$ rpki-client -vvf rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34332e302f32342d3234203d3e203535363835.roa File: 3130332e3234372e34332e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: cSE2SSV8Ql4HwT5nihblkiTG5EieYy1cQFYRrdQsgj4= Subject key identifier: D4:E1:1E:F4:E6:92:6E:B5:6A:A0:24:C7:AE:39:49:49:C3:41:2A:57 Certificate issuer: /CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Certificate serial: 287A592CFAE8D5980378747091F882EF7C6B8A84 Authority key identifier: 33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34332e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:52:19 +0000 ROA not before: Sun 03 May 2026 02:47:19 +0000 ROA not after: Sun 02 May 2027 02:52:19 +0000 asID: 55685 IP address blocks: 103.247.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7a:59:2c:fa:e8:d5:98:03:78:74:70:91:f8:82:ef:7c:6b:8a:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CAB3305E3643E83E673F098209B9BCF6B1A1FB Validity Not Before: May 3 02:47:19 2026 GMT Not After : May 2 02:52:19 2027 GMT Subject: CN=D4E11EF4E6926EB56AA024C7AE394949C3412A57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:05:d1:a8:a3:6a:1c:4a:57:be:a1:e1:11:56: 11:31:38:13:a7:d2:60:53:93:fe:66:88:73:45:2c: 87:47:b7:92:e7:12:4b:31:0c:c5:28:57:b3:dc:a6: 4b:ee:d9:34:01:21:5e:04:94:7e:4c:37:22:47:92: 78:bf:c1:f9:cd:9f:da:ef:ad:d5:00:31:fd:15:75: bb:d7:61:6c:cb:40:9b:f3:9f:0e:46:e2:61:72:cc: d8:4a:25:49:39:a6:4f:17:78:2b:e0:a3:a5:09:bf: b3:12:56:fc:47:6b:c0:0c:71:2d:02:5c:d9:07:d9: 64:a1:41:99:8d:a2:17:ad:c3:b2:75:75:49:38:4c: 2e:e7:70:9d:a5:af:33:07:5f:ca:cf:ab:81:bd:74: 5b:a9:14:df:af:64:23:a3:bd:da:eb:11:5f:a6:7a: 28:f0:bc:33:71:ec:6e:e6:9d:8c:f2:fa:6e:25:e2: 2d:b8:d3:fe:2d:23:bd:70:ff:80:d3:c8:51:4a:84: 79:96:f8:f5:e9:51:b3:d1:a1:cd:53:bd:71:10:68: 35:f3:a0:e1:3e:b1:dd:09:25:f7:90:d0:1e:ca:72: 5d:dd:1e:4c:44:60:9b:f3:a0:14:16:4d:5f:bf:ab: 33:fa:6f:47:12:d2:98:22:3e:85:e0:49:f2:7c:39: 4f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E1:1E:F4:E6:92:6E:B5:6A:A0:24:C7:AE:39:49:49:C3:41:2A:57 X509v3 Authority Key Identifier: keyid:33:CA:B3:30:5E:36:43:E8:3E:67:3F:09:82:09:B9:BC:F6:B1:A1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33CAB3305E3643E83E673F098209B9BCF6B1A1FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34332e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.43.0/24 Signature Algorithm: sha256WithRSAEncryption 49:9c:ab:87:c0:c2:51:4d:28:21:b0:96:03:f5:1f:71:ab:21: e5:bb:ee:a9:58:5e:1e:75:53:fe:be:d8:78:a9:64:a3:98:f4: ac:ec:13:3a:70:2e:8c:ff:4a:de:10:86:a4:98:e6:59:31:e9: c4:07:2c:d1:62:a6:d3:48:2e:a9:ae:b1:fc:be:2d:36:f2:c0: a9:52:f7:00:1c:e4:e5:47:a8:c8:d2:da:d7:0d:20:ff:b0:93: d0:51:b9:e7:cb:60:3b:a8:09:aa:af:f6:96:a1:ea:78:b7:3c: 4f:82:49:d7:1c:cc:4e:bb:c8:c1:1d:4f:a0:00:48:8a:d3:3a: 86:65:72:51:90:66:61:da:41:7d:6b:df:b2:9c:37:e4:25:81: 93:d7:3f:23:23:38:2c:be:07:c1:9c:58:bf:b2:c5:1b:fb:41: 02:fb:79:9f:72:a3:1c:20:3d:b6:9a:a5:76:70:61:0b:3c:bb: 67:3c:68:de:2f:30:da:cb:b2:2b:07:7e:36:3c:ee:cf:d6:75: de:1c:8a:b8:91:84:e4:48:c2:92:e9:5a:da:2e:85:c8:ce:1d: 32:2e:8d:45:92:ed:ad:09:05:d9:29:80:47:7e:a1:0e:5e:46: 8b:5f:43:16:1d:30:22:2c:8f:31:c9:e2:ba:fe:4d:84:fd:3e: fb:23:59:8b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKHpZLPro1ZgDeHRwkfiC73xrioQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQUIzMzA1RTM2NDNFODNFNjczRjA5ODIwOUI5QkNG NkIxQTFGQjAeFw0yNjA1MDMwMjQ3MTlaFw0yNzA1MDIwMjUyMTlaMDMxMTAvBgNV BAMTKEQ0RTExRUY0RTY5MjZFQjU2QUEwMjRDN0FFMzk0OTQ5QzM0MTJBNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhBdGoo2ocSle+oeERVhExOBOn 0mBTk/5miHNFLIdHt5LnEksxDMUoV7Pcpkvu2TQBIV4ElH5MNyJHkni/wfnNn9rv rdUAMf0VdbvXYWzLQJvznw5G4mFyzNhKJUk5pk8XeCvgo6UJv7MSVvxHa8AMcS0C XNkH2WShQZmNohetw7J1dUk4TC7ncJ2lrzMHX8rPq4G9dFupFN+vZCOjvdrrEV+m eijwvDNx7G7mnYzy+m4l4i240/4tI71w/4DTyFFKhHmW+PXpUbPRoc1TvXEQaDXz oOE+sd0JJfeQ0B7Kcl3dHkxEYJvzoBQWTV+/qzP6b0cS0pgiPoXgSfJ8OU+NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1OEe9OaSbrVqoCTHrjlJScNBKlcwHwYDVR0j BBgwFoAUM8qzMF42Q+g+Zz8Jggm5vPaxofswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI4MDg5YTctMGE2OC00ZDY3LWFkYWItNzZkN2Q5MjcxZmRlLzAvMzNDQUIzMzA1 RTM2NDNFODNFNjczRjA5ODIwOUI5QkNGNkIxQTFGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0NBQjMzMDVFMzY0M0U4M0U2NzNGMDk4MjA5QjlCQ0Y2QjFB MUZCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3KzANBgkqhkiG 9w0BAQsFAAOCAQEASZyrh8DCUU0oIbCWA/Ufcash5bvuqVheHnVT/r7YeKlko5j0 rOwTOnAujP9K3hCGpJjmWTHpxAcs0WKm00guqa6x/L4tNvLAqVL3ABzk5UeoyNLa 1w0g/7CT0FG558tgO6gJqq/2lqHqeLc8T4JJ1xzMTrvIwR1PoABIitM6hmVyUZBm YdpBfWvfspw35CWBk9c/IyM4LL4HwZxYv7LFG/tBAvt5n3KjHCA9tpqldnBhCzy7 Zzxo3i8w2suyKwd+Njzuz9Z13hyKuJGE5EjCkula2i6FyM4dMi6NRZLtrQkF2SmA R36hDl5Gi19DFh0wIiyPMcniuv5NhP0++yNZiw== -----END CERTIFICATE-----Generated at Wed May 13 04:26:41 2026 by rpki-client