$ rpki-client -vvf rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa File: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: HXWQguAHiybQ0lNmv6j951fobzx6yk3XQekPS+8DSQI= Subject key identifier: 62:00:FD:6A:D3:23:E3:3C:8E:41:3D:84:0D:0C:75:53:68:52:F0:4C Certificate issuer: /CN=23A948EB16F42F91944CC667D8613DD9AD7F2481 Certificate serial: 3F759E97F43EB7F0D2B0DCA40DFA5B79E9ACDF7E Authority key identifier: 23:A9:48:EB:16:F4:2F:91:94:4C:C6:67:D8:61:3D:D9:AD:7F:24:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa Signing time: Sun 03 May 2026 02:33:14 +0000 ROA not before: Sun 03 May 2026 02:28:14 +0000 ROA not after: Sun 02 May 2027 02:33:14 +0000 asID: 136052 IP address blocks: 103.28.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.crl rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:75:9e:97:f4:3e:b7:f0:d2:b0:dc:a4:0d:fa:5b:79:e9:ac:df:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23A948EB16F42F91944CC667D8613DD9AD7F2481 Validity Not Before: May 3 02:28:14 2026 GMT Not After : May 2 02:33:14 2027 GMT Subject: CN=6200FD6AD323E33C8E413D840D0C75536852F04C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bd:ee:ef:7d:5c:ad:8c:48:9b:21:20:a7:be: 11:8d:6f:4e:de:5f:83:20:9a:e2:25:c0:be:79:4b: a0:74:cc:4a:2f:03:ff:23:89:b4:b3:76:b1:ed:8a: 79:b9:a3:f8:e1:53:6d:bb:72:b9:56:ca:89:ac:d1: f4:df:39:e6:47:c9:8b:60:f6:e6:5d:4d:72:f5:0c: 32:55:a0:22:4e:19:3c:fe:ab:5a:4f:d3:aa:0b:9b: a7:19:3d:51:4b:8b:8e:df:c9:08:5a:da:b4:fe:6e: 3e:c6:74:ae:a2:37:d3:1c:ce:ce:7c:72:ff:f8:71: 10:09:8b:b6:be:6e:ab:b1:04:fc:92:0b:8b:61:53: 71:5c:40:d7:10:3d:52:27:09:80:63:06:43:8d:7f: 90:57:92:70:3b:ce:68:16:33:49:85:b1:d6:6d:6d: 29:b7:e7:0f:72:ba:01:44:0d:4e:3f:64:5e:6f:b0: 54:d1:a0:ee:9d:e8:33:20:6d:b9:e5:74:77:db:2a: ad:50:39:31:9f:59:b7:16:ac:8f:dc:06:24:55:12: 92:2b:5b:d6:4f:21:84:09:a7:43:73:18:2d:f4:1b: 17:90:33:74:79:19:94:c1:1c:69:d7:bc:8b:60:0f: de:c0:e4:9b:3b:bc:f0:27:28:df:5e:e1:bb:f9:dd: 0e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:00:FD:6A:D3:23:E3:3C:8E:41:3D:84:0D:0C:75:53:68:52:F0:4C X509v3 Authority Key Identifier: keyid:23:A9:48:EB:16:F4:2F:91:94:4C:C6:67:D8:61:3D:D9:AD:7F:24:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.52.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:54:d2:bc:74:10:d1:36:c0:5e:4c:cd:d4:8b:af:df:49:ac: b0:6b:1f:ed:73:1a:2f:37:d3:1f:38:61:9d:ec:92:f4:da:8e: fc:38:b2:26:90:35:46:17:be:83:ba:ba:a5:69:96:88:20:18: 4e:8f:c6:85:49:bc:ef:42:6d:a5:8c:5e:56:db:94:ce:ea:58: 03:5c:1d:3b:91:84:3e:64:b2:4f:3b:39:37:ec:a4:c6:d5:a9: 9e:0d:b1:7c:e4:4f:c6:fe:3f:1c:a6:92:8c:62:83:94:c7:74: a8:3e:5b:3b:3f:c6:97:ee:59:93:a5:f6:ff:db:5f:30:4a:92: c6:1c:0b:8b:24:54:86:e2:e5:67:3a:9e:8c:be:30:95:72:33: 51:e5:5b:47:dc:9e:a4:68:e6:2e:1a:76:35:6c:b5:a7:d3:e9: a9:00:75:0f:42:c2:77:7a:ff:27:7b:ed:ea:3a:d2:3f:88:0c: 13:e5:3b:ae:b8:6c:a3:c2:55:f7:e7:20:b9:5c:5e:b3:98:c6: 9f:de:ae:32:35:4e:16:0f:40:b6:00:2c:1b:a5:cd:68:04:d6: 42:03:e6:0f:55:50:e5:e0:75:33:a9:4f:9d:f1:8b:4c:b5:b2: af:d6:39:9f:a4:59:9c:03:23:bb:99:06:fe:3b:2d:c6:e8:29: 2a:1d:5c:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP3Wel/Q+t/DSsNykDfpbeems334wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNBOTQ4RUIxNkY0MkY5MTk0NENDNjY3RDg2MTNERDlB RDdGMjQ4MTAeFw0yNjA1MDMwMjI4MTRaFw0yNzA1MDIwMjMzMTRaMDMxMTAvBgNV BAMTKDYyMDBGRDZBRDMyM0UzM0M4RTQxM0Q4NDBEMEM3NTUzNjg1MkYwNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpve7vfVytjEibISCnvhGNb07e X4MgmuIlwL55S6B0zEovA/8jibSzdrHtinm5o/jhU227crlWyoms0fTfOeZHyYtg 9uZdTXL1DDJVoCJOGTz+q1pP06oLm6cZPVFLi47fyQha2rT+bj7GdK6iN9Mczs58 cv/4cRAJi7a+bquxBPySC4thU3FcQNcQPVInCYBjBkONf5BXknA7zmgWM0mFsdZt bSm35w9yugFEDU4/ZF5vsFTRoO6d6DMgbbnldHfbKq1QOTGfWbcWrI/cBiRVEpIr W9ZPIYQJp0NzGC30GxeQM3R5GZTBHGnXvItgD97A5Js7vPAnKN9e4bv53Q4bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYgD9atMj4zyOQT2EDQx1U2hS8EwwHwYDVR0j BBgwFoAUI6lI6xb0L5GUTMZn2GE92a1/JIEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTJhYzBjYTUtNWNlNy00ZTZlLTlmZmYtNzIxM2VmMWVmMzY0LzAvMjNBOTQ4RUIx NkY0MkY5MTk0NENDNjY3RDg2MTNERDlBRDdGMjQ4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yM0E5NDhFQjE2RjQyRjkxOTQ0Q0M2NjdEODYxM0REOUFEN0Yy NDgxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzIzODJlMzUzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWccNDANBgkqhkiG 9w0BAQsFAAOCAQEAXlTSvHQQ0TbAXkzN1Iuv30mssGsf7XMaLzfTHzhhneyS9NqO /DiyJpA1Rhe+g7q6pWmWiCAYTo/GhUm870JtpYxeVtuUzupYA1wdO5GEPmSyTzs5 N+ykxtWpng2xfORPxv4/HKaSjGKDlMd0qD5bOz/Gl+5Zk6X2/9tfMEqSxhwLiyRU huLlZzqejL4wlXIzUeVbR9yepGjmLhp2NWy1p9PpqQB1D0LCd3r/J3vt6jrSP4gM E+U7rrhso8JV9+cguVxes5jGn96uMjVOFg9AtgAsG6XNaATWQgPmD1VQ5eB1M6lP nfGLTLWyr9Y5n6RZnAMju5kG/jstxugpKh1c2A== -----END CERTIFICATE-----Generated at Wed May 13 02:37:52 2026 by rpki-client