$ rpki-client -vvf rpki-rsync.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa File: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (raw, json) Hash identifier: sAJt4KOFRGK6/p9H5qEjBboJGlbpIE0n8tuPpLq/ACA= Subject key identifier: 8C:CE:25:FF:C7:3A:B0:9F:28:CE:D7:45:3C:46:97:93:46:7B:2F:98 Certificate issuer: /CN=828B623E9A443E8B7E95D4A58B5E2965A1C40F6F Certificate serial: 503EE54154E661254B16032D4DD40E638583C539 Authority key identifier: 82:8B:62:3E:9A:44:3E:8B:7E:95:D4:A5:8B:5E:29:65:A1:C4:0F:6F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/828B623E9A443E8B7E95D4A58B5E2965A1C40F6F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa Signing time: Sun 03 May 2026 03:15:22 +0000 ROA not before: Sun 03 May 2026 03:10:22 +0000 ROA not after: Sun 02 May 2027 03:15:22 +0000 asID: 142365 IP address blocks: 103.170.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/828B623E9A443E8B7E95D4A58B5E2965A1C40F6F.crl rsync://rpki-rsync.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/828B623E9A443E8B7E95D4A58B5E2965A1C40F6F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/828B623E9A443E8B7E95D4A58B5E2965A1C40F6F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3e:e5:41:54:e6:61:25:4b:16:03:2d:4d:d4:0e:63:85:83:c5:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828B623E9A443E8B7E95D4A58B5E2965A1C40F6F Validity Not Before: May 3 03:10:22 2026 GMT Not After : May 2 03:15:22 2027 GMT Subject: CN=8CCE25FFC73AB09F28CED7453C469793467B2F98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b2:35:6a:a1:c8:5b:f5:d0:4e:0c:e9:39:5d: 0f:5f:0e:c5:b0:0d:8f:b2:67:df:39:44:78:18:12: 23:6f:67:88:08:41:03:fa:45:3d:09:47:8e:09:e2: e4:dd:20:11:52:54:d2:b1:34:8f:21:a1:6a:cb:44: 88:6f:21:cf:87:98:9e:ad:c3:f4:c5:c1:d9:b4:ca: cb:9f:48:16:c2:1e:9c:fc:31:e7:dc:f9:e4:bf:58: c5:64:b3:bf:b8:e9:20:5f:4f:0d:04:af:91:41:8c: 36:85:c8:6e:14:d6:12:80:2b:b0:26:aa:08:11:77: 52:95:d4:29:8a:39:82:cf:2b:ef:68:ec:0f:83:94: cf:bd:96:0c:03:c5:54:cd:ed:52:e3:e7:13:44:b1: 69:0a:2b:6a:28:0f:64:94:16:81:ac:53:6a:5c:b6: 86:b9:41:a9:1c:84:d4:2f:68:31:97:dc:1d:86:42: d5:05:b5:06:4f:58:9f:37:66:53:6e:7f:a5:b2:34: 71:12:24:1b:9e:7c:b5:00:0a:c4:9d:1f:5e:61:a2: ee:fe:9c:f8:d2:6a:5a:be:69:97:07:50:e3:d0:7c: 3c:36:e5:74:ed:52:83:92:90:18:8a:19:5b:c6:0c: 2d:66:7b:05:42:da:d2:41:1d:ee:81:3c:ac:93:e0: 13:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CE:25:FF:C7:3A:B0:9F:28:CE:D7:45:3C:46:97:93:46:7B:2F:98 X509v3 Authority Key Identifier: keyid:82:8B:62:3E:9A:44:3E:8B:7E:95:D4:A5:8B:5E:29:65:A1:C4:0F:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/828B623E9A443E8B7E95D4A58B5E2965A1C40F6F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/828B623E9A443E8B7E95D4A58B5E2965A1C40F6F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.187.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:6b:91:0e:37:c6:16:03:47:dd:6d:b0:fc:12:7b:80:04:51: 36:f9:7d:d5:69:5b:ac:e1:6d:6d:b0:e4:16:56:da:f7:3a:cb: 88:58:03:d9:d8:f7:c6:1b:5a:2a:e8:4e:76:1f:a0:3a:32:20: 54:10:47:b9:7b:bd:cb:b3:66:47:3e:c6:16:72:b9:d3:18:ad: 57:7f:2b:5b:34:64:69:fa:0e:97:c9:13:72:ef:36:f9:41:38: 71:ca:e4:ac:6b:f3:77:cf:41:75:b3:ff:04:c8:2d:26:7f:04: 57:d9:75:7c:bb:2a:b5:29:f4:77:c4:43:f3:76:53:8d:66:2e: bf:29:b5:5b:6d:30:74:85:e5:66:d2:20:5a:75:3d:13:7c:44: b6:c7:27:91:32:ac:b6:55:b6:7b:af:3e:ab:a8:94:39:f4:b3: b6:e1:8d:2e:31:07:f6:b9:ab:68:88:83:6c:52:d2:63:4a:de: d6:2c:0f:f9:e2:10:c6:bf:0d:b5:7a:de:b1:65:bf:84:7d:65: d4:12:15:52:44:4e:f8:bc:d0:3d:c1:94:1b:2a:22:ba:29:40: 7f:dd:97:6e:17:f9:9a:6a:20:4a:42:06:96:6b:a5:06:69:0a: 93:ca:2b:7e:5c:5b:79:fb:17:ce:58:9e:a6:06:8e:33:d6:f8: 55:ef:69:b6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUD7lQVTmYSVLFgMtTdQOY4WDxTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4QjYyM0U5QTQ0M0U4QjdFOTVENEE1OEI1RTI5NjVB MUM0MEY2RjAeFw0yNjA1MDMwMzEwMjJaFw0yNzA1MDIwMzE1MjJaMDMxMTAvBgNV BAMTKDhDQ0UyNUZGQzczQUIwOUYyOENFRDc0NTNDNDY5NzkzNDY3QjJGOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFsjVqochb9dBODOk5XQ9fDsWw DY+yZ985RHgYEiNvZ4gIQQP6RT0JR44J4uTdIBFSVNKxNI8hoWrLRIhvIc+HmJ6t w/TFwdm0ysufSBbCHpz8Mefc+eS/WMVks7+46SBfTw0Er5FBjDaFyG4U1hKAK7Am qggRd1KV1CmKOYLPK+9o7A+DlM+9lgwDxVTN7VLj5xNEsWkKK2ooD2SUFoGsU2pc toa5QakchNQvaDGX3B2GQtUFtQZPWJ83ZlNuf6WyNHESJBuefLUACsSdH15hou7+ nPjSalq+aZcHUOPQfDw25XTtUoOSkBiKGVvGDC1mewVC2tJBHe6BPKyT4BPBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjM4l/8c6sJ8oztdFPEaXk0Z7L5gwHwYDVR0j BBgwFoAUgotiPppEPot+ldSli14pZaHED28wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWFmMGY0MjMtM2JlZC00OTM4LTlmODktMTVlNjI2OWJkZGNhLzAvODI4QjYyM0U5 QTQ0M0U4QjdFOTVENEE1OEI1RTI5NjVBMUM0MEY2Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84MjhCNjIzRTlBNDQzRThCN0U5NUQ0QTU4QjVFMjk2NUExQzQw RjZGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhZjBmNDIzLTNiZWQtNDkzOC05 Zjg5LTE1ZTYyNjliZGRjYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqrswDQYJ KoZIhvcNAQELBQADggEBAEtrkQ43xhYDR91tsPwSe4AEUTb5fdVpW6zhbW2w5BZW 2vc6y4hYA9nY98YbWiroTnYfoDoyIFQQR7l7vcuzZkc+xhZyudMYrVd/K1s0ZGn6 DpfJE3LvNvlBOHHK5Kxr83fPQXWz/wTILSZ/BFfZdXy7KrUp9HfEQ/N2U41mLr8p tVttMHSF5WbSIFp1PRN8RLbHJ5EyrLZVtnuvPquolDn0s7bhjS4xB/a5q2iIg2xS 0mNK3tYsD/niEMa/DbV63rFlv4R9ZdQSFVJETvi80D3BlBsqIropQH/dl24X+Zpq IEpCBpZrpQZpCpPKK35cW3n7F85YnqYGjjPW+FXvabY= -----END CERTIFICATE-----Generated at Wed May 13 10:43:26 2026 by rpki-client