$ rpki-client -vvf rpki-rsync.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32382e3231382e302f32342d3234203d3e203538333835.roa File: 3130332e32382e3231382e302f32342d3234203d3e203538333835.roa (raw, json) Hash identifier: w+xTBuxDVGZDvJln2gWD2TMLIgtp2a/JxAVQQSe/MJc= Subject key identifier: 4D:37:83:56:ED:D2:E9:BA:EC:0C:DE:90:BA:04:6B:87:A1:72:0D:07 Certificate issuer: /CN=10305EB1D756B8E205948FA9D96C07D30D5559C6 Certificate serial: 1298D60E3F0AB63CE89E7D52688B26B702F2AABB Authority key identifier: 10:30:5E:B1:D7:56:B8:E2:05:94:8F:A9:D9:6C:07:D3:0D:55:59:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10305EB1D756B8E205948FA9D96C07D30D5559C6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32382e3231382e302f32342d3234203d3e203538333835.roa Signing time: Sun 03 May 2026 03:09:24 +0000 ROA not before: Sun 03 May 2026 03:04:24 +0000 ROA not after: Sun 02 May 2027 03:09:24 +0000 asID: 58385 IP address blocks: 103.28.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/10305EB1D756B8E205948FA9D96C07D30D5559C6.crl rsync://rpki-rsync.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/10305EB1D756B8E205948FA9D96C07D30D5559C6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10305EB1D756B8E205948FA9D96C07D30D5559C6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:98:d6:0e:3f:0a:b6:3c:e8:9e:7d:52:68:8b:26:b7:02:f2:aa:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10305EB1D756B8E205948FA9D96C07D30D5559C6 Validity Not Before: May 3 03:04:24 2026 GMT Not After : May 2 03:09:24 2027 GMT Subject: CN=4D378356EDD2E9BAEC0CDE90BA046B87A1720D07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f0:94:84:4d:ff:15:75:08:74:2f:a3:64:da: 28:0d:01:52:09:e7:e2:74:ba:75:0f:0f:36:bd:16: b0:a8:09:04:e2:30:24:7b:62:c4:97:fb:c3:92:a8: 40:6c:3e:f0:0f:79:a6:1a:da:00:44:64:26:97:56: 1d:ef:bb:8e:a2:86:88:13:31:e4:d1:b6:f1:c8:50: 60:6e:52:c3:c5:d8:cc:2a:f1:13:a3:0d:e7:4e:49: 62:ac:b4:f6:ce:77:be:a6:65:aa:40:1f:2e:66:08: 14:24:b0:14:56:7d:08:f8:11:48:d9:12:3e:ac:be: 1b:ed:0c:b0:46:07:59:ee:e2:f7:52:fc:06:5a:92: e1:10:3a:ad:1e:77:2f:5e:8c:fd:a8:72:00:5f:b7: da:e3:5f:ce:9d:4a:bd:fd:7b:fb:4e:b2:f2:bd:3e: aa:ee:2f:58:b5:f9:4a:fb:be:51:81:91:b1:99:84: 4d:f6:80:7c:be:af:8f:ae:ca:5c:03:a4:8a:29:16: 36:de:dc:bf:e6:68:b4:01:1d:0b:ae:e6:f2:00:f4: 4b:95:43:39:50:45:3a:56:00:40:af:3a:3e:76:80: f0:f1:4d:62:26:84:8e:39:ce:e0:98:13:7e:15:8b: f9:a1:94:75:3b:03:12:09:dd:86:f2:43:e8:50:66: be:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:37:83:56:ED:D2:E9:BA:EC:0C:DE:90:BA:04:6B:87:A1:72:0D:07 X509v3 Authority Key Identifier: keyid:10:30:5E:B1:D7:56:B8:E2:05:94:8F:A9:D9:6C:07:D3:0D:55:59:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/10305EB1D756B8E205948FA9D96C07D30D5559C6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10305EB1D756B8E205948FA9D96C07D30D5559C6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32382e3231382e302f32342d3234203d3e203538333835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.218.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:88:b7:04:77:be:a5:fb:37:a8:74:59:ee:ad:9d:e2:82:1b: 30:ee:3b:4f:b0:b1:42:25:b9:dc:d8:78:ad:0d:e4:b6:1e:e3: 16:04:23:88:2e:d8:aa:c9:b7:12:0b:6f:72:e4:2a:72:b0:13: eb:de:e6:49:c5:80:2e:12:63:5d:4d:b7:4c:3b:4e:f7:ad:15: d6:b3:b7:70:1a:35:12:8a:81:dd:ca:a9:37:bc:3d:40:54:e2: bb:bb:3e:45:a5:65:69:8a:b7:ea:ff:ab:6a:16:15:6b:bd:f0: 92:17:28:d8:82:87:0a:c8:67:c0:91:0d:94:dd:75:77:6d:73: 3c:b2:6d:b9:4a:5a:d3:7c:74:05:85:91:a0:8f:8d:55:67:40: da:b9:46:69:34:67:a6:6b:df:14:11:ed:e9:e7:b2:a4:b0:3a: c8:ba:be:b7:31:fe:69:c4:55:d8:60:05:ed:20:2f:b9:d6:ad: 70:b4:54:b8:46:b7:84:4d:50:1b:fe:4c:b8:f5:c3:ce:97:4a: d6:d8:e9:7b:ff:25:39:66:e4:c4:0f:83:f1:cc:d2:b4:04:02: 6a:38:b4:f4:06:da:c3:3e:96:35:7e:5c:eb:d4:e0:7c:d5:0e: 15:34:ab:f6:2a:bc:1b:9f:0d:cb:ad:28:9f:ed:c9:c2:e0:b9: 89:5d:4c:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEpjWDj8Ktjzonn1SaIsmtwLyqrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAzMDVFQjFENzU2QjhFMjA1OTQ4RkE5RDk2QzA3RDMw RDU1NTlDNjAeFw0yNjA1MDMwMzA0MjRaFw0yNzA1MDIwMzA5MjRaMDMxMTAvBgNV BAMTKDREMzc4MzU2RUREMkU5QkFFQzBDREU5MEJBMDQ2Qjg3QTE3MjBEMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe8JSETf8VdQh0L6Nk2igNAVIJ 5+J0unUPDza9FrCoCQTiMCR7YsSX+8OSqEBsPvAPeaYa2gBEZCaXVh3vu46ihogT MeTRtvHIUGBuUsPF2Mwq8ROjDedOSWKstPbOd76mZapAHy5mCBQksBRWfQj4EUjZ Ej6svhvtDLBGB1nu4vdS/AZakuEQOq0edy9ejP2ocgBft9rjX86dSr39e/tOsvK9 PqruL1i1+Ur7vlGBkbGZhE32gHy+r4+uylwDpIopFjbe3L/maLQBHQuu5vIA9EuV QzlQRTpWAECvOj52gPDxTWImhI45zuCYE34Vi/mhlHU7AxIJ3YbyQ+hQZr5nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTTeDVu3S6brsDN6QugRrh6FyDQcwHwYDVR0j BBgwFoAUEDBesddWuOIFlI+p2WwH0w1VWcYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDM5MjUzODgtMzVjNi00MWQ3LTlkYzQtZGI0ZDExOGQxMzVhLzAvMTAzMDVFQjFE NzU2QjhFMjA1OTQ4RkE5RDk2QzA3RDMwRDU1NTlDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDMwNUVCMUQ3NTZCOEUyMDU5NDhGQTlEOTZDMDdEMzBENTU1 OUM2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzOTI1Mzg4LTM1YzYtNDFkNy05 ZGM0LWRiNGQxMThkMTM1YS8wLzMxMzAzMzJlMzIzODJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcc2jANBgkqhkiG 9w0BAQsFAAOCAQEAfIi3BHe+pfs3qHRZ7q2d4oIbMO47T7CxQiW53Nh4rQ3kth7j FgQjiC7Yqsm3EgtvcuQqcrAT697mScWALhJjXU23TDtO960V1rO3cBo1EoqB3cqp N7w9QFTiu7s+RaVlaYq36v+rahYVa73wkhco2IKHCshnwJENlN11d21zPLJtuUpa 03x0BYWRoI+NVWdA2rlGaTRnpmvfFBHt6eeypLA6yLq+tzH+acRV2GAF7SAvudat cLRUuEa3hE1QG/5MuPXDzpdK1tjpe/8lOWbkxA+D8czStAQCaji09Abawz6WNX5c 69TgfNUOFTSr9iq8G58Ny60on+3JwuC5iV1MFg== -----END CERTIFICATE-----Generated at Wed May 13 07:45:00 2026 by rpki-client