$ rpki-client -vvf rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa File: 3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa (raw, json) Hash identifier: 9/PIsC2XMlKZxB7OIm0Zr26jWW2WY5JodvXs3A+orYA= Subject key identifier: 89:FE:12:BA:3F:E0:5E:70:66:E4:88:AF:13:07:BE:CD:EE:39:40:C4 Certificate issuer: /CN=8638D28E3BD2280125963C7B30C34A226398A39F Certificate serial: 24947B155B1F76558B133A4D347AA783EC7BDFA0 Authority key identifier: 86:38:D2:8E:3B:D2:28:01:25:96:3C:7B:30:C3:4A:22:63:98:A3:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8638D28E3BD2280125963C7B30C34A226398A39F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa Signing time: Sun 03 May 2026 03:10:19 +0000 ROA not before: Sun 03 May 2026 03:05:19 +0000 ROA not after: Sun 02 May 2027 03:10:19 +0000 asID: 141955 IP address blocks: 103.166.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8638D28E3BD2280125963C7B30C34A226398A39F.crl rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8638D28E3BD2280125963C7B30C34A226398A39F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8638D28E3BD2280125963C7B30C34A226398A39F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:44:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:94:7b:15:5b:1f:76:55:8b:13:3a:4d:34:7a:a7:83:ec:7b:df:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8638D28E3BD2280125963C7B30C34A226398A39F Validity Not Before: May 3 03:05:19 2026 GMT Not After : May 2 03:10:19 2027 GMT Subject: CN=89FE12BA3FE05E7066E488AF1307BECDEE3940C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:50:e2:96:76:32:9f:ee:5c:b4:30:0a:b6:0c: 83:bc:1e:5d:5d:e5:81:27:5d:c6:6d:33:6e:cb:69: c9:ea:8b:22:ac:9c:0e:a0:17:d6:42:0d:81:51:3f: 39:62:12:84:35:b3:9c:4e:15:cf:84:72:90:d4:c7: af:f6:fc:9c:5f:a0:ad:2b:d2:9d:20:1b:b6:8d:49: 92:b1:e7:68:ef:70:87:e9:d4:7c:12:74:aa:01:cf: a2:f8:96:ca:19:29:93:52:d5:b0:3d:ed:a9:72:52: a6:27:ab:2c:87:23:00:13:07:74:c6:73:4d:fc:a3: 08:09:1b:bb:92:cf:9b:a0:15:96:68:a3:cd:f0:8e: 2f:7a:53:5b:86:4a:cc:36:d6:9c:46:77:09:7b:6a: c3:ab:4e:ad:07:cb:69:21:0e:f0:2c:e2:1d:32:b3: c4:dc:ad:20:58:15:36:fc:00:05:b6:8c:74:98:0e: a4:d2:36:8e:77:fd:63:91:06:ab:44:f6:d2:da:aa: fe:bf:44:f2:7d:d0:86:06:9d:e4:7e:05:63:15:5f: e8:39:53:24:1c:68:ef:64:44:bd:3a:17:58:db:cd: 89:e0:30:f2:47:a5:f8:db:4e:df:28:0f:bf:78:7b: 51:97:62:60:9a:12:30:16:d0:63:b7:49:b1:b4:4f: 8d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:FE:12:BA:3F:E0:5E:70:66:E4:88:AF:13:07:BE:CD:EE:39:40:C4 X509v3 Authority Key Identifier: keyid:86:38:D2:8E:3B:D2:28:01:25:96:3C:7B:30:C3:4A:22:63:98:A3:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8638D28E3BD2280125963C7B30C34A226398A39F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8638D28E3BD2280125963C7B30C34A226398A39F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.158.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:0c:4e:2e:4a:6f:f8:1c:99:a7:4d:76:f7:18:0c:9b:dc:11: aa:fd:62:37:3a:c4:ec:6c:51:15:26:27:e0:a6:6c:5d:0b:1c: 40:22:6f:7b:c4:7e:57:23:42:12:ed:30:bd:93:3a:9b:ed:e7: 45:c7:c3:f1:58:35:ca:08:fd:13:36:ba:df:77:28:e9:0c:2e: 01:0c:61:b7:eb:b2:43:17:b6:33:ee:a3:1e:5f:98:ee:68:59: 0e:83:63:e1:94:fc:ec:41:03:bf:00:90:7c:14:ba:a4:9c:f2: 3c:af:7e:5d:a7:e1:38:20:07:5e:af:c0:96:3c:9c:52:2b:d6: 89:1b:56:bc:bc:22:6f:fe:dc:07:3d:c3:8d:4a:36:b4:65:4b: 84:05:1e:4d:0d:7e:64:04:69:57:98:1d:f1:ac:c9:88:c6:35: 38:72:b5:4c:69:1a:fe:b2:9a:c6:83:27:5f:16:d8:9c:45:61: 55:cd:ba:fa:89:dd:63:fd:b1:9a:4b:70:e2:49:26:7c:28:79: 3f:f2:63:4a:7b:14:b2:eb:cc:06:8d:bd:cf:ee:97:2c:46:c9: a9:30:10:5a:6d:06:5e:91:44:31:5e:96:80:94:0d:9d:80:99: 4f:e0:40:a4:02:56:e4:26:5d:1a:c9:5c:40:cf:95:20:0f:57: bd:68:ed:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJJR7FVsfdlWLEzpNNHqng+x736AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYzOEQyOEUzQkQyMjgwMTI1OTYzQzdCMzBDMzRBMjI2 Mzk4QTM5RjAeFw0yNjA1MDMwMzA1MTlaFw0yNzA1MDIwMzEwMTlaMDMxMTAvBgNV BAMTKDg5RkUxMkJBM0ZFMDVFNzA2NkU0ODhBRjEzMDdCRUNERUUzOTQwQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTUOKWdjKf7ly0MAq2DIO8Hl1d 5YEnXcZtM27LacnqiyKsnA6gF9ZCDYFRPzliEoQ1s5xOFc+EcpDUx6/2/JxfoK0r 0p0gG7aNSZKx52jvcIfp1HwSdKoBz6L4lsoZKZNS1bA97alyUqYnqyyHIwATB3TG c038owgJG7uSz5ugFZZoo83wji96U1uGSsw21pxGdwl7asOrTq0Hy2khDvAs4h0y s8TcrSBYFTb8AAW2jHSYDqTSNo53/WORBqtE9tLaqv6/RPJ90IYGneR+BWMVX+g5 UyQcaO9kRL06F1jbzYngMPJHpfjbTt8oD794e1GXYmCaEjAW0GO3SbG0T42xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUif4Suj/gXnBm5IivEwe+ze45QMQwHwYDVR0j BBgwFoAUhjjSjjvSKAElljx7MMNKImOYo58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDdmZjAxZDAtMjZmOS00YjIwLWEzMTgtYzMxMWMyNjdmMmFmLzAvODYzOEQyOEUz QkQyMjgwMTI1OTYzQzdCMzBDMzRBMjI2Mzk4QTM5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NjM4RDI4RTNCRDIyODAxMjU5NjNDN0IzMEMzNEEyMjYzOThB MzlGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q3ZmYwMWQwLTI2ZjktNGIyMC1h MzE4LWMzMTFjMjY3ZjJhZi8wLzMxMzAzMzJlMzEzNjM2MmUzMTM1MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpp4wDQYJ KoZIhvcNAQELBQADggEBAHoMTi5Kb/gcmadNdvcYDJvcEar9Yjc6xOxsURUmJ+Cm bF0LHEAib3vEflcjQhLtML2TOpvt50XHw/FYNcoI/RM2ut93KOkMLgEMYbfrskMX tjPuox5fmO5oWQ6DY+GU/OxBA78AkHwUuqSc8jyvfl2n4TggB16vwJY8nFIr1okb Vry8Im/+3Ac9w41KNrRlS4QFHk0NfmQEaVeYHfGsyYjGNThytUxpGv6ymsaDJ18W 2JxFYVXNuvqJ3WP9sZpLcOJJJnwoeT/yY0p7FLLrzAaNvc/ulyxGyakwEFptBl6R RDFeloCUDZ2AmU/gQKQCVuQmXRrJXEDPlSAPV71o7SU= -----END CERTIFICATE-----Generated at Wed May 13 09:17:29 2026 by rpki-client