$ rpki-client -vvf rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: NprszTkq06Ij3bEjpZd7oX80ebz7GdjG3phJlfau8PQ= Subject key identifier: 40:4B:8B:F5:70:09:52:A3:9F:B4:8C:2E:9B:DD:25:1F:97:37:4A:D8 Certificate issuer: /CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Certificate serial: 193AF4C0FBF84FBC3CEC661CCECB0C62125F01B6 Authority key identifier: 33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:52:20 +0000 ROA not before: Sun 03 May 2026 02:47:20 +0000 ROA not after: Sun 02 May 2027 02:52:20 +0000 asID: 55685 IP address blocks: 103.108.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:3a:f4:c0:fb:f8:4f:bc:3c:ec:66:1c:ce:cb:0c:62:12:5f:01:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Validity Not Before: May 3 02:47:20 2026 GMT Not After : May 2 02:52:20 2027 GMT Subject: CN=404B8BF5700952A39FB48C2E9BDD251F97374AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6e:cc:7b:bc:9c:e6:9f:54:4a:43:58:a9:6d: 06:f7:2a:a7:9b:b1:9c:11:78:13:9d:e7:9a:ab:b9: 47:10:4c:06:cf:24:a5:da:d1:4d:04:50:40:b4:1b: b7:02:16:17:fa:3f:6f:57:47:c7:a6:fa:5a:31:fb: 1f:7a:26:53:29:05:d1:5b:e2:49:3a:8f:54:41:b9: 82:18:76:6e:2f:61:67:ba:17:ea:36:31:4e:b7:e1: b2:d9:8f:cd:f7:5c:bd:e1:5c:3b:31:a2:28:69:5a: fd:a0:e1:a2:43:b7:f2:97:23:46:3d:05:13:21:f5: 06:b2:cc:47:f3:d5:b6:a1:41:4b:47:69:c1:dd:74: 8d:f1:ff:59:07:7c:0e:b2:96:28:44:74:a3:b4:20: 21:0c:e1:02:f0:eb:b0:5c:b8:e0:b7:2e:a8:eb:12: fc:a3:3d:3e:85:68:b5:34:ed:72:45:21:53:a0:be: 01:5d:a4:f1:05:eb:2c:c5:df:0b:8c:3c:09:e4:d7: 90:5d:38:e9:b1:88:cb:5d:0b:3e:b3:84:99:bf:87: a8:2b:d8:f0:8e:bb:39:03:bf:14:25:73:83:78:bc: 8c:8b:c9:14:66:a3:da:4d:0f:f4:9b:11:42:46:02: 2d:9a:70:45:dc:7e:71:fe:dd:4b:d4:f0:b1:51:60: 1d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4B:8B:F5:70:09:52:A3:9F:B4:8C:2E:9B:DD:25:1F:97:37:4A:D8 X509v3 Authority Key Identifier: keyid:33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.130.0/24 Signature Algorithm: sha256WithRSAEncryption 87:db:eb:03:d1:3d:0f:19:6c:b3:d8:71:dd:ce:91:4c:34:04: 3e:1b:a5:64:8d:ef:8f:c2:68:bf:11:4f:a8:85:a7:07:43:62: 80:80:d8:36:b1:93:e0:0d:8c:67:c0:aa:f1:60:fa:6e:02:b6: d6:23:7a:3b:91:c5:6e:bd:8d:1d:5d:4c:64:9d:5d:88:6f:1a: 2a:22:66:42:15:87:45:d4:34:96:38:01:e6:e1:42:91:13:ae: 2b:22:fa:9d:68:05:f2:54:59:96:e6:c5:d0:54:10:66:b4:10: 11:cd:8c:1a:9a:05:8a:71:59:60:7e:68:c5:fb:66:af:65:04: 7e:d4:36:3c:44:3b:a8:eb:38:40:2d:c9:1b:32:6c:53:6b:5a: b5:6b:e7:dd:3c:6a:60:e5:16:02:46:cf:55:5b:56:ad:d2:cc: 8b:a5:28:bc:3a:2b:51:70:9f:8f:10:70:57:f8:8e:35:ee:eb: 2a:a4:e2:f5:f8:35:a3:df:7b:bd:91:aa:1a:b0:b8:e8:a1:5b: 25:4c:2e:c0:e5:88:47:b7:57:e2:82:f6:33:37:34:ba:a6:c1: 6c:cf:25:38:5e:bb:78:65:09:c2:db:ee:73:91:b6:0b:95:c5: bb:51:fd:1d:7d:47:7c:05:23:bf:85:7a:ad:58:e9:63:4b:32: c6:ec:2f:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGTr0wPv4T7w87GYczssMYhJfAbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQUIzMzA1RTM2NDNFODNFNjczRjA5ODIwOUI5QkNG NkIxQTFGQjAeFw0yNjA1MDMwMjQ3MjBaFw0yNzA1MDIwMjUyMjBaMDMxMTAvBgNV BAMTKDQwNEI4QkY1NzAwOTUyQTM5RkI0OEMyRTlCREQyNTFGOTczNzRBRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCubsx7vJzmn1RKQ1ipbQb3Kqeb sZwReBOd55qruUcQTAbPJKXa0U0EUEC0G7cCFhf6P29XR8em+lox+x96JlMpBdFb 4kk6j1RBuYIYdm4vYWe6F+o2MU634bLZj833XL3hXDsxoihpWv2g4aJDt/KXI0Y9 BRMh9QayzEfz1bahQUtHacHddI3x/1kHfA6ylihEdKO0ICEM4QLw67BcuOC3Lqjr EvyjPT6FaLU07XJFIVOgvgFdpPEF6yzF3wuMPAnk15BdOOmxiMtdCz6zhJm/h6gr 2PCOuzkDvxQlc4N4vIyLyRRmo9pND/SbEUJGAi2acEXcfnH+3UvU8LFRYB0TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQEuL9XAJUqOftIwum90lH5c3StgwHwYDVR0j BBgwFoAUM8qzMF42Q+g+Zz8Jggm5vPaxofswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI4MDg5YTctMGE2OC00ZDY3LWFkYWItNzZkN2Q5MjcxZmRlLzAvMzNDQUIzMzA1 RTM2NDNFODNFNjczRjA5ODIwOUI5QkNGNkIxQTFGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0NBQjMzMDVFMzY0M0U4M0U2NzNGMDk4MjA5QjlCQ0Y2QjFB MUZCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yCMA0GCSqG SIb3DQEBCwUAA4IBAQCH2+sD0T0PGWyz2HHdzpFMNAQ+G6Vkje+Pwmi/EU+ohacH Q2KAgNg2sZPgDYxnwKrxYPpuArbWI3o7kcVuvY0dXUxknV2IbxoqImZCFYdF1DSW OAHm4UKRE64rIvqdaAXyVFmW5sXQVBBmtBARzYwamgWKcVlgfmjF+2avZQR+1DY8 RDuo6zhALckbMmxTa1q1a+fdPGpg5RYCRs9VW1at0syLpSi8OitRcJ+PEHBX+I41 7usqpOL1+DWj33u9kaoasLjooVslTC7A5YhHt1figvYzNzS6psFszyU4Xrt4ZQnC 2+5zkbYLlcW7Uf0dfUd8BSO/hXqtWOljSzLG7C9d -----END CERTIFICATE-----Generated at Wed May 13 05:37:45 2026 by rpki-client