$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa File: 3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa (raw, json) Hash identifier: R1vSVJ/Nz5OcbojEfZoeEbcVestRrx2t/NOOXCARjrw= Subject key identifier: 02:88:36:04:89:8E:3B:6C:F5:82:E8:4A:B7:B8:E7:9E:33:80:29:22 Certificate issuer: /CN=9252F14B5E62941E764268BF539EE9FAD5793555 Certificate serial: 7A3E7266D0007C1B65B553B8FDB711149175210E Authority key identifier: 92:52:F1:4B:5E:62:94:1E:76:42:68:BF:53:9E:E9:FA:D5:79:35:55 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9252F14B5E62941E764268BF539EE9FAD5793555.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa Signing time: Sun 03 May 2026 02:18:23 +0000 ROA not before: Sun 03 May 2026 02:13:23 +0000 ROA not after: Sun 02 May 2027 02:18:23 +0000 asID: 63488 IP address blocks: 103.233.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/9252F14B5E62941E764268BF539EE9FAD5793555.crl rsync://rpki-rsync.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/9252F14B5E62941E764268BF539EE9FAD5793555.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9252F14B5E62941E764268BF539EE9FAD5793555.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:3e:72:66:d0:00:7c:1b:65:b5:53:b8:fd:b7:11:14:91:75:21:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9252F14B5E62941E764268BF539EE9FAD5793555 Validity Not Before: May 3 02:13:23 2026 GMT Not After : May 2 02:18:23 2027 GMT Subject: CN=02883604898E3B6CF582E84AB7B8E79E33802922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:62:db:d3:da:ca:df:67:7b:fe:95:9d:57: 5f:90:64:eb:1e:ef:de:05:a1:f9:13:2d:2e:94:a7: ef:ee:93:0c:56:d4:29:03:d2:83:aa:cc:8a:bb:a5: 6a:70:27:da:0c:46:ae:01:fb:fb:20:11:59:ab:9b: 7c:09:60:34:89:5e:aa:4d:f4:ff:78:2b:78:31:36: 73:0f:ee:5e:68:0a:e9:e3:60:76:e7:8c:b9:7b:15: f2:2d:a9:d5:83:fe:1d:3d:37:65:61:eb:ba:0a:cc: 9c:19:ae:1e:23:1e:b0:72:74:16:9b:8f:be:47:f9: 8d:c2:65:b0:73:b8:ca:5d:2e:36:6a:9f:29:da:ec: cd:ff:1e:45:d7:85:79:36:07:bb:f9:ec:5a:70:10: 70:b5:75:6a:df:e4:ac:e3:d2:a1:ab:84:d0:c5:60: b1:2e:c1:2d:3c:4d:b1:32:15:e7:1f:54:d9:82:67: 5b:a4:9d:86:15:00:1d:f2:6e:ce:20:83:7c:49:e0: 27:4a:8e:79:49:12:8f:94:09:7e:8d:c5:45:ab:7d: 0d:0f:bf:a3:c0:61:12:e0:9b:12:c5:28:6c:b3:da: 9f:7f:70:c2:6f:dc:ed:12:55:9f:52:63:31:5f:2b: 7c:d0:f4:24:3c:ee:5c:9a:d7:99:8e:b0:39:69:f9: 98:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:88:36:04:89:8E:3B:6C:F5:82:E8:4A:B7:B8:E7:9E:33:80:29:22 X509v3 Authority Key Identifier: keyid:92:52:F1:4B:5E:62:94:1E:76:42:68:BF:53:9E:E9:FA:D5:79:35:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/9252F14B5E62941E764268BF539EE9FAD5793555.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9252F14B5E62941E764268BF539EE9FAD5793555.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.108.0/24 Signature Algorithm: sha256WithRSAEncryption 46:6f:9b:dc:17:e5:cd:a2:78:e4:17:08:b3:e3:34:b1:cb:ae: ce:b3:7c:d1:58:90:8e:0e:49:cf:b4:c4:76:11:93:05:1b:56: 4d:50:45:34:55:4a:dd:7a:d6:e3:93:3e:51:08:75:6b:24:a7: 18:cb:ba:a5:6b:75:e3:22:6c:cf:81:d5:1a:a6:0c:84:8a:3d: b8:e5:cd:92:1b:58:02:6e:6b:85:94:f4:b0:aa:8e:b7:a8:c1: f0:c1:81:6e:b3:2a:b9:26:82:5c:ba:f0:69:e0:bd:23:66:1a: 7b:90:10:9c:b4:62:36:1f:39:dd:79:3e:09:52:8a:7d:25:16: 4c:7a:57:11:f8:16:cb:85:be:00:1d:61:63:a6:c0:61:aa:f9: 43:a4:8c:82:81:94:a0:f2:70:34:06:99:22:3f:98:80:e4:99: ea:f7:a2:66:fe:7e:5d:88:bf:b6:16:d1:9b:72:e4:05:97:d5: 31:b0:71:30:85:c1:75:93:e6:21:34:94:7a:44:6e:f3:8b:d8: 81:fa:c3:5b:45:88:2c:96:fd:ac:49:cf:ea:7c:dc:47:75:a4: 49:1e:dc:32:f5:39:be:55:ca:de:8e:00:75:27:48:73:62:dd: 60:ce:9f:92:1b:87:9b:1b:6f:85:90:d3:7a:41:5b:bd:3d:9e: 1f:af:f1:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUej5yZtAAfBtltVO4/bcRFJF1IQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI1MkYxNEI1RTYyOTQxRTc2NDI2OEJGNTM5RUU5RkFE NTc5MzU1NTAeFw0yNjA1MDMwMjEzMjNaFw0yNzA1MDIwMjE4MjNaMDMxMTAvBgNV BAMTKDAyODgzNjA0ODk4RTNCNkNGNTgyRTg0QUI3QjhFNzlFMzM4MDI5MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7EWLb09rK32d7/pWdV1+QZOse 794FofkTLS6Up+/ukwxW1CkD0oOqzIq7pWpwJ9oMRq4B+/sgEVmrm3wJYDSJXqpN 9P94K3gxNnMP7l5oCunjYHbnjLl7FfItqdWD/h09N2Vh67oKzJwZrh4jHrBydBab j75H+Y3CZbBzuMpdLjZqnyna7M3/HkXXhXk2B7v57FpwEHC1dWrf5Kzj0qGrhNDF YLEuwS08TbEyFecfVNmCZ1uknYYVAB3ybs4gg3xJ4CdKjnlJEo+UCX6NxUWrfQ0P v6PAYRLgmxLFKGyz2p9/cMJv3O0SVZ9SYzFfK3zQ9CQ87lya15mOsDlp+ZihAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAog2BImOO2z1guhKt7jnnjOAKSIwHwYDVR0j BBgwFoAUklLxS15ilB52Qmi/U57p+tV5NVUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWVkNDZmODItY2YxMS00ZTMyLWIwNTEtNmFjMzM0YTkyNjIyLzAvOTI1MkYxNEI1 RTYyOTQxRTc2NDI2OEJGNTM5RUU5RkFENTc5MzU1NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MjUyRjE0QjVFNjI5NDFFNzY0MjY4QkY1MzlFRTlGQUQ1Nzkz NTU1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlZDQ2ZjgyLWNmMTEtNGUzMi1i MDUxLTZhYzMzNGE5MjYyMi8wLzMxMzAzMzJlMzIzMzMzMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+lsMA0GCSqG SIb3DQEBCwUAA4IBAQBGb5vcF+XNonjkFwiz4zSxy67Os3zRWJCODknPtMR2EZMF G1ZNUEU0VUrdetbjkz5RCHVrJKcYy7qla3XjImzPgdUapgyEij245c2SG1gCbmuF lPSwqo63qMHwwYFusyq5JoJcuvBp4L0jZhp7kBCctGI2HzndeT4JUop9JRZMelcR +BbLhb4AHWFjpsBhqvlDpIyCgZSg8nA0BpkiP5iA5Jnq96Jm/n5diL+2FtGbcuQF l9UxsHEwhcF1k+YhNJR6RG7zi9iB+sNbRYgslv2sSc/qfNxHdaRJHtwy9Tm+Vcre jgB1J0hzYt1gzp+SG4ebG2+FkNN6QVu9PZ4fr/HR -----END CERTIFICATE-----Generated at Wed May 13 08:10:06 2026 by rpki-client