$ rpki-client -vvf rpki-rsync.idnic.net/repo/c9b1e7f7-1f4b-41a6-9252-f6b8288fb3ab/0/3130332e3232382e32342e302f32322d3234203d3e203539323830.roa File: 3130332e3232382e32342e302f32322d3234203d3e203539323830.roa (raw, json) Hash identifier: sPcPKKDd43Nai9Cg9/ZzkhBod22KktaxwVikLIQy8wc= Subject key identifier: 96:DE:A4:DE:D3:14:94:85:FF:18:AE:3A:38:7A:44:CF:44:A7:7B:B0 Certificate issuer: /CN=498B4126F814B92E742642C1F871ADD317C2ABF3 Certificate serial: 2A0BE620DC45C33217054505E4C8A6C87B87CCCC Authority key identifier: 49:8B:41:26:F8:14:B9:2E:74:26:42:C1:F8:71:AD:D3:17:C2:AB:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498B4126F814B92E742642C1F871ADD317C2ABF3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c9b1e7f7-1f4b-41a6-9252-f6b8288fb3ab/0/3130332e3232382e32342e302f32322d3234203d3e203539323830.roa Signing time: Sun 03 May 2026 03:06:28 +0000 ROA not before: Sun 03 May 2026 03:01:28 +0000 ROA not after: Sun 02 May 2027 03:06:28 +0000 asID: 59280 IP address blocks: 103.228.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c9b1e7f7-1f4b-41a6-9252-f6b8288fb3ab/0/498B4126F814B92E742642C1F871ADD317C2ABF3.crl rsync://rpki-rsync.idnic.net/repo/c9b1e7f7-1f4b-41a6-9252-f6b8288fb3ab/0/498B4126F814B92E742642C1F871ADD317C2ABF3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498B4126F814B92E742642C1F871ADD317C2ABF3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:0b:e6:20:dc:45:c3:32:17:05:45:05:e4:c8:a6:c8:7b:87:cc:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498B4126F814B92E742642C1F871ADD317C2ABF3 Validity Not Before: May 3 03:01:28 2026 GMT Not After : May 2 03:06:28 2027 GMT Subject: CN=96DEA4DED3149485FF18AE3A387A44CF44A77BB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cb:ee:c4:a9:2f:70:a8:b9:a0:e0:72:11:9b: a4:22:93:c8:54:70:42:3a:50:18:b5:f8:83:75:22: 2a:24:d3:ca:b7:13:10:d4:61:23:38:be:26:cf:52: b0:6a:38:10:bd:5d:c3:42:ac:d1:c6:2d:fa:22:9c: ae:63:9f:9a:a1:52:cb:a1:25:e2:24:60:b5:cf:5d: 3f:6a:6b:25:25:57:5d:3d:68:d0:24:0a:a5:b3:f6: c3:a8:12:5f:b5:b8:d7:b9:ce:81:c8:e2:91:bd:e1: 95:2f:de:2c:af:44:70:31:c5:45:ec:60:16:e4:60: 37:9c:55:b6:a9:a7:b5:b8:5b:e7:9d:bc:b5:61:2b: 29:d1:5f:16:e5:0d:f2:73:97:25:55:3f:81:21:6a: f0:1a:a5:91:05:4a:e5:1f:dc:8f:07:f2:f5:6e:df: d2:73:ff:9c:3e:09:c1:07:3d:70:f4:61:76:fd:60: 5b:63:24:b3:91:6a:97:62:a2:5f:5b:b8:98:3f:b0: b5:34:fb:dd:d3:d4:15:a0:c8:10:3d:80:3f:48:b7: 16:34:de:5d:16:64:ee:6d:3f:5c:c6:e9:41:c1:c8: 4f:07:46:f3:c1:17:0b:a7:f7:90:f9:11:c8:cd:5f: fc:ba:95:1f:64:65:d6:67:af:15:3d:2f:04:87:51: 57:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:DE:A4:DE:D3:14:94:85:FF:18:AE:3A:38:7A:44:CF:44:A7:7B:B0 X509v3 Authority Key Identifier: keyid:49:8B:41:26:F8:14:B9:2E:74:26:42:C1:F8:71:AD:D3:17:C2:AB:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c9b1e7f7-1f4b-41a6-9252-f6b8288fb3ab/0/498B4126F814B92E742642C1F871ADD317C2ABF3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498B4126F814B92E742642C1F871ADD317C2ABF3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c9b1e7f7-1f4b-41a6-9252-f6b8288fb3ab/0/3130332e3232382e32342e302f32322d3234203d3e203539323830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.24.0/22 Signature Algorithm: sha256WithRSAEncryption 18:01:f8:d0:c4:30:af:e9:8f:a6:60:06:60:22:e7:a1:e2:19: 35:42:dc:b6:c6:47:f3:6c:aa:8b:26:35:78:9f:bd:bb:a7:e5: 9d:38:f4:ac:b7:1a:f2:82:5d:fa:5f:a8:bb:5b:75:d2:ea:48: d2:92:2a:fb:98:b7:49:47:47:16:9b:fc:03:0b:50:c3:1c:73: 36:81:a6:48:38:79:76:af:26:87:e4:d3:e3:2a:5c:8b:8d:58: d0:4f:4d:3b:e1:28:7b:3c:8c:b5:77:0b:e7:55:8e:91:e1:dd: e3:5e:5e:1b:1e:d5:67:4c:42:e5:bb:6d:f1:f5:11:28:3c:e9: 68:00:91:d8:be:17:4c:e5:b5:7d:23:63:51:80:25:e9:78:24: 42:cc:4c:6f:fd:f2:ef:4b:f0:4f:6d:f2:39:fd:96:f5:60:67: 1b:69:65:e7:f9:4a:2a:d1:b4:20:07:9f:64:5c:0f:e7:6e:e9: fe:19:49:0d:dd:d8:4f:cc:98:52:8a:72:e2:b1:13:a3:c2:cf: 0c:01:26:37:d4:b1:8e:54:b8:84:ac:f5:1a:c2:12:7b:a6:f8: dd:86:0a:cd:45:02:68:03:de:5f:68:1f:cf:cc:96:f8:34:8d: 0c:ac:15:24:38:02:5a:fe:28:16:ea:c4:5e:11:7c:af:49:ca: ac:59:88:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKgvmINxFwzIXBUUF5MimyHuHzMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk4QjQxMjZGODE0QjkyRTc0MjY0MkMxRjg3MUFERDMx N0MyQUJGMzAeFw0yNjA1MDMwMzAxMjhaFw0yNzA1MDIwMzA2MjhaMDMxMTAvBgNV BAMTKDk2REVBNERFRDMxNDk0ODVGRjE4QUUzQTM4N0E0NENGNDRBNzdCQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGy+7EqS9wqLmg4HIRm6Qik8hU cEI6UBi1+IN1Iiok08q3ExDUYSM4vibPUrBqOBC9XcNCrNHGLfoinK5jn5qhUsuh JeIkYLXPXT9qayUlV109aNAkCqWz9sOoEl+1uNe5zoHI4pG94ZUv3iyvRHAxxUXs YBbkYDecVbapp7W4W+edvLVhKynRXxblDfJzlyVVP4EhavAapZEFSuUf3I8H8vVu 39Jz/5w+CcEHPXD0YXb9YFtjJLORapdiol9buJg/sLU0+93T1BWgyBA9gD9ItxY0 3l0WZO5tP1zG6UHByE8HRvPBFwun95D5EcjNX/y6lR9kZdZnrxU9LwSHUVffAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlt6k3tMUlIX/GK46OHpEz0Sne7AwHwYDVR0j BBgwFoAUSYtBJvgUuS50JkLB+HGt0xfCq/MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzliMWU3ZjctMWY0Yi00MWE2LTkyNTItZjZiODI4OGZiM2FiLzAvNDk4QjQxMjZG ODE0QjkyRTc0MjY0MkMxRjg3MUFERDMxN0MyQUJGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80OThCNDEyNkY4MTRCOTJFNzQyNjQyQzFGODcxQUREMzE3QzJB QkYzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5YjFlN2Y3LTFmNGItNDFhNi05 MjUyLWY2YjgyODhmYjNhYi8wLzMxMzAzMzJlMzIzMjM4MmUzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzOTMyMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfkGDANBgkqhkiG 9w0BAQsFAAOCAQEAGAH40MQwr+mPpmAGYCLnoeIZNULctsZH82yqiyY1eJ+9u6fl nTj0rLca8oJd+l+ou1t10upI0pIq+5i3SUdHFpv8AwtQwxxzNoGmSDh5dq8mh+TT 4ypci41Y0E9NO+EoezyMtXcL51WOkeHd415eGx7VZ0xC5btt8fURKDzpaACR2L4X TOW1fSNjUYAl6XgkQsxMb/3y70vwT23yOf2W9WBnG2ll5/lKKtG0IAefZFwP527p /hlJDd3YT8yYUopy4rETo8LPDAEmN9SxjlS4hKz1GsISe6b43YYKzUUCaAPeX2gf z8yW+DSNDKwVJDgCWv4oFurEXhF8r0nKrFmIDA== -----END CERTIFICATE-----Generated at Wed May 13 05:44:27 2026 by rpki-client