4RJ72EntqffHB88/sNkpeTuo/NXL0kg1nfKAz3isYCQ25T1TQ7v +bXgzm+g9fvEGw+TesdPDK5b7bq7mexGZ8dMSD9xNYbxN9i6fzF6SpNdRnZ+zZWE bedhd1AdaT6Qv0mkRC4Cm0qmsBpBeQ2AGElzKjQ8 -----END CERTIFICATE-----Generated at Wed May 13 05:14:58 2026 by rpki-client