$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa File: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (raw, json) Hash identifier: yPK7GQUu85mTor59GtzCw8idVr6kmAEeffKza8nzEd8= Subject key identifier: 4D:5D:6C:F2:F3:25:CB:61:17:D3:D1:F1:59:04:80:59:ED:85:04:36 Certificate issuer: /CN=5843958BB240779320D7F0C2B674ACF5EF6122BC Certificate serial: 4186F5397D8676E291316C7620AA754BA5E79C3A Authority key identifier: 58:43:95:8B:B2:40:77:93:20:D7:F0:C2:B6:74:AC:F5:EF:61:22:BC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa Signing time: Sun 03 May 2026 02:23:01 +0000 ROA not before: Sun 03 May 2026 02:18:01 +0000 ROA not after: Sun 02 May 2027 02:23:01 +0000 asID: 45305 IP address blocks: 103.28.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.crl rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:86:f5:39:7d:86:76:e2:91:31:6c:76:20:aa:75:4b:a5:e7:9c:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5843958BB240779320D7F0C2B674ACF5EF6122BC Validity Not Before: May 3 02:18:01 2026 GMT Not After : May 2 02:23:01 2027 GMT Subject: CN=4D5D6CF2F325CB6117D3D1F159048059ED850436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:57:be:b3:05:e1:e7:c4:4b:99:fd:df:18:7e: 8c:d7:84:44:10:ee:bb:a5:e7:1b:dc:16:95:cd:09: 9c:6d:ea:21:57:cc:c9:06:68:01:2c:c7:88:11:39: 4a:1f:b0:3b:26:59:3b:26:0c:f4:6c:25:47:6f:47: a6:53:8d:da:c8:74:91:cf:6b:f8:b3:4b:e3:1b:73: 6d:5a:ec:77:c8:13:c6:bd:f2:1e:b8:dc:d3:9b:0d: 78:3c:23:45:e1:01:77:c9:6f:c8:3b:33:90:e2:a4: 37:1a:d6:f5:db:0b:75:78:0e:7a:a1:58:8a:78:93: fa:19:30:cb:be:98:21:a8:10:7f:b9:13:7e:ab:d6: 39:f7:86:3a:29:8e:36:23:4b:8c:23:f6:2d:c6:39: 39:83:97:e0:05:36:69:07:82:08:2b:34:be:e2:bf: 87:2e:86:cb:94:8b:bd:3d:ce:6a:e3:ac:8a:62:43: 74:20:97:da:73:84:be:e3:3a:be:05:ce:9c:bd:c2: c9:72:78:f8:75:04:9f:ba:d8:76:00:bc:f9:1e:84: 04:23:2a:af:a9:aa:16:9d:ca:10:81:83:6f:55:d2: 00:35:92:91:be:f8:1f:a7:1f:15:b2:a8:f3:48:aa: ba:8a:b9:63:8a:66:72:11:38:15:29:d5:fb:3c:24: 5e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5D:6C:F2:F3:25:CB:61:17:D3:D1:F1:59:04:80:59:ED:85:04:36 X509v3 Authority Key Identifier: keyid:58:43:95:8B:B2:40:77:93:20:D7:F0:C2:B6:74:AC:F5:EF:61:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.112.0/22 Signature Algorithm: sha256WithRSAEncryption 89:e9:9f:2f:57:44:b4:1b:5b:16:ac:1d:11:e0:09:2e:c9:17: 0f:46:50:3b:38:2e:3c:71:73:9c:c2:e4:8f:93:1a:06:d0:77: 6c:b2:fc:c3:61:3f:53:e4:28:ad:28:ad:24:1e:f0:46:40:40: 94:4c:71:eb:44:25:23:84:f0:b1:db:81:1f:f5:1f:df:15:a7: 30:fa:14:3d:07:0b:95:02:2c:8e:e7:50:d4:8f:a9:bc:22:7b: 79:46:43:b8:50:16:20:eb:a1:6e:2d:6e:7b:09:4a:11:11:b8: 50:c9:36:99:cf:89:4b:99:3c:be:22:49:ad:3c:da:e7:0e:c2: fb:8b:2b:83:0c:b1:ea:f8:b0:99:1c:91:78:41:57:6f:99:47: 69:54:bf:ea:a4:37:ca:b8:17:18:1a:15:e5:6c:a7:40:78:42: b1:d0:f8:9d:05:d7:2e:23:bd:42:bf:84:63:5e:4f:05:d5:c3: cf:ef:d0:90:d9:ec:a3:68:20:d7:1f:3d:08:88:13:bf:0a:cd: b6:c2:63:95:5c:1e:0d:12:6f:33:e3:02:09:ac:dd:54:7e:55: eb:cc:1d:fb:17:e4:c1:a5:46:3b:4e:4a:2a:94:45:f4:9a:4c: fd:f2:a3:21:62:d3:3c:4b:67:3f:8b:58:11:16:d9:94:5c:d7: 55:74:41:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQYb1OX2GduKRMWx2IKp1S6XnnDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg0Mzk1OEJCMjQwNzc5MzIwRDdGMEMyQjY3NEFDRjVF RjYxMjJCQzAeFw0yNjA1MDMwMjE4MDFaFw0yNzA1MDIwMjIzMDFaMDMxMTAvBgNV BAMTKDRENUQ2Q0YyRjMyNUNCNjExN0QzRDFGMTU5MDQ4MDU5RUQ4NTA0MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTV76zBeHnxEuZ/d8YfozXhEQQ 7rul5xvcFpXNCZxt6iFXzMkGaAEsx4gROUofsDsmWTsmDPRsJUdvR6ZTjdrIdJHP a/izS+Mbc21a7HfIE8a98h643NObDXg8I0XhAXfJb8g7M5DipDca1vXbC3V4Dnqh WIp4k/oZMMu+mCGoEH+5E36r1jn3hjopjjYjS4wj9i3GOTmDl+AFNmkHgggrNL7i v4cuhsuUi709zmrjrIpiQ3Qgl9pzhL7jOr4Fzpy9wslyePh1BJ+62HYAvPkehAQj Kq+pqhadyhCBg29V0gA1kpG++B+nHxWyqPNIqrqKuWOKZnIROBUp1fs8JF6dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTV1s8vMly2EX09HxWQSAWe2FBDYwHwYDVR0j BBgwFoAUWEOVi7JAd5Mg1/DCtnSs9e9hIrwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ5NWMxOWMtMzI2Mi00OGM3LWFmMDItMzdhODM1ZDBhNzc5LzAvNTg0Mzk1OEJC MjQwNzc5MzIwRDdGMEMyQjY3NEFDRjVFRjYxMjJCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81ODQzOTU4QkIyNDA3NzkzMjBEN0YwQzJCNjc0QUNGNUVGNjEy MkJDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzAzMzJlMzIzODJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcccDANBgkqhkiG 9w0BAQsFAAOCAQEAiemfL1dEtBtbFqwdEeAJLskXD0ZQOzguPHFznMLkj5MaBtB3 bLL8w2E/U+QorSitJB7wRkBAlExx60QlI4TwsduBH/Uf3xWnMPoUPQcLlQIsjudQ 1I+pvCJ7eUZDuFAWIOuhbi1uewlKERG4UMk2mc+JS5k8viJJrTza5w7C+4srgwyx 6viwmRyReEFXb5lHaVS/6qQ3yrgXGBoV5WynQHhCsdD4nQXXLiO9Qr+EY15PBdXD z+/QkNnso2gg1x89CIgTvwrNtsJjlVweDRJvM+MCCazdVH5V68wd+xfkwaVGO05K KpRF9JpM/fKjIWLTPEtnP4tYERbZlFzXVXRBxA== -----END CERTIFICATE-----Generated at Wed May 13 02:37:53 2026 by rpki-client