$ rpki-client -vvf rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34302e302f32322d3234203d3e203535363835.roa File: 3130332e3234372e34302e302f32322d3234203d3e203535363835.roa (raw, json) Hash identifier: roFKFIxJ1+ZhHXf41zOVixIfqUHECqT6D58DQ8Zlx+0= Subject key identifier: E5:21:E2:44:6B:10:10:41:03:69:0C:87:A4:51:1D:52:32:D6:08:DF Certificate issuer: /CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Certificate serial: 619784A69C0461D3D5784970497F6E15913F15A9 Authority key identifier: 33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34302e302f32322d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:52:21 +0000 ROA not before: Sun 03 May 2026 02:47:21 +0000 ROA not after: Sun 02 May 2027 02:52:21 +0000 asID: 55685 IP address blocks: 103.247.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:97:84:a6:9c:04:61:d3:d5:78:49:70:49:7f:6e:15:91:3f:15:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Validity Not Before: May 3 02:47:21 2026 GMT Not After : May 2 02:52:21 2027 GMT Subject: CN=E521E2446B10104103690C87A4511D5232D608DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:54:9a:4c:60:5e:f9:02:7b:4e:fd:1a:04:ca: 5a:d9:53:61:17:88:9a:d7:b1:c2:d1:d6:58:06:8c: fd:ee:34:58:08:ae:d4:f9:9c:ad:42:7a:9f:0b:ed: 45:e8:de:4f:71:35:b7:21:5c:10:13:21:39:17:dd: 59:35:ba:9d:36:41:f8:c9:5f:8a:7d:f2:0c:a6:6d: ca:65:e8:cb:b3:3e:a5:20:5d:29:e5:45:33:8c:d7: 31:62:6f:dd:08:bb:99:07:38:4a:95:b4:ba:a7:1d: 76:7d:70:ff:64:99:e3:8c:02:af:d2:bb:3c:cd:77: 0d:62:cf:c1:5c:72:31:65:08:4b:d2:19:07:fe:df: 32:17:4f:74:84:cc:1b:06:13:3f:dc:91:c5:0b:cf: 7c:78:f3:16:b5:f4:04:82:e3:97:9b:15:60:25:53: a4:7b:bc:b9:2a:25:76:03:87:a6:04:6b:e3:33:1e: 0a:cb:c0:f1:7f:98:af:87:7b:96:61:2f:73:4b:49: 57:c7:6d:cc:7f:53:77:b4:7b:f6:f2:91:d8:48:45: 3e:47:65:e1:6f:e5:96:d2:c4:9c:40:28:4e:be:7a: 8c:e8:e9:b3:97:58:a4:21:1c:fa:df:5c:b1:e5:71: 2d:16:a6:bf:8b:5b:9d:24:99:ba:89:22:08:57:66: 3b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:21:E2:44:6B:10:10:41:03:69:0C:87:A4:51:1D:52:32:D6:08:DF X509v3 Authority Key Identifier: keyid:33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34302e302f32322d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.40.0/22 Signature Algorithm: sha256WithRSAEncryption 20:c3:30:30:4c:b1:36:60:a6:74:49:94:13:a5:e4:1c:f1:dc: 63:2d:0c:e4:94:f2:8a:60:21:7e:ff:a4:ee:9b:d6:37:41:25: 62:27:57:cd:38:54:f3:4b:ed:be:2f:78:86:b2:3d:bd:9e:d5: 41:18:dd:74:2a:62:c0:d9:16:65:48:0c:83:70:22:04:8f:76: c8:d8:60:1d:31:3f:f8:f9:7a:6a:08:f1:09:68:da:30:fa:e0: aa:43:f8:0d:e7:a1:d5:e3:ee:dc:c9:29:4b:a7:ad:76:5e:94: 0f:1c:27:a1:da:7f:ed:9a:12:38:ae:21:11:ca:38:05:0e:ce: f7:1e:1b:c8:35:ca:74:21:1c:39:64:2c:53:15:13:44:69:32: 3a:c9:65:8f:4d:13:4f:6e:f5:f0:ce:34:30:d6:17:94:fb:e2: a2:03:e8:66:89:a6:ca:a2:72:82:29:d8:8f:ca:16:8a:ba:9a: ad:f7:29:44:cb:1d:ff:e5:d6:83:cd:c8:e3:c2:c7:43:6d:b8: 37:5f:8c:d3:f3:53:c5:1c:79:4b:f2:d9:af:86:0b:de:90:f4: ca:b0:ca:13:ec:aa:67:95:d6:ca:d3:0d:9c:a0:88:db:b6:e2: ca:95:ab:36:b3:9b:9c:7e:34:03:a7:c4:3f:18:17:91:63:f5: 74:82:e6:fe -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYZeEppwEYdPVeElwSX9uFZE/FakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQUIzMzA1RTM2NDNFODNFNjczRjA5ODIwOUI5QkNG NkIxQTFGQjAeFw0yNjA1MDMwMjQ3MjFaFw0yNzA1MDIwMjUyMjFaMDMxMTAvBgNV BAMTKEU1MjFFMjQ0NkIxMDEwNDEwMzY5MEM4N0E0NTExRDUyMzJENjA4REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4VJpMYF75AntO/RoEylrZU2EX iJrXscLR1lgGjP3uNFgIrtT5nK1Cep8L7UXo3k9xNbchXBATITkX3Vk1up02QfjJ X4p98gymbcpl6MuzPqUgXSnlRTOM1zFib90Iu5kHOEqVtLqnHXZ9cP9kmeOMAq/S uzzNdw1iz8FccjFlCEvSGQf+3zIXT3SEzBsGEz/ckcULz3x48xa19ASC45ebFWAl U6R7vLkqJXYDh6YEa+MzHgrLwPF/mK+He5ZhL3NLSVfHbcx/U3e0e/bykdhIRT5H ZeFv5ZbSxJxAKE6+eozo6bOXWKQhHPrfXLHlcS0Wpr+LW50kmbqJIghXZjtbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5SHiRGsQEEEDaQyHpFEdUjLWCN8wHwYDVR0j BBgwFoAUM8qzMF42Q+g+Zz8Jggm5vPaxofswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI4MDg5YTctMGE2OC00ZDY3LWFkYWItNzZkN2Q5MjcxZmRlLzAvMzNDQUIzMzA1 RTM2NDNFODNFNjczRjA5ODIwOUI5QkNGNkIxQTFGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0NBQjMzMDVFMzY0M0U4M0U2NzNGMDk4MjA5QjlCQ0Y2QjFB MUZCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmf3KDANBgkqhkiG 9w0BAQsFAAOCAQEAIMMwMEyxNmCmdEmUE6XkHPHcYy0M5JTyimAhfv+k7pvWN0El YidXzThU80vtvi94hrI9vZ7VQRjddCpiwNkWZUgMg3AiBI92yNhgHTE/+Pl6agjx CWjaMPrgqkP4Deeh1ePu3MkpS6etdl6UDxwnodp/7ZoSOK4hEco4BQ7O9x4byDXK dCEcOWQsUxUTRGkyOsllj00TT2718M40MNYXlPviogPoZommyqJyginYj8oWirqa rfcpRMsd/+XWg83I48LHQ224N1+M0/NTxRx5S/LZr4YL3pD0yrDKE+yqZ5XWytMN nKCI27biypWrNrObnH40A6fEPxgXkWP1dILm/g== -----END CERTIFICATE-----Generated at Wed May 13 04:09:57 2026 by rpki-client