$ rpki-client -vvf rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa File: 3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa (raw, json) Hash identifier: cAOT4AjnHt7EFIcLC/LKlDN+b5yxtCGbGKhkfMCNBoA= Subject key identifier: 07:AB:A7:5F:24:20:76:A9:B1:A5:52:C8:CC:4D:4B:96:F4:24:84:3C Certificate issuer: /CN=CA342D64E10FDED8935633F782F970DA5D9B064C Certificate serial: 41F0213B7A7D943787F5F77309FB22C4CCC27D96 Authority key identifier: CA:34:2D:64:E1:0F:DE:D8:93:56:33:F7:82:F9:70:DA:5D:9B:06:4C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA342D64E10FDED8935633F782F970DA5D9B064C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa Signing time: Sun 03 May 2026 03:11:46 +0000 ROA not before: Sun 03 May 2026 03:06:46 +0000 ROA not after: Sun 02 May 2027 03:11:46 +0000 asID: 141122 IP address blocks: 103.157.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/CA342D64E10FDED8935633F782F970DA5D9B064C.crl rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/CA342D64E10FDED8935633F782F970DA5D9B064C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA342D64E10FDED8935633F782F970DA5D9B064C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:11:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f0:21:3b:7a:7d:94:37:87:f5:f7:73:09:fb:22:c4:cc:c2:7d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA342D64E10FDED8935633F782F970DA5D9B064C Validity Not Before: May 3 03:06:46 2026 GMT Not After : May 2 03:11:46 2027 GMT Subject: CN=07ABA75F242076A9B1A552C8CC4D4B96F424843C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:70:8d:f4:e1:6b:d9:50:08:e5:cd:17:1a:78: 25:97:2a:4e:ad:72:ee:d7:49:e2:53:79:ce:ff:9d: 9d:6c:ec:d3:0d:89:d0:9c:72:90:5f:33:6c:2d:51: c7:04:fe:5a:23:ee:44:fd:50:6a:23:9c:cb:cb:2e: be:88:97:9b:31:28:97:b8:e9:f6:99:cf:63:08:29: 53:f5:3d:2f:25:04:c1:2f:9d:b1:80:a0:00:79:7e: d9:ad:3e:1b:85:ec:18:ae:30:9e:6b:3a:9d:f8:2f: 55:7d:c5:59:73:42:c8:11:e7:b4:0d:c5:46:94:75: a1:ca:dd:2e:07:8c:fe:58:bc:5f:31:de:df:5d:07: ec:55:e4:a8:a4:b7:3e:b2:fa:c2:b8:64:f0:a4:2b: f3:bd:3b:e2:a9:d9:75:0c:b3:9f:65:70:be:a3:d3: 7c:3f:44:4b:bd:81:6e:7a:af:e1:e8:fc:05:56:54: 2c:ed:84:6d:33:2a:3a:53:a8:96:ce:87:d3:8b:04: 80:3f:8a:c7:2e:2f:48:2f:e7:4d:ec:50:91:59:23: 03:da:43:f2:5d:60:55:a6:82:a0:5b:e9:ff:b1:8d: bc:38:e1:12:3e:43:ca:4e:72:a1:65:68:a9:f6:62: 8c:da:d7:90:23:42:ea:e0:aa:0f:aa:5f:09:a0:06: 81:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AB:A7:5F:24:20:76:A9:B1:A5:52:C8:CC:4D:4B:96:F4:24:84:3C X509v3 Authority Key Identifier: keyid:CA:34:2D:64:E1:0F:DE:D8:93:56:33:F7:82:F9:70:DA:5D:9B:06:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/CA342D64E10FDED8935633F782F970DA5D9B064C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA342D64E10FDED8935633F782F970DA5D9B064C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.193.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:bd:06:bf:58:95:67:0d:a3:50:fc:11:6f:26:4c:6a:93:43: ab:9e:bb:91:36:26:f3:4d:95:09:e2:a3:ce:ed:47:76:e2:73: 25:3c:9f:62:f2:4d:19:9b:d0:4f:cb:51:91:1e:22:13:21:61: 1d:80:88:16:04:fe:83:78:fb:85:d8:85:42:ce:86:b9:f8:05: 47:42:95:24:a7:fb:b1:10:f1:73:8f:f6:23:31:93:cb:99:05: d7:02:e3:59:3e:14:1c:0c:43:ff:26:f1:86:5a:ee:b9:18:7a: c5:63:13:4c:11:7f:66:00:57:8d:4c:67:0b:0c:a2:97:18:02: 9d:52:de:8f:87:1a:a6:fc:73:f0:64:f6:31:d2:17:fb:14:5a: bd:08:fa:5e:ef:aa:5c:51:ec:78:1a:39:93:4f:0d:b0:31:92: 3c:a4:c7:57:fd:a2:7c:e8:f5:f9:c3:0c:ed:02:b0:ea:32:47: c9:65:64:0c:a1:c2:20:50:be:f7:aa:59:c2:74:59:34:76:5c: 6f:82:fb:6f:01:21:b2:b1:9f:df:96:98:96:24:07:12:cf:07: 57:3e:10:e8:b9:bd:eb:54:d4:12:5c:23:23:ca:39:07:f5:a6: fe:96:92:94:a5:e7:ed:ab:4c:d5:43:29:dc:f2:ee:a6:1b:91: 9e:24:ea:9b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQfAhO3p9lDeH9fdzCfsixMzCfZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNDJENjRFMTBGREVEODkzNTYzM0Y3ODJGOTcwREE1 RDlCMDY0QzAeFw0yNjA1MDMwMzA2NDZaFw0yNzA1MDIwMzExNDZaMDMxMTAvBgNV BAMTKDA3QUJBNzVGMjQyMDc2QTlCMUE1NTJDOENDNEQ0Qjk2RjQyNDg0M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqcI304WvZUAjlzRcaeCWXKk6t cu7XSeJTec7/nZ1s7NMNidCccpBfM2wtUccE/loj7kT9UGojnMvLLr6Il5sxKJe4 6faZz2MIKVP1PS8lBMEvnbGAoAB5ftmtPhuF7BiuMJ5rOp34L1V9xVlzQsgR57QN xUaUdaHK3S4HjP5YvF8x3t9dB+xV5Kiktz6y+sK4ZPCkK/O9O+Kp2XUMs59lcL6j 03w/REu9gW56r+Ho/AVWVCzthG0zKjpTqJbOh9OLBIA/iscuL0gv503sUJFZIwPa Q/JdYFWmgqBb6f+xjbw44RI+Q8pOcqFlaKn2Yoza15AjQurgqg+qXwmgBoHDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUB6unXyQgdqmxpVLIzE1LlvQkhDwwHwYDVR0j BBgwFoAUyjQtZOEP3tiTVjP3gvlw2l2bBkwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGU2ZjVjZTctYjM2Yi00NzNkLWE1YmUtOWMwMzUwZDFmMzgyLzAvQ0EzNDJENjRF MTBGREVEODkzNTYzM0Y3ODJGOTcwREE1RDlCMDY0Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTM0MkQ2NEUxMEZERUQ4OTM1NjMzRjc4MkY5NzBEQTVEOUIw NjRDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RlNmY1Y2U3LWIzNmItNDczZC1h NWJlLTljMDM1MGQxZjM4Mi8wLzMxMzAzMzJlMzEzNTM3MmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnncEwDQYJ KoZIhvcNAQELBQADggEBAC+9Br9YlWcNo1D8EW8mTGqTQ6ueu5E2JvNNlQnio87t R3bicyU8n2LyTRmb0E/LUZEeIhMhYR2AiBYE/oN4+4XYhULOhrn4BUdClSSn+7EQ 8XOP9iMxk8uZBdcC41k+FBwMQ/8m8YZa7rkYesVjE0wRf2YAV41MZwsMopcYAp1S 3o+HGqb8c/Bk9jHSF/sUWr0I+l7vqlxR7HgaOZNPDbAxkjykx1f9onzo9fnDDO0C sOoyR8llZAyhwiBQvveqWcJ0WTR2XG+C+28BIbKxn9+WmJYkBxLPB1c+EOi5vetU 1BJcIyPKOQf1pv6WkpSl5+2rTNVDKdzy7qYbkZ4k6ps= -----END CERTIFICATE-----Generated at Wed May 13 06:08:09 2026 by rpki-client