$ rpki-client -vvf rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34312e302f32342d3234203d3e203535363835.roa File: 3130332e3234372e34312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: 4WDpN8Ex7Pgi2TFpfBvmJzVBVG1rVMXsGz4I/hIirbI= Subject key identifier: 8A:7B:08:1D:9B:3D:53:EC:2B:02:1C:F7:C3:02:7C:39:F6:43:E1:A4 Certificate issuer: /CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Certificate serial: 3FB9FCE4AA01405EE0300700BB1355B62BA54958 Authority key identifier: 33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34312e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:52:19 +0000 ROA not before: Sun 03 May 2026 02:47:19 +0000 ROA not after: Sun 02 May 2027 02:52:19 +0000 asID: 55685 IP address blocks: 103.247.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b9:fc:e4:aa:01:40:5e:e0:30:07:00:bb:13:55:b6:2b:a5:49:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Validity Not Before: May 3 02:47:19 2026 GMT Not After : May 2 02:52:19 2027 GMT Subject: CN=8A7B081D9B3D53EC2B021CF7C3027C39F643E1A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b7:39:c0:41:57:8a:87:26:dd:4e:98:1f:6a: 3c:39:26:d5:00:94:cf:3b:ba:14:aa:fa:1f:08:85: a8:05:ee:93:7a:17:9c:27:38:c4:31:4e:13:2c:ca: de:85:34:2e:7b:e4:d9:fe:cc:15:db:5f:e2:19:14: 68:44:14:6a:4c:14:ca:4a:82:8e:72:f2:76:7d:70: 9d:a7:d1:5b:3c:9f:13:78:88:31:92:8f:e4:2b:bb: 57:88:dd:74:30:53:1e:52:f7:f9:02:cb:b9:92:11: ae:46:66:48:9a:da:ea:44:42:8c:77:f4:cf:56:b6: 1d:a1:e4:a4:26:d0:d1:f2:e8:c5:18:fc:71:f5:98: c0:7b:61:9d:09:a8:8d:d5:66:ee:9a:28:9a:df:ec: d8:ba:3e:24:19:62:b3:4e:0d:0c:af:a6:57:c0:b5: 9e:98:b0:09:3d:ac:03:84:d8:30:19:c1:dc:ce:0b: 14:4d:8c:24:00:0d:a5:d9:81:d3:14:b7:f0:0c:e9: dc:9a:75:9d:45:b2:a2:64:0e:ec:23:6b:44:6d:c6: 3f:ee:98:49:31:c8:08:d6:e9:27:e9:9a:5f:53:3f: dc:80:aa:0e:b7:c9:75:bb:dd:ca:0a:ef:6a:28:94: 42:2e:6a:c1:82:45:46:b0:60:e8:b3:2f:15:85:f1: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7B:08:1D:9B:3D:53:EC:2B:02:1C:F7:C3:02:7C:39:F6:43:E1:A4 X509v3 Authority Key Identifier: keyid:33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.41.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:5e:bb:af:fe:94:4a:b1:79:15:5b:64:39:bd:1b:03:4f:65: 8d:ef:ec:40:1d:a2:34:75:24:aa:71:06:0b:55:33:82:67:0b: 20:4f:31:38:5b:f8:c8:93:2c:e9:c6:33:22:d3:b3:d7:88:be: 72:82:45:75:07:41:34:6a:9b:ce:aa:95:36:3e:38:fb:84:c7: 87:31:f6:ce:30:9e:87:9d:c7:4f:31:3c:8a:ae:ba:f8:a7:21: c9:ce:17:e3:4b:43:8a:7e:a9:ae:98:89:b5:26:ac:02:ed:6a: 58:72:81:e4:44:d6:d7:85:89:47:e6:5f:29:cd:20:2f:08:60: 90:68:f6:ad:4c:4d:ee:17:44:17:7e:13:cf:d6:db:38:d9:f9: 21:e9:9d:21:10:84:99:f4:b7:48:5c:9e:18:41:6b:4f:4e:3c: 5f:8a:d0:30:03:91:3d:ed:31:4f:87:5e:45:a2:fc:70:ab:36: 8d:a7:ff:12:84:e0:80:ab:15:99:48:97:01:0e:c0:98:0f:21: df:29:20:02:25:37:6b:71:aa:fa:1d:e7:92:20:07:e3:0c:61: 00:5f:af:26:2f:06:4a:af:4f:ff:33:54:28:95:15:7e:57:21: f8:6f:3a:d6:5f:7f:c2:7e:71:16:16:5b:2e:53:b9:f5:f9:4b: 7e:bd:59:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP7n85KoBQF7gMAcAuxNVtiulSVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQUIzMzA1RTM2NDNFODNFNjczRjA5ODIwOUI5QkNG NkIxQTFGQjAeFw0yNjA1MDMwMjQ3MTlaFw0yNzA1MDIwMjUyMTlaMDMxMTAvBgNV BAMTKDhBN0IwODFEOUIzRDUzRUMyQjAyMUNGN0MzMDI3QzM5RjY0M0UxQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqtznAQVeKhybdTpgfajw5JtUA lM87uhSq+h8IhagF7pN6F5wnOMQxThMsyt6FNC575Nn+zBXbX+IZFGhEFGpMFMpK go5y8nZ9cJ2n0Vs8nxN4iDGSj+Qru1eI3XQwUx5S9/kCy7mSEa5GZkia2upEQox3 9M9Wth2h5KQm0NHy6MUY/HH1mMB7YZ0JqI3VZu6aKJrf7Ni6PiQZYrNODQyvplfA tZ6YsAk9rAOE2DAZwdzOCxRNjCQADaXZgdMUt/AM6dyadZ1FsqJkDuwja0Rtxj/u mEkxyAjW6Sfpml9TP9yAqg63yXW73coK72oolEIuasGCRUawYOizLxWF8TFLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUinsIHZs9U+wrAhz3wwJ8OfZD4aQwHwYDVR0j BBgwFoAUM8qzMF42Q+g+Zz8Jggm5vPaxofswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI4MDg5YTctMGE2OC00ZDY3LWFkYWItNzZkN2Q5MjcxZmRlLzAvMzNDQUIzMzA1 RTM2NDNFODNFNjczRjA5ODIwOUI5QkNGNkIxQTFGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0NBQjMzMDVFMzY0M0U4M0U2NzNGMDk4MjA5QjlCQ0Y2QjFB MUZCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3KTANBgkqhkiG 9w0BAQsFAAOCAQEADl67r/6USrF5FVtkOb0bA09lje/sQB2iNHUkqnEGC1UzgmcL IE8xOFv4yJMs6cYzItOz14i+coJFdQdBNGqbzqqVNj44+4THhzH2zjCeh53HTzE8 iq66+Kchyc4X40tDin6prpiJtSasAu1qWHKB5ETW14WJR+ZfKc0gLwhgkGj2rUxN 7hdEF34Tz9bbONn5IemdIRCEmfS3SFyeGEFrT048X4rQMAORPe0xT4deRaL8cKs2 jaf/EoTggKsVmUiXAQ7AmA8h3ykgAiU3a3Gq+h3nkiAH4wxhAF+vJi8GSq9P/zNU KJUVflch+G861l9/wn5xFhZbLlO59flLfr1ZYA== -----END CERTIFICATE-----Generated at Wed May 13 04:16:45 2026 by rpki-client