$ rpki-client -vvf rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa File: 3130332e32382e38322e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: zWsBUB0EsryhwZbrxTe3du0LXbDcYqcCoZB7f/2SeQs= Subject key identifier: D5:BF:1F:C7:7A:1A:90:68:06:25:6B:55:B5:F5:9C:BD:BA:4D:7E:A0 Certificate issuer: /CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Certificate serial: 2B9D231D24073A1A95DB1F463406C97FB505C5D7 Authority key identifier: 25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa Signing time: Sun 03 May 2026 02:29:05 +0000 ROA not before: Sun 03 May 2026 02:24:05 +0000 ROA not after: Sun 02 May 2027 02:29:05 +0000 asID: 45723 IP address blocks: 103.28.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:9d:23:1d:24:07:3a:1a:95:db:1f:46:34:06:c9:7f:b5:05:c5:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Validity Not Before: May 3 02:24:05 2026 GMT Not After : May 2 02:29:05 2027 GMT Subject: CN=D5BF1FC77A1A906806256B55B5F59CBDBA4D7EA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c6:e9:10:b5:d4:7e:4a:02:7b:a8:b9:b9:61: 9e:d5:c3:3f:ca:0a:6f:51:ea:d4:27:a7:24:9c:96: 53:1c:c5:4b:a8:1e:25:8f:e4:55:39:17:b8:d6:1e: f0:d0:e1:b3:c0:cd:6d:e4:5b:35:18:fd:e7:f6:6a: a1:1e:f0:00:3e:d4:69:11:af:ef:8d:c8:7d:73:72: c2:6a:c1:84:44:13:8d:d3:0e:69:57:7f:58:e0:92: 96:17:a0:36:69:6f:55:be:ab:ad:a1:87:73:b6:22: 34:cd:f1:53:c4:ad:34:e7:c2:b1:4e:fd:84:89:97: 93:4d:da:fd:27:59:bf:b5:80:a0:b8:44:3f:fc:b3: 53:31:92:3c:f7:6e:1d:b6:fe:cd:80:e7:58:5b:71: 55:85:ee:82:ca:c2:16:4e:a9:6d:3e:2d:33:e4:cf: d0:bd:3f:46:97:23:ce:e7:f9:33:f1:f1:da:e2:4c: ec:95:64:ba:01:ce:11:8d:c3:a2:90:90:cf:22:0d: e0:0f:3d:be:da:95:de:f1:95:1a:41:82:ff:38:2c: f6:b0:d1:3b:8b:23:d0:3e:87:3f:90:52:e5:3f:06: 19:f7:e3:66:3c:38:50:d1:ab:53:8f:c8:df:a6:98: d6:a5:ba:58:0b:29:d2:f3:e3:69:08:92:74:5f:1c: 68:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BF:1F:C7:7A:1A:90:68:06:25:6B:55:B5:F5:9C:BD:BA:4D:7E:A0 X509v3 Authority Key Identifier: keyid:25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.82.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:f2:78:a7:be:d3:f9:cd:95:9b:59:6b:7c:21:fb:fd:88:71: 05:6c:33:bc:15:98:d5:8d:59:c5:bd:f4:50:3f:f5:4e:f4:e4: 4b:75:ce:61:ea:f1:dc:b7:97:c6:36:3e:2d:a3:cd:d7:d1:8b: 04:78:7f:1f:08:2a:64:8f:70:c6:0e:d0:fa:e8:e8:8c:c0:49: 8b:e4:b3:f7:61:6e:d9:00:4a:dc:98:b8:ac:47:50:77:f1:f2: 4c:58:2b:ac:0e:66:82:d7:80:79:7f:b7:4e:c4:21:87:cb:a6: 94:7d:de:72:f0:ea:7e:9f:91:c2:08:bb:5d:21:ca:78:13:da: 25:86:dc:fc:6f:7f:93:42:54:d9:4c:85:61:97:c4:84:d1:6c: 16:64:7a:1d:74:f0:b7:51:6a:92:92:7d:bf:d6:e8:25:4b:52: 22:a7:b0:c4:cb:a3:76:24:29:f3:ed:65:38:00:4c:1a:03:84: 59:d0:79:95:ee:f2:f1:10:b3:4b:73:5c:2b:66:8f:84:53:5f: 6a:36:e6:d1:39:81:d4:27:b3:48:b5:fb:11:28:9c:96:f6:4d: 55:8e:5b:54:7d:0d:e0:65:c9:3e:85:35:4e:79:34:02:e4:2d: 4e:a0:6e:5d:cb:2a:c8:42:20:5f:19:21:db:c9:c9:5b:59:ca: 77:b7:60:e3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUK50jHSQHOhqV2x9GNAbJf7UFxdcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzNUY2QTlBNjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5 Qzg4Q0M2MDAeFw0yNjA1MDMwMjI0MDVaFw0yNzA1MDIwMjI5MDVaMDMxMTAvBgNV BAMTKEQ1QkYxRkM3N0ExQTkwNjgwNjI1NkI1NUI1RjU5Q0JEQkE0RDdFQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6xukQtdR+SgJ7qLm5YZ7Vwz/K Cm9R6tQnpyScllMcxUuoHiWP5FU5F7jWHvDQ4bPAzW3kWzUY/ef2aqEe8AA+1GkR r++NyH1zcsJqwYREE43TDmlXf1jgkpYXoDZpb1W+q62hh3O2IjTN8VPErTTnwrFO /YSJl5NN2v0nWb+1gKC4RD/8s1Mxkjz3bh22/s2A51hbcVWF7oLKwhZOqW0+LTPk z9C9P0aXI87n+TPx8driTOyVZLoBzhGNw6KQkM8iDeAPPb7ald7xlRpBgv84LPaw 0TuLI9A+hz+QUuU/Bhn342Y8OFDRq1OPyN+mmNalulgLKdLz42kIknRfHGgLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1b8fx3oakGgGJWtVtfWcvbpNfqAwHwYDVR0j BBgwFoAUJTX2qaZTlbWIGtsLQyoWZ5yIzGAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDFkYjM3MzAtZjQ5OS00NDlmLWI2ZjItN2E1ZGViNTMyYjBjLzAvMjUzNUY2QTlB NjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5Qzg4Q0M2MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNTM1RjZBOUE2NTM5NUI1ODgxQURCMEI0MzJBMTY2NzlDODhD QzYwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMxMzAzMzJlMzIzODJlMzgzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHFIwDQYJKoZIhvcN AQELBQADggEBAFryeKe+0/nNlZtZa3wh+/2IcQVsM7wVmNWNWcW99FA/9U705Et1 zmHq8dy3l8Y2Pi2jzdfRiwR4fx8IKmSPcMYO0Pro6IzASYvks/dhbtkAStyYuKxH UHfx8kxYK6wOZoLXgHl/t07EIYfLppR93nLw6n6fkcIIu10hyngT2iWG3Pxvf5NC VNlMhWGXxITRbBZkeh108LdRapKSfb/W6CVLUiKnsMTLo3YkKfPtZTgATBoDhFnQ eZXu8vEQs0tzXCtmj4RTX2o25tE5gdQns0i1+xEonJb2TVWOW1R9DeBlyT6FNU55 NALkLU6gbl3LKshCIF8ZIdvJyVtZyne3YOM= -----END CERTIFICATE-----Generated at Wed May 13 13:31:06 2026 by rpki-client