$ rpki-client -vvf rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/3130332e3133372e33382e302f32332d3233203d3e20313534343130.roa File: 3130332e3133372e33382e302f32332d3233203d3e20313534343130.roa (raw, json) Hash identifier: vSt0O12iEjIfejoamLvxd1FSHE5umSqpwwku+iFtKN4= Subject key identifier: 7A:22:F0:6C:19:BD:06:5E:B3:98:80:3A:2F:D7:FC:B7:C5:FD:29:16 Certificate issuer: /CN=0D2802EC43905EEA387602B994B8B579041C8507 Certificate serial: 1C4F442A38161B9E8473FB1C681CED5E85629921 Authority key identifier: 0D:28:02:EC:43:90:5E:EA:38:76:02:B9:94:B8:B5:79:04:1C:85:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0D2802EC43905EEA387602B994B8B579041C8507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/3130332e3133372e33382e302f32332d3233203d3e20313534343130.roa Signing time: Sun 03 May 2026 03:13:13 +0000 ROA not before: Sun 03 May 2026 03:08:13 +0000 ROA not after: Sun 02 May 2027 03:13:13 +0000 asID: 154410 IP address blocks: 103.137.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/0D2802EC43905EEA387602B994B8B579041C8507.crl rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/0D2802EC43905EEA387602B994B8B579041C8507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0D2802EC43905EEA387602B994B8B579041C8507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4f:44:2a:38:16:1b:9e:84:73:fb:1c:68:1c:ed:5e:85:62:99:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D2802EC43905EEA387602B994B8B579041C8507 Validity Not Before: May 3 03:08:13 2026 GMT Not After : May 2 03:13:13 2027 GMT Subject: CN=7A22F06C19BD065EB398803A2FD7FCB7C5FD2916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9c:b1:08:c7:a5:43:f7:7c:47:c7:2a:c0:d0: 20:5a:a9:df:28:bc:d1:49:aa:24:f3:bf:ed:22:13: ff:bb:cb:07:28:66:37:b3:4e:c5:fb:3c:90:41:82: 1f:75:8d:34:57:a8:14:16:74:38:97:15:7d:ff:52: 9d:20:0d:0c:85:10:65:19:84:f0:1b:a7:ca:eb:85: 58:96:4a:24:5b:bb:1e:73:43:33:8a:df:b6:7f:89: e7:06:ef:41:71:7b:6e:62:4d:77:ee:be:a2:93:47: aa:85:4b:c1:e1:e6:94:94:ec:1e:50:de:6f:52:01: d0:bf:4f:8c:54:e6:a6:93:c3:dd:3f:c1:33:b3:ca: 9b:87:fb:b1:e9:70:be:62:69:f2:74:9d:22:b5:33: 7e:a4:50:7a:57:34:da:fc:c5:8f:bf:32:b5:e8:0f: dd:6e:5f:b3:e8:3f:97:b9:a7:18:38:ee:b9:37:64: b0:6f:41:db:66:29:8f:ef:a0:7e:6c:37:18:30:5b: d1:06:24:38:d6:d2:06:43:b6:a5:a1:2f:c6:e7:c4: 71:9b:9a:19:f0:68:54:57:e6:f9:db:2f:1a:bd:23: 30:90:d9:55:14:cd:f3:08:99:73:70:53:f7:57:f0: c7:f3:48:13:f0:63:c5:b9:06:e9:18:2c:20:51:de: 0c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:22:F0:6C:19:BD:06:5E:B3:98:80:3A:2F:D7:FC:B7:C5:FD:29:16 X509v3 Authority Key Identifier: keyid:0D:28:02:EC:43:90:5E:EA:38:76:02:B9:94:B8:B5:79:04:1C:85:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/0D2802EC43905EEA387602B994B8B579041C8507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0D2802EC43905EEA387602B994B8B579041C8507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/3130332e3133372e33382e302f32332d3233203d3e20313534343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.38.0/23 Signature Algorithm: sha256WithRSAEncryption 48:7c:3e:63:61:84:92:93:0d:6a:5e:85:fd:20:e1:27:59:30: 79:80:06:97:84:e0:8e:76:f5:d2:b4:6a:94:84:5d:60:4c:4d: d0:cd:fd:a0:86:ad:b4:e7:ed:43:94:62:52:47:1a:5c:5c:19: 52:da:18:4d:e8:5d:47:24:a7:f9:55:d6:70:f5:c2:34:8c:cd: a0:6e:8b:43:27:08:2f:3a:bf:da:24:a2:98:46:45:91:6c:91: cd:a3:59:95:4c:c8:0d:45:7f:99:6f:ec:0d:b3:e1:9c:ac:9f: e1:23:1a:cf:de:99:81:b2:4b:4e:ae:37:f8:f9:dd:12:5d:8f: 9c:4d:84:14:7b:fe:a1:a2:a9:7e:8e:6b:39:b7:d3:0b:b3:63: ed:0b:b0:83:8a:33:46:cb:ee:99:33:03:4e:11:07:bd:9f:94: 74:ee:0e:b2:9a:ea:e0:73:65:bb:65:e1:d5:ac:07:d4:00:ce: 04:b2:3b:95:c6:eb:20:4f:de:88:fc:cb:30:7a:b5:87:1c:a6: f6:e0:a0:c7:51:08:ad:d1:8a:a0:a3:bf:85:33:56:20:4d:74: 6f:e4:fe:41:54:50:c7:5c:a2:6c:5c:b5:54:4e:32:cb:d5:c3: d3:c2:c3:31:2d:a5:bb:f1:a1:49:85:38:18:41:e7:4a:dd:0e: ee:32:d0:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHE9EKjgWG56Ec/scaBztXoVimSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQyODAyRUM0MzkwNUVFQTM4NzYwMkI5OTRCOEI1Nzkw NDFDODUwNzAeFw0yNjA1MDMwMzA4MTNaFw0yNzA1MDIwMzEzMTNaMDMxMTAvBgNV BAMTKDdBMjJGMDZDMTlCRDA2NUVCMzk4ODAzQTJGRDdGQ0I3QzVGRDI5MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1nLEIx6VD93xHxyrA0CBaqd8o vNFJqiTzv+0iE/+7ywcoZjezTsX7PJBBgh91jTRXqBQWdDiXFX3/Up0gDQyFEGUZ hPAbp8rrhViWSiRbux5zQzOK37Z/iecG70Fxe25iTXfuvqKTR6qFS8Hh5pSU7B5Q 3m9SAdC/T4xU5qaTw90/wTOzypuH+7HpcL5iafJ0nSK1M36kUHpXNNr8xY+/MrXo D91uX7PoP5e5pxg47rk3ZLBvQdtmKY/voH5sNxgwW9EGJDjW0gZDtqWhL8bnxHGb mhnwaFRX5vnbLxq9IzCQ2VUUzfMImXNwU/dX8MfzSBPwY8W5BukYLCBR3gydAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeiLwbBm9Bl6zmIA6L9f8t8X9KRYwHwYDVR0j BBgwFoAUDSgC7EOQXuo4dgK5lLi1eQQchQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTNiYmYxZGEtZTMxNy00OGVmLWFkNmQtZmU4YThiZjA4NDAwLzAvMEQyODAyRUM0 MzkwNUVFQTM4NzYwMkI5OTRCOEI1NzkwNDFDODUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRDI4MDJFQzQzOTA1RUVBMzg3NjAyQjk5NEI4QjU3OTA0MUM4 NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h ZDZkLWZlOGE4YmYwODQwMC8wLzMxMzAzMzJlMzEzMzM3MmUzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTM0MzQzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4kmMA0GCSqG SIb3DQEBCwUAA4IBAQBIfD5jYYSSkw1qXoX9IOEnWTB5gAaXhOCOdvXStGqUhF1g TE3Qzf2ghq205+1DlGJSRxpcXBlS2hhN6F1HJKf5VdZw9cI0jM2gbotDJwgvOr/a JKKYRkWRbJHNo1mVTMgNRX+Zb+wNs+GcrJ/hIxrP3pmBsktOrjf4+d0SXY+cTYQU e/6hoql+jms5t9MLs2PtC7CDijNGy+6ZMwNOEQe9n5R07g6ymurgc2W7ZeHVrAfU AM4EsjuVxusgT96I/MswerWHHKb24KDHUQit0Yqgo7+FM1YgTXRv5P5BVFDHXKJs XLVUTjLL1cPTwsMxLaW78aFJhTgYQedK3Q7uMtCo -----END CERTIFICATE-----Generated at Tue May 12 22:56:20 2026 by rpki-client