$ rpki-client -vvf rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: 0cAVB/6CuYKgnp0J1rdKOsvdqJdA3t8iufwR+rDhwsE= Subject key identifier: 0F:98:F4:84:BD:9F:ED:A6:B5:43:CD:A6:C4:DD:60:B6:6A:5A:8A:80 Certificate issuer: /CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Certificate serial: 759FF2042797235C8C3C03107BBADFB04202D626 Authority key identifier: 33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:52:22 +0000 ROA not before: Sun 03 May 2026 02:47:22 +0000 ROA not after: Sun 02 May 2027 02:52:22 +0000 asID: 55685 IP address blocks: 103.108.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:9f:f2:04:27:97:23:5c:8c:3c:03:10:7b:ba:df:b0:42:02:d6:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Validity Not Before: May 3 02:47:22 2026 GMT Not After : May 2 02:52:22 2027 GMT Subject: CN=0F98F484BD9FEDA6B543CDA6C4DD60B66A5A8A80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c2:a6:b8:52:70:63:7a:d3:a0:b1:f7:99:f0: 54:fd:87:b8:36:68:48:08:38:d0:08:af:a9:d3:17: 3e:f7:c9:e7:2d:83:ba:bc:2d:e1:2c:db:99:c1:be: 26:44:cc:8b:67:b5:12:ea:23:75:2d:31:ad:bc:7a: b6:c1:e3:09:a4:c5:14:4c:5e:89:a2:92:a8:34:18: 20:d5:6e:4e:a6:37:4a:90:74:3b:42:5a:dc:0a:ca: fb:f6:ca:87:ed:0b:70:f4:08:af:b7:f4:8f:51:44: 34:0b:36:c7:6c:5e:ee:12:6f:19:f9:3e:16:3d:f6: 57:e0:4a:54:5b:55:b0:58:55:64:e6:a9:17:dd:56: 36:ee:e7:48:8d:c8:40:92:d0:5d:61:6f:23:4d:4d: 1c:8c:5f:31:ba:6c:87:88:d8:f6:b5:2e:ce:98:47: c8:d5:e1:c5:b2:52:0e:83:4c:15:23:97:2b:4f:25: 21:0b:b4:dd:23:61:05:25:fd:a3:cc:7c:40:e7:25: df:57:e5:4e:03:66:55:df:e7:b0:b3:4f:3f:ad:e6: ab:fc:e3:ba:6b:d3:fe:d0:9d:6b:da:7d:f4:81:70: 8b:0e:f6:e8:8d:0a:d2:33:11:21:ed:23:49:05:98: 6a:3e:b0:2b:d2:fa:7c:b9:22:a6:d9:7d:25:15:c4: 9e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:98:F4:84:BD:9F:ED:A6:B5:43:CD:A6:C4:DD:60:B6:6A:5A:8A:80 X509v3 Authority Key Identifier: keyid:33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.128.0/24 Signature Algorithm: sha256WithRSAEncryption ba:e4:9d:c2:bb:b8:12:81:e3:bc:39:7d:3c:af:ae:2b:28:fb: 4f:5e:40:b4:cf:62:42:2f:23:df:17:8d:23:2e:51:bf:2c:0e: 7f:f9:43:8b:e9:ab:95:65:3b:bb:60:5e:12:e8:e3:6b:50:96: 00:89:94:59:67:9a:ef:6e:ac:10:b3:6c:97:cf:b9:92:37:fb: 6a:7e:15:8e:dd:44:55:cf:6d:1c:e2:bc:97:ca:a8:51:27:f4: 89:a5:04:cf:42:8e:ef:60:f8:53:6c:b5:e6:40:84:d2:e1:5b: 2c:6a:4c:2e:5d:ef:a2:32:8b:47:1a:af:cf:4e:ca:d6:e2:5c: e7:eb:5c:87:fa:81:f9:03:00:f5:68:c0:f3:64:ca:91:e3:6e: ad:7a:db:d0:b6:23:66:4c:37:71:87:3d:0b:a7:1c:de:30:e5: 25:45:d2:56:17:c5:48:ba:d3:c6:8d:a8:5f:7c:88:10:b6:be: 93:cd:31:e5:b5:ae:58:cf:e5:b6:57:e6:23:93:34:89:6a:1b: ee:b3:31:3e:da:ee:d2:fe:42:9f:37:2d:e1:b9:1d:e6:bc:ab: 77:3e:e9:cf:05:1b:a8:8f:7f:70:af:f7:09:36:78:de:a9:75: 8d:2d:f9:64:5d:8f:62:90:d1:61:b8:14:b7:1e:f0:a6:2a:0b: 83:00:bf:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdZ/yBCeXI1yMPAMQe7rfsEIC1iYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQUIzMzA1RTM2NDNFODNFNjczRjA5ODIwOUI5QkNG NkIxQTFGQjAeFw0yNjA1MDMwMjQ3MjJaFw0yNzA1MDIwMjUyMjJaMDMxMTAvBgNV BAMTKDBGOThGNDg0QkQ5RkVEQTZCNTQzQ0RBNkM0REQ2MEI2NkE1QThBODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCswqa4UnBjetOgsfeZ8FT9h7g2 aEgIONAIr6nTFz73yectg7q8LeEs25nBviZEzItntRLqI3UtMa28erbB4wmkxRRM Xomikqg0GCDVbk6mN0qQdDtCWtwKyvv2yoftC3D0CK+39I9RRDQLNsdsXu4Sbxn5 PhY99lfgSlRbVbBYVWTmqRfdVjbu50iNyECS0F1hbyNNTRyMXzG6bIeI2Pa1Ls6Y R8jV4cWyUg6DTBUjlytPJSELtN0jYQUl/aPMfEDnJd9X5U4DZlXf57CzTz+t5qv8 47pr0/7QnWvaffSBcIsO9uiNCtIzESHtI0kFmGo+sCvS+ny5IqbZfSUVxJ7BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD5j0hL2f7aa1Q82mxN1gtmpaioAwHwYDVR0j BBgwFoAUM8qzMF42Q+g+Zz8Jggm5vPaxofswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI4MDg5YTctMGE2OC00ZDY3LWFkYWItNzZkN2Q5MjcxZmRlLzAvMzNDQUIzMzA1 RTM2NDNFODNFNjczRjA5ODIwOUI5QkNGNkIxQTFGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0NBQjMzMDVFMzY0M0U4M0U2NzNGMDk4MjA5QjlCQ0Y2QjFB MUZCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yAMA0GCSqG SIb3DQEBCwUAA4IBAQC65J3Cu7gSgeO8OX08r64rKPtPXkC0z2JCLyPfF40jLlG/ LA5/+UOL6auVZTu7YF4S6ONrUJYAiZRZZ5rvbqwQs2yXz7mSN/tqfhWO3URVz20c 4ryXyqhRJ/SJpQTPQo7vYPhTbLXmQITS4VssakwuXe+iMotHGq/PTsrW4lzn61yH +oH5AwD1aMDzZMqR426tetvQtiNmTDdxhz0LpxzeMOUlRdJWF8VIutPGjahffIgQ tr6TzTHlta5Yz+W2V+YjkzSJahvuszE+2u7S/kKfNy3huR3mvKt3PunPBRuoj39w r/cJNnjeqXWNLflkXY9ikNFhuBS3HvCmKguDAL+1 -----END CERTIFICATE-----Generated at Wed May 13 04:48:12 2026 by rpki-client