$ rpki-client -vvf rpki-rsync.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa File: 3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa (raw, json) Hash identifier: gRWK/0YFVmnxzlTGh51A5dqs3NFdvCJxXgz/joszlok= Subject key identifier: 32:41:16:5E:EC:4B:CA:1D:7D:AA:F2:29:8F:1A:84:CB:D5:CF:72:94 Certificate issuer: /CN=BC56CE0B357E1A9036243CAE454739729AD6633C Certificate serial: 3FE48433E2C884A414B900872125E96D849AAAB4 Authority key identifier: BC:56:CE:0B:35:7E:1A:90:36:24:3C:AE:45:47:39:72:9A:D6:63:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC56CE0B357E1A9036243CAE454739729AD6633C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa Signing time: Sun 03 May 2026 03:16:48 +0000 ROA not before: Sun 03 May 2026 03:11:48 +0000 ROA not after: Sun 02 May 2027 03:16:48 +0000 asID: 150281 IP address blocks: 103.97.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/BC56CE0B357E1A9036243CAE454739729AD6633C.crl rsync://rpki-rsync.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/BC56CE0B357E1A9036243CAE454739729AD6633C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC56CE0B357E1A9036243CAE454739729AD6633C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e4:84:33:e2:c8:84:a4:14:b9:00:87:21:25:e9:6d:84:9a:aa:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC56CE0B357E1A9036243CAE454739729AD6633C Validity Not Before: May 3 03:11:48 2026 GMT Not After : May 2 03:16:48 2027 GMT Subject: CN=3241165EEC4BCA1D7DAAF2298F1A84CBD5CF7294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:b8:ea:60:1c:a5:6c:a8:41:50:45:3a:eb: a7:5a:0b:90:b0:99:f6:d1:c5:0e:6a:79:56:7e:af: 0e:6e:e2:16:59:84:63:ae:9c:54:56:b3:fd:03:54: 95:b5:05:24:2c:57:7d:4e:10:68:dc:dc:e1:d0:6e: 34:bf:a0:fb:99:e0:bc:70:eb:2f:54:66:a9:a9:e3: a6:4f:59:27:15:e0:d9:ab:a8:2f:3b:76:f0:9b:81: 63:63:0b:f2:7c:05:0f:40:8c:df:75:60:ae:ca:4e: 69:4a:15:f2:94:71:8a:20:79:be:2c:46:1d:df:6c: 4a:79:d1:1e:3d:5a:32:00:bf:d8:99:62:a2:e3:6b: c2:f9:85:b3:d3:c5:ad:eb:b9:c3:c6:b2:57:ee:18: a1:4f:92:5d:f6:5b:e7:00:40:4e:d7:e3:e2:5a:1d: 42:82:4a:6c:64:e6:3a:a7:2b:2a:42:cc:bc:14:f6: ed:ef:4a:7b:26:0f:62:08:b6:ba:9b:14:12:d1:37: 07:16:13:63:83:cc:cc:46:61:66:af:40:f5:f9:5b: d3:26:cc:44:ae:18:1d:31:c5:e6:25:2f:1d:bc:79: b8:1e:61:15:58:bd:cc:9b:c1:e6:6f:a8:16:6f:53: 47:4d:4f:5b:b8:29:a1:07:86:37:88:19:ca:d6:de: b6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:41:16:5E:EC:4B:CA:1D:7D:AA:F2:29:8F:1A:84:CB:D5:CF:72:94 X509v3 Authority Key Identifier: keyid:BC:56:CE:0B:35:7E:1A:90:36:24:3C:AE:45:47:39:72:9A:D6:63:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/BC56CE0B357E1A9036243CAE454739729AD6633C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC56CE0B357E1A9036243CAE454739729AD6633C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.231.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:d6:52:b6:4b:ed:7d:b6:b2:24:ee:79:c2:35:3d:00:8b:9e: 5b:a3:a3:3a:1e:b2:4b:0e:c9:4e:e4:a9:da:33:2b:8f:6d:44: e1:32:dc:e8:f3:4c:9a:d2:1e:43:c5:6e:1e:d0:bf:32:57:fe: ad:f1:23:ba:6e:79:ae:e5:8a:f8:04:ee:a6:a7:db:b1:aa:de: d4:9e:fc:93:d5:1c:34:fb:a3:ac:ae:50:2d:ea:09:18:82:23: 1e:f6:1b:8f:1f:88:3b:68:d5:6a:16:36:52:71:55:c2:79:cc: fb:5f:12:74:dc:ce:1e:d1:bc:dc:42:23:f8:cd:a3:80:f8:dc: 57:30:51:eb:ba:98:29:6b:c9:d6:c5:70:02:8d:b6:e5:42:64: 5b:b6:a3:53:f6:36:d4:b9:df:a8:48:3e:d7:1d:af:47:a4:4b: 96:b7:10:0d:66:13:a3:81:17:8d:57:0d:cc:4f:30:4c:34:e2: a7:d4:4a:5d:7b:80:4c:ca:e4:85:1b:28:14:3d:72:cb:47:f3: 86:5b:be:6a:fd:cb:0c:fb:5b:c1:d6:70:13:e4:17:58:76:6a: 43:6d:ea:10:0b:6a:a8:db:45:56:38:1b:99:50:1a:d1:23:3c: 45:8f:cd:64:44:66:39:46:fb:4a:fe:5c:5f:94:ef:aa:10:31: 90:52:18:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP+SEM+LIhKQUuQCHISXpbYSaqrQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkM1NkNFMEIzNTdFMUE5MDM2MjQzQ0FFNDU0NzM5NzI5 QUQ2NjMzQzAeFw0yNjA1MDMwMzExNDhaFw0yNzA1MDIwMzE2NDhaMDMxMTAvBgNV BAMTKDMyNDExNjVFRUM0QkNBMUQ3REFBRjIyOThGMUE4NENCRDVDRjcyOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0rjqYBylbKhBUEU666daC5Cw mfbRxQ5qeVZ+rw5u4hZZhGOunFRWs/0DVJW1BSQsV31OEGjc3OHQbjS/oPuZ4Lxw 6y9UZqmp46ZPWScV4NmrqC87dvCbgWNjC/J8BQ9AjN91YK7KTmlKFfKUcYogeb4s Rh3fbEp50R49WjIAv9iZYqLja8L5hbPTxa3rucPGslfuGKFPkl32W+cAQE7X4+Ja HUKCSmxk5jqnKypCzLwU9u3vSnsmD2IItrqbFBLRNwcWE2ODzMxGYWavQPX5W9Mm zESuGB0xxeYlLx28ebgeYRVYvcybweZvqBZvU0dNT1u4KaEHhjeIGcrW3raXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMkEWXuxLyh19qvIpjxqEy9XPcpQwHwYDVR0j BBgwFoAUvFbOCzV+GpA2JDyuRUc5cprWYzwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjIzOWZkY2ItYzQxNy00ZjNmLWIxYzktN2UzNjljZGUyMWZkLzAvQkM1NkNFMEIz NTdFMUE5MDM2MjQzQ0FFNDU0NzM5NzI5QUQ2NjMzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQzU2Q0UwQjM1N0UxQTkwMzYyNDNDQUU0NTQ3Mzk3MjlBRDY2 MzNDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YyMzlmZGNiLWM0MTctNGYzZi1i MWM5LTdlMzY5Y2RlMjFmZC8wLzMxMzAzMzJlMzkzNzJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2HnMA0GCSqG SIb3DQEBCwUAA4IBAQCf1lK2S+19trIk7nnCNT0Ai55bo6M6HrJLDslO5KnaMyuP bUThMtzo80ya0h5DxW4e0L8yV/6t8SO6bnmu5Yr4BO6mp9uxqt7UnvyT1Rw0+6Os rlAt6gkYgiMe9huPH4g7aNVqFjZScVXCecz7XxJ03M4e0bzcQiP4zaOA+NxXMFHr upgpa8nWxXACjbblQmRbtqNT9jbUud+oSD7XHa9HpEuWtxANZhOjgReNVw3MTzBM NOKn1Epde4BMyuSFGygUPXLLR/OGW75q/csM+1vB1nAT5BdYdmpDbeoQC2qo20VW OBuZUBrRIzxFj81kRGY5RvtK/lxflO+qEDGQUhhX -----END CERTIFICATE-----Generated at Wed May 13 03:51:35 2026 by rpki-client