$ rpki-client -vvf rpki-rsync.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa File: 3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa (raw, json) Hash identifier: 4Y1mZB2qJy+rnsbtqPt0mJQCafCDh7l369bEnaFDUds= Subject key identifier: 70:AF:3A:25:12:50:63:88:6A:F1:5F:5B:EA:B4:F5:90:A7:2F:5B:E6 Certificate issuer: /CN=B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27 Certificate serial: 2D0B27E85A8B05EA84287FA816301EC9D96D85BB Authority key identifier: B9:A5:C7:ED:38:66:D3:CA:D2:44:DA:B3:64:D5:DE:AB:01:B4:1B:27 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa Signing time: Sun 03 May 2026 03:10:42 +0000 ROA not before: Sun 03 May 2026 03:05:42 +0000 ROA not after: Sun 02 May 2027 03:10:42 +0000 asID: 149706 IP address blocks: 103.186.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27.crl rsync://rpki-rsync.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:0b:27:e8:5a:8b:05:ea:84:28:7f:a8:16:30:1e:c9:d9:6d:85:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27 Validity Not Before: May 3 03:05:42 2026 GMT Not After : May 2 03:10:42 2027 GMT Subject: CN=70AF3A25125063886AF15F5BEAB4F590A72F5BE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:65:cc:cd:9d:87:0d:91:0e:b9:ac:c9:1f:67: 58:a5:d5:7c:5e:2e:3b:49:c5:ea:f2:3f:48:4c:ff: 9b:e5:3b:91:27:b4:9b:66:79:d0:ec:75:7c:dd:9c: 11:1b:c4:50:db:63:ac:c2:56:d9:fd:6b:f5:20:ef: 9d:3a:6d:cc:4d:f5:4a:ee:c6:d0:9f:fb:0f:75:f1: ba:b4:8d:f0:9c:e0:09:d9:c0:96:72:55:fb:f5:55: a6:f6:d7:6f:f4:3c:27:82:b3:41:03:9f:49:7e:17: 1b:30:74:2e:8e:90:46:f2:13:34:e7:a6:54:4e:35: 66:6c:6a:9d:60:b2:41:41:ea:bd:ba:8a:32:7e:a8: 6b:42:e8:2b:fa:fb:2f:95:b2:f0:b2:45:ab:c7:33: f0:e5:c9:e1:de:f7:ab:7e:65:f9:1e:f2:88:9b:74: 87:9d:ee:af:bd:13:e1:f8:44:0e:80:a3:ef:a9:e8: 3f:2d:fe:b8:6e:34:bf:9e:fb:85:59:87:f8:b5:8a: 43:34:dd:91:b0:ef:22:26:39:59:7e:65:b7:8d:34: 89:9f:ee:58:3d:8e:8a:e4:70:ad:af:b7:ca:d6:84: 26:c4:30:8f:8d:dc:03:2d:91:61:6e:c5:a9:86:42: 82:54:01:fc:b6:16:58:a6:a5:37:6a:31:3d:38:b5: 17:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AF:3A:25:12:50:63:88:6A:F1:5F:5B:EA:B4:F5:90:A7:2F:5B:E6 X509v3 Authority Key Identifier: keyid:B9:A5:C7:ED:38:66:D3:CA:D2:44:DA:B3:64:D5:DE:AB:01:B4:1B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9A5C7ED3866D3CAD244DAB364D5DEAB01B41B27.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.202.0/24 Signature Algorithm: sha256WithRSAEncryption 74:40:8f:3f:17:0c:b3:95:44:8c:5b:1a:ed:74:b5:07:a4:de: f6:6d:7a:1a:a1:05:32:2c:29:67:4b:76:33:24:0a:b7:5f:8e: bd:0d:e8:e9:43:0a:23:9a:7a:a8:c9:63:3f:53:0e:cb:60:ef: 4d:36:42:4d:67:4b:85:a4:30:32:21:38:36:98:63:fa:28:c5: c5:60:44:73:22:43:c1:8e:6f:26:b1:a9:a7:fa:b0:85:54:0f: 5d:fd:f0:26:d8:2f:d6:57:7b:b8:af:c3:9a:50:de:d6:fb:3d: ac:f9:e9:18:55:fa:8e:e7:7d:90:8f:51:81:60:16:91:ec:bf: 7f:a5:1a:68:53:86:07:69:4b:5e:91:2d:ad:f4:14:c9:55:2e: 78:41:df:be:c6:89:40:6c:7d:49:57:e0:5f:8e:ba:a7:c2:b0: 05:ac:d2:32:f9:b2:91:d2:a2:d7:ba:10:9f:a8:22:6e:68:bc: 9f:a8:0e:df:01:80:53:d0:f3:66:ee:dc:f2:76:c7:cb:e1:c8: 58:a3:56:44:43:82:48:4c:b9:73:b7:c7:90:62:78:22:37:b1: 08:65:4c:71:09:a6:eb:c0:28:27:05:21:f1:d4:6a:00:3e:19: c4:bb:05:16:f9:e1:97:37:f9:b9:05:ab:a6:15:29:f9:54:71: 94:8f:58:06 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULQsn6FqLBeqEKH+oFjAeydlthbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlBNUM3RUQzODY2RDNDQUQyNDREQUIzNjRENURFQUIw MUI0MUIyNzAeFw0yNjA1MDMwMzA1NDJaFw0yNzA1MDIwMzEwNDJaMDMxMTAvBgNV BAMTKDcwQUYzQTI1MTI1MDYzODg2QUYxNUY1QkVBQjRGNTkwQTcyRjVCRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJZczNnYcNkQ65rMkfZ1il1Xxe LjtJxeryP0hM/5vlO5EntJtmedDsdXzdnBEbxFDbY6zCVtn9a/Ug7506bcxN9Uru xtCf+w918bq0jfCc4AnZwJZyVfv1Vab212/0PCeCs0EDn0l+FxswdC6OkEbyEzTn plRONWZsap1gskFB6r26ijJ+qGtC6Cv6+y+VsvCyRavHM/DlyeHe96t+Zfke8oib dIed7q+9E+H4RA6Ao++p6D8t/rhuNL+e+4VZh/i1ikM03ZGw7yImOVl+ZbeNNImf 7lg9jorkcK2vt8rWhCbEMI+N3AMtkWFuxamGQoJUAfy2FlimpTdqMT04tRdFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcK86JRJQY4hq8V9b6rT1kKcvW+YwHwYDVR0j BBgwFoAUuaXH7Thm08rSRNqzZNXeqwG0GycwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDkxMDY4MjctODY2ZS00YWMzLThmNzktYTZlMzIwYjIwZGU3LzAvQjlBNUM3RUQz ODY2RDNDQUQyNDREQUIzNjRENURFQUIwMUI0MUIyNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COUE1QzdFRDM4NjZEM0NBRDI0NERBQjM2NEQ1REVBQjAxQjQx QjI3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q5MTA2ODI3LTg2NmUtNGFjMy04 Zjc5LWE2ZTMyMGIyMGRlNy8wLzMxMzAzMzJlMzEzODM2MmUzMjMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnusowDQYJ KoZIhvcNAQELBQADggEBAHRAjz8XDLOVRIxbGu10tQek3vZtehqhBTIsKWdLdjMk Crdfjr0N6OlDCiOaeqjJYz9TDstg7002Qk1nS4WkMDIhODaYY/ooxcVgRHMiQ8GO byaxqaf6sIVUD1398CbYL9ZXe7ivw5pQ3tb7Paz56RhV+o7nfZCPUYFgFpHsv3+l GmhThgdpS16RLa30FMlVLnhB377GiUBsfUlX4F+OuqfCsAWs0jL5spHSote6EJ+o Im5ovJ+oDt8BgFPQ82bu3PJ2x8vhyFijVkRDgkhMuXO3x5BieCI3sQhlTHEJpuvA KCcFIfHUagA+GcS7BRb54Zc3+bkFq6YVKflUcZSPWAY= -----END CERTIFICATE-----Generated at Wed May 13 12:42:29 2026 by rpki-client