$ rpki-client -vvf rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35382e302f32342d3234203d3e203538343734.roa File: 3130332e32382e35382e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: RnWj7aZjC6B4VrPGo8x16jqEQ5V8whLA8BJvLlw1vbg= Subject key identifier: 66:57:CC:95:94:74:B0:D2:EE:02:57:82:0B:E4:8C:57:F8:77:41:FD Certificate issuer: /CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Certificate serial: 15AFDB79EBB3A2D1DE729FA60B1C1BE840228058 Authority key identifier: 8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35382e302f32342d3234203d3e203538343734.roa Signing time: Sun 03 May 2026 02:24:25 +0000 ROA not before: Sun 03 May 2026 02:19:25 +0000 ROA not after: Sun 02 May 2027 02:24:25 +0000 asID: 58474 IP address blocks: 103.28.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 21:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:af:db:79:eb:b3:a2:d1:de:72:9f:a6:0b:1c:1b:e8:40:22:80:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Validity Not Before: May 3 02:19:25 2026 GMT Not After : May 2 02:24:25 2027 GMT Subject: CN=6657CC959474B0D2EE0257820BE48C57F87741FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:77:35:9c:91:c5:df:e5:50:4f:c7:1e:84:b9: 3e:69:9c:c7:8e:c0:6e:27:51:89:d1:f5:40:07:cc: cd:d7:1f:8a:5c:24:86:4d:b4:19:e0:09:04:62:5f: ab:2f:2f:f8:47:4a:e6:40:7c:bb:88:86:cd:b7:25: d1:b0:43:0f:9d:09:4b:eb:57:49:7d:16:4b:c9:46: 6d:46:64:78:e8:e2:1a:1f:10:9d:06:8e:d0:79:1a: eb:bf:03:22:fa:cb:13:62:c9:d9:6a:62:39:90:24: ad:dc:73:53:47:84:55:8a:6d:6a:54:8e:cf:80:74: f4:a1:20:44:d0:64:fc:7e:4d:6f:67:a4:32:3f:5c: 27:81:2b:87:fa:72:7d:c0:2e:b0:32:be:da:d0:ea: b4:f5:a8:06:a0:e8:f7:7b:f9:d2:c4:41:e8:75:87: ae:e6:7f:f4:b4:2b:31:46:8a:8c:64:f7:e1:b1:6b: ec:11:22:37:1b:e1:77:d2:14:77:fa:d9:89:48:0b: 61:82:b4:bf:4b:eb:91:99:79:a3:92:a8:b6:4f:37: 0f:d6:9c:9d:04:ea:97:f9:65:80:40:3e:c2:6b:03: 3d:3a:d9:75:41:af:ba:0a:87:b3:dd:41:c9:89:11: 36:ed:33:87:3d:bf:08:3e:28:06:83:71:ca:10:e8: 5d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:57:CC:95:94:74:B0:D2:EE:02:57:82:0B:E4:8C:57:F8:77:41:FD X509v3 Authority Key Identifier: keyid:8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35382e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.58.0/24 Signature Algorithm: sha256WithRSAEncryption 35:e5:ec:cd:cd:17:07:14:cd:68:20:94:45:4b:18:1a:16:11: 66:30:85:4f:74:7e:d6:76:16:7e:6c:9a:cd:da:e3:d0:58:c5: d0:04:7e:50:0b:5b:5d:9e:32:a5:83:c3:8c:c2:71:4d:64:26: e0:5c:09:7d:b5:0a:f3:16:76:61:75:60:00:d8:1c:f8:05:5e: 64:d5:b8:c0:be:71:d6:16:31:51:0e:61:ab:50:9d:84:f5:1a: 94:dd:eb:c7:69:8a:b1:cd:e0:52:19:64:69:50:43:26:91:fd: d0:a3:c2:be:75:5b:3f:64:92:fc:c2:79:80:7a:11:e8:40:fd: 3c:19:38:ce:84:23:cf:d0:60:58:b5:5b:45:32:f2:00:d0:ec: c1:b7:dd:12:1f:cd:36:73:db:e3:d9:40:53:43:a4:0b:72:4c: 4a:10:6b:d9:bb:bb:13:a5:53:6a:b7:b8:75:58:9e:2f:5f:24: b8:da:a8:5e:51:a4:ae:ac:c7:c4:bf:b2:13:3f:94:ff:57:8c: 4b:8e:5e:23:34:6f:86:0c:74:bd:da:a7:eb:0d:b6:fc:19:eb: 9a:36:93:70:32:dc:6c:15:36:a9:93:5f:e1:c1:29:2c:77:71: 39:29:b7:b9:c9:2f:83:5f:9f:ee:fd:6f:b6:a2:00:28:3f:1b: ea:41:e1:8f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFa/beeuzotHecp+mCxwb6EAigFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIxOEI4MTlCQzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0 QUY1MkVENDAeFw0yNjA1MDMwMjE5MjVaFw0yNzA1MDIwMjI0MjVaMDMxMTAvBgNV BAMTKDY2NTdDQzk1OTQ3NEIwRDJFRTAyNTc4MjBCRTQ4QzU3Rjg3NzQxRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJdzWckcXf5VBPxx6EuT5pnMeO wG4nUYnR9UAHzM3XH4pcJIZNtBngCQRiX6svL/hHSuZAfLuIhs23JdGwQw+dCUvr V0l9FkvJRm1GZHjo4hofEJ0GjtB5Guu/AyL6yxNiydlqYjmQJK3cc1NHhFWKbWpU js+AdPShIETQZPx+TW9npDI/XCeBK4f6cn3ALrAyvtrQ6rT1qAag6Pd7+dLEQeh1 h67mf/S0KzFGioxk9+Gxa+wRIjcb4XfSFHf62YlIC2GCtL9L65GZeaOSqLZPNw/W nJ0E6pf5ZYBAPsJrAz062XVBr7oKh7PdQcmJETbtM4c9vwg+KAaDccoQ6F2rAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZlfMlZR0sNLuAleCC+SMV/h3Qf0wHwYDVR0j BBgwFoAUixi4GbwBC0pOxmd3VDSG40r1LtQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzMwNTE3N2EtYTUwMC00OTk2LWIzZmYtNzBjMTQ0ZWRmZWNlLzAvOEIxOEI4MTlC QzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0QUY1MkVENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjE4QjgxOUJDMDEwQjRBNEVDNjY3Nzc1NDM0ODZFMzRBRjUy RUQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzMxMzAzMzJlMzIzODJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHDowDQYJKoZIhvcN AQELBQADggEBADXl7M3NFwcUzWgglEVLGBoWEWYwhU90ftZ2Fn5sms3a49BYxdAE flALW12eMqWDw4zCcU1kJuBcCX21CvMWdmF1YADYHPgFXmTVuMC+cdYWMVEOYatQ nYT1GpTd68dpirHN4FIZZGlQQyaR/dCjwr51Wz9kkvzCeYB6EehA/TwZOM6EI8/Q YFi1W0Uy8gDQ7MG33RIfzTZz2+PZQFNDpAtyTEoQa9m7uxOlU2q3uHVYni9fJLja qF5RpK6sx8S/shM/lP9XjEuOXiM0b4YMdL3ap+sNtvwZ65o2k3Ay3GwVNqmTX+HB KSx3cTkpt7nJL4Nfn+79b7aiACg/G+pB4Y8= -----END CERTIFICATE-----Generated at Mon May 4 13:02:58 2026 by rpki-client