$ rpki-client -vvf rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: VtAQO0AlCRmGOzLBBaKRmCdAabezXryNW6qpduImgcs= Subject key identifier: 4E:01:93:1F:B4:F3:58:04:90:D7:6A:DE:4E:A2:30:B7:FE:00:9D:6C Certificate issuer: /CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Certificate serial: 31F6F86005488B9A5750B1578D66A269FBF53224 Authority key identifier: 33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:52:20 +0000 ROA not before: Sun 03 May 2026 02:47:20 +0000 ROA not after: Sun 02 May 2027 02:52:20 +0000 asID: 55685 IP address blocks: 103.108.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f6:f8:60:05:48:8b:9a:57:50:b1:57:8d:66:a2:69:fb:f5:32:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Validity Not Before: May 3 02:47:20 2026 GMT Not After : May 2 02:52:20 2027 GMT Subject: CN=4E01931FB4F3580490D76ADE4EA230B7FE009D6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c5:68:f8:ae:30:2b:e9:5f:df:15:6b:05:3b: 69:b0:7c:0a:db:8d:39:b8:7a:ee:31:50:2d:e3:4d: d5:54:36:35:0a:8f:70:2d:c8:2f:5f:78:45:0e:9e: 32:c3:3e:81:e7:e4:ed:f0:69:00:37:30:ac:35:0e: d1:23:c6:a9:2d:da:8a:47:a9:4e:1e:46:cf:9a:80: 07:6c:02:aa:09:d5:85:b8:c1:22:a5:4a:48:0d:6d: 3f:59:92:64:09:66:67:bf:37:2d:50:46:db:c4:70: e5:82:38:c5:3d:68:07:59:5e:1e:1a:4f:02:92:e3: 1d:80:48:c0:9c:d1:b4:d0:5c:70:f9:9f:cf:04:31: dd:8c:e2:01:ec:1d:cb:ae:6a:f6:35:cb:e3:e3:ff: 13:54:3d:12:e2:6e:d4:eb:ab:2e:1d:82:a3:ae:af: 16:93:43:77:f7:be:84:55:4d:bc:65:3d:7c:2b:a2: a2:b8:40:12:cc:c7:3c:8d:4c:94:2d:2c:7d:46:6e: ba:58:69:55:03:2b:04:ab:5f:94:9c:b7:1e:cd:0a: 7f:6c:a9:bd:5b:51:02:d4:69:36:dd:b5:c3:91:91: 60:b1:e5:35:20:28:0c:c1:9f:6a:e3:ab:61:6e:fe: 28:8c:1b:f9:9d:d8:83:4d:b1:5e:f7:da:e1:60:8e: f5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:01:93:1F:B4:F3:58:04:90:D7:6A:DE:4E:A2:30:B7:FE:00:9D:6C X509v3 Authority Key Identifier: keyid:33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.129.0/24 Signature Algorithm: sha256WithRSAEncryption 93:f6:f1:f1:ec:18:b8:98:95:1a:52:3f:d3:58:96:a2:59:e2: 94:63:11:37:9e:40:0f:2b:de:e4:af:97:6d:e6:90:c8:cc:a7: 0c:f9:44:85:07:14:14:c1:b9:63:3c:36:32:ef:12:1e:88:22: 84:9a:f7:d1:5b:f8:84:bf:5d:49:9f:8b:7b:7f:8b:1c:9f:48: f0:b1:ab:55:4d:68:69:37:5e:ef:06:e4:13:a2:72:16:ac:de: d2:ee:d7:4b:6a:b3:9c:0e:43:82:3a:af:dc:46:b6:0d:bd:5b: 30:ec:b9:42:49:e6:ea:7c:52:bf:8d:7e:9b:72:99:50:2d:4c: 58:d0:3b:96:e8:c8:5f:89:4d:fa:3f:23:37:f5:03:ea:e7:96: 41:1e:33:36:c5:d9:8d:38:42:11:c4:91:6d:9c:35:6a:c0:2a: ab:7e:69:cb:05:b9:ed:74:bc:26:14:40:c7:46:ba:f2:74:82: 58:f5:67:3a:a7:55:a5:c0:9a:b5:1d:1b:6d:fe:2a:b2:f1:a6: a9:d4:66:ba:41:f8:6d:5b:d6:f8:97:39:1e:2f:dc:01:f6:9d: 74:ad:3d:86:4d:a5:51:c8:c4:a5:7e:1d:d6:66:6b:84:b4:b9: 79:2e:7c:84:73:3b:e0:48:bb:d8:ef:d6:0b:d7:07:ef:4d:c3: 7a:fd:53:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMfb4YAVIi5pXULFXjWaiafv1MiQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQUIzMzA1RTM2NDNFODNFNjczRjA5ODIwOUI5QkNG NkIxQTFGQjAeFw0yNjA1MDMwMjQ3MjBaFw0yNzA1MDIwMjUyMjBaMDMxMTAvBgNV BAMTKDRFMDE5MzFGQjRGMzU4MDQ5MEQ3NkFERTRFQTIzMEI3RkUwMDlENkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDExWj4rjAr6V/fFWsFO2mwfArb jTm4eu4xUC3jTdVUNjUKj3AtyC9feEUOnjLDPoHn5O3waQA3MKw1DtEjxqkt2opH qU4eRs+agAdsAqoJ1YW4wSKlSkgNbT9ZkmQJZme/Ny1QRtvEcOWCOMU9aAdZXh4a TwKS4x2ASMCc0bTQXHD5n88EMd2M4gHsHcuuavY1y+Pj/xNUPRLibtTrqy4dgqOu rxaTQ3f3voRVTbxlPXwroqK4QBLMxzyNTJQtLH1GbrpYaVUDKwSrX5Sctx7NCn9s qb1bUQLUaTbdtcORkWCx5TUgKAzBn2rjq2Fu/iiMG/md2INNsV732uFgjvUHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTgGTH7TzWASQ12reTqIwt/4AnWwwHwYDVR0j BBgwFoAUM8qzMF42Q+g+Zz8Jggm5vPaxofswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI4MDg5YTctMGE2OC00ZDY3LWFkYWItNzZkN2Q5MjcxZmRlLzAvMzNDQUIzMzA1 RTM2NDNFODNFNjczRjA5ODIwOUI5QkNGNkIxQTFGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0NBQjMzMDVFMzY0M0U4M0U2NzNGMDk4MjA5QjlCQ0Y2QjFB MUZCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yBMA0GCSqG SIb3DQEBCwUAA4IBAQCT9vHx7Bi4mJUaUj/TWJaiWeKUYxE3nkAPK97kr5dt5pDI zKcM+USFBxQUwbljPDYy7xIeiCKEmvfRW/iEv11Jn4t7f4scn0jwsatVTWhpN17v BuQTonIWrN7S7tdLarOcDkOCOq/cRrYNvVsw7LlCSebqfFK/jX6bcplQLUxY0DuW 6MhfiU36PyM39QPq55ZBHjM2xdmNOEIRxJFtnDVqwCqrfmnLBbntdLwmFEDHRrry dIJY9Wc6p1WlwJq1HRtt/iqy8aap1Ga6QfhtW9b4lzkeL9wB9p10rT2GTaVRyMSl fh3WZmuEtLl5LnyEczvgSLvY79YL1wfvTcN6/VMA -----END CERTIFICATE-----Generated at Wed May 13 04:50:57 2026 by rpki-client