$ rpki-client -vvf rpki-rsync.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa File: 3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa (raw, json) Hash identifier: RKQ6wa1x5VScJTj3fjdeSQ/eUi7ms4u121kFQZr9klo= Subject key identifier: 5E:2C:42:A1:BD:ED:22:1B:EB:21:37:31:5C:59:A8:E5:FA:10:FB:0E Certificate issuer: /CN=0B9143CD5D2A8357E2011E7843995E4FB1F95339 Certificate serial: 33A6BA24983733752053200233684962F4B195C6 Authority key identifier: 0B:91:43:CD:5D:2A:83:57:E2:01:1E:78:43:99:5E:4F:B1:F9:53:39 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0B9143CD5D2A8357E2011E7843995E4FB1F95339.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa Signing time: Sun 03 May 2026 03:11:30 +0000 ROA not before: Sun 03 May 2026 03:06:30 +0000 ROA not after: Sun 02 May 2027 03:11:30 +0000 asID: 137300 IP address blocks: 103.107.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/0B9143CD5D2A8357E2011E7843995E4FB1F95339.crl rsync://rpki-rsync.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/0B9143CD5D2A8357E2011E7843995E4FB1F95339.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0B9143CD5D2A8357E2011E7843995E4FB1F95339.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a6:ba:24:98:37:33:75:20:53:20:02:33:68:49:62:f4:b1:95:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0B9143CD5D2A8357E2011E7843995E4FB1F95339 Validity Not Before: May 3 03:06:30 2026 GMT Not After : May 2 03:11:30 2027 GMT Subject: CN=5E2C42A1BDED221BEB2137315C59A8E5FA10FB0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:27:24:16:42:ec:82:eb:7f:84:9e:0c:00:ef: 5a:08:76:09:94:02:32:c8:a4:a7:89:a6:bd:98:03: 5a:2f:b7:86:10:01:5f:a0:3c:9e:f8:b1:91:a7:86: 40:13:20:eb:c0:f0:e1:33:ea:9e:60:12:b6:93:9e: 99:3d:41:00:5a:2c:c3:9b:25:9e:a9:03:86:7d:61: e9:ca:98:0d:b7:bd:aa:86:2a:81:f2:7b:e1:35:af: 46:40:7f:fc:a2:2a:b5:8e:1f:33:1d:1f:e3:40:bb: ad:5d:4d:e4:1b:9f:46:93:b6:1b:1f:33:46:ed:e9: 21:a7:44:e8:4e:d2:df:f5:b1:60:e0:3b:84:fd:3b: a4:c7:53:8d:a7:27:73:8d:6d:86:76:4f:c8:8d:e5: f1:ba:ee:37:53:cc:0b:c3:e8:ae:62:8c:80:2f:b4: 31:bf:c6:fc:e8:33:05:c0:20:a7:16:de:c7:0b:9f: 24:7a:bb:bd:46:53:2b:1c:a1:8d:a7:76:cb:3b:55: 5b:e0:df:92:ed:a8:60:0c:ab:8e:32:f8:dd:78:ce: f4:0b:65:92:3a:68:3a:dd:20:9d:4e:bd:67:bc:b1: 9c:c4:0b:55:e3:b6:de:34:80:3c:e9:8f:0a:cd:23: c0:80:aa:22:c7:a2:72:14:10:56:a3:2c:49:12:fc: fb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:2C:42:A1:BD:ED:22:1B:EB:21:37:31:5C:59:A8:E5:FA:10:FB:0E X509v3 Authority Key Identifier: keyid:0B:91:43:CD:5D:2A:83:57:E2:01:1E:78:43:99:5E:4F:B1:F9:53:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/0B9143CD5D2A8357E2011E7843995E4FB1F95339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0B9143CD5D2A8357E2011E7843995E4FB1F95339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.187.0/24 Signature Algorithm: sha256WithRSAEncryption 02:e7:25:86:ca:3a:2c:3c:94:4e:94:86:6e:98:cf:c2:c8:8e: 4e:ba:2b:9d:69:b9:fa:0f:35:d7:8f:06:96:51:a3:f2:7b:27: dc:f9:e3:a1:7f:4b:85:d1:32:c2:30:1e:07:1d:da:fe:36:e8: 58:24:a9:51:35:5b:2e:02:62:11:99:57:8b:2e:19:06:09:bf: b4:bb:7a:2a:5b:a0:4b:b1:43:49:a3:68:07:2b:61:33:21:74: 7b:40:e2:9f:65:6f:52:cc:d7:fa:fb:54:46:25:de:46:cb:51: e3:ab:54:50:0c:4a:e6:b9:9d:79:1f:93:fa:93:28:f1:d1:94: 6f:da:5f:08:41:4b:36:64:a2:10:34:9a:1c:99:b1:4b:76:70: d2:41:ae:f3:42:99:b9:72:86:a6:ae:c0:f6:ad:51:70:32:6a: 82:d2:ac:53:4a:11:5d:3e:1f:2f:12:d4:f4:3d:a2:fd:eb:94: 20:08:af:b1:06:c8:e5:1d:00:05:36:80:27:f7:17:7b:67:d2: 38:a9:21:28:ff:92:44:a3:57:6a:72:f3:36:cb:01:57:25:11: f9:e4:e1:97:12:83:c6:ce:2a:71:02:95:97:66:3f:27:a2:23: d9:6f:ca:43:37:a2:04:5d:a1:08:8d:51:88:05:f0:ed:5a:44: 4e:05:a3:8d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM6a6JJg3M3UgUyACM2hJYvSxlcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEI5MTQzQ0Q1RDJBODM1N0UyMDExRTc4NDM5OTVFNEZC MUY5NTMzOTAeFw0yNjA1MDMwMzA2MzBaFw0yNzA1MDIwMzExMzBaMDMxMTAvBgNV BAMTKDVFMkM0MkExQkRFRDIyMUJFQjIxMzczMTVDNTlBOEU1RkExMEZCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwJyQWQuyC63+EngwA71oIdgmU AjLIpKeJpr2YA1ovt4YQAV+gPJ74sZGnhkATIOvA8OEz6p5gEraTnpk9QQBaLMOb JZ6pA4Z9YenKmA23vaqGKoHye+E1r0ZAf/yiKrWOHzMdH+NAu61dTeQbn0aTthsf M0bt6SGnROhO0t/1sWDgO4T9O6THU42nJ3ONbYZ2T8iN5fG67jdTzAvD6K5ijIAv tDG/xvzoMwXAIKcW3scLnyR6u71GUyscoY2ndss7VVvg35LtqGAMq44y+N14zvQL ZZI6aDrdIJ1OvWe8sZzEC1Xjtt40gDzpjwrNI8CAqiLHonIUEFajLEkS/Pu1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXixCob3tIhvrITcxXFmo5foQ+w4wHwYDVR0j BBgwFoAUC5FDzV0qg1fiAR54Q5leT7H5UzkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGQ0OGJkMDQtZjc4Ny00MTRhLWE1MDEtNTEzOGE2ZDZiM2UxLzAvMEI5MTQzQ0Q1 RDJBODM1N0UyMDExRTc4NDM5OTVFNEZCMUY5NTMzOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQjkxNDNDRDVEMkE4MzU3RTIwMTFFNzg0Mzk5NUU0RkIxRjk1 MzM5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RkNDhiZDA0LWY3ODctNDE0YS1h NTAxLTUxMzhhNmQ2YjNlMS8wLzMxMzAzMzJlMzEzMDM3MmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna7swDQYJ KoZIhvcNAQELBQADggEBAALnJYbKOiw8lE6Uhm6Yz8LIjk66K51pufoPNdePBpZR o/J7J9z546F/S4XRMsIwHgcd2v426FgkqVE1Wy4CYhGZV4suGQYJv7S7eipboEux Q0mjaAcrYTMhdHtA4p9lb1LM1/r7VEYl3kbLUeOrVFAMSua5nXkfk/qTKPHRlG/a XwhBSzZkohA0mhyZsUt2cNJBrvNCmblyhqauwPatUXAyaoLSrFNKEV0+Hy8S1PQ9 ov3rlCAIr7EGyOUdAAU2gCf3F3tn0jipISj/kkSjV2py8zbLAVclEfnk4ZcSg8bO KnEClZdmPyeiI9lvykM3ogRdoQiNUYgF8O1aRE4Fo40= -----END CERTIFICATE-----Generated at Wed May 13 14:11:03 2026 by rpki-client