$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134392e302f32342d3234203d3e203538343737.roa File: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: qDJ/c5qWojiJYfc9eIqgLudqj78rlDzX+1L2SPWNYTQ= Subject key identifier: CB:62:1D:A8:55:F5:14:B8:FD:CB:17:BF:51:52:EE:9F:D6:3E:66:9D Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 3C6E033A8613657671FF66CAED97468E8C102982 Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134392e302f32342d3234203d3e203538343737.roa Signing time: Sun 03 May 2026 02:31:32 +0000 ROA not before: Sun 03 May 2026 02:26:32 +0000 ROA not after: Sun 02 May 2027 02:31:32 +0000 asID: 58477 IP address blocks: 103.28.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:6e:03:3a:86:13:65:76:71:ff:66:ca:ed:97:46:8e:8c:10:29:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: May 3 02:26:32 2026 GMT Not After : May 2 02:31:32 2027 GMT Subject: CN=CB621DA855F514B8FDCB17BF5152EE9FD63E669D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8d:a8:66:ad:4f:96:d6:8c:72:d2:ad:51:39: e6:02:a8:08:75:23:6b:6a:9a:a8:f0:ff:84:f9:c4: 12:e8:e8:f8:56:bf:2a:52:15:6e:f5:cf:8a:b7:52: a0:d2:96:d0:8d:b3:5e:78:3f:b0:e7:09:a3:32:8c: 73:40:27:0d:dd:e2:f8:df:a5:1f:ff:74:c2:98:16: c2:62:29:e1:25:ad:5d:33:af:0a:9e:c6:14:6b:2c: a8:ba:62:a8:54:8c:39:3b:98:02:04:f5:d4:69:56: 80:ee:8d:8d:ca:f1:66:00:e5:9b:2d:10:d3:f9:d8: 01:11:91:74:f8:d6:04:e6:23:c9:a5:67:f1:69:32: db:94:bd:d8:09:5b:ec:86:4f:31:9d:09:6a:fc:c6: b5:2d:93:4c:46:3c:8d:e6:f6:57:2e:f6:cb:a3:4c: 17:99:ef:0b:8c:bf:02:bd:ca:d4:85:5b:87:75:9d: 68:a6:1c:ee:e0:5b:21:9a:a4:59:be:0d:88:83:a6: 80:1d:9d:79:e8:f4:11:b4:07:23:00:63:f3:86:a7: 63:3c:63:3a:3f:5d:ec:c0:bd:d7:e8:d4:bf:47:ab: 2a:bf:3f:cf:d9:6f:28:cf:4e:5c:bb:d2:b8:1f:0d: a3:60:d4:85:80:11:7a:ad:84:33:79:5d:a3:c3:23: af:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:62:1D:A8:55:F5:14:B8:FD:CB:17:BF:51:52:EE:9F:D6:3E:66:9D X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134392e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.149.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:31:e3:ac:55:24:56:75:79:ce:10:9b:2b:48:4b:ed:94:8a: 2b:f6:a6:65:39:0b:d2:b3:31:d1:ba:a2:4c:47:60:e5:36:19: 59:d8:63:b7:e4:af:7d:d6:d8:91:a1:36:49:7c:76:72:40:1e: 32:9a:cc:cf:be:be:b5:03:d6:a5:b1:4c:7a:ad:b0:96:ef:23: 67:48:d7:36:1c:56:d6:b3:e4:6f:31:46:97:61:ec:5a:94:97: 2b:ca:0a:f8:21:d4:46:68:af:57:97:23:ac:b6:9d:95:8a:09: 63:cf:78:21:45:45:a0:88:b8:f9:74:c0:18:2b:f5:2e:4c:94: 34:d2:4f:f4:64:9f:43:a9:fc:bf:a8:36:85:d7:c3:a6:5e:5e: 99:55:30:9e:17:46:05:3b:58:32:b0:c6:7f:29:5f:85:00:c6: 21:7d:6c:31:c8:5d:7e:27:a6:0f:8b:6e:71:91:7c:da:c3:da: fe:71:bd:bc:3c:f6:34:88:84:0f:47:1f:8b:7e:de:f6:97:c4: 61:1d:20:23:fc:17:93:bc:d5:1c:f2:2f:25:82:13:56:c5:4b: 64:39:1d:4a:4f:ac:54:04:71:cd:40:12:f3:74:cc:10:66:5f: cd:60:51:81:53:b1:44:e5:d6:ba:a1:de:ac:3c:20:61:1f:b8: c6:25:19:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPG4DOoYTZXZx/2bK7ZdGjowQKYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA1MDMwMjI2MzJaFw0yNzA1MDIwMjMxMzJaMDMxMTAvBgNV BAMTKENCNjIxREE4NTVGNTE0QjhGRENCMTdCRjUxNTJFRTlGRDYzRTY2OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtjahmrU+W1oxy0q1ROeYCqAh1 I2tqmqjw/4T5xBLo6PhWvypSFW71z4q3UqDSltCNs154P7DnCaMyjHNAJw3d4vjf pR//dMKYFsJiKeElrV0zrwqexhRrLKi6YqhUjDk7mAIE9dRpVoDujY3K8WYA5Zst ENP52AERkXT41gTmI8mlZ/FpMtuUvdgJW+yGTzGdCWr8xrUtk0xGPI3m9lcu9suj TBeZ7wuMvwK9ytSFW4d1nWimHO7gWyGapFm+DYiDpoAdnXno9BG0ByMAY/OGp2M8 Yzo/XezAvdfo1L9Hqyq/P8/ZbyjPTly70rgfDaNg1IWAEXqthDN5XaPDI69VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUy2IdqFX1FLj9yxe/UVLun9Y+Zp0wHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRiYzZhYTAzLTFiNGQtNDM4ZS1h OWYzLWVmZWFhZTZiMDkyMS8wLzMxMzAzMzJlMzIzODJlMzEzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcclTANBgkqhkiG 9w0BAQsFAAOCAQEALzHjrFUkVnV5zhCbK0hL7ZSKK/amZTkL0rMx0bqiTEdg5TYZ Wdhjt+SvfdbYkaE2SXx2ckAeMprMz76+tQPWpbFMeq2wlu8jZ0jXNhxW1rPkbzFG l2HsWpSXK8oK+CHURmivV5cjrLadlYoJY894IUVFoIi4+XTAGCv1LkyUNNJP9GSf Q6n8v6g2hdfDpl5emVUwnhdGBTtYMrDGfylfhQDGIX1sMchdfiemD4tucZF82sPa /nG9vDz2NIiED0cfi37e9pfEYR0gI/wXk7zVHPIvJYITVsVLZDkdSk+sVARxzUAS 83TMEGZfzWBRgVOxROXWuqHerDwgYR+4xiUZlw== -----END CERTIFICATE-----Generated at Wed May 13 00:44:43 2026 by rpki-client