$ rpki-client -vvf rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa File: 3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa (raw, json) Hash identifier: suxBsM49rj/B+/QbrRHASWUhsJL/fsUqfhAd7EFeilQ= Subject key identifier: CD:77:8C:DD:E2:0B:E5:09:54:94:07:D8:B0:06:2D:E1:25:B4:2E:CE Certificate issuer: /CN=33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D Certificate serial: 4F4D06395F0E8C28030BF41B388C4F5F2DB06AB8 Authority key identifier: 33:DC:D8:55:DE:6E:86:6A:83:A5:70:AB:A8:A1:DE:A5:A6:E3:0E:4D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa Signing time: Sun 03 May 2026 03:03:03 +0000 ROA not before: Sun 03 May 2026 02:58:03 +0000 ROA not after: Sun 02 May 2027 03:03:03 +0000 asID: 59276 IP address blocks: 103.226.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.crl rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:4d:06:39:5f:0e:8c:28:03:0b:f4:1b:38:8c:4f:5f:2d:b0:6a:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D Validity Not Before: May 3 02:58:03 2026 GMT Not After : May 2 03:03:03 2027 GMT Subject: CN=CD778CDDE20BE509549407D8B0062DE125B42ECE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:16:9f:04:d6:3c:92:c4:14:f5:cd:98:23:36: 03:33:ae:fc:9c:5e:84:e2:60:be:57:e6:3e:ce:7c: 09:6c:ab:08:54:c6:23:35:fd:9a:af:c8:bf:80:3c: f1:f5:4d:4f:37:62:4a:24:f5:8b:58:6a:96:c6:7a: 6e:41:35:64:4c:80:92:0d:59:b5:4f:43:57:7e:59: ce:17:ab:22:13:a5:0b:fe:8d:13:b4:e1:fe:ee:19: d9:ee:65:11:9b:fa:98:17:95:33:53:3f:83:10:4f: 04:e4:21:d9:34:f0:8a:2f:22:18:ec:86:27:73:1b: 85:0b:ac:99:79:a9:52:ee:12:67:4e:0d:f9:91:9f: c5:d2:8f:cf:63:4c:23:61:a2:0f:2a:b4:82:ce:0a: 94:63:85:a0:98:2d:d7:d4:8e:81:4c:f9:38:ac:0b: 41:e4:65:7a:88:73:37:67:f7:a9:d4:8c:35:7f:88: f9:e7:51:97:f1:c4:bc:63:7f:ec:e7:94:02:d3:04: b7:5f:f7:46:00:01:79:71:c7:8c:82:00:88:5c:f4: fe:2c:a7:64:23:37:82:b2:a3:94:75:57:29:1a:d4: 2c:05:1e:77:b1:4f:b6:5c:3d:54:cc:66:a9:be:c2: 3b:e4:3f:62:a0:f3:f8:ea:18:2a:ec:c5:99:16:12: f4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:77:8C:DD:E2:0B:E5:09:54:94:07:D8:B0:06:2D:E1:25:B4:2E:CE X509v3 Authority Key Identifier: keyid:33:DC:D8:55:DE:6E:86:6A:83:A5:70:AB:A8:A1:DE:A5:A6:E3:0E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.226.234.0/24 Signature Algorithm: sha256WithRSAEncryption d0:b7:1f:e3:60:43:f3:da:55:25:50:6b:2a:50:e8:dd:5d:61: 28:43:65:4c:05:e6:e8:51:58:bc:3d:4d:8c:89:92:42:97:d8: 8d:3e:ef:d9:dc:b7:ab:4b:7f:ff:3e:97:e8:17:d6:04:ce:65: 1d:1e:de:c9:9f:cd:c3:6a:8d:30:6d:83:26:9e:a6:60:23:42: 1e:f0:36:4d:23:93:9b:15:3e:5a:7a:08:36:7f:b7:c7:af:8f: 5d:87:b8:e6:ff:67:b7:95:f5:35:a2:0a:36:1b:b9:7a:8d:53: 91:60:ae:39:4e:c5:3a:73:0f:b9:42:23:2e:19:df:49:d0:df: 71:91:e2:51:f4:53:48:f1:ac:dd:1c:1f:48:c1:c0:28:3b:fb: 44:41:d6:d5:bc:63:23:5f:a0:b5:03:de:8c:aa:84:92:61:e5: 6d:47:8a:80:27:e1:01:76:17:47:4e:b1:af:24:06:92:d8:27: bb:26:29:29:14:60:05:ea:b7:ac:10:6d:9c:3c:d8:82:05:96: c5:4d:1f:ac:97:d7:7e:d9:30:26:44:18:28:c8:b2:88:6e:6b: c8:fd:62:8e:f2:c4:f6:83:2d:fd:8e:80:e6:b6:3d:78:71:61: d4:2a:9e:17:a4:64:42:ed:30:f3:09:25:66:8e:8d:11:0d:c8: 00:27:a8:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT00GOV8OjCgDC/QbOIxPXy2wargwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNEQ0Q4NTVERTZFODY2QTgzQTU3MEFCQThBMURFQTVB NkUzMEU0RDAeFw0yNjA1MDMwMjU4MDNaFw0yNzA1MDIwMzAzMDNaMDMxMTAvBgNV BAMTKENENzc4Q0RERTIwQkU1MDk1NDk0MDdEOEIwMDYyREUxMjVCNDJFQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Fp8E1jySxBT1zZgjNgMzrvyc XoTiYL5X5j7OfAlsqwhUxiM1/ZqvyL+APPH1TU83Ykok9YtYapbGem5BNWRMgJIN WbVPQ1d+Wc4XqyITpQv+jRO04f7uGdnuZRGb+pgXlTNTP4MQTwTkIdk08IovIhjs hidzG4ULrJl5qVLuEmdODfmRn8XSj89jTCNhog8qtILOCpRjhaCYLdfUjoFM+Tis C0HkZXqIczdn96nUjDV/iPnnUZfxxLxjf+znlALTBLdf90YAAXlxx4yCAIhc9P4s p2QjN4Kyo5R1Vyka1CwFHnexT7ZcPVTMZqm+wjvkP2Kg8/jqGCrsxZkWEvRpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzXeM3eIL5QlUlAfYsAYt4SW0Ls4wHwYDVR0j BBgwFoAUM9zYVd5uhmqDpXCrqKHepabjDk0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmY1NDJiYzQtNzRkYy00NWRkLWI2NTktNzQ1Y2EyYWNhMzMzLzAvMzNEQ0Q4NTVE RTZFODY2QTgzQTU3MEFCQThBMURFQTVBNkUzMEU0RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0RDRDg1NURFNkU4NjZBODNBNTcwQUJBOEExREVBNUE2RTMw RTRELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i NjU5LTc0NWNhMmFjYTMzMy8wLzMxMzAzMzJlMzIzMjM2MmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+LqMA0GCSqG SIb3DQEBCwUAA4IBAQDQtx/jYEPz2lUlUGsqUOjdXWEoQ2VMBeboUVi8PU2MiZJC l9iNPu/Z3LerS3//PpfoF9YEzmUdHt7Jn83Dao0wbYMmnqZgI0Ie8DZNI5ObFT5a egg2f7fHr49dh7jm/2e3lfU1ogo2G7l6jVORYK45TsU6cw+5QiMuGd9J0N9xkeJR 9FNI8azdHB9IwcAoO/tEQdbVvGMjX6C1A96MqoSSYeVtR4qAJ+EBdhdHTrGvJAaS 2Ce7JikpFGAF6resEG2cPNiCBZbFTR+sl9d+2TAmRBgoyLKIbmvI/WKO8sT2gy39 joDmtj14cWHUKp4XpGRC7TDzCSVmjo0RDcgAJ6im -----END CERTIFICATE-----Generated at Wed May 13 02:47:30 2026 by rpki-client