$ rpki-client -vvf rpki-rsync.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa File: 3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa (raw, json) Hash identifier: hFjJslECEMnx83EP1P1UtwdiCEUWwcSYSCvr4li07y4= Subject key identifier: 43:E0:67:11:48:60:58:63:00:32:FA:CA:82:E6:B6:09:AE:CC:EA:C5 Certificate issuer: /CN=35859E59642559AC99788C194ED55EB1548A2F1F Certificate serial: 137227630DA073643A3184D3EF109FF5BA6DA1C8 Authority key identifier: 35:85:9E:59:64:25:59:AC:99:78:8C:19:4E:D5:5E:B1:54:8A:2F:1F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/35859E59642559AC99788C194ED55EB1548A2F1F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa Signing time: Sun 03 May 2026 03:15:36 +0000 ROA not before: Sun 03 May 2026 03:10:36 +0000 ROA not after: Sun 02 May 2027 03:15:36 +0000 asID: 140478 IP address blocks: 103.154.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/35859E59642559AC99788C194ED55EB1548A2F1F.crl rsync://rpki-rsync.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/35859E59642559AC99788C194ED55EB1548A2F1F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/35859E59642559AC99788C194ED55EB1548A2F1F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:72:27:63:0d:a0:73:64:3a:31:84:d3:ef:10:9f:f5:ba:6d:a1:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35859E59642559AC99788C194ED55EB1548A2F1F Validity Not Before: May 3 03:10:36 2026 GMT Not After : May 2 03:15:36 2027 GMT Subject: CN=43E06711486058630032FACA82E6B609AECCEAC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5a:96:5e:f5:14:80:ee:d9:e3:0f:2e:35:4c: de:56:af:e5:a6:28:a1:1b:6a:96:d9:5a:6e:a7:47: 95:bc:5b:2d:49:26:c9:6e:65:c4:cd:39:dc:d9:a8: 1f:a3:26:2a:11:53:04:e9:ae:ae:28:1a:75:e1:b1: 50:9a:50:41:12:86:2c:63:73:d3:96:00:2c:2f:36: 0f:92:e0:49:09:fd:43:10:eb:77:4f:9d:86:f3:22: dd:de:42:26:c4:3d:3b:5a:c4:ff:bd:9b:16:05:24: 29:39:65:2b:35:92:c2:82:bd:3f:40:f8:78:d2:b8: bb:dc:86:c2:43:2d:4e:6c:1d:3e:28:8e:e4:05:29: 85:ac:ff:1f:8b:f0:ee:a9:0a:73:13:6c:ad:90:da: f0:27:eb:7f:d4:f9:d5:96:f2:a8:4a:e4:6c:37:44: ee:72:00:93:ba:59:94:75:f6:84:d9:a4:7a:86:84: cb:ae:28:80:58:ac:26:53:4f:f2:28:b3:7c:82:b8: 85:24:0f:ff:be:71:0f:90:50:ec:02:fb:d4:96:a5: b8:3e:5a:74:5e:57:4b:30:ae:0a:1b:89:cb:71:b5: ff:5c:1d:d4:e6:ad:ec:cf:d6:92:c8:58:b4:63:9a: f5:1c:f9:0d:fa:76:6a:44:dd:a1:dc:8c:7e:d4:01: bc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E0:67:11:48:60:58:63:00:32:FA:CA:82:E6:B6:09:AE:CC:EA:C5 X509v3 Authority Key Identifier: keyid:35:85:9E:59:64:25:59:AC:99:78:8C:19:4E:D5:5E:B1:54:8A:2F:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/35859E59642559AC99788C194ED55EB1548A2F1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/35859E59642559AC99788C194ED55EB1548A2F1F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.25.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:f3:65:d6:65:46:2b:a6:9d:93:74:08:c5:24:f8:57:5f:5a: f1:34:79:c1:9d:e4:df:7f:26:30:53:bc:ae:2e:2d:a4:d1:70: 81:b2:e1:7f:9c:1e:b7:e0:2c:a8:be:f5:c7:fb:9e:a6:dd:2d: 53:2c:42:7e:1e:d3:76:e7:4c:3d:18:cc:91:4c:dd:1f:34:b8: 2a:5f:30:1c:c1:35:b9:49:8b:ca:21:70:24:21:83:06:7e:6a: e4:fe:f6:73:c4:2a:64:22:b5:11:04:58:77:ab:42:29:08:ef: 00:72:e3:71:ee:81:ec:21:36:8f:1c:7f:24:30:e2:14:cb:d7: bc:5a:ff:89:a0:a0:b7:f3:20:c5:ed:57:1b:b9:6d:7e:01:c5: e6:5d:01:d1:ca:6f:80:c6:db:24:81:51:62:df:0a:c2:c9:ed: 9c:59:e3:0b:79:14:e8:28:16:fd:28:9f:a0:03:aa:e2:3b:1b: b4:25:30:59:f3:e8:a9:fe:14:c6:b5:a9:8f:bb:3a:4c:66:26: 36:ea:d3:6b:47:96:c7:6a:69:d9:e2:db:07:34:4f:db:b9:31: cd:ea:fb:9d:35:e8:27:e6:1c:a5:28:b7:45:81:91:8c:8d:86: 5e:c7:dc:89:bf:db:e5:ca:55:6b:a4:8b:ed:02:31:65:2a:61: 82:5a:5c:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE3InYw2gc2Q6MYTT7xCf9bptocgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU4NTlFNTk2NDI1NTlBQzk5Nzg4QzE5NEVENTVFQjE1 NDhBMkYxRjAeFw0yNjA1MDMwMzEwMzZaFw0yNzA1MDIwMzE1MzZaMDMxMTAvBgNV BAMTKDQzRTA2NzExNDg2MDU4NjMwMDMyRkFDQTgyRTZCNjA5QUVDQ0VBQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZWpZe9RSA7tnjDy41TN5Wr+Wm KKEbapbZWm6nR5W8Wy1JJsluZcTNOdzZqB+jJioRUwTprq4oGnXhsVCaUEEShixj c9OWACwvNg+S4EkJ/UMQ63dPnYbzIt3eQibEPTtaxP+9mxYFJCk5ZSs1ksKCvT9A +HjSuLvchsJDLU5sHT4ojuQFKYWs/x+L8O6pCnMTbK2Q2vAn63/U+dWW8qhK5Gw3 RO5yAJO6WZR19oTZpHqGhMuuKIBYrCZTT/Ios3yCuIUkD/++cQ+QUOwC+9SWpbg+ WnReV0swrgobictxtf9cHdTmrezP1pLIWLRjmvUc+Q36dmpE3aHcjH7UAbzPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ+BnEUhgWGMAMvrKgua2Ca7M6sUwHwYDVR0j BBgwFoAUNYWeWWQlWayZeIwZTtVesVSKLx8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWJlZmJmMDQtNDFiZS00OGQ3LWFjMDAtOGEzYzQ5OGNhOWFlLzAvMzU4NTlFNTk2 NDI1NTlBQzk5Nzg4QzE5NEVENTVFQjE1NDhBMkYxRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNTg1OUU1OTY0MjU1OUFDOTk3ODhDMTk0RUQ1NUVCMTU0OEEy RjFGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5oZMA0GCSqG SIb3DQEBCwUAA4IBAQAM82XWZUYrpp2TdAjFJPhXX1rxNHnBneTffyYwU7yuLi2k 0XCBsuF/nB634CyovvXH+56m3S1TLEJ+HtN250w9GMyRTN0fNLgqXzAcwTW5SYvK IXAkIYMGfmrk/vZzxCpkIrURBFh3q0IpCO8AcuNx7oHsITaPHH8kMOIUy9e8Wv+J oKC38yDF7VcbuW1+AcXmXQHRym+AxtskgVFi3wrCye2cWeMLeRToKBb9KJ+gA6ri Oxu0JTBZ8+ip/hTGtamPuzpMZiY26tNrR5bHamnZ4tsHNE/buTHN6vudNegn5hyl KLdFgZGMjYZex9yJv9vlylVrpIvtAjFlKmGCWlxg -----END CERTIFICATE-----Generated at Wed May 13 02:16:31 2026 by rpki-client