$ rpki-client -vvf rpki-rsync.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa File: 3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: jobGwFNdEOGscb8Suy+yh9BDuSyd+S9zj8PbD+vSbcU= Subject key identifier: 60:7D:9A:CB:F9:60:ED:F2:1C:E8:AC:A9:31:A7:02:6E:1D:1C:48:12 Certificate issuer: /CN=3488252FDADC73654E2AAD815316475C9A5F94D8 Certificate serial: 5D87E4D846B479DB30740C9C17C314C180679137 Authority key identifier: 34:88:25:2F:DA:DC:73:65:4E:2A:AD:81:53:16:47:5C:9A:5F:94:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3488252FDADC73654E2AAD815316475C9A5F94D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa Signing time: Sun 03 May 2026 03:10:10 +0000 ROA not before: Sun 03 May 2026 03:05:10 +0000 ROA not after: Sun 02 May 2027 03:10:10 +0000 asID: 131111 IP address blocks: 103.66.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3488252FDADC73654E2AAD815316475C9A5F94D8.crl rsync://rpki-rsync.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3488252FDADC73654E2AAD815316475C9A5F94D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3488252FDADC73654E2AAD815316475C9A5F94D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:87:e4:d8:46:b4:79:db:30:74:0c:9c:17:c3:14:c1:80:67:91:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3488252FDADC73654E2AAD815316475C9A5F94D8 Validity Not Before: May 3 03:05:10 2026 GMT Not After : May 2 03:10:10 2027 GMT Subject: CN=607D9ACBF960EDF21CE8ACA931A7026E1D1C4812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ed:4b:f5:1b:b3:c7:d9:71:ae:0c:1e:6e:3b: 1e:e2:50:2e:08:d1:1f:11:ee:1d:8a:4d:b9:f4:07: e6:e4:66:78:fa:61:a8:28:6c:dd:d3:ee:eb:75:82: 90:50:c6:28:5d:e1:37:b0:00:fe:cc:50:9b:6b:7e: 8f:a0:94:43:7d:cd:27:f0:3a:3a:38:3f:fc:f7:d5: 8a:c9:dd:f3:f3:e6:78:23:13:54:37:70:8f:ec:0b: e7:fd:c7:bd:2d:3c:10:5c:07:64:53:38:2b:14:5a: 6e:83:62:3d:d3:30:52:37:f6:a7:49:36:e3:a2:67: cf:be:85:80:8e:2c:c6:05:a2:e9:68:20:5a:f9:ea: d7:eb:4c:7d:8c:58:ad:12:8f:27:91:f3:2b:06:21: f9:90:58:8c:cb:4f:2a:4f:17:fb:a3:6f:1f:55:34: d6:70:1a:5a:3b:6c:7f:e0:55:eb:17:70:2f:7d:ef: 51:58:dc:f0:ef:76:99:f8:28:f7:02:da:a5:4c:e8: 10:8a:0e:98:7f:a6:de:57:9d:d1:2d:75:d6:0b:86: 9b:59:e2:c3:bb:cc:9c:04:0a:fe:45:e6:98:81:9b: 79:7a:ab:cf:ad:ad:dc:b6:09:69:16:7c:cd:15:6f: 52:01:ed:8b:9b:d1:6c:f0:90:8b:ac:e2:ba:44:df: 35:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:7D:9A:CB:F9:60:ED:F2:1C:E8:AC:A9:31:A7:02:6E:1D:1C:48:12 X509v3 Authority Key Identifier: keyid:34:88:25:2F:DA:DC:73:65:4E:2A:AD:81:53:16:47:5C:9A:5F:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3488252FDADC73654E2AAD815316475C9A5F94D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3488252FDADC73654E2AAD815316475C9A5F94D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.196.0/22 Signature Algorithm: sha256WithRSAEncryption b9:1c:e8:2d:a6:ba:09:92:5a:91:f9:9c:10:34:d7:d0:18:7c: 27:92:d8:86:13:ee:1c:d8:e4:6f:8c:a2:7f:d3:76:17:59:cd: fb:25:a9:42:6e:45:58:3a:e2:90:70:45:6b:97:97:35:dc:89: 03:00:55:0c:3a:c7:3d:53:5d:2b:67:47:6c:c3:6c:8e:07:0b: 36:91:e0:cb:4b:d8:2e:d3:b0:0e:59:02:6b:b3:52:c5:00:78: c5:60:30:c6:47:38:49:bd:51:4d:61:13:38:01:92:db:72:f7: 40:d6:4d:97:3e:0b:9e:34:f6:56:bc:f7:5e:db:6b:ad:43:e9: b2:56:8d:8d:27:f3:5a:17:70:2e:a2:b3:80:10:ba:3e:6d:cb: 1e:4c:ee:dd:64:22:9a:1b:92:02:f5:18:2e:cf:a5:89:62:31: 4d:75:f1:d1:50:72:c4:7d:12:3e:20:e1:69:0c:ac:ff:03:d2: b8:2e:e7:8d:63:81:60:14:23:84:a3:1d:fd:69:a9:ea:62:9b: bc:89:83:c6:28:00:4f:31:da:67:11:58:b4:38:be:f3:cc:4e: 77:88:11:b9:71:f7:e1:25:2a:a8:9d:26:53:bf:11:93:4c:0f: 89:17:cc:e6:7d:83:cc:c1:ff:06:ad:47:bf:f4:6d:69:1d:b6: 1b:01:39:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXYfk2Ea0edswdAycF8MUwYBnkTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ4ODI1MkZEQURDNzM2NTRFMkFBRDgxNTMxNjQ3NUM5 QTVGOTREODAeFw0yNjA1MDMwMzA1MTBaFw0yNzA1MDIwMzEwMTBaMDMxMTAvBgNV BAMTKDYwN0Q5QUNCRjk2MEVERjIxQ0U4QUNBOTMxQTcwMjZFMUQxQzQ4MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq7Uv1G7PH2XGuDB5uOx7iUC4I 0R8R7h2KTbn0B+bkZnj6YagobN3T7ut1gpBQxihd4TewAP7MUJtrfo+glEN9zSfw Ojo4P/z31YrJ3fPz5ngjE1Q3cI/sC+f9x70tPBBcB2RTOCsUWm6DYj3TMFI39qdJ NuOiZ8++hYCOLMYFouloIFr56tfrTH2MWK0SjyeR8ysGIfmQWIzLTypPF/ujbx9V NNZwGlo7bH/gVesXcC9971FY3PDvdpn4KPcC2qVM6BCKDph/pt5XndEtddYLhptZ 4sO7zJwECv5F5piBm3l6q8+trdy2CWkWfM0Vb1IB7Yub0WzwkIus4rpE3zUlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYH2ay/lg7fIc6KypMacCbh0cSBIwHwYDVR0j BBgwFoAUNIglL9rcc2VOKq2BUxZHXJpflNgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDc3YTdmYWQtNTQ0Mi00YmM0LWJjMmYtMGJmOGMyMjZkOWRiLzAvMzQ4ODI1MkZE QURDNzM2NTRFMkFBRDgxNTMxNjQ3NUM5QTVGOTREOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNDg4MjUyRkRBREM3MzY1NEUyQUFEODE1MzE2NDc1QzlBNUY5 NEQ4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q3N2E3ZmFkLTU0NDItNGJjNC1i YzJmLTBiZjhjMjI2ZDlkYi8wLzMxMzAzMzJlMzYzNjJlMzEzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ0LEMA0GCSqG SIb3DQEBCwUAA4IBAQC5HOgtproJklqR+ZwQNNfQGHwnktiGE+4c2ORvjKJ/03YX Wc37JalCbkVYOuKQcEVrl5c13IkDAFUMOsc9U10rZ0dsw2yOBws2keDLS9gu07AO WQJrs1LFAHjFYDDGRzhJvVFNYRM4AZLbcvdA1k2XPgueNPZWvPde22utQ+myVo2N J/NaF3AuorOAELo+bcseTO7dZCKaG5IC9Rguz6WJYjFNdfHRUHLEfRI+IOFpDKz/ A9K4LueNY4FgFCOEox39aanqYpu8iYPGKABPMdpnEVi0OL7zzE53iBG5cffhJSqo nSZTvxGTTA+JF8zmfYPMwf8GrUe/9G1pHbYbATmZ -----END CERTIFICATE-----Generated at Wed May 13 03:48:16 2026 by rpki-client