$ rpki-client -vvf rpki-rsync.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: rjOP/mlx+e05g5g9m1lNDsLBX8nXjBRagTVjyUCAwbI= Subject key identifier: 38:E4:69:86:FC:77:6D:FF:48:52:C8:10:DD:EF:04:B3:79:67:54:BA Certificate issuer: /CN=3313E281DF364E0BFA32A4322ACC9D47FB561B62 Certificate serial: 28602A72738940BE64CC8D80C3DF858DBE861F56 Authority key identifier: 33:13:E2:81:DF:36:4E:0B:FA:32:A4:32:2A:CC:9D:47:FB:56:1B:62 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3313E281DF364E0BFA32A4322ACC9D47FB561B62.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa Signing time: Sun 03 May 2026 02:10:58 +0000 ROA not before: Sun 03 May 2026 02:05:58 +0000 ROA not after: Sun 02 May 2027 02:10:58 +0000 asID: 17727 IP address blocks: 103.105.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3313E281DF364E0BFA32A4322ACC9D47FB561B62.crl rsync://rpki-rsync.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3313E281DF364E0BFA32A4322ACC9D47FB561B62.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3313E281DF364E0BFA32A4322ACC9D47FB561B62.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:60:2a:72:73:89:40:be:64:cc:8d:80:c3:df:85:8d:be:86:1f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3313E281DF364E0BFA32A4322ACC9D47FB561B62 Validity Not Before: May 3 02:05:58 2026 GMT Not After : May 2 02:10:58 2027 GMT Subject: CN=38E46986FC776DFF4852C810DDEF04B3796754BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:30:0d:28:79:5a:e7:1d:4b:48:a3:f7:69:4e: a4:63:27:2c:86:3f:e4:cd:fc:65:48:dc:02:16:f6: 49:27:1c:63:de:bf:09:2e:45:12:ef:09:f0:3e:54: 42:5a:1d:5d:91:d6:26:71:32:6f:e8:c8:ad:1d:31: ae:9a:a5:62:62:67:13:eb:e8:cd:f5:99:89:22:bb: 8e:78:51:8f:8e:9e:09:c8:8e:1e:e5:48:3d:91:99: e1:55:42:80:c0:ef:1f:37:d2:b6:ac:90:49:b2:6c: c1:7b:22:c5:9a:f4:8f:01:b4:07:73:03:25:64:3c: 37:65:f5:28:43:b1:92:16:f4:19:7b:8b:68:d5:f6: 7e:98:fe:db:84:0f:d4:09:a2:b1:6f:60:c9:9b:97: 78:8d:22:e4:a2:a2:68:8f:a2:59:5a:c6:3c:83:55: 8f:24:de:4b:58:e7:1a:6e:93:b0:ee:bf:64:a9:8c: 6e:b8:0e:5d:9a:69:b7:f0:bb:5a:49:b2:81:6f:d4: 3a:b9:e2:b0:ee:ac:ca:b1:e4:1f:a4:ab:70:c7:f6: 61:81:b6:00:93:c9:fd:53:25:e1:61:91:05:54:a6: 74:41:c3:98:02:34:d2:e2:fe:1b:1b:1b:d4:a9:1a: 27:43:e2:de:07:05:1a:ca:f2:e3:8b:fb:38:63:7c: 8d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E4:69:86:FC:77:6D:FF:48:52:C8:10:DD:EF:04:B3:79:67:54:BA X509v3 Authority Key Identifier: keyid:33:13:E2:81:DF:36:4E:0B:FA:32:A4:32:2A:CC:9D:47:FB:56:1B:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3313E281DF364E0BFA32A4322ACC9D47FB561B62.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3313E281DF364E0BFA32A4322ACC9D47FB561B62.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.128.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:74:ac:98:86:b6:c8:60:15:9e:bd:3d:aa:cf:05:b8:17:3d: 5a:e3:d2:38:a7:09:ce:33:20:19:0a:19:17:45:be:38:1f:f5: d1:e2:96:d5:64:6d:9c:56:0c:6d:cc:d9:d1:d9:16:14:7d:1a: ca:42:d0:36:78:f3:f6:e6:68:81:38:3a:89:85:22:96:80:0f: 0f:05:f0:74:06:a3:61:06:7a:4d:dc:7a:8f:29:41:74:69:82: 50:24:fb:96:15:75:6c:a3:f0:a0:05:f2:9c:77:0c:30:0c:4e: 6f:85:16:62:73:50:4c:3c:c1:a1:94:6c:45:56:80:a7:31:3f: 5a:17:c8:66:9f:0e:c8:dc:50:fa:37:87:0d:9a:f6:04:26:1c: c2:60:17:94:08:63:6c:67:57:72:8e:8d:f7:74:16:57:84:34: 76:69:da:87:9f:b2:31:cf:a7:c5:07:17:65:83:e4:64:db:55: 60:2e:b2:a3:23:24:7c:df:85:91:0b:be:c0:5e:07:ad:4e:f3: 15:83:54:bc:bc:ba:c8:92:87:32:16:8f:71:7f:a3:f6:13:e7: 18:84:b7:77:fb:f3:e5:68:72:9c:c3:90:89:f8:1b:1d:74:c5: 0f:b4:25:5f:8d:fa:d2:52:5d:94:5d:41:c2:99:a6:30:7d:a4: 07:c4:85:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKGAqcnOJQL5kzI2Aw9+Fjb6GH1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMxM0UyODFERjM2NEUwQkZBMzJBNDMyMkFDQzlENDdG QjU2MUI2MjAeFw0yNjA1MDMwMjA1NThaFw0yNzA1MDIwMjEwNThaMDMxMTAvBgNV BAMTKDM4RTQ2OTg2RkM3NzZERkY0ODUyQzgxMERERUYwNEIzNzk2NzU0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCMA0oeVrnHUtIo/dpTqRjJyyG P+TN/GVI3AIW9kknHGPevwkuRRLvCfA+VEJaHV2R1iZxMm/oyK0dMa6apWJiZxPr 6M31mYkiu454UY+OngnIjh7lSD2RmeFVQoDA7x830raskEmybMF7IsWa9I8BtAdz AyVkPDdl9ShDsZIW9Bl7i2jV9n6Y/tuED9QJorFvYMmbl3iNIuSiomiPollaxjyD VY8k3ktY5xpuk7Duv2SpjG64Dl2aabfwu1pJsoFv1Dq54rDurMqx5B+kq3DH9mGB tgCTyf1TJeFhkQVUpnRBw5gCNNLi/hsbG9SpGidD4t4HBRrK8uOL+zhjfI0JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOORphvx3bf9IUsgQ3e8Es3lnVLowHwYDVR0j BBgwFoAUMxPigd82Tgv6MqQyKsydR/tWG2IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDQ2MWQ3YTctYTExZS00MDBiLTkxNzAtYzc5N2VkODhkNzAyLzAvMzMxM0UyODFE RjM2NEUwQkZBMzJBNDMyMkFDQzlENDdGQjU2MUI2Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMzEzRTI4MURGMzY0RTBCRkEzMkE0MzIyQUNDOUQ0N0ZCNTYx QjYyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mAMA0GCSqG SIb3DQEBCwUAA4IBAQCLdKyYhrbIYBWevT2qzwW4Fz1a49I4pwnOMyAZChkXRb44 H/XR4pbVZG2cVgxtzNnR2RYUfRrKQtA2ePP25miBODqJhSKWgA8PBfB0BqNhBnpN 3HqPKUF0aYJQJPuWFXVso/CgBfKcdwwwDE5vhRZic1BMPMGhlGxFVoCnMT9aF8hm nw7I3FD6N4cNmvYEJhzCYBeUCGNsZ1dyjo33dBZXhDR2adqHn7Ixz6fFBxdlg+Rk 21VgLrKjIyR834WRC77AXgetTvMVg1S8vLrIkocyFo9xf6P2E+cYhLd3+/PlaHKc w5CJ+BsddMUPtCVfjfrSUl2UXUHCmaYwfaQHxIX/ -----END CERTIFICATE-----Generated at Wed May 13 08:39:59 2026 by rpki-client