$ rpki-client -vvf rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38312e302f32342d3234203d3e203435373233.roa File: 3130332e32382e38312e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: perZ7IpCPM80Glsi8eW1EfkZGuK/3Og6OKBH6xj5CZ0= Subject key identifier: 85:29:0B:F1:EB:29:94:21:E5:0F:5D:86:20:EB:B1:4A:56:B4:E6:4E Certificate issuer: /CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Certificate serial: 45F8314D8706651429269628A94D45BAD91E90C1 Authority key identifier: 25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38312e302f32342d3234203d3e203435373233.roa Signing time: Sun 03 May 2026 02:29:04 +0000 ROA not before: Sun 03 May 2026 02:24:04 +0000 ROA not after: Sun 02 May 2027 02:29:04 +0000 asID: 45723 IP address blocks: 103.28.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f8:31:4d:87:06:65:14:29:26:96:28:a9:4d:45:ba:d9:1e:90:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Validity Not Before: May 3 02:24:04 2026 GMT Not After : May 2 02:29:04 2027 GMT Subject: CN=85290BF1EB299421E50F5D8620EBB14A56B4E64E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8a:44:17:e1:1c:c0:50:5e:86:e2:a6:03:cd: bd:da:83:dd:3f:bb:e8:6c:d0:7e:db:6a:82:82:73: 19:db:e3:24:3a:ce:16:5b:ee:b6:65:b8:b2:03:79: 48:d3:65:b7:1e:06:70:6b:c1:b7:bc:4d:0b:41:7b: d7:d5:57:1e:55:93:ea:81:4b:06:24:c6:13:68:91: e6:12:fd:9f:9a:d2:e4:ba:9c:a9:06:64:6c:5c:81: 9d:d9:d7:fa:00:16:5c:da:97:a3:66:c7:d1:54:6d: d6:13:6d:7b:e1:78:36:9a:ec:8a:47:67:1c:3f:60: 49:5f:5c:59:71:93:6f:1b:83:92:b1:57:10:db:b2: c0:4c:41:98:5e:62:36:b0:4b:af:1b:c5:ee:0c:36: e2:a3:b5:2c:3f:bd:9f:c1:ee:09:f9:cf:ff:6e:65: 4a:cb:f8:42:32:72:5b:bc:f2:36:95:30:67:f3:fb: 5b:fb:74:80:3e:57:dd:06:62:9b:77:87:7a:99:07: 2c:cd:c3:1f:34:68:f1:a7:f6:b6:bc:26:75:e4:0b: 10:0c:0b:24:7b:ba:29:f7:c7:39:58:39:b2:98:70: 4d:3e:34:c8:51:03:47:15:16:ac:85:75:28:3f:95: 01:41:d7:ab:98:93:a3:f4:27:f2:f8:53:1e:8d:ec: dd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:29:0B:F1:EB:29:94:21:E5:0F:5D:86:20:EB:B1:4A:56:B4:E6:4E X509v3 Authority Key Identifier: keyid:25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38312e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.81.0/24 Signature Algorithm: sha256WithRSAEncryption 69:63:ae:be:bc:76:13:be:c6:99:d4:0b:56:ef:47:cd:57:72: a1:fb:b8:cf:da:eb:f1:f7:29:28:1a:65:eb:68:5e:8d:3c:9c: 24:6e:3e:c4:31:4a:7a:b1:d0:7d:b4:13:f3:87:fc:e6:74:a3: 25:59:39:04:40:a9:58:14:8a:25:77:c2:85:44:87:31:15:0d: 10:7d:77:76:61:7a:61:18:42:eb:09:e3:ab:8a:34:c8:ac:3f: 68:f0:bb:17:9e:a3:75:64:0b:11:36:f4:65:15:a6:61:9c:da: 23:6e:f9:cd:8e:be:c6:6d:10:c3:88:43:fd:4a:31:d8:4b:7b: de:ba:13:f3:38:f8:5d:00:54:77:06:ff:86:b0:c4:36:fc:1a: 39:59:d1:8d:f9:03:bf:15:62:7b:a0:2c:5a:37:8d:da:e0:0a: e1:bc:d0:21:05:84:a3:7f:25:3c:80:c2:e0:e9:e9:04:b6:75: ae:06:ba:33:21:10:81:95:d4:54:60:f4:51:bd:f1:26:6b:ec: 14:34:f4:67:65:f9:5a:7a:37:c5:87:5c:c2:3f:f6:22:41:0c: 4e:63:c9:15:de:06:d8:c3:88:e0:5f:8b:82:11:2d:64:eb:dd: f8:f7:3d:9d:3d:53:3f:5a:45:0c:e2:7e:b3:8e:8f:6d:a2:fd: 28:11:94:e1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURfgxTYcGZRQpJpYoqU1FutkekMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzNUY2QTlBNjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5 Qzg4Q0M2MDAeFw0yNjA1MDMwMjI0MDRaFw0yNzA1MDIwMjI5MDRaMDMxMTAvBgNV BAMTKDg1MjkwQkYxRUIyOTk0MjFFNTBGNUQ4NjIwRUJCMTRBNTZCNEU2NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwikQX4RzAUF6G4qYDzb3ag90/ u+hs0H7baoKCcxnb4yQ6zhZb7rZluLIDeUjTZbceBnBrwbe8TQtBe9fVVx5Vk+qB SwYkxhNokeYS/Z+a0uS6nKkGZGxcgZ3Z1/oAFlzal6Nmx9FUbdYTbXvheDaa7IpH Zxw/YElfXFlxk28bg5KxVxDbssBMQZheYjawS68bxe4MNuKjtSw/vZ/B7gn5z/9u ZUrL+EIyclu88jaVMGfz+1v7dIA+V90GYpt3h3qZByzNwx80aPGn9ra8JnXkCxAM CyR7uin3xzlYObKYcE0+NMhRA0cVFqyFdSg/lQFB16uYk6P0J/L4Ux6N7N2TAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhSkL8esplCHlD12GIOuxSla05k4wHwYDVR0j BBgwFoAUJTX2qaZTlbWIGtsLQyoWZ5yIzGAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDFkYjM3MzAtZjQ5OS00NDlmLWI2ZjItN2E1ZGViNTMyYjBjLzAvMjUzNUY2QTlB NjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5Qzg4Q0M2MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNTM1RjZBOUE2NTM5NUI1ODgxQURCMEI0MzJBMTY2NzlDODhD QzYwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMxMzAzMzJlMzIzODJlMzgzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHFEwDQYJKoZIhvcN AQELBQADggEBAGljrr68dhO+xpnUC1bvR81XcqH7uM/a6/H3KSgaZetoXo08nCRu PsQxSnqx0H20E/OH/OZ0oyVZOQRAqVgUiiV3woVEhzEVDRB9d3ZhemEYQusJ46uK NMisP2jwuxeeo3VkCxE29GUVpmGc2iNu+c2OvsZtEMOIQ/1KMdhLe966E/M4+F0A VHcG/4awxDb8GjlZ0Y35A78VYnugLFo3jdrgCuG80CEFhKN/JTyAwuDp6QS2da4G ujMhEIGV1FRg9FG98SZr7BQ09Gdl+Vp6N8WHXMI/9iJBDE5jyRXeBtjDiOBfi4IR LWTr3fj3PZ09Uz9aRQzifrOOj22i/SgRlOE= -----END CERTIFICATE-----Generated at Wed May 13 13:31:12 2026 by rpki-client