$ rpki-client -vvf rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230362e302f32342d3234203d3e203538333937.roa File: 3130332e34312e3230362e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: ODnRKml3wmOVpjtW+xC+dZC5mmMJA71SJG7/VtBibyg= Subject key identifier: 4D:42:41:5F:5F:E2:11:66:78:27:A3:A9:4A:71:CD:BA:3D:69:74:0D Certificate issuer: /CN=039655B785EC7CB007D8EC3057559737EDFECF68 Certificate serial: 7DD36C80824B4E179E656791AB40508B4AAE3925 Authority key identifier: 03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230362e302f32342d3234203d3e203538333937.roa Signing time: Sun 03 May 2026 03:11:11 +0000 ROA not before: Sun 03 May 2026 03:06:11 +0000 ROA not after: Sun 02 May 2027 03:11:11 +0000 asID: 58397 IP address blocks: 103.41.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d3:6c:80:82:4b:4e:17:9e:65:67:91:ab:40:50:8b:4a:ae:39:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=039655B785EC7CB007D8EC3057559737EDFECF68 Validity Not Before: May 3 03:06:11 2026 GMT Not After : May 2 03:11:11 2027 GMT Subject: CN=4D42415F5FE211667827A3A94A71CDBA3D69740D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:5d:05:60:8e:4b:86:bb:3a:f2:4e:08:44: 95:06:4a:9a:25:ec:ff:23:1a:64:f5:48:5f:06:62: c9:b6:40:a0:3f:82:c3:27:38:08:c2:5a:1d:51:d7: 01:70:16:5e:8f:78:0d:9a:65:9d:01:88:a8:5b:f0: 88:82:5a:68:5a:d8:2e:a9:b6:cc:10:c6:42:c6:65: f3:2e:b1:be:c1:bb:69:18:e6:80:c7:e9:0b:d2:f8: c7:12:fe:b5:85:b7:29:3b:e0:65:ba:3a:84:00:00: 15:ac:52:bf:3e:82:72:6c:5b:87:6a:4b:98:34:9e: 84:4c:67:12:52:37:bb:91:2f:06:e9:68:2d:9f:64: b8:e9:b9:dc:9c:7a:22:31:9d:0f:93:d9:ee:27:b7: ca:24:3b:c7:03:f8:5e:bd:3a:1a:67:51:23:6e:dc: 01:37:68:0a:8b:4e:cc:2a:c9:f4:41:59:35:96:69: f8:65:16:9c:6d:a3:14:50:32:24:90:69:51:20:79: ad:05:21:21:47:30:b2:3a:86:19:44:f6:93:6d:7d: a5:49:da:2e:c1:d8:2f:a9:66:98:ac:7e:db:c0:e3: 22:85:ad:73:49:d8:ff:ff:99:75:c0:05:ba:de:13: 45:86:32:d1:d6:ef:70:44:55:c4:60:d4:92:e8:1e: 18:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:42:41:5F:5F:E2:11:66:78:27:A3:A9:4A:71:CD:BA:3D:69:74:0D X509v3 Authority Key Identifier: keyid:03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230362e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.206.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:6a:79:1c:84:cd:83:b8:89:67:c6:bd:f8:87:60:15:75:31: 1e:94:68:d9:13:e8:e9:39:f5:11:3d:ec:ba:37:be:cd:ec:d0: 2c:1b:f4:62:28:a5:de:ed:4f:01:3a:32:e3:82:27:99:d2:3c: ee:70:1c:8d:a1:cf:01:9d:47:0b:47:fd:e9:36:5b:dd:ed:d9: 5a:7d:3d:8e:5a:bf:b0:dd:9f:02:3e:ad:3a:b4:88:ee:4d:b4: d6:5d:1f:b9:d5:ee:c5:b3:4b:7d:a1:75:22:08:c9:f7:2c:fe: fe:13:1d:55:f7:03:e8:37:5a:99:3f:4f:ed:1d:7f:df:37:01: dd:ca:51:0b:98:73:04:65:9d:03:a2:c1:07:25:95:ef:23:13: 05:d9:31:1f:0c:a6:e9:90:3e:69:d9:3a:6f:2c:86:32:f0:37: 7b:1b:4b:56:e9:15:52:50:59:41:cc:35:b6:1e:b8:33:f7:f3: 3a:c4:24:23:f7:ad:b7:86:26:ff:a2:eb:90:e5:8c:2a:ef:3c: 71:0c:d2:bb:22:75:dd:53:e6:5c:2c:1b:03:10:96:c4:9c:54: e7:2f:e6:d6:cf:37:c5:da:fd:03:06:5e:98:d9:89:39:9a:7b: 35:c0:4e:6e:7f:23:ff:22:b5:26:13:85:d7:cb:ee:eb:b6:59: 0a:1b:b2:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfdNsgIJLTheeZWeRq0BQi0quOSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdF REZFQ0Y2ODAeFw0yNjA1MDMwMzA2MTFaFw0yNzA1MDIwMzExMTFaMDMxMTAvBgNV BAMTKDRENDI0MTVGNUZFMjExNjY3ODI3QTNBOTRBNzFDREJBM0Q2OTc0MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQKl0FYI5Lhrs68k4IRJUGSpol 7P8jGmT1SF8GYsm2QKA/gsMnOAjCWh1R1wFwFl6PeA2aZZ0BiKhb8IiCWmha2C6p tswQxkLGZfMusb7Bu2kY5oDH6QvS+McS/rWFtyk74GW6OoQAABWsUr8+gnJsW4dq S5g0noRMZxJSN7uRLwbpaC2fZLjpudyceiIxnQ+T2e4nt8okO8cD+F69OhpnUSNu 3AE3aAqLTswqyfRBWTWWafhlFpxtoxRQMiSQaVEgea0FISFHMLI6hhlE9pNtfaVJ 2i7B2C+pZpisftvA4yKFrXNJ2P//mXXABbreE0WGMtHW73BEVcRg1JLoHhhLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTUJBX1/iEWZ4J6OpSnHNuj1pdA0wHwYDVR0j BBgwFoAUA5ZVt4XsfLAH2OwwV1WXN+3+z2gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGI4YmE0NWUtZjVkYS00NTgxLWJmZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4 NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdFREZFQ0Y2OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMzk2NTVCNzg1RUM3Q0IwMDdEOEVDMzA1NzU1OTczN0VERkVD RjY4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzAzMzJlMzQzMTJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcpzjANBgkqhkiG 9w0BAQsFAAOCAQEAHGp5HITNg7iJZ8a9+IdgFXUxHpRo2RPo6Tn1ET3suje+zezQ LBv0Yiil3u1PAToy44InmdI87nAcjaHPAZ1HC0f96TZb3e3ZWn09jlq/sN2fAj6t OrSI7k201l0fudXuxbNLfaF1IgjJ9yz+/hMdVfcD6DdamT9P7R1/3zcB3cpRC5hz BGWdA6LBByWV7yMTBdkxHwym6ZA+adk6byyGMvA3extLVukVUlBZQcw1th64M/fz OsQkI/ett4Ym/6LrkOWMKu88cQzSuyJ13VPmXCwbAxCWxJxU5y/m1s83xdr9AwZe mNmJOZp7NcBObn8j/yK1JhOF18vu67ZZChuy1A== -----END CERTIFICATE-----Generated at Wed May 13 05:50:37 2026 by rpki-client