$ rpki-client -vvf rpki-rsync.idnic.net/repo/f0dc1283-1ce2-41a5-afe6-f0be31e9b10d/0/3130332e3139312e39342e302f32342d3234203d3e20313439343132.roa File: 3130332e3139312e39342e302f32342d3234203d3e20313439343132.roa (raw, json) Hash identifier: t2vA65s4Rw0JpR4oPJfjFnJ3dyjvcRRBFrdNUp3Bo2M= Subject key identifier: 99:58:94:41:40:27:E0:E3:20:4F:DC:1E:30:44:27:40:01:E1:C4:8C Certificate issuer: /CN=2A494FAEE44F13448E6C43136F825053CE977009 Certificate serial: 021AA04BE7F074C13A642FEA3B0FEAED0E572684 Authority key identifier: 2A:49:4F:AE:E4:4F:13:44:8E:6C:43:13:6F:82:50:53:CE:97:70:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A494FAEE44F13448E6C43136F825053CE977009.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f0dc1283-1ce2-41a5-afe6-f0be31e9b10d/0/3130332e3139312e39342e302f32342d3234203d3e20313439343132.roa Signing time: Sun 03 May 2026 03:16:32 +0000 ROA not before: Sun 03 May 2026 03:11:32 +0000 ROA not after: Sun 02 May 2027 03:16:32 +0000 asID: 149412 IP address blocks: 103.191.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f0dc1283-1ce2-41a5-afe6-f0be31e9b10d/0/2A494FAEE44F13448E6C43136F825053CE977009.crl rsync://rpki-rsync.idnic.net/repo/f0dc1283-1ce2-41a5-afe6-f0be31e9b10d/0/2A494FAEE44F13448E6C43136F825053CE977009.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A494FAEE44F13448E6C43136F825053CE977009.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:1a:a0:4b:e7:f0:74:c1:3a:64:2f:ea:3b:0f:ea:ed:0e:57:26:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A494FAEE44F13448E6C43136F825053CE977009 Validity Not Before: May 3 03:11:32 2026 GMT Not After : May 2 03:16:32 2027 GMT Subject: CN=995894414027E0E3204FDC1E3044274001E1C48C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:5a:48:66:3b:7e:25:63:c9:7a:29:98:05: c3:11:0d:58:d2:1d:52:53:ee:0d:4e:11:8e:e1:7f: c5:63:ed:13:e9:0d:3b:f5:3a:23:89:fc:db:c3:73: ce:1f:52:a0:4c:68:98:bb:a8:d5:69:39:e6:1a:13: 1b:8d:2c:ee:4e:73:d0:c1:7d:08:c1:80:35:07:85: 34:be:c0:da:cf:38:a5:e6:ab:1e:f6:51:2c:58:9f: bd:61:c6:5f:95:60:2a:9c:f9:a8:25:da:9e:35:c8: a5:48:c1:82:c1:46:b7:2d:c3:cb:a9:66:f4:f6:1f: 56:ba:b6:45:c0:c4:e4:f4:12:cb:9a:bb:e2:70:68: 64:9f:99:3c:0c:4a:38:2a:5c:ec:30:fe:7f:30:36: e7:08:ac:14:48:b4:22:26:d9:5a:63:9a:1d:de:dd: 33:33:30:b2:46:93:d1:6e:31:34:a0:f6:b0:8f:bb: 29:64:81:00:ee:a9:51:e5:27:d8:42:2a:40:51:89: b3:05:79:34:a9:07:75:77:94:91:4a:65:6e:76:9d: 38:10:0c:ca:62:99:ee:ee:25:8a:43:4d:b0:5c:f7: 2a:2f:1c:40:47:48:e7:67:33:7d:4f:6c:a0:f7:09: db:7f:7d:2b:bb:d2:ae:08:5c:b9:b5:2b:50:ce:b2: 0c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:58:94:41:40:27:E0:E3:20:4F:DC:1E:30:44:27:40:01:E1:C4:8C X509v3 Authority Key Identifier: keyid:2A:49:4F:AE:E4:4F:13:44:8E:6C:43:13:6F:82:50:53:CE:97:70:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f0dc1283-1ce2-41a5-afe6-f0be31e9b10d/0/2A494FAEE44F13448E6C43136F825053CE977009.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A494FAEE44F13448E6C43136F825053CE977009.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f0dc1283-1ce2-41a5-afe6-f0be31e9b10d/0/3130332e3139312e39342e302f32342d3234203d3e20313439343132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.94.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:52:ca:5b:28:ec:79:38:5c:8d:f5:eb:ea:2f:4a:3c:22:3b: 32:03:96:86:5b:91:d4:3c:38:b5:b9:64:0f:d7:0b:57:d0:13: a1:a7:d9:3f:ac:09:6a:75:6b:d9:c4:e3:16:ed:eb:03:91:58: 45:c3:a3:4e:05:b6:9e:4f:fe:85:77:1e:7f:64:5d:a8:8b:64: 8c:36:e9:e1:66:3e:d7:59:54:b3:d1:3a:fa:7b:76:e2:14:0b: 8d:02:1f:6f:b1:1a:f8:d2:30:4a:1f:fc:c5:33:e4:1d:b8:dc: 54:9d:e3:f4:49:91:9d:e3:dd:31:3b:21:00:1c:12:6b:33:c1: 24:a7:46:1a:ea:32:22:8c:a7:3e:37:b3:56:1c:45:a3:e3:36: 40:ae:c2:5c:4c:de:72:49:7a:02:f7:05:f3:7d:c5:bd:ee:e5: c3:52:99:3f:f7:f1:fa:21:59:3d:7a:b5:87:c2:bf:59:be:6e: 5d:a4:4a:06:90:4e:e8:90:1c:9f:e6:c1:e4:03:01:3c:e6:99: 12:45:09:7f:11:be:ba:3d:58:21:ed:ef:ca:71:40:7e:ac:15: 3c:a5:bf:de:ba:9c:5e:1c:c1:0f:bf:51:4c:f1:d1:af:84:2b: 9f:7b:0b:ea:ba:f6:90:eb:02:78:01:26:08:6e:3b:6b:e3:fb: cf:f8:85:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAhqgS+fwdME6ZC/qOw/q7Q5XJoQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkE0OTRGQUVFNDRGMTM0NDhFNkM0MzEzNkY4MjUwNTND RTk3NzAwOTAeFw0yNjA1MDMwMzExMzJaFw0yNzA1MDIwMzE2MzJaMDMxMTAvBgNV BAMTKDk5NTg5NDQxNDAyN0UwRTMyMDRGREMxRTMwNDQyNzQwMDFFMUM0OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1IVpIZjt+JWPJeimYBcMRDVjS HVJT7g1OEY7hf8Vj7RPpDTv1OiOJ/NvDc84fUqBMaJi7qNVpOeYaExuNLO5Oc9DB fQjBgDUHhTS+wNrPOKXmqx72USxYn71hxl+VYCqc+agl2p41yKVIwYLBRrctw8up ZvT2H1a6tkXAxOT0Esuau+JwaGSfmTwMSjgqXOww/n8wNucIrBRItCIm2Vpjmh3e 3TMzMLJGk9FuMTSg9rCPuylkgQDuqVHlJ9hCKkBRibMFeTSpB3V3lJFKZW52nTgQ DMpime7uJYpDTbBc9yovHEBHSOdnM31PbKD3Cdt/fSu70q4IXLm1K1DOsgyRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmViUQUAn4OMgT9weMEQnQAHhxIwwHwYDVR0j BBgwFoAUKklPruRPE0SObEMTb4JQU86XcAkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjBkYzEyODMtMWNlMi00MWE1LWFmZTYtZjBiZTMxZTliMTBkLzAvMkE0OTRGQUVF NDRGMTM0NDhFNkM0MzEzNkY4MjUwNTNDRTk3NzAwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQTQ5NEZBRUU0NEYxMzQ0OEU2QzQzMTM2RjgyNTA1M0NFOTc3 MDA5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YwZGMxMjgzLTFjZTItNDFhNS1h ZmU2LWYwYmUzMWU5YjEwZC8wLzMxMzAzMzJlMzEzOTMxMmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ79eMA0GCSqG SIb3DQEBCwUAA4IBAQBbUspbKOx5OFyN9evqL0o8IjsyA5aGW5HUPDi1uWQP1wtX 0BOhp9k/rAlqdWvZxOMW7esDkVhFw6NOBbaeT/6Fdx5/ZF2oi2SMNunhZj7XWVSz 0Tr6e3biFAuNAh9vsRr40jBKH/zFM+QduNxUneP0SZGd490xOyEAHBJrM8Ekp0Ya 6jIijKc+N7NWHEWj4zZArsJcTN5ySXoC9wXzfcW97uXDUpk/9/H6IVk9erWHwr9Z vm5dpEoGkE7okByf5sHkAwE85pkSRQl/Eb66PVgh7e/KcUB+rBU8pb/eupxeHMEP v1FM8dGvhCufewvquvaQ6wJ4ASYIbjtr4/vP+IWn -----END CERTIFICATE-----Generated at Wed May 13 10:54:40 2026 by rpki-client