$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134382e302f32342d3234203d3e203538343737.roa File: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: xw+egA02OX5uOYAGnedHg8tG8xIxYeukOfUcUDfNNIQ= Subject key identifier: E1:C1:38:A2:5F:40:DF:5B:63:D9:9B:12:65:D8:F9:F8:1F:39:0E:86 Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 3C7C41675D94C7B03C32CBB78AEEFFF87B1219D8 Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134382e302f32342d3234203d3e203538343737.roa Signing time: Sun 03 May 2026 02:31:29 +0000 ROA not before: Sun 03 May 2026 02:26:29 +0000 ROA not after: Sun 02 May 2027 02:31:29 +0000 asID: 58477 IP address blocks: 103.28.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7c:41:67:5d:94:c7:b0:3c:32:cb:b7:8a:ee:ff:f8:7b:12:19:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: May 3 02:26:29 2026 GMT Not After : May 2 02:31:29 2027 GMT Subject: CN=E1C138A25F40DF5B63D99B1265D8F9F81F390E86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:1a:50:68:3a:cd:c2:24:64:71:01:72:3d:fe: 90:76:6f:b4:d1:33:ec:b4:20:8b:22:96:7c:15:de: 87:8f:f1:3f:87:8b:02:b1:bf:6b:93:89:27:d3:4c: f2:6a:22:6e:b9:4a:c6:cd:6d:be:a4:cb:e7:47:68: 17:f8:13:ce:86:30:d4:15:57:aa:33:82:f1:ff:f0: 13:13:12:51:05:01:23:85:ed:7d:d5:6f:4b:2a:94: 58:2f:e9:99:6f:bf:40:eb:00:21:5e:39:a8:3d:38: 9c:ff:a7:b7:48:78:b9:4b:c4:66:b1:92:cb:e8:f5: 56:f8:72:73:93:29:e9:7e:4b:0e:38:10:51:86:9d: 9c:60:11:87:e4:1d:20:47:3d:14:19:5e:63:21:d4: 06:f2:c4:85:52:36:29:a1:a5:10:af:b9:87:e5:f6: 38:e9:e2:a5:4c:41:8f:ed:63:de:58:88:61:bd:e0: 49:d2:ab:b0:78:73:dd:8a:b3:8f:45:d8:b8:ab:00: 61:66:a4:fd:13:a2:4d:cd:20:e2:f9:bf:06:02:be: 4d:e0:91:aa:d9:23:f2:dd:f3:26:3e:30:fd:a6:22: 7a:17:13:f9:e3:b6:cd:0d:e2:6b:81:76:0d:15:da: b2:f0:26:b7:8b:3a:3b:9c:e0:c2:eb:4d:98:78:6c: c4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C1:38:A2:5F:40:DF:5B:63:D9:9B:12:65:D8:F9:F8:1F:39:0E:86 X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134382e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.148.0/24 Signature Algorithm: sha256WithRSAEncryption 13:a7:5d:45:92:d1:61:2a:e5:92:7d:b0:d7:91:cc:1e:c2:27: 18:22:46:f5:a0:e8:be:fe:62:4a:3e:04:9b:73:20:50:66:93: 36:c9:5b:02:1b:e0:38:a2:9b:57:8e:62:10:f1:cb:23:6f:af: b0:8a:4c:91:b7:8e:73:e1:83:35:6e:d6:cc:45:6d:3e:50:ef: 3b:ee:52:f8:6d:e0:5f:65:5c:2a:dd:64:50:08:d9:f5:ea:8d: 5a:38:78:15:50:4a:19:46:cc:db:77:51:d0:67:6a:b2:f4:02: a2:e6:6c:39:4a:5d:44:eb:50:15:e4:41:ba:53:16:f4:88:03: fe:66:e5:39:17:8a:c3:ef:fa:c6:87:b2:91:9d:b8:6f:e6:51: 6d:d7:c4:0d:fd:e9:cc:5e:d3:ac:b9:e7:b2:16:d8:4a:fd:87: fa:6a:1f:7a:c9:74:b8:36:ce:02:ac:22:90:e2:d3:bd:fe:c1: 88:6f:b6:38:18:a8:d1:41:5b:8f:12:e7:f5:6f:a1:65:35:a3: af:56:79:e9:45:d5:5c:c5:16:cb:96:f7:1a:55:aa:af:4c:a4: b0:00:a6:6b:73:9b:48:e3:94:f4:1d:0c:6c:d1:71:31:4b:7d: b7:4a:95:5f:a7:4f:3d:05:fc:f2:1b:f8:ef:f8:c8:79:cb:df: 06:b0:40:ba -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPHxBZ12Ux7A8Msu3iu7/+HsSGdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA1MDMwMjI2MjlaFw0yNzA1MDIwMjMxMjlaMDMxMTAvBgNV BAMTKEUxQzEzOEEyNUY0MERGNUI2M0Q5OUIxMjY1RDhGOUY4MUYzOTBFODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKGlBoOs3CJGRxAXI9/pB2b7TR M+y0IIsilnwV3oeP8T+HiwKxv2uTiSfTTPJqIm65SsbNbb6ky+dHaBf4E86GMNQV V6ozgvH/8BMTElEFASOF7X3Vb0sqlFgv6Zlvv0DrACFeOag9OJz/p7dIeLlLxGax ksvo9Vb4cnOTKel+Sw44EFGGnZxgEYfkHSBHPRQZXmMh1AbyxIVSNimhpRCvuYfl 9jjp4qVMQY/tY95YiGG94EnSq7B4c92Ks49F2LirAGFmpP0Tok3NIOL5vwYCvk3g karZI/Ld8yY+MP2mInoXE/njts0N4muBdg0V2rLwJreLOjuc4MLrTZh4bMT5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4cE4ol9A31tj2ZsSZdj5+B85DoYwHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRiYzZhYTAzLTFiNGQtNDM4ZS1h OWYzLWVmZWFhZTZiMDkyMS8wLzMxMzAzMzJlMzIzODJlMzEzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcclDANBgkqhkiG 9w0BAQsFAAOCAQEAE6ddRZLRYSrlkn2w15HMHsInGCJG9aDovv5iSj4Em3MgUGaT NslbAhvgOKKbV45iEPHLI2+vsIpMkbeOc+GDNW7WzEVtPlDvO+5S+G3gX2VcKt1k UAjZ9eqNWjh4FVBKGUbM23dR0GdqsvQCouZsOUpdROtQFeRBulMW9IgD/mblOReK w+/6xoeykZ24b+ZRbdfEDf3pzF7TrLnnshbYSv2H+mofesl0uDbOAqwikOLTvf7B iG+2OBio0UFbjxLn9W+hZTWjr1Z56UXVXMUWy5b3GlWqr0yksACma3ObSOOU9B0M bNFxMUt9t0qVX6dPPQX88hv47/jIecvfBrBAug== -----END CERTIFICATE-----Generated at Wed May 13 00:21:08 2026 by rpki-client