$ rpki-client -vvf rpki-rsync.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa File: 3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa (raw, json) Hash identifier: IYkMg6+qZ/xVvXBkVi5WzC87htsBExZ9GFp2XLTOPIo= Subject key identifier: 4B:32:73:8A:1E:0C:78:1F:FA:E8:85:A6:36:A3:68:D3:A3:31:38:A4 Certificate issuer: /CN=28FC473B037990E1B12B22A9BAFB1900D3ACEBD8 Certificate serial: 5F076FF7717EE537D77C9BFB7BFA70D6B8BE7172 Authority key identifier: 28:FC:47:3B:03:79:90:E1:B1:2B:22:A9:BA:FB:19:00:D3:AC:EB:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28FC473B037990E1B12B22A9BAFB1900D3ACEBD8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa Signing time: Sun 03 May 2026 02:49:07 +0000 ROA not before: Sun 03 May 2026 02:44:07 +0000 ROA not after: Sun 02 May 2027 02:49:07 +0000 asID: 138066 IP address blocks: 103.123.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/28FC473B037990E1B12B22A9BAFB1900D3ACEBD8.crl rsync://rpki-rsync.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/28FC473B037990E1B12B22A9BAFB1900D3ACEBD8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28FC473B037990E1B12B22A9BAFB1900D3ACEBD8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:07:6f:f7:71:7e:e5:37:d7:7c:9b:fb:7b:fa:70:d6:b8:be:71:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28FC473B037990E1B12B22A9BAFB1900D3ACEBD8 Validity Not Before: May 3 02:44:07 2026 GMT Not After : May 2 02:49:07 2027 GMT Subject: CN=4B32738A1E0C781FFAE885A636A368D3A33138A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:04:04:8e:1f:ee:54:69:48:41:19:b7:0a:9d: ea:d2:be:ae:40:c5:db:ea:1d:97:4a:66:64:61:49: 53:5c:46:9d:af:6f:f7:ee:6f:67:48:1e:17:40:46: 08:58:7d:dc:94:bd:12:7f:0f:fb:a9:23:8a:22:22: 60:3d:e1:6e:b3:cc:3b:8d:1b:2c:da:9d:02:ad:43: ed:cc:b7:91:cb:59:78:2a:14:cc:1d:d7:ce:6b:d0: dd:4e:87:c9:c8:45:c9:98:ec:37:87:96:48:34:52: 45:77:ad:78:b3:48:b7:7b:f4:5b:46:12:84:de:3f: d1:e3:5b:86:01:6e:e1:cf:aa:60:a5:61:d1:0b:8a: e0:10:fc:4b:83:a4:77:2e:b4:c0:ab:99:90:d2:11: 16:ec:1c:80:12:45:13:6c:d8:12:22:ff:94:7c:9d: 4e:3f:5c:e1:7b:73:1f:69:56:66:aa:4e:0a:9a:bc: 6f:e7:58:71:fb:bf:fb:c1:87:b5:79:b3:99:57:58: b0:43:80:32:28:cb:b0:ba:46:5a:38:45:24:83:2c: 61:d8:50:c2:36:3b:9f:a7:fc:26:7f:71:a4:6c:a3: 8e:b2:24:cc:b2:3d:47:61:4c:a8:9f:bf:78:10:ff: 3f:1f:7d:22:e7:02:b4:a2:2f:18:83:7a:8a:46:bd: b2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:32:73:8A:1E:0C:78:1F:FA:E8:85:A6:36:A3:68:D3:A3:31:38:A4 X509v3 Authority Key Identifier: keyid:28:FC:47:3B:03:79:90:E1:B1:2B:22:A9:BA:FB:19:00:D3:AC:EB:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/28FC473B037990E1B12B22A9BAFB1900D3ACEBD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28FC473B037990E1B12B22A9BAFB1900D3ACEBD8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.108.0/24 Signature Algorithm: sha256WithRSAEncryption 42:0e:b5:3b:3f:b9:3d:bb:84:72:9b:85:2e:6d:b7:56:8d:7e: 0d:10:7d:56:50:29:1e:32:f0:2a:65:d5:96:c3:52:c3:4a:c0: 83:11:81:3b:b9:2c:1f:01:0a:1a:f0:90:cb:c3:0a:35:ac:a2: bd:0d:d8:ae:2f:3e:59:34:1b:be:67:d2:b2:51:20:08:56:86: b0:ed:21:a5:91:8b:75:41:c0:84:03:d1:92:b8:54:d5:aa:1c: f6:b1:83:b3:86:bf:b8:f1:61:fd:99:e5:f6:0d:96:cf:78:8e: 7a:12:c5:e5:e3:4c:8a:5a:25:c7:ac:3c:d3:43:8b:9c:a9:11: 4b:ad:be:06:e4:c2:d7:3a:11:1c:cc:c4:e7:e4:70:8e:7e:f2: 9f:dc:68:64:d4:62:74:6c:45:3a:9d:d8:bb:84:c3:c1:3e:60: 5a:14:8a:4d:6c:c4:b4:4f:e2:27:ff:99:d9:9e:80:73:fc:67: bb:56:6d:49:03:0c:0b:f5:ce:6e:86:a4:6d:72:70:7c:9a:60: f9:53:cf:40:3f:5a:12:6c:e9:b5:aa:ea:81:93:d0:88:04:40: 35:66:25:30:6d:ee:b5:ac:3f:97:1c:c9:63:72:80:1e:57:75: b4:0b:88:be:3d:e1:70:ab:52:52:49:4f:b9:12:e2:b4:8f:65: 42:42:7e:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXwdv93F+5TfXfJv7e/pw1ri+cXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhGQzQ3M0IwMzc5OTBFMUIxMkIyMkE5QkFGQjE5MDBE M0FDRUJEODAeFw0yNjA1MDMwMjQ0MDdaFw0yNzA1MDIwMjQ5MDdaMDMxMTAvBgNV BAMTKDRCMzI3MzhBMUUwQzc4MUZGQUU4ODVBNjM2QTM2OEQzQTMzMTM4QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqBASOH+5UaUhBGbcKnerSvq5A xdvqHZdKZmRhSVNcRp2vb/fub2dIHhdARghYfdyUvRJ/D/upI4oiImA94W6zzDuN GyzanQKtQ+3Mt5HLWXgqFMwd185r0N1Oh8nIRcmY7DeHlkg0UkV3rXizSLd79FtG EoTeP9HjW4YBbuHPqmClYdELiuAQ/EuDpHcutMCrmZDSERbsHIASRRNs2BIi/5R8 nU4/XOF7cx9pVmaqTgqavG/nWHH7v/vBh7V5s5lXWLBDgDIoy7C6Rlo4RSSDLGHY UMI2O5+n/CZ/caRso46yJMyyPUdhTKifv3gQ/z8ffSLnArSiLxiDeopGvbKjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSzJzih4MeB/66IWmNqNo06MxOKQwHwYDVR0j BBgwFoAUKPxHOwN5kOGxKyKpuvsZANOs69gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODk4OGMwZjItMjgwMC00OGRhLWE4M2UtYWI1NGRmNjVjNTc0LzAvMjhGQzQ3M0Iw Mzc5OTBFMUIxMkIyMkE5QkFGQjE5MDBEM0FDRUJEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOEZDNDczQjAzNzk5MEUxQjEyQjIyQTlCQUZCMTkwMEQzQUNF QkQ4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg5ODhjMGYyLTI4MDAtNDhkYS1h ODNlLWFiNTRkZjY1YzU3NC8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2wwDQYJ KoZIhvcNAQELBQADggEBAEIOtTs/uT27hHKbhS5tt1aNfg0QfVZQKR4y8Cpl1ZbD UsNKwIMRgTu5LB8BChrwkMvDCjWsor0N2K4vPlk0G75n0rJRIAhWhrDtIaWRi3VB wIQD0ZK4VNWqHPaxg7OGv7jxYf2Z5fYNls94jnoSxeXjTIpaJcesPNNDi5ypEUut vgbkwtc6ERzMxOfkcI5+8p/caGTUYnRsRTqd2LuEw8E+YFoUik1sxLRP4if/mdme gHP8Z7tWbUkDDAv1zm6GpG1ycHyaYPlTz0A/WhJs6bWq6oGT0IgEQDVmJTBt7rWs P5ccyWNygB5XdbQLiL494XCrUlJJT7kS4rSPZUJCfkQ= -----END CERTIFICATE-----Generated at Wed May 13 06:04:31 2026 by rpki-client