$ rpki-client -vvf rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/3130332e3233342e33342e302f32342d3234203d3e20313531353231.roa File: 3130332e3233342e33342e302f32342d3234203d3e20313531353231.roa (raw, json) Hash identifier: XXYg212KqJilVz4UQhoA9JNZDN5djYbD/oi5ScwKYIs= Subject key identifier: 4C:43:BE:25:D1:1C:E8:B0:E0:9C:64:12:CF:5D:CA:93:D3:9E:78:CA Certificate issuer: /CN=D007B768F676B78650AA828FA3D4B1BBE28EED3A Certificate serial: 4A57182DED70623AF950C4B272925E05D603E604 Authority key identifier: D0:07:B7:68:F6:76:B7:86:50:AA:82:8F:A3:D4:B1:BB:E2:8E:ED:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/3130332e3233342e33342e302f32342d3234203d3e20313531353231.roa Signing time: Sun 03 May 2026 03:10:13 +0000 ROA not before: Sun 03 May 2026 03:05:13 +0000 ROA not after: Sun 02 May 2027 03:10:13 +0000 asID: 151521 IP address blocks: 103.234.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.crl rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:57:18:2d:ed:70:62:3a:f9:50:c4:b2:72:92:5e:05:d6:03:e6:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D007B768F676B78650AA828FA3D4B1BBE28EED3A Validity Not Before: May 3 03:05:13 2026 GMT Not After : May 2 03:10:13 2027 GMT Subject: CN=4C43BE25D11CE8B0E09C6412CF5DCA93D39E78CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:72:82:db:36:e2:fc:59:2f:d5:22:92:7c:40: 3c:73:26:08:bb:8d:e0:86:1f:30:09:b8:d0:ce:9b: db:6f:34:c1:ab:97:e2:7a:ef:8d:e7:31:8d:fe:4c: 68:c6:a4:0b:0b:15:59:a3:f8:ea:95:39:42:b2:3f: 46:8b:5a:de:ad:85:0e:39:51:d7:c4:50:a4:87:2e: 24:3a:8c:93:b3:51:dd:45:20:df:bc:8a:f7:8f:fd: 76:e5:40:90:49:28:81:1d:3a:77:58:df:26:bc:fa: 46:e8:0b:3a:90:8a:42:b4:23:6f:27:bd:63:2b:2b: d7:e4:2d:38:61:bf:0c:da:ad:fc:8f:44:1e:44:41: d4:f9:2f:19:d7:0d:da:00:ba:b9:32:84:78:5b:d4: 82:93:1d:6a:f5:b6:66:9a:b5:03:ac:fc:7e:fa:e2: 53:da:59:ec:5d:b6:d7:3b:68:7d:d6:71:af:b9:c7: 50:4c:5b:f6:86:7a:8d:b6:59:89:93:e7:74:7f:20: 97:25:b3:78:d2:ec:24:8c:b9:ef:f3:ee:09:09:2f: dc:67:da:47:9c:8e:31:ca:90:34:9a:e1:47:17:4c: c4:2f:81:37:83:cf:d1:fb:b2:4c:c9:e4:81:4e:4e: c8:05:5c:de:31:9a:39:cf:70:f8:d2:ee:36:d5:a0: d6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:43:BE:25:D1:1C:E8:B0:E0:9C:64:12:CF:5D:CA:93:D3:9E:78:CA X509v3 Authority Key Identifier: keyid:D0:07:B7:68:F6:76:B7:86:50:AA:82:8F:A3:D4:B1:BB:E2:8E:ED:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/3130332e3233342e33342e302f32342d3234203d3e20313531353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.34.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:7a:70:a8:48:b8:4c:79:cc:68:fc:16:8b:a8:62:8b:28:53: 3c:65:7e:1d:7c:7a:d3:d2:37:2a:fd:c4:31:06:e5:52:ad:42: e3:ef:69:02:73:24:36:11:9a:ea:b4:29:f9:7d:42:d7:1b:33: 2e:dd:e1:c6:15:57:d7:2f:03:e6:34:96:55:b1:cf:c6:60:c6: 17:a6:4e:0d:9e:e2:35:8d:e1:bf:7a:48:10:e5:a1:12:0a:49: 8f:97:64:5d:50:3a:db:a5:06:84:08:1b:ba:fc:ba:74:4f:28: fb:86:3a:9d:cc:a4:7b:07:e7:95:82:a6:01:c4:2c:51:b2:58: 9d:b7:ca:a6:03:79:e7:35:4b:53:fa:2e:6e:47:47:88:ca:bc: 4b:44:3d:1e:59:75:31:42:21:af:b3:7d:6d:ce:42:5a:ec:0a: ed:70:0e:92:6d:21:71:c4:fb:41:28:2c:f9:1a:b0:fd:8f:ee: 93:bc:a4:7a:d6:5a:b8:33:58:de:56:cf:be:81:d1:51:15:4f: c7:3a:6f:5b:82:5f:73:f7:c1:70:55:62:8b:e0:0f:8c:47:dd: 54:3b:3e:b5:cf:6e:10:75:0c:a6:9e:a7:08:73:d3:78:2a:81: 96:ce:d0:e7:e6:2d:76:34:5c:08:93:44:52:44:e8:01:48:7a: 80:2d:5a:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSlcYLe1wYjr5UMSycpJeBdYD5gQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwN0I3NjhGNjc2Qjc4NjUwQUE4MjhGQTNENEIxQkJF MjhFRUQzQTAeFw0yNjA1MDMwMzA1MTNaFw0yNzA1MDIwMzEwMTNaMDMxMTAvBgNV BAMTKDRDNDNCRTI1RDExQ0U4QjBFMDlDNjQxMkNGNURDQTkzRDM5RTc4Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNcoLbNuL8WS/VIpJ8QDxzJgi7 jeCGHzAJuNDOm9tvNMGrl+J6743nMY3+TGjGpAsLFVmj+OqVOUKyP0aLWt6thQ45 UdfEUKSHLiQ6jJOzUd1FIN+8iveP/XblQJBJKIEdOndY3ya8+kboCzqQikK0I28n vWMrK9fkLThhvwzarfyPRB5EQdT5LxnXDdoAurkyhHhb1IKTHWr1tmaatQOs/H76 4lPaWexdttc7aH3Wca+5x1BMW/aGeo22WYmT53R/IJcls3jS7CSMue/z7gkJL9xn 2kecjjHKkDSa4UcXTMQvgTeDz9H7skzJ5IFOTsgFXN4xmjnPcPjS7jbVoNZ7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTEO+JdEc6LDgnGQSz13Kk9OeeMowHwYDVR0j BBgwFoAU0Ae3aPZ2t4ZQqoKPo9Sxu+KO7TowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDdhNmIyM2ItYzQxZS00NDQ5LWExNDktYmMwYzZjOGIwMTFiLzAvRDAwN0I3NjhG Njc2Qjc4NjUwQUE4MjhGQTNENEIxQkJFMjhFRUQzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDA3Qjc2OEY2NzZCNzg2NTBBQTgyOEZBM0Q0QjFCQkUyOEVF RDNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q3YTZiMjNiLWM0MWUtNDQ0OS1h MTQ5LWJjMGM2YzhiMDExYi8wLzMxMzAzMzJlMzIzMzM0MmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+oiMA0GCSqG SIb3DQEBCwUAA4IBAQCOenCoSLhMecxo/BaLqGKLKFM8ZX4dfHrT0jcq/cQxBuVS rULj72kCcyQ2EZrqtCn5fULXGzMu3eHGFVfXLwPmNJZVsc/GYMYXpk4NnuI1jeG/ ekgQ5aESCkmPl2RdUDrbpQaECBu6/Lp0Tyj7hjqdzKR7B+eVgqYBxCxRslidt8qm A3nnNUtT+i5uR0eIyrxLRD0eWXUxQiGvs31tzkJa7ArtcA6SbSFxxPtBKCz5GrD9 j+6TvKR61lq4M1jeVs++gdFRFU/HOm9bgl9z98FwVWKL4A+MR91UOz61z24QdQym nqcIc9N4KoGWztDn5i12NFwIk0RSROgBSHqALVqC -----END CERTIFICATE-----Generated at Tue May 12 22:32:52 2026 by rpki-client