$ rpki-client -vvf rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234392e302f32342d3234203d3e20313339343237.roa File: 3130332e33312e3234392e302f32342d3234203d3e20313339343237.roa (raw, json) Hash identifier: rpaRQ6pLcg3h8lZWS5mZP3KVaWJuOAbOO/JXcmWKPAY= Subject key identifier: 41:6C:7F:73:7C:AA:BA:54:11:3B:33:A3:68:AD:32:F9:BB:EA:91:6E Certificate issuer: /CN=2CBD81295EA3FA3867082072D1BDE41CBFB3FB32 Certificate serial: 72E63039007F874615EBAE1CCA7D11911D99EAF4 Authority key identifier: 2C:BD:81:29:5E:A3:FA:38:67:08:20:72:D1:BD:E4:1C:BF:B3:FB:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234392e302f32342d3234203d3e20313339343237.roa Signing time: Sun 03 May 2026 03:09:50 +0000 ROA not before: Sun 03 May 2026 03:04:50 +0000 ROA not after: Sun 02 May 2027 03:09:50 +0000 asID: 139427 IP address blocks: 103.31.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.crl rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e6:30:39:00:7f:87:46:15:eb:ae:1c:ca:7d:11:91:1d:99:ea:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CBD81295EA3FA3867082072D1BDE41CBFB3FB32 Validity Not Before: May 3 03:04:50 2026 GMT Not After : May 2 03:09:50 2027 GMT Subject: CN=416C7F737CAABA54113B33A368AD32F9BBEA916E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:72:92:21:fa:1b:08:ac:e3:a1:94:a8:d7:f5: 19:5a:f3:94:eb:57:b4:71:2e:c9:41:29:5e:8e:4c: bb:5d:9e:48:5c:3c:7b:0e:06:0d:24:be:21:8b:9d: 1a:dd:e5:48:1e:4d:a5:16:eb:f4:89:89:fc:54:25: 6e:94:91:75:f3:38:d8:b0:d5:81:ed:37:1d:05:1b: 6e:bb:02:f1:75:bc:77:6a:97:08:0a:74:54:a9:cc: 80:0d:6f:8f:b6:f8:6a:42:38:b5:1f:84:46:c4:a7: cf:85:70:6c:a8:87:34:2a:20:24:c5:d0:0e:63:3e: ae:82:84:e8:b6:8f:8a:d2:55:4d:56:e6:f5:8f:1f: e8:06:3a:a4:68:9f:37:56:36:9b:55:54:bb:07:47: e5:e1:27:4a:ec:d2:74:34:cd:8d:5a:e0:53:65:4a: d2:74:b2:49:07:61:40:88:fe:2c:38:43:2e:12:20: d8:63:25:7f:2f:95:84:ac:e7:a8:9d:c9:37:b4:b6: 92:6d:1d:77:69:5c:83:15:d8:9d:d6:2d:54:a2:bf: 0f:e1:50:62:82:5e:68:61:35:78:bf:f0:fc:64:29: 1d:58:4d:95:07:47:f6:5d:00:f1:69:18:cb:6f:41: c9:76:5d:a2:6e:9a:b7:3e:fe:2d:a6:14:db:5d:66: 5a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:6C:7F:73:7C:AA:BA:54:11:3B:33:A3:68:AD:32:F9:BB:EA:91:6E X509v3 Authority Key Identifier: keyid:2C:BD:81:29:5E:A3:FA:38:67:08:20:72:D1:BD:E4:1C:BF:B3:FB:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234392e302f32342d3234203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.249.0/24 Signature Algorithm: sha256WithRSAEncryption af:d6:71:36:67:65:68:0d:52:c4:0e:8c:d1:0a:d0:a1:38:bf: ff:aa:22:6b:de:4e:f4:54:ef:d6:db:d0:97:88:83:b2:32:48: d4:4e:5e:0e:28:36:5a:ad:dc:ba:b3:81:d0:80:8a:89:6d:42: 38:77:13:e0:7f:a4:34:fe:1f:b3:bd:fa:9f:61:08:e2:7e:bb: 01:fa:b4:97:61:f5:13:34:ac:77:4d:99:91:9d:bb:72:60:88: 1e:83:49:39:81:82:69:56:27:68:e7:d2:cb:55:f5:37:18:3b: ae:76:ca:64:b9:97:02:07:68:53:a4:f8:8e:89:cd:9e:0d:1e: 95:99:3b:13:d0:85:fd:f0:47:c8:19:ff:78:4d:56:28:8d:d9: b7:89:79:ff:a4:64:68:86:00:51:d9:f8:f9:d0:52:83:f6:bc: 50:e2:67:09:7e:19:a5:bf:42:74:4a:e7:a1:32:e2:7a:83:0f: 38:97:14:cf:b4:2e:9e:87:cb:2f:ef:5e:2b:6d:ea:53:16:f1: 98:5f:c3:3f:4d:01:fe:d3:59:f4:e5:49:4c:fe:12:f3:0c:ec: d4:41:e2:86:b2:4f:b8:1e:62:a6:75:1d:81:0a:13:0e:35:59: e8:07:3c:d1:9c:41:1b:56:ea:36:67:15:66:9a:d7:41:2d:78: d3:06:77:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcuYwOQB/h0YV664cyn0RkR2Z6vQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCRDgxMjk1RUEzRkEzODY3MDgyMDcyRDFCREU0MUNC RkIzRkIzMjAeFw0yNjA1MDMwMzA0NTBaFw0yNzA1MDIwMzA5NTBaMDMxMTAvBgNV BAMTKDQxNkM3RjczN0NBQUJBNTQxMTNCMzNBMzY4QUQzMkY5QkJFQTkxNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCycpIh+hsIrOOhlKjX9Rla85Tr V7RxLslBKV6OTLtdnkhcPHsOBg0kviGLnRrd5UgeTaUW6/SJifxUJW6UkXXzONiw 1YHtNx0FG267AvF1vHdqlwgKdFSpzIANb4+2+GpCOLUfhEbEp8+FcGyohzQqICTF 0A5jPq6ChOi2j4rSVU1W5vWPH+gGOqRonzdWNptVVLsHR+XhJ0rs0nQ0zY1a4FNl StJ0skkHYUCI/iw4Qy4SINhjJX8vlYSs56idyTe0tpJtHXdpXIMV2J3WLVSivw/h UGKCXmhhNXi/8PxkKR1YTZUHR/ZdAPFpGMtvQcl2XaJumrc+/i2mFNtdZlrzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQWx/c3yqulQROzOjaK0y+bvqkW4wHwYDVR0j BBgwFoAULL2BKV6j+jhnCCBy0b3kHL+z+zIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDYxYjhjY2MtNmMyMi00MjRlLTk2MTQtOGFiOGFkMjg4NDljLzAvMkNCRDgxMjk1 RUEzRkEzODY3MDgyMDcyRDFCREU0MUNCRkIzRkIzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0JEODEyOTVFQTNGQTM4NjcwODIwNzJEMUJERTQxQ0JGQjNG QjMyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q2MWI4Y2NjLTZjMjItNDI0ZS05 NjE0LThhYjhhZDI4ODQ5Yy8wLzMxMzAzMzJlMzMzMTJlMzIzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/5MA0GCSqG SIb3DQEBCwUAA4IBAQCv1nE2Z2VoDVLEDozRCtChOL//qiJr3k70VO/W29CXiIOy MkjUTl4OKDZardy6s4HQgIqJbUI4dxPgf6Q0/h+zvfqfYQjifrsB+rSXYfUTNKx3 TZmRnbtyYIgeg0k5gYJpVido59LLVfU3GDuudspkuZcCB2hTpPiOic2eDR6VmTsT 0IX98EfIGf94TVYojdm3iXn/pGRohgBR2fj50FKD9rxQ4mcJfhmlv0J0SuehMuJ6 gw84lxTPtC6eh8sv714rbepTFvGYX8M/TQH+01n05UlM/hLzDOzUQeKGsk+4HmKm dR2BChMONVnoBzzRnEEbVuo2ZxVmmtdBLXjTBne1 -----END CERTIFICATE-----Generated at Wed May 13 12:43:56 2026 by rpki-client