$ rpki-client -vvf rpki-rsync.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa File: 3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa (raw, json) Hash identifier: 7OSCFLUdX4lh+HkqQPpzAOQL/79FpKE5+vtT3xavcbw= Subject key identifier: 77:54:89:E4:BA:4F:63:FC:1D:54:55:45:5D:DE:BC:5A:81:3E:A7:A9 Certificate issuer: /CN=F2958561973CA692FEFCE665E5EAE67C627CDA6A Certificate serial: 179582263A9EAFA610133F20AB59EE5BEF40F554 Authority key identifier: F2:95:85:61:97:3C:A6:92:FE:FC:E6:65:E5:EA:E6:7C:62:7C:DA:6A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2958561973CA692FEFCE665E5EAE67C627CDA6A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa Signing time: Sun 03 May 2026 03:18:49 +0000 ROA not before: Sun 03 May 2026 03:13:49 +0000 ROA not after: Sun 02 May 2027 03:18:49 +0000 asID: 150200 IP address blocks: 103.196.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/F2958561973CA692FEFCE665E5EAE67C627CDA6A.crl rsync://rpki-rsync.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/F2958561973CA692FEFCE665E5EAE67C627CDA6A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2958561973CA692FEFCE665E5EAE67C627CDA6A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:95:82:26:3a:9e:af:a6:10:13:3f:20:ab:59:ee:5b:ef:40:f5:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2958561973CA692FEFCE665E5EAE67C627CDA6A Validity Not Before: May 3 03:13:49 2026 GMT Not After : May 2 03:18:49 2027 GMT Subject: CN=775489E4BA4F63FC1D5455455DDEBC5A813EA7A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:62:ba:e7:39:a6:73:35:5d:8f:d8:b8:c3:57: d9:e5:da:47:77:7e:29:f4:4e:2c:6a:a0:06:5b:3d: 65:fe:5a:f2:ea:82:cc:92:86:4a:3b:43:43:5a:77: 0c:d8:d7:b5:7a:d1:6f:fa:52:50:a3:74:a4:ea:96: fd:b8:be:36:93:81:76:f6:01:92:ea:bc:18:10:df: 9c:08:10:ba:6d:05:1e:97:66:47:7d:f9:97:3d:05: 9b:11:07:b0:2e:37:64:14:9f:28:84:5f:8f:d8:a7: 11:68:1b:b8:d0:72:79:f0:a4:a8:0d:de:6e:c4:91: f1:16:36:24:e7:63:bd:f4:8b:51:60:ee:13:11:34: 8f:4f:25:0d:bc:8c:8c:a0:d0:7b:ec:d3:c4:da:d3: 94:a7:f1:af:01:ed:ad:c2:f4:f3:c9:a0:33:06:47: d2:b4:7c:bb:c8:77:ce:93:eb:46:d8:24:ad:71:12: 75:26:64:53:43:c7:9a:ec:9a:3d:ed:4b:72:76:f7: 6a:08:1f:67:1b:a5:97:8f:b8:02:cb:6d:83:3a:9c: 7c:09:fb:38:4c:fe:9c:65:3f:3f:c8:0e:26:56:72: 28:52:20:bd:0a:35:ca:12:40:70:f6:4c:e1:a5:9d: 24:1f:70:2c:7b:5d:a8:4f:f0:bd:76:ce:c1:5c:85: 00:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:54:89:E4:BA:4F:63:FC:1D:54:55:45:5D:DE:BC:5A:81:3E:A7:A9 X509v3 Authority Key Identifier: keyid:F2:95:85:61:97:3C:A6:92:FE:FC:E6:65:E5:EA:E6:7C:62:7C:DA:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/F2958561973CA692FEFCE665E5EAE67C627CDA6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2958561973CA692FEFCE665E5EAE67C627CDA6A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.40.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:c3:8c:ee:77:dd:a9:89:08:b9:f6:3e:63:cf:03:d5:93:4b: 51:77:fb:76:53:4f:39:a4:75:7b:3a:50:e2:ea:7c:86:64:ce: 1e:9c:6e:3a:49:bf:ac:38:50:44:09:0b:a3:70:87:76:9d:80: 7b:8e:6e:40:42:e4:24:07:c7:24:59:96:f6:af:2a:a1:ac:77: d4:ea:76:b5:63:ee:9c:de:8f:8d:f2:68:89:17:85:92:4a:22: d2:79:6a:39:34:ff:de:ee:e2:d8:09:2a:88:7a:7c:9c:e4:75: 33:0d:31:8e:68:04:0a:3b:3e:0f:25:9a:64:71:26:e0:5b:01: d9:54:9c:9b:21:63:92:eb:30:8a:bb:c3:59:95:67:2e:b8:1d: 03:bc:85:17:5a:91:4f:b0:0b:aa:30:3d:07:57:41:bf:6c:ca: 5f:29:b6:d8:6f:ec:1d:5c:7c:83:ee:a4:db:e4:db:53:6d:4d: 15:a6:02:d8:08:1b:40:39:f2:13:db:8e:19:68:8d:f8:a1:85: af:7c:76:ed:20:71:27:f1:d3:92:dc:e5:da:eb:5e:84:90:f6: 16:81:49:a0:08:8c:f5:ad:1f:3b:31:90:dc:87:2d:60:8f:9b: 94:97:ac:a1:bf:29:db:a4:9b:7a:53:ec:92:84:f5:d9:26:b4: ef:4d:11:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF5WCJjqer6YQEz8gq1nuW+9A9VQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI5NTg1NjE5NzNDQTY5MkZFRkNFNjY1RTVFQUU2N0M2 MjdDREE2QTAeFw0yNjA1MDMwMzEzNDlaFw0yNzA1MDIwMzE4NDlaMDMxMTAvBgNV BAMTKDc3NTQ4OUU0QkE0RjYzRkMxRDU0NTU0NTVEREVCQzVBODEzRUE3QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbYrrnOaZzNV2P2LjDV9nl2kd3 fin0TixqoAZbPWX+WvLqgsyShko7Q0NadwzY17V60W/6UlCjdKTqlv24vjaTgXb2 AZLqvBgQ35wIELptBR6XZkd9+Zc9BZsRB7AuN2QUnyiEX4/YpxFoG7jQcnnwpKgN 3m7EkfEWNiTnY730i1Fg7hMRNI9PJQ28jIyg0Hvs08Ta05Sn8a8B7a3C9PPJoDMG R9K0fLvId86T60bYJK1xEnUmZFNDx5rsmj3tS3J292oIH2cbpZePuALLbYM6nHwJ +zhM/pxlPz/IDiZWcihSIL0KNcoSQHD2TOGlnSQfcCx7XahP8L12zsFchQARAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd1SJ5LpPY/wdVFVFXd68WoE+p6kwHwYDVR0j BBgwFoAU8pWFYZc8ppL+/OZl5ermfGJ82mowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmE1YjRmYTQtMzI4Yy00Y2YyLWFkZTMtYzg2ODEzMWQ0ZTBkLzAvRjI5NTg1NjE5 NzNDQTY5MkZFRkNFNjY1RTVFQUU2N0M2MjdDREE2QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMjk1ODU2MTk3M0NBNjkyRkVGQ0U2NjVFNUVBRTY3QzYyN0NE QTZBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZhNWI0ZmE0LTMyOGMtNGNmMi1h ZGUzLWM4NjgxMzFkNGUwZC8wLzMxMzAzMzJlMzEzOTM2MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8QoMA0GCSqG SIb3DQEBCwUAA4IBAQCbw4zud92piQi59j5jzwPVk0tRd/t2U085pHV7OlDi6nyG ZM4enG46Sb+sOFBECQujcId2nYB7jm5AQuQkB8ckWZb2ryqhrHfU6na1Y+6c3o+N 8miJF4WSSiLSeWo5NP/e7uLYCSqIenyc5HUzDTGOaAQKOz4PJZpkcSbgWwHZVJyb IWOS6zCKu8NZlWcuuB0DvIUXWpFPsAuqMD0HV0G/bMpfKbbYb+wdXHyD7qTb5NtT bU0VpgLYCBtAOfIT244ZaI34oYWvfHbtIHEn8dOS3OXa616EkPYWgUmgCIz1rR87 MZDchy1gj5uUl6yhvynbpJt6U+yShPXZJrTvTRHm -----END CERTIFICATE-----Generated at Tue May 12 22:56:34 2026 by rpki-client