$ rpki-client -vvf rpki-rsync.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa File: 3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa (raw, json) Hash identifier: i1PCAoIZ8GEBtvqZu9y6RsJ/+cUgKfG+tpL6n+2MQ0w= Subject key identifier: 3E:B8:F7:D7:EE:DF:72:E4:3E:A9:1B:B5:07:31:1E:8F:17:01:FF:23 Certificate issuer: /CN=9EDB723FFE084B9B87B5B0A108574335936817FB Certificate serial: 70D9A2833030935FE9B6528BC1D3225548388B40 Authority key identifier: 9E:DB:72:3F:FE:08:4B:9B:87:B5:B0:A1:08:57:43:35:93:68:17:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9EDB723FFE084B9B87B5B0A108574335936817FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa Signing time: Sun 03 May 2026 03:12:30 +0000 ROA not before: Sun 03 May 2026 03:07:30 +0000 ROA not after: Sun 02 May 2027 03:12:30 +0000 asID: 141618 IP address blocks: 103.161.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/9EDB723FFE084B9B87B5B0A108574335936817FB.crl rsync://rpki-rsync.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/9EDB723FFE084B9B87B5B0A108574335936817FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9EDB723FFE084B9B87B5B0A108574335936817FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d9:a2:83:30:30:93:5f:e9:b6:52:8b:c1:d3:22:55:48:38:8b:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDB723FFE084B9B87B5B0A108574335936817FB Validity Not Before: May 3 03:07:30 2026 GMT Not After : May 2 03:12:30 2027 GMT Subject: CN=3EB8F7D7EEDF72E43EA91BB507311E8F1701FF23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:17:28:35:f3:04:b1:c5:ff:69:cf:45:37:c4: 35:d7:7f:2a:0c:31:fc:cd:ad:18:65:c2:55:ca:66: 20:b5:2c:99:a4:bc:0a:6f:cd:0b:45:32:80:58:af: 77:ae:07:d6:81:f5:4a:75:5e:0f:7b:45:fc:eb:72: eb:cd:3f:a5:39:b2:54:02:12:c5:99:06:b7:4a:ec: 01:41:a5:e8:c7:f0:34:29:59:16:8e:23:7f:a8:71: 78:36:7e:85:a9:e1:d4:19:93:b6:a1:dd:05:c6:82: d2:b4:70:9d:f6:af:df:b1:ac:22:40:56:51:30:7c: 6e:9e:28:c4:e2:41:d3:50:49:a4:b3:0d:7c:66:a2: 72:eb:38:5f:96:05:53:60:b5:7f:d7:35:94:17:68: 8f:a2:e9:f9:ea:d7:75:8a:17:8b:54:1d:90:0b:e9: b0:0f:96:8b:aa:dd:dd:3c:5b:47:6f:eb:1d:56:e3: a0:89:d3:e4:44:19:42:5a:d0:96:a6:35:e8:54:17: c1:ef:e5:ac:a9:28:b7:f9:11:cc:1f:21:6d:6e:ea: 18:c5:83:7f:1c:6f:ed:20:e3:a2:5f:c4:f4:06:09: 8e:1b:5d:e5:05:95:b7:ae:c1:55:14:53:a0:4f:86: c7:04:fd:85:cc:b6:f3:40:84:8d:db:39:11:81:fb: 2b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B8:F7:D7:EE:DF:72:E4:3E:A9:1B:B5:07:31:1E:8F:17:01:FF:23 X509v3 Authority Key Identifier: keyid:9E:DB:72:3F:FE:08:4B:9B:87:B5:B0:A1:08:57:43:35:93:68:17:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/9EDB723FFE084B9B87B5B0A108574335936817FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9EDB723FFE084B9B87B5B0A108574335936817FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.109.0/24 Signature Algorithm: sha256WithRSAEncryption 65:53:ca:42:2a:b0:0c:af:14:67:d4:5c:e8:55:84:81:57:c1: b8:e8:21:f9:f3:aa:cc:c2:3e:fe:b8:23:f5:84:c7:a0:5b:cc: 8c:b0:82:b1:b0:01:35:d8:b9:c7:dd:86:a1:3b:d6:e3:4b:34: 1d:34:9a:f2:3b:b9:6c:d3:6a:8c:56:54:d2:7d:7c:2f:92:ad: 48:d6:21:1f:ba:a9:85:d9:e4:68:4a:4a:f3:1f:04:19:b5:57: 26:a7:1b:c1:f5:79:cc:5d:2a:51:3e:36:b7:0d:c7:f8:fc:d2: a1:c1:77:99:ad:a3:e9:af:43:21:ce:af:61:5b:f8:7a:67:67: 35:fb:a7:c0:15:ea:8a:e1:fc:bd:86:1a:3a:8c:73:e7:02:e4: c9:07:35:61:de:94:f9:b0:1b:77:20:f4:69:bc:ff:6a:64:3d: c0:fa:5a:0c:01:06:df:05:a4:c0:58:13:87:0f:02:99:6e:f4: 62:fd:6b:68:3d:7f:37:0a:0f:9c:c3:4a:8a:6c:d6:05:fa:d7: d3:fb:7f:23:18:96:52:5d:75:ef:49:08:41:35:84:3a:06:0d: 75:16:cf:01:0f:05:2b:f6:fc:3d:e3:0b:96:59:11:15:f7:e6: dd:d7:52:6e:7b:2d:0a:01:50:3f:3f:bd:9f:0b:b2:0c:17:f0: 91:3b:e6:da -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcNmigzAwk1/ptlKLwdMiVUg4i0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVEQjcyM0ZGRTA4NEI5Qjg3QjVCMEExMDg1NzQzMzU5 MzY4MTdGQjAeFw0yNjA1MDMwMzA3MzBaFw0yNzA1MDIwMzEyMzBaMDMxMTAvBgNV BAMTKDNFQjhGN0Q3RUVERjcyRTQzRUE5MUJCNTA3MzExRThGMTcwMUZGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhFyg18wSxxf9pz0U3xDXXfyoM MfzNrRhlwlXKZiC1LJmkvApvzQtFMoBYr3euB9aB9Up1Xg97RfzrcuvNP6U5slQC EsWZBrdK7AFBpejH8DQpWRaOI3+ocXg2foWp4dQZk7ah3QXGgtK0cJ32r9+xrCJA VlEwfG6eKMTiQdNQSaSzDXxmonLrOF+WBVNgtX/XNZQXaI+i6fnq13WKF4tUHZAL 6bAPlouq3d08W0dv6x1W46CJ0+REGUJa0JamNehUF8Hv5aypKLf5EcwfIW1u6hjF g38cb+0g46JfxPQGCY4bXeUFlbeuwVUUU6BPhscE/YXMtvNAhI3bORGB+yuBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPrj31+7fcuQ+qRu1BzEejxcB/yMwHwYDVR0j BBgwFoAUnttyP/4IS5uHtbChCFdDNZNoF/swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTBiYTk3ZWYtN2JjOC00NWI4LTgyYWItZjg1NTMzY2FlZGY0LzAvOUVEQjcyM0ZG RTA4NEI5Qjg3QjVCMEExMDg1NzQzMzU5MzY4MTdGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RURCNzIzRkZFMDg0QjlCODdCNUIwQTEwODU3NDMzNTkzNjgx N0ZCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UwYmE5N2VmLTdiYzgtNDViOC04 MmFiLWY4NTUzM2NhZWRmNC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoW0wDQYJ KoZIhvcNAQELBQADggEBAGVTykIqsAyvFGfUXOhVhIFXwbjoIfnzqszCPv64I/WE x6BbzIywgrGwATXYucfdhqE71uNLNB00mvI7uWzTaoxWVNJ9fC+SrUjWIR+6qYXZ 5GhKSvMfBBm1VyanG8H1ecxdKlE+NrcNx/j80qHBd5mto+mvQyHOr2Fb+HpnZzX7 p8AV6orh/L2GGjqMc+cC5MkHNWHelPmwG3cg9Gm8/2pkPcD6WgwBBt8FpMBYE4cP Aplu9GL9a2g9fzcKD5zDSops1gX619P7fyMYllJdde9JCEE1hDoGDXUWzwEPBSv2 /D3jC5ZZERX35t3XUm57LQoBUD8/vZ8LsgwX8JE75to= -----END CERTIFICATE-----Generated at Wed May 13 08:48:50 2026 by rpki-client