$ rpki-client -vvf rpki-rsync.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa File: 3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 3ztmF6u8CybuvGS2PB2tOwVdrSE0WLnmTt/ftgrSMls= Subject key identifier: 14:22:8C:B1:57:23:26:5F:C9:47:AF:89:6A:D3:C6:40:5E:9F:30:CB Certificate issuer: /CN=33EAEF2715BAF7E7E2B4CE305105279D798F4A0E Certificate serial: 626547187B487CF8FA5C2E0853AFCF3D43C427D1 Authority key identifier: 33:EA:EF:27:15:BA:F7:E7:E2:B4:CE:30:51:05:27:9D:79:8F:4A:0E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33EAEF2715BAF7E7E2B4CE305105279D798F4A0E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa Signing time: Sun 03 May 2026 02:25:24 +0000 ROA not before: Sun 03 May 2026 02:20:24 +0000 ROA not after: Sun 02 May 2027 02:25:24 +0000 asID: 139952 IP address blocks: 103.162.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/33EAEF2715BAF7E7E2B4CE305105279D798F4A0E.crl rsync://rpki-rsync.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/33EAEF2715BAF7E7E2B4CE305105279D798F4A0E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33EAEF2715BAF7E7E2B4CE305105279D798F4A0E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:65:47:18:7b:48:7c:f8:fa:5c:2e:08:53:af:cf:3d:43:c4:27:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EAEF2715BAF7E7E2B4CE305105279D798F4A0E Validity Not Before: May 3 02:20:24 2026 GMT Not After : May 2 02:25:24 2027 GMT Subject: CN=14228CB15723265FC947AF896AD3C6405E9F30CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:95:22:bf:3e:7f:3e:80:7f:7a:c0:db:15: ad:45:6e:1d:4d:0a:56:c1:a1:c6:25:8c:d8:d4:e4: dc:95:2a:28:86:1e:4c:49:47:52:38:31:c6:78:44: f8:c1:f1:1b:22:6c:ea:12:7d:1a:87:21:08:83:af: 85:b9:db:f6:88:fe:88:8a:82:3e:89:94:51:c6:49: 8d:fa:4c:91:e1:9e:fc:e9:62:53:0a:ae:18:56:11: 99:eb:4f:43:08:11:c3:b4:16:2c:62:de:0a:f8:57: 65:16:9f:54:e5:24:53:80:2c:22:2e:8c:70:e1:74: 36:22:89:7b:47:69:2a:f0:88:89:40:9b:44:4a:3b: 8c:24:5c:5b:72:5b:2d:8e:74:78:13:5f:68:65:47: d3:3f:a1:55:83:32:9c:3d:26:ef:56:f1:f6:ed:44: 05:5f:58:2c:32:c8:c2:e7:fd:49:f5:27:e6:d8:30: 1e:64:91:f9:b7:7c:bc:67:0e:7a:8f:98:b6:b9:e7: f8:69:42:95:de:b6:fb:28:01:1a:b3:2e:15:8a:be: a2:ec:32:f5:01:4b:0c:f1:89:e1:85:6d:6b:c2:c2: 6a:25:04:94:23:74:a6:8c:37:5f:8a:74:6f:e2:6f: a8:37:05:5d:d0:f9:9e:54:00:fa:16:1e:f3:38:86: 7e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:22:8C:B1:57:23:26:5F:C9:47:AF:89:6A:D3:C6:40:5E:9F:30:CB X509v3 Authority Key Identifier: keyid:33:EA:EF:27:15:BA:F7:E7:E2:B4:CE:30:51:05:27:9D:79:8F:4A:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/33EAEF2715BAF7E7E2B4CE305105279D798F4A0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33EAEF2715BAF7E7E2B4CE305105279D798F4A0E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.220.0/24 Signature Algorithm: sha256WithRSAEncryption 06:5c:5a:33:c9:f3:4f:7c:49:0a:20:81:f9:e0:4d:70:0f:8e: c6:67:8f:28:5c:0f:2d:32:53:d9:18:fb:85:84:9b:82:a8:08: 70:d1:7d:48:5b:8b:ca:12:2b:e3:dd:19:91:03:39:7f:13:fb: ff:65:45:9d:e0:33:64:3d:d0:31:95:65:75:d5:1d:f3:a6:13: 4c:2d:27:bc:ef:65:fb:50:8e:8d:e4:06:0e:2c:8a:d9:68:9a: de:ac:4b:1c:16:d6:73:de:f3:5e:e2:ee:04:ee:e0:a9:58:35: 32:c5:b7:20:17:ad:7a:e3:5b:d9:42:83:e0:85:68:16:4c:70: d7:a8:f7:68:cd:72:56:46:c9:ff:56:97:e8:1d:4a:e1:14:b0: 9e:dc:f1:97:b0:b4:a2:93:99:8c:a8:03:be:49:17:0c:d1:ad: 12:73:8b:e0:c9:7b:14:ea:da:b3:9d:29:43:1b:18:f8:5c:62: cf:ac:88:be:2e:32:04:a2:dd:fe:5d:8b:4c:e6:22:73:f7:6c: fa:63:19:f8:fe:7b:d3:6d:f7:08:a9:e0:96:33:63:77:ed:b0: 24:03:c8:5e:b3:a5:2c:20:6b:6e:9d:51:87:11:a7:93:3b:d4: 01:4e:9a:f8:bb:05:b0:49:cd:56:59:0d:24:42:c3:6d:de:3d: ef:9c:5b:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYmVHGHtIfPj6XC4IU6/PPUPEJ9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFQUVGMjcxNUJBRjdFN0UyQjRDRTMwNTEwNTI3OUQ3 OThGNEEwRTAeFw0yNjA1MDMwMjIwMjRaFw0yNzA1MDIwMjI1MjRaMDMxMTAvBgNV BAMTKDE0MjI4Q0IxNTcyMzI2NUZDOTQ3QUY4OTZBRDNDNjQwNUU5RjMwQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0M5Uivz5/PoB/esDbFa1Fbh1N ClbBocYljNjU5NyVKiiGHkxJR1I4McZ4RPjB8RsibOoSfRqHIQiDr4W52/aI/oiK gj6JlFHGSY36TJHhnvzpYlMKrhhWEZnrT0MIEcO0Fixi3gr4V2UWn1TlJFOALCIu jHDhdDYiiXtHaSrwiIlAm0RKO4wkXFtyWy2OdHgTX2hlR9M/oVWDMpw9Ju9W8fbt RAVfWCwyyMLn/Un1J+bYMB5kkfm3fLxnDnqPmLa55/hpQpXetvsoARqzLhWKvqLs MvUBSwzxieGFbWvCwmolBJQjdKaMN1+KdG/ib6g3BV3Q+Z5UAPoWHvM4hn6nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFCKMsVcjJl/JR6+JatPGQF6fMMswHwYDVR0j BBgwFoAUM+rvJxW69+fitM4wUQUnnXmPSg4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU4YzhmOWYtNDIxMy00YTJhLTg1YzMtYjI0YjBkMGI1MTA3LzAvMzNFQUVGMjcx NUJBRjdFN0UyQjRDRTMwNTEwNTI3OUQ3OThGNEEwRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0VBRUYyNzE1QkFGN0U3RTJCNENFMzA1MTA1Mjc5RDc5OEY0 QTBFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1OGM4ZjlmLTQyMTMtNGEyYS04 NWMzLWIyNGIwZDBiNTEwNy8wLzMxMzAzMzJlMzEzNjMyMmUzMjMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnotwwDQYJ KoZIhvcNAQELBQADggEBAAZcWjPJ8098SQoggfngTXAPjsZnjyhcDy0yU9kY+4WE m4KoCHDRfUhbi8oSK+PdGZEDOX8T+/9lRZ3gM2Q90DGVZXXVHfOmE0wtJ7zvZftQ jo3kBg4sitlomt6sSxwW1nPe817i7gTu4KlYNTLFtyAXrXrjW9lCg+CFaBZMcNeo 92jNclZGyf9Wl+gdSuEUsJ7c8ZewtKKTmYyoA75JFwzRrRJzi+DJexTq2rOdKUMb GPhcYs+siL4uMgSi3f5di0zmInP3bPpjGfj+e9Nt9wip4JYzY3ftsCQDyF6zpSwg a26dUYcRp5M71AFOmvi7BbBJzVZZDSRCw23ePe+cW50= -----END CERTIFICATE-----Generated at Wed May 13 05:57:22 2026 by rpki-client