$ rpki-client -vvf rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3232203d3e203536323432.roa File: 3130332e3232382e3131362e302f32322d3232203d3e203536323432.roa (raw, json) Hash identifier: RkOZ4BqJISFweILCm3wRYadHRRUC1NJILvlksQQiLxk= Subject key identifier: CD:72:5E:2D:12:74:BB:75:C0:0E:65:EB:9F:0F:AC:2D:4F:EB:80:E9 Certificate issuer: /CN=C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9 Certificate serial: 6688B9A1CA6CD81BD114BB41BEAF5DD6FD0D9378 Authority key identifier: C7:6F:AE:70:E7:14:64:49:6E:F4:FA:8E:EE:F0:DF:5C:93:12:C7:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3232203d3e203536323432.roa Signing time: Sun 03 May 2026 02:15:52 +0000 ROA not before: Sun 03 May 2026 02:10:52 +0000 ROA not after: Sun 02 May 2027 02:15:52 +0000 asID: 56242 IP address blocks: 103.228.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.crl rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:88:b9:a1:ca:6c:d8:1b:d1:14:bb:41:be:af:5d:d6:fd:0d:93:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9 Validity Not Before: May 3 02:10:52 2026 GMT Not After : May 2 02:15:52 2027 GMT Subject: CN=CD725E2D1274BB75C00E65EB9F0FAC2D4FEB80E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:71:bc:63:18:56:31:fb:f0:4b:b7:16:68:61: de:d8:6f:8d:d4:99:3b:35:b4:db:20:78:12:f0:8e: a3:82:e0:25:b0:3d:33:61:1f:06:19:3e:42:89:b0: 19:96:f5:26:7b:58:22:fe:27:47:7b:77:f3:1d:3f: a3:dc:e0:90:69:1a:49:ad:17:99:ea:b6:5d:03:5e: db:99:9e:e1:4e:c8:99:ce:aa:04:a9:1b:ef:96:1a: a6:f7:4d:bd:75:b8:9f:1b:58:85:ac:af:3b:80:f6: f3:57:3c:f3:5f:cb:dc:4a:ea:a6:80:2d:d6:e4:b3: 03:d1:f7:ac:22:cd:cd:a3:33:63:e3:14:e9:1e:32: 20:09:c4:6a:42:80:83:f5:61:4b:92:59:a2:45:47: d3:8e:d5:91:5b:32:1a:11:07:77:2d:34:89:36:25: f5:22:fe:a8:6e:13:e9:38:d6:7f:be:af:b6:83:e2: 7e:4c:7a:7b:34:ef:8b:ad:e1:5c:00:d4:a5:4c:11: a0:7b:ce:84:ce:0b:4e:eb:54:35:8e:1a:b1:27:63: 8c:ed:bd:0e:6e:8e:a8:3f:15:53:dc:6b:50:ee:e2: e8:85:d4:b1:8a:d3:79:e0:a7:2b:66:82:09:eb:4f: be:4d:c6:12:58:26:eb:2a:9f:8b:2d:41:94:98:21: e1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:72:5E:2D:12:74:BB:75:C0:0E:65:EB:9F:0F:AC:2D:4F:EB:80:E9 X509v3 Authority Key Identifier: keyid:C7:6F:AE:70:E7:14:64:49:6E:F4:FA:8E:EE:F0:DF:5C:93:12:C7:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3232203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.116.0/22 Signature Algorithm: sha256WithRSAEncryption 94:12:ae:b3:a6:9d:37:f5:b5:3c:62:d4:d9:5f:d2:bc:0f:72: 12:63:5a:b5:c2:5c:28:2b:d2:a1:68:30:56:e1:15:8b:37:63: e8:d8:73:ec:39:d6:1b:6c:86:25:8b:9c:d9:e4:2c:9e:1b:bf: 4f:58:a1:1e:e5:75:9e:3a:e9:68:7f:5d:fa:71:94:5f:93:43: b6:01:3a:99:6e:fd:fa:12:de:02:8f:95:45:c7:87:9a:dc:3b: 4b:ec:fe:67:67:a6:0e:d3:22:78:e0:c6:87:46:2f:bf:59:d5: 6f:7c:51:8e:7b:b8:b6:4c:60:db:d3:ff:9e:02:bb:e1:b4:0d: 2d:df:55:10:bf:43:fe:02:b2:01:8f:f0:63:29:e2:76:94:6a: 8b:09:57:d2:ec:e8:73:27:77:98:f0:51:9e:b3:1c:84:01:fc: da:d0:42:ce:b9:f7:77:f5:ad:4d:4a:fb:e6:37:30:4b:75:eb: 0f:bb:e6:b8:0a:a6:d9:ad:51:d1:56:ad:88:e7:c4:f9:cc:40: 6f:76:2f:5f:9b:84:41:fb:9d:5f:27:7d:6d:84:ae:1c:48:f3: 95:af:41:c5:54:bf:45:04:8a:7f:cb:b2:92:00:c3:08:58:cb: 1d:cc:65:9f:b1:4e:d9:bc:92:cb:eb:75:30:8e:2a:1d:d5:57: 63:de:0c:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZoi5ocps2BvRFLtBvq9d1v0Nk3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc2RkFFNzBFNzE0NjQ0OTZFRjRGQThFRUVGMERGNUM5 MzEyQzdDOTAeFw0yNjA1MDMwMjEwNTJaFw0yNzA1MDIwMjE1NTJaMDMxMTAvBgNV BAMTKENENzI1RTJEMTI3NEJCNzVDMDBFNjVFQjlGMEZBQzJENEZFQjgwRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwcbxjGFYx+/BLtxZoYd7Yb43U mTs1tNsgeBLwjqOC4CWwPTNhHwYZPkKJsBmW9SZ7WCL+J0d7d/MdP6Pc4JBpGkmt F5nqtl0DXtuZnuFOyJnOqgSpG++WGqb3Tb11uJ8bWIWsrzuA9vNXPPNfy9xK6qaA LdbkswPR96wizc2jM2PjFOkeMiAJxGpCgIP1YUuSWaJFR9OO1ZFbMhoRB3ctNIk2 JfUi/qhuE+k41n++r7aD4n5Mens074ut4VwA1KVMEaB7zoTOC07rVDWOGrEnY4zt vQ5ujqg/FVPca1Du4uiF1LGK03ngpytmggnrT75NxhJYJusqn4stQZSYIeHlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzXJeLRJ0u3XADmXrnw+sLU/rgOkwHwYDVR0j BBgwFoAUx2+ucOcUZElu9PqO7vDfXJMSx8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdhMmQyNWItY2IxOC00NWJlLTlmYTEtMTU0Y2ExNTc5MjIzLzAvQzc2RkFFNzBF NzE0NjQ0OTZFRjRGQThFRUVGMERGNUM5MzEyQzdDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNzZGQUU3MEU3MTQ2NDQ5NkVGNEZBOEVFRUYwREY1QzkzMTJD N0M5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+R0MA0GCSqG SIb3DQEBCwUAA4IBAQCUEq6zpp039bU8YtTZX9K8D3ISY1q1wlwoK9KhaDBW4RWL N2Po2HPsOdYbbIYli5zZ5CyeG79PWKEe5XWeOulof136cZRfk0O2ATqZbv36Et4C j5VFx4ea3DtL7P5nZ6YO0yJ44MaHRi+/WdVvfFGOe7i2TGDb0/+eArvhtA0t31UQ v0P+ArIBj/BjKeJ2lGqLCVfS7OhzJ3eY8FGesxyEAfza0ELOufd39a1NSvvmNzBL desPu+a4CqbZrVHRVq2I58T5zEBvdi9fm4RB+51fJ31thK4cSPOVr0HFVL9FBIp/ y7KSAMMIWMsdzGWfsU7ZvJLL63Uwjiod1Vdj3gyx -----END CERTIFICATE-----Generated at Wed May 13 07:52:42 2026 by rpki-client