$ rpki-client -vvf rpki-rsync.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32352e302f32342d3234203d3e20313337333131.roa File: 3130332e3130392e32352e302f32342d3234203d3e20313337333131.roa (raw, json) Hash identifier: hSf4M6pKMLscH8R7TfP9AjqFEoXEdb3myJnr9z/AlaE= Subject key identifier: 33:3B:19:C7:D9:5C:B3:60:33:79:E2:14:40:85:E0:C5:6F:B6:CD:B5 Certificate issuer: /CN=3D36B37BDE25595112D2BB921B7F36C6A161CBA1 Certificate serial: 5214F323B2760F6B5D2D47D9AC02D08828A2289B Authority key identifier: 3D:36:B3:7B:DE:25:59:51:12:D2:BB:92:1B:7F:36:C6:A1:61:CB:A1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D36B37BDE25595112D2BB921B7F36C6A161CBA1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32352e302f32342d3234203d3e20313337333131.roa Signing time: Sun 03 May 2026 03:10:20 +0000 ROA not before: Sun 03 May 2026 03:05:20 +0000 ROA not after: Sun 02 May 2027 03:10:20 +0000 asID: 137311 IP address blocks: 103.109.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3D36B37BDE25595112D2BB921B7F36C6A161CBA1.crl rsync://rpki-rsync.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3D36B37BDE25595112D2BB921B7F36C6A161CBA1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D36B37BDE25595112D2BB921B7F36C6A161CBA1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:14:f3:23:b2:76:0f:6b:5d:2d:47:d9:ac:02:d0:88:28:a2:28:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D36B37BDE25595112D2BB921B7F36C6A161CBA1 Validity Not Before: May 3 03:05:20 2026 GMT Not After : May 2 03:10:20 2027 GMT Subject: CN=333B19C7D95CB3603379E2144085E0C56FB6CDB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8c:76:4b:f6:6b:f6:0a:09:88:83:af:3b:a8: 82:d3:44:e4:03:91:46:e6:40:a5:e2:d4:bd:db:e4: 71:8e:8d:0c:9c:50:08:46:72:09:7a:f6:41:77:68: ad:4a:fc:8c:d3:81:4b:d9:ac:f5:16:e6:cd:87:d4: 39:e8:b4:2b:36:ae:e0:61:a5:72:e1:10:23:d5:12: 8d:b9:b5:15:83:4f:74:39:c7:95:48:5e:66:b5:59: e1:90:1e:49:6c:cc:43:2e:bf:11:d5:c5:0e:ea:f1: 9f:af:14:82:e6:da:b4:d4:cb:6e:f6:5a:b9:78:ca: f1:b6:de:27:ad:40:6c:4b:85:84:b7:a9:61:44:41: 29:8d:88:32:72:c9:f6:fe:06:c5:64:5b:a8:67:80: 4c:24:8a:6a:2c:0a:40:51:c2:a6:54:3a:ea:30:4d: e7:b4:72:5d:39:39:a9:88:b7:ff:75:c7:d2:f4:1f: c4:b5:8e:e8:d0:ac:5b:c4:6b:86:8b:6c:8b:e0:8b: 5e:69:35:62:90:de:22:dd:61:b4:cf:88:04:04:fc: 57:40:c7:0a:ab:6e:ff:53:a3:29:6d:fd:36:3d:d2: c2:60:91:ae:92:90:52:f5:51:ee:47:29:7d:1d:40: bd:dc:2c:7f:17:29:de:20:10:b5:ab:c0:a4:bb:4f: 2f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3B:19:C7:D9:5C:B3:60:33:79:E2:14:40:85:E0:C5:6F:B6:CD:B5 X509v3 Authority Key Identifier: keyid:3D:36:B3:7B:DE:25:59:51:12:D2:BB:92:1B:7F:36:C6:A1:61:CB:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3D36B37BDE25595112D2BB921B7F36C6A161CBA1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D36B37BDE25595112D2BB921B7F36C6A161CBA1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32352e302f32342d3234203d3e20313337333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.25.0/24 Signature Algorithm: sha256WithRSAEncryption 49:f1:e9:a2:37:e7:34:81:32:47:92:e9:bd:14:4a:d6:96:d0: b0:2a:5d:37:7f:67:d3:cd:92:cd:62:a9:4c:65:09:f9:c7:a9: 77:86:cc:b9:e7:d3:a4:85:c6:be:53:40:61:a7:2c:25:35:d7: 09:0c:61:5f:9f:a8:53:f7:98:d1:d0:1c:07:4c:3b:17:40:04: 60:e6:7f:ca:cf:37:08:89:dd:e1:24:cc:1f:c6:2c:e8:02:5f: 00:80:da:8e:f5:33:50:6c:78:65:e8:e8:75:49:eb:5a:9e:04: 5d:f9:f1:be:22:a3:52:94:b2:cf:25:a5:92:87:b0:fe:72:67: 60:ee:66:41:b5:ba:a6:fe:67:31:97:3b:da:54:30:21:8d:30: 12:42:2a:72:f1:66:f7:ac:93:ac:6e:a2:91:69:6c:e1:06:0b: 00:fe:63:d6:f7:e8:06:c8:5a:34:90:44:71:a3:7e:da:15:51: 6b:52:aa:7f:fd:ee:4c:01:b1:58:15:71:78:19:a3:47:d3:05: bf:0c:9e:14:a1:71:b0:f9:85:b6:e0:d2:3f:66:84:52:40:39: 4f:be:f2:d7:5b:0f:01:4b:6c:ad:9f:33:bf:5e:0b:58:24:d3: 4d:ea:ec:46:3d:e5:08:34:e5:2c:d3:19:2f:9a:32:eb:df:4b: 86:c3:1f:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUhTzI7J2D2tdLUfZrALQiCiiKJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QzNkIzN0JERTI1NTk1MTEyRDJCQjkyMUI3RjM2QzZB MTYxQ0JBMTAeFw0yNjA1MDMwMzA1MjBaFw0yNzA1MDIwMzEwMjBaMDMxMTAvBgNV BAMTKDMzM0IxOUM3RDk1Q0IzNjAzMzc5RTIxNDQwODVFMEM1NkZCNkNEQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAjHZL9mv2CgmIg687qILTROQD kUbmQKXi1L3b5HGOjQycUAhGcgl69kF3aK1K/IzTgUvZrPUW5s2H1DnotCs2ruBh pXLhECPVEo25tRWDT3Q5x5VIXma1WeGQHklszEMuvxHVxQ7q8Z+vFILm2rTUy272 Wrl4yvG23ietQGxLhYS3qWFEQSmNiDJyyfb+BsVkW6hngEwkimosCkBRwqZUOuow Tee0cl05OamIt/91x9L0H8S1jujQrFvEa4aLbIvgi15pNWKQ3iLdYbTPiAQE/FdA xwqrbv9Toylt/TY90sJgka6SkFL1Ue5HKX0dQL3cLH8XKd4gELWrwKS7Ty8ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMzsZx9lcs2AzeeIUQIXgxW+2zbUwHwYDVR0j BBgwFoAUPTaze94lWVES0ruSG382xqFhy6EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDgzNWNiNGEtMmZiOS00MGQ3LWIxNTUtZGNjZTdjYjAwMjkzLzAvM0QzNkIzN0JE RTI1NTk1MTEyRDJCQjkyMUI3RjM2QzZBMTYxQ0JBMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDM2QjM3QkRFMjU1OTUxMTJEMkJCOTIxQjdGMzZDNkExNjFD QkExLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4MzVjYjRhLTJmYjktNDBkNy1i MTU1LWRjY2U3Y2IwMDI5My8wLzMxMzAzMzJlMzEzMDM5MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ20ZMA0GCSqG SIb3DQEBCwUAA4IBAQBJ8emiN+c0gTJHkum9FErWltCwKl03f2fTzZLNYqlMZQn5 x6l3hsy559Okhca+U0BhpywlNdcJDGFfn6hT95jR0BwHTDsXQARg5n/KzzcIid3h JMwfxizoAl8AgNqO9TNQbHhl6Oh1SetangRd+fG+IqNSlLLPJaWSh7D+cmdg7mZB tbqm/mcxlzvaVDAhjTASQipy8Wb3rJOsbqKRaWzhBgsA/mPW9+gGyFo0kERxo37a FVFrUqp//e5MAbFYFXF4GaNH0wW/DJ4UoXGw+YW24NI/ZoRSQDlPvvLXWw8BS2yt nzO/XgtYJNNN6uxGPeUINOUs0xkvmjLr30uGwx+g -----END CERTIFICATE-----Generated at Wed May 13 03:58:55 2026 by rpki-client