$ rpki-client -vvf rpki-rsync.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa File: 3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa (raw, json) Hash identifier: +HdgvP+uGxgAxogBbgKZdpEZmiEj0DQvXIC1nOPvcEc= Subject key identifier: 2D:91:5C:85:C5:FD:60:3B:63:5A:75:32:68:3B:2D:7C:0A:A4:72:84 Certificate issuer: /CN=0834397E0D61D0AABF517AF83A3C2BA1DB62C242 Certificate serial: 17AFC405CA3F9452C26D0E7AA569037670C6ABA9 Authority key identifier: 08:34:39:7E:0D:61:D0:AA:BF:51:7A:F8:3A:3C:2B:A1:DB:62:C2:42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0834397E0D61D0AABF517AF83A3C2BA1DB62C242.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa Signing time: Sun 03 May 2026 03:12:17 +0000 ROA not before: Sun 03 May 2026 03:07:17 +0000 ROA not after: Sun 02 May 2027 03:12:17 +0000 asID: 141133 IP address blocks: 103.158.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/0834397E0D61D0AABF517AF83A3C2BA1DB62C242.crl rsync://rpki-rsync.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/0834397E0D61D0AABF517AF83A3C2BA1DB62C242.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0834397E0D61D0AABF517AF83A3C2BA1DB62C242.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:af:c4:05:ca:3f:94:52:c2:6d:0e:7a:a5:69:03:76:70:c6:ab:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0834397E0D61D0AABF517AF83A3C2BA1DB62C242 Validity Not Before: May 3 03:07:17 2026 GMT Not After : May 2 03:12:17 2027 GMT Subject: CN=2D915C85C5FD603B635A7532683B2D7C0AA47284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:5d:34:35:12:1b:3c:8f:01:ab:ac:c0:44:f0: 45:0e:22:93:1b:03:72:51:f3:d6:32:cc:48:8b:72: d2:30:be:a4:57:a8:24:42:29:9a:eb:7a:3f:e7:9f: 87:f8:a4:12:bf:aa:99:cb:4e:d3:50:e6:8c:4c:94: 0a:95:69:2d:1b:25:df:17:79:00:7d:f7:11:08:e3: b0:3b:7a:cb:b7:77:06:c9:c6:9d:a5:23:6d:56:bd: 37:21:1d:0f:23:ce:bb:c6:71:9c:aa:fb:65:21:2e: 12:e0:7c:6d:2f:fa:30:f2:e8:6c:9e:7b:96:aa:b1: ec:31:a0:40:63:17:59:15:8c:56:9c:67:ba:0c:5c: 29:fa:e6:2b:7a:3c:dc:66:e1:bb:ff:b7:31:f5:b0: 20:bb:a2:16:59:db:e3:3b:e6:8c:0d:94:33:e7:f9: e5:34:5e:c2:90:b1:cd:bc:79:b8:4b:b8:b3:3e:9f: 79:92:09:a0:16:e4:23:b2:7c:34:5a:0d:bf:7a:3a: 88:d6:99:c6:d0:55:87:dd:19:3c:35:5a:91:51:27: 55:0e:34:13:be:54:ee:f7:c3:cd:a8:17:1d:b4:04: 89:9b:d5:3f:33:65:b5:3d:1b:52:a8:c3:e6:89:92: dd:f1:56:f4:78:02:69:19:46:96:03:57:95:41:ff: 53:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:91:5C:85:C5:FD:60:3B:63:5A:75:32:68:3B:2D:7C:0A:A4:72:84 X509v3 Authority Key Identifier: keyid:08:34:39:7E:0D:61:D0:AA:BF:51:7A:F8:3A:3C:2B:A1:DB:62:C2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/0834397E0D61D0AABF517AF83A3C2BA1DB62C242.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0834397E0D61D0AABF517AF83A3C2BA1DB62C242.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.196.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:8b:a7:59:1c:10:de:f7:e4:86:21:4f:78:56:b3:f6:e4:41: d3:aa:69:7f:7c:2f:bb:0d:7d:40:f3:15:1c:94:2b:49:eb:0a: d4:80:e2:25:b0:f0:c9:ef:3f:b5:86:b2:90:27:6e:2c:25:cc: b5:6d:96:68:4f:b1:a5:4f:27:9e:ea:ec:0d:c1:f3:25:7b:ba: 9e:17:1c:8a:5d:9b:eb:a0:d2:bf:d3:71:f0:b8:60:a4:ba:f2: 37:20:fa:eb:2a:9e:40:5e:8f:70:5b:d7:73:1c:b8:84:ca:20: a5:5e:1e:a3:e3:47:e4:15:94:ae:d8:1a:1b:f7:5f:7e:82:2b: 55:02:17:e7:16:2c:c0:a1:72:64:8b:78:f8:86:03:22:ca:5b: b7:87:ba:c3:fc:b1:b9:3f:89:cd:fa:bb:6b:da:be:bc:d9:36: 44:02:85:4a:88:e2:bf:46:26:eb:6c:fb:ab:70:1d:7c:2f:de: 55:dc:9b:c5:cc:c6:a3:b6:5f:44:38:29:01:fd:f6:a4:e2:a1: 1a:b0:50:e9:94:00:4f:36:81:3d:69:f1:a1:cf:64:1b:52:d4: 99:b6:0a:d9:5f:3f:5f:5c:09:12:e6:d4:f7:bc:69:b5:07:bc: 9d:67:c8:a0:c5:8b:ba:38:36:19:97:61:76:24:90:f5:c1:1b: 0a:a3:f6:7e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF6/EBco/lFLCbQ56pWkDdnDGq6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDgzNDM5N0UwRDYxRDBBQUJGNTE3QUY4M0EzQzJCQTFE QjYyQzI0MjAeFw0yNjA1MDMwMzA3MTdaFw0yNzA1MDIwMzEyMTdaMDMxMTAvBgNV BAMTKDJEOTE1Qzg1QzVGRDYwM0I2MzVBNzUzMjY4M0IyRDdDMEFBNDcyODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLXTQ1Ehs8jwGrrMBE8EUOIpMb A3JR89YyzEiLctIwvqRXqCRCKZrrej/nn4f4pBK/qpnLTtNQ5oxMlAqVaS0bJd8X eQB99xEI47A7esu3dwbJxp2lI21WvTchHQ8jzrvGcZyq+2UhLhLgfG0v+jDy6Gye e5aqsewxoEBjF1kVjFacZ7oMXCn65it6PNxm4bv/tzH1sCC7ohZZ2+M75owNlDPn +eU0XsKQsc28ebhLuLM+n3mSCaAW5COyfDRaDb96OojWmcbQVYfdGTw1WpFRJ1UO NBO+VO73w82oFx20BImb1T8zZbU9G1Kow+aJkt3xVvR4AmkZRpYDV5VB/1OtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULZFchcX9YDtjWnUyaDstfAqkcoQwHwYDVR0j BBgwFoAUCDQ5fg1h0Kq/UXr4OjwrodtiwkIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGZkZGNiNGItNmQ4ZS00NTliLThhYTItOTlhNjA4ODYyNTZhLzAvMDgzNDM5N0Uw RDYxRDBBQUJGNTE3QUY4M0EzQzJCQTFEQjYyQzI0Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wODM0Mzk3RTBENjFEMEFBQkY1MTdBRjgzQTNDMkJBMURCNjJD MjQyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmZGRjYjRiLTZkOGUtNDU5Yi04 YWEyLTk5YTYwODg2MjU2YS8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsQwDQYJ KoZIhvcNAQELBQADggEBAIyLp1kcEN735IYhT3hWs/bkQdOqaX98L7sNfUDzFRyU K0nrCtSA4iWw8MnvP7WGspAnbiwlzLVtlmhPsaVPJ57q7A3B8yV7up4XHIpdm+ug 0r/TcfC4YKS68jcg+usqnkBej3Bb13McuITKIKVeHqPjR+QVlK7YGhv3X36CK1UC F+cWLMChcmSLePiGAyLKW7eHusP8sbk/ic36u2vavrzZNkQChUqI4r9GJuts+6tw HXwv3lXcm8XMxqO2X0Q4KQH99qTioRqwUOmUAE82gT1p8aHPZBtS1Jm2CtlfP19c CRLm1Pe8abUHvJ1nyKDFi7o4NhmXYXYkkPXBGwqj9n4= -----END CERTIFICATE-----Generated at Wed May 13 05:50:26 2026 by rpki-client