$ rpki-client -vvf rpki-rsync.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa File: 3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa (raw, json) Hash identifier: cKDgVoSVAFZfl4hgrIHwI1J4tBbCiwmqXmahxpGLx8I= Subject key identifier: 3E:6F:7B:BD:68:85:09:F5:DE:6F:B4:21:18:69:E2:EC:66:51:65:6A Certificate issuer: /CN=2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470 Certificate serial: 2EF13EDF26DA20F5390CEDD35AC1F22F1BBEB443 Authority key identifier: 2A:E1:4A:BB:D5:16:1B:A0:CA:DB:3C:40:C1:F9:DF:CB:C9:CF:34:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa Signing time: Sun 03 May 2026 03:10:43 +0000 ROA not before: Sun 03 May 2026 03:05:43 +0000 ROA not after: Sun 02 May 2027 03:10:43 +0000 asID: 138119 IP address blocks: 103.131.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470.crl rsync://rpki-rsync.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f1:3e:df:26:da:20:f5:39:0c:ed:d3:5a:c1:f2:2f:1b:be:b4:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470 Validity Not Before: May 3 03:05:43 2026 GMT Not After : May 2 03:10:43 2027 GMT Subject: CN=3E6F7BBD688509F5DE6FB4211869E2EC6651656A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:54:00:5a:f7:94:66:6a:c5:4d:39:e2:41: c9:c2:53:b0:4e:0b:8d:60:5f:c8:0f:3e:27:4b:66: 49:f8:8a:95:40:84:60:3e:af:96:ac:f8:04:f5:f2: 9f:e8:ae:12:fa:4a:b3:95:51:4f:ef:b0:cb:be:2f: 78:08:10:ba:dc:9f:9d:6c:1b:f6:ab:a0:23:0f:67: 58:9a:01:5f:e1:ea:ef:4e:b5:d6:ad:20:79:bd:7f: 60:c0:bc:09:a8:85:aa:99:4b:8c:ea:47:73:aa:80: 76:ea:bc:4e:24:fe:14:34:f2:eb:a1:20:46:ac:cc: 62:67:5e:92:44:65:99:b0:a3:70:71:0f:58:c0:25: d5:20:8e:14:e6:27:0c:df:4e:d6:73:ef:77:ac:51: f7:89:e6:52:b5:8e:33:05:c3:d6:c6:1a:4a:2f:91: 33:c5:39:7b:83:d6:60:1f:52:9c:67:d1:da:48:52: e7:7f:da:fb:0c:8c:18:aa:ee:c8:b3:96:07:de:d0: d4:38:4b:55:51:73:62:0a:9d:c6:f7:7d:45:02:45: d6:88:b6:ff:a9:5d:c2:af:60:50:3f:ec:02:8b:16: de:99:39:11:78:76:38:15:10:73:aa:8c:a5:a8:ec: 8d:7f:10:ec:ae:1f:af:88:5e:95:b1:ce:1d:06:8b: 98:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:6F:7B:BD:68:85:09:F5:DE:6F:B4:21:18:69:E2:EC:66:51:65:6A X509v3 Authority Key Identifier: keyid:2A:E1:4A:BB:D5:16:1B:A0:CA:DB:3C:40:C1:F9:DF:CB:C9:CF:34:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AE14ABBD5161BA0CADB3C40C1F9DFCBC9CF3470.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.107.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:7d:b2:ea:70:cc:df:b8:d0:cb:05:0c:aa:2e:3e:fc:86:5f: 0b:02:7c:01:68:df:eb:b4:9d:81:fa:f3:9c:97:af:cc:ab:c0: e4:a6:04:07:f4:b5:1f:0a:73:3b:d1:82:09:4b:e1:bd:be:33: 5f:6a:8c:80:92:20:35:95:87:61:af:17:2f:f8:50:33:8a:37: fd:e4:a4:d7:72:4d:47:bb:24:d8:4c:ba:91:f4:6c:31:58:6c: 18:9f:2a:4d:a9:e4:ec:9f:77:37:1e:29:48:3d:e9:77:64:55: 10:27:58:ef:db:a9:52:4b:bc:ac:43:da:3e:e9:cd:bb:24:e1: 1e:fe:23:a4:7f:f8:04:e6:1c:7e:26:f1:81:1d:70:07:96:f2: 15:b3:a5:30:fa:1a:69:62:d2:e4:da:ba:65:6b:ca:50:72:27: d7:33:34:a4:14:c5:61:d0:8d:cc:03:71:ce:5f:47:56:fe:89: e6:65:3c:26:69:8d:bc:f0:b4:fa:3c:db:6b:a0:66:86:d6:6e: 65:92:1f:f2:d6:92:0f:cd:11:70:d4:7e:39:92:0f:3b:46:f5: 58:8d:6e:cf:a7:4d:1a:c9:bc:1e:25:1c:a7:7b:ea:70:16:66: a5:26:83:7d:d3:10:aa:b3:f4:1d:84:03:62:66:79:84:f1:67: 03:67:fd:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULvE+3ybaIPU5DO3TWsHyLxu+tEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFFMTRBQkJENTE2MUJBMENBREIzQzQwQzFGOURGQ0JD OUNGMzQ3MDAeFw0yNjA1MDMwMzA1NDNaFw0yNzA1MDIwMzEwNDNaMDMxMTAvBgNV BAMTKDNFNkY3QkJENjg4NTA5RjVERTZGQjQyMTE4NjlFMkVDNjY1MTY1NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxTlQAWveUZmrFTTniQcnCU7BO C41gX8gPPidLZkn4ipVAhGA+r5as+AT18p/orhL6SrOVUU/vsMu+L3gIELrcn51s G/aroCMPZ1iaAV/h6u9OtdatIHm9f2DAvAmohaqZS4zqR3OqgHbqvE4k/hQ08uuh IEaszGJnXpJEZZmwo3BxD1jAJdUgjhTmJwzfTtZz73esUfeJ5lK1jjMFw9bGGkov kTPFOXuD1mAfUpxn0dpIUud/2vsMjBiq7sizlgfe0NQ4S1VRc2IKncb3fUUCRdaI tv+pXcKvYFA/7AKLFt6ZORF4djgVEHOqjKWo7I1/EOyuH6+IXpWxzh0Gi5iFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPm97vWiFCfXeb7QhGGni7GZRZWowHwYDVR0j BBgwFoAUKuFKu9UWG6DK2zxAwfnfy8nPNHAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDkyNDM5NTAtM2ZkZi00OWFiLWJmZGMtZjU4NjQ1MzcwNGM2LzAvMkFFMTRBQkJE NTE2MUJBMENBREIzQzQwQzFGOURGQ0JDOUNGMzQ3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQUUxNEFCQkQ1MTYxQkEwQ0FEQjNDNDBDMUY5REZDQkM5Q0Yz NDcwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q5MjQzOTUwLTNmZGYtNDlhYi1i ZmRjLWY1ODY0NTM3MDRjNi8wLzMxMzAzMzJlMzEzMzMxMmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABng2swDQYJ KoZIhvcNAQELBQADggEBACt9supwzN+40MsFDKouPvyGXwsCfAFo3+u0nYH685yX r8yrwOSmBAf0tR8KczvRgglL4b2+M19qjICSIDWVh2GvFy/4UDOKN/3kpNdyTUe7 JNhMupH0bDFYbBifKk2p5OyfdzceKUg96XdkVRAnWO/bqVJLvKxD2j7pzbsk4R7+ I6R/+ATmHH4m8YEdcAeW8hWzpTD6Gmli0uTaumVrylByJ9czNKQUxWHQjcwDcc5f R1b+ieZlPCZpjbzwtPo822ugZobWbmWSH/LWkg/NEXDUfjmSDztG9ViNbs+nTRrJ vB4lHKd76nAWZqUmg33TEKqz9B2EA2JmeYTxZwNn/TY= -----END CERTIFICATE-----Generated at Wed May 13 14:56:44 2026 by rpki-client