$ rpki-client -vvf rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: kJDxwTEYsYCJ4Rk68b096gTPh13irPlcYW/GjEXoTKw= Subject key identifier: C6:80:C0:F8:B1:B4:6B:00:34:E2:39:61:4B:E1:16:2A:63:20:1B:0C Certificate issuer: /CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Certificate serial: 6DFEED7305FDA74A8522E6CAAE511F004015C636 Authority key identifier: 33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:52:21 +0000 ROA not before: Sun 03 May 2026 02:47:21 +0000 ROA not after: Sun 02 May 2027 02:52:21 +0000 asID: 55685 IP address blocks: 103.108.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fe:ed:73:05:fd:a7:4a:85:22:e6:ca:ae:51:1f:00:40:15:c6:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Validity Not Before: May 3 02:47:21 2026 GMT Not After : May 2 02:52:21 2027 GMT Subject: CN=C680C0F8B1B46B0034E239614BE1162A63201B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a8:6f:fb:c7:23:b2:e4:e2:7d:46:13:2a:d9: f8:08:3b:f1:ce:62:64:5e:1f:a0:ad:73:38:99:bb: d0:a0:0b:05:42:fa:54:55:61:f5:ec:98:be:40:20: 8f:c7:86:b2:4f:50:6d:18:0a:0b:c2:d9:bc:e3:8f: c0:2b:3c:2b:b7:7b:cc:0f:e8:a3:ef:cd:5d:e6:84: 36:0f:8d:26:f3:80:d1:5d:91:5b:0f:2c:9f:95:69: c7:2d:1a:39:07:65:9f:4f:ef:47:16:46:58:f3:62: 51:97:d6:09:ec:56:a4:5d:a6:d5:72:df:7a:57:d9: 5b:33:ee:b6:47:a4:30:d4:9e:31:77:21:a1:ac:35: 13:33:65:d9:c9:2c:38:4e:9b:11:e3:75:39:cd:0b: 5e:fa:69:56:13:29:0b:aa:3a:7f:95:c3:42:74:3e: 71:f2:dd:b3:63:7b:e0:14:ea:da:47:e7:14:2a:aa: b0:62:c8:2c:d1:e3:d6:d0:54:e1:a6:0e:f3:b8:68: 21:f1:3a:3f:a4:8b:9f:39:e6:de:69:45:7f:af:2c: 10:b6:cb:55:ea:11:07:93:57:20:ec:ef:82:b5:dd: cb:29:64:22:f8:5d:f6:3f:f3:24:fe:7d:1e:6d:0c: 19:88:0c:5f:be:ea:d7:ef:20:49:af:06:9d:aa:70: aa:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:80:C0:F8:B1:B4:6B:00:34:E2:39:61:4B:E1:16:2A:63:20:1B:0C X509v3 Authority Key Identifier: keyid:33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.131.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:5c:90:43:ef:51:7f:95:7f:f2:67:56:3f:39:00:ae:ac:59: 69:bb:7e:6e:35:1f:f9:4e:95:55:fd:a5:26:57:1e:5d:2b:d5: 1a:ed:d9:9c:ff:fc:6b:79:38:db:31:25:ee:ba:99:ce:28:ca: 72:c8:88:85:13:63:31:9e:88:b4:14:f3:02:36:0a:79:86:53: 4a:65:49:ab:51:5e:16:e9:44:c0:36:13:6a:0f:71:f9:c4:39: a3:75:a0:ad:29:09:84:64:a9:ef:47:60:0f:51:ee:05:7d:b5: 7c:2d:a1:fd:ee:9f:71:42:78:f2:1d:e0:e1:f7:b3:fa:25:8a: c8:bd:33:53:33:3a:74:90:3c:14:d1:55:75:55:6b:72:1b:4b: 9f:6b:15:c3:98:0c:f0:91:1a:85:53:76:fc:17:be:bd:70:e5: 8d:68:27:15:88:06:cc:6a:97:d2:14:a3:4b:eb:01:e2:f7:8e: 80:bc:b7:f6:83:50:7f:e7:2c:2d:29:4c:42:d0:2f:73:dc:c9: 85:eb:e0:f9:e7:a7:87:3d:25:1d:2e:c4:f9:a6:1a:ea:9c:5a: 97:36:ed:73:8d:f3:22:ea:94:8e:76:fa:cd:0f:fe:c5:32:e2: 2b:9f:33:ab:f3:37:d8:9e:aa:9d:74:0f:a6:5a:dd:60:e1:d9: cd:8f:07:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbf7tcwX9p0qFIubKrlEfAEAVxjYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQUIzMzA1RTM2NDNFODNFNjczRjA5ODIwOUI5QkNG NkIxQTFGQjAeFw0yNjA1MDMwMjQ3MjFaFw0yNzA1MDIwMjUyMjFaMDMxMTAvBgNV BAMTKEM2ODBDMEY4QjFCNDZCMDAzNEUyMzk2MTRCRTExNjJBNjMyMDFCMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5qG/7xyOy5OJ9RhMq2fgIO/HO YmReH6CtcziZu9CgCwVC+lRVYfXsmL5AII/HhrJPUG0YCgvC2bzjj8ArPCu3e8wP 6KPvzV3mhDYPjSbzgNFdkVsPLJ+VacctGjkHZZ9P70cWRljzYlGX1gnsVqRdptVy 33pX2Vsz7rZHpDDUnjF3IaGsNRMzZdnJLDhOmxHjdTnNC176aVYTKQuqOn+Vw0J0 PnHy3bNje+AU6tpH5xQqqrBiyCzR49bQVOGmDvO4aCHxOj+ki5855t5pRX+vLBC2 y1XqEQeTVyDs74K13cspZCL4XfY/8yT+fR5tDBmIDF++6tfvIEmvBp2qcKrjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxoDA+LG0awA04jlhS+EWKmMgGwwwHwYDVR0j BBgwFoAUM8qzMF42Q+g+Zz8Jggm5vPaxofswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI4MDg5YTctMGE2OC00ZDY3LWFkYWItNzZkN2Q5MjcxZmRlLzAvMzNDQUIzMzA1 RTM2NDNFODNFNjczRjA5ODIwOUI5QkNGNkIxQTFGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0NBQjMzMDVFMzY0M0U4M0U2NzNGMDk4MjA5QjlCQ0Y2QjFB MUZCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yDMA0GCSqG SIb3DQEBCwUAA4IBAQA8XJBD71F/lX/yZ1Y/OQCurFlpu35uNR/5TpVV/aUmVx5d K9Ua7dmc//xreTjbMSXuupnOKMpyyIiFE2Mxnoi0FPMCNgp5hlNKZUmrUV4W6UTA NhNqD3H5xDmjdaCtKQmEZKnvR2APUe4FfbV8LaH97p9xQnjyHeDh97P6JYrIvTNT Mzp0kDwU0VV1VWtyG0ufaxXDmAzwkRqFU3b8F769cOWNaCcViAbMapfSFKNL6wHi 946AvLf2g1B/5ywtKUxC0C9z3MmF6+D556eHPSUdLsT5phrqnFqXNu1zjfMi6pSO dvrND/7FMuIrnzOr8zfYnqqddA+mWt1g4dnNjweM -----END CERTIFICATE-----Generated at Wed May 13 04:02:27 2026 by rpki-client