$ rpki-client -vvf rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35392e302f32342d3234203d3e203538343734.roa File: 3130332e32382e35392e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: xAnrR5oDPaIS2eOvjAIZMGHwwrAtXCAYZrjZS6iBlJs= Subject key identifier: 4C:C1:FA:3F:37:03:EF:47:85:1A:70:E9:45:90:8C:D5:CF:CB:8F:15 Certificate issuer: /CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Certificate serial: 706D67B6C2BF52CD9B16DAEE6439AB22CB458E9D Authority key identifier: 8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35392e302f32342d3234203d3e203538343734.roa Signing time: Sun 03 May 2026 02:24:24 +0000 ROA not before: Sun 03 May 2026 02:19:24 +0000 ROA not after: Sun 02 May 2027 02:24:24 +0000 asID: 58474 IP address blocks: 103.28.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 21:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:6d:67:b6:c2:bf:52:cd:9b:16:da:ee:64:39:ab:22:cb:45:8e:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Validity Not Before: May 3 02:19:24 2026 GMT Not After : May 2 02:24:24 2027 GMT Subject: CN=4CC1FA3F3703EF47851A70E945908CD5CFCB8F15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a3:bf:54:e0:34:58:22:a7:01:b0:91:c3:11: 80:56:66:2f:2b:13:3f:ee:71:3a:7f:8d:ce:ae:1a: c0:e1:64:7f:7b:91:c7:87:7e:65:54:c9:47:30:56: 36:26:72:f2:9f:4b:8c:3f:6e:10:0c:24:b3:57:02: 28:0c:56:d0:c3:96:bd:2a:c7:3e:e3:e0:21:32:7d: 01:b9:be:ff:1e:04:01:51:4c:c3:f0:d9:b6:83:08: 0d:9c:d3:32:9c:6a:a8:c5:72:de:59:17:f0:d6:ee: 66:9e:a8:85:63:ae:3f:25:79:d1:e1:eb:84:9f:38: 06:52:46:b8:f2:79:3c:84:73:58:3c:81:63:2a:df: 56:ff:ab:20:bd:7d:8f:eb:6b:58:bf:fa:37:69:ae: 74:eb:31:c9:f2:d8:2f:da:67:85:08:7b:16:91:45: 06:5b:ae:fc:db:9f:e0:75:56:1e:5f:b7:4b:2c:d6: 67:2d:54:27:c2:73:0c:d8:17:bf:6f:4d:cb:b9:3f: 45:14:4e:7c:16:fd:30:cc:5c:69:a5:a9:57:db:8f: 83:99:3a:e6:c5:f4:7d:da:0c:f4:e9:39:86:0f:79: 65:80:4c:73:d3:4a:d2:66:bf:f4:e9:95:26:ca:05: 27:4a:a5:97:38:23:cb:b4:39:74:b6:46:79:c3:4b: 75:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C1:FA:3F:37:03:EF:47:85:1A:70:E9:45:90:8C:D5:CF:CB:8F:15 X509v3 Authority Key Identifier: keyid:8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35392e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.59.0/24 Signature Algorithm: sha256WithRSAEncryption 84:e5:33:39:d5:e5:87:75:93:5f:df:01:62:26:67:26:a4:53: ab:72:92:cc:fd:68:63:70:d5:09:fc:71:d2:6c:4e:4f:4f:b1: ad:f4:bb:9e:42:1d:3b:71:81:aa:0a:c1:d6:7a:29:f0:b4:14: cb:c7:c3:af:d7:e0:2b:cb:ec:56:3f:7f:ed:8b:09:18:81:7d: 48:fe:56:ff:ba:ab:5d:27:39:f3:c3:a7:33:7d:a6:2e:63:bf: 11:9f:a4:c4:5a:50:be:3a:88:50:91:be:00:ce:4d:6b:82:fe: f8:bd:fb:ae:ea:67:9f:1a:f1:22:f8:90:7f:d3:0d:84:0a:9f: 2d:f0:9b:bd:f8:72:09:8a:48:3a:ca:e1:20:37:61:78:84:a3: 21:a7:8b:9a:ea:b2:5f:be:cc:9c:66:05:a1:fb:c6:cc:19:83: db:e0:b7:bb:bc:25:be:b8:83:e5:5a:ab:2b:e8:40:3c:26:bf: 96:74:f8:29:30:0b:ba:61:a1:03:4c:96:4c:63:09:aa:b4:c9: 56:1a:7b:bc:d0:87:a7:b3:a4:df:43:76:71:0e:09:d0:7c:95: 8a:c8:51:a5:34:88:4a:d8:dc:76:9d:6f:31:11:88:39:4f:b6: 37:26:d1:c7:4b:6c:db:74:e3:9f:85:76:bb:d8:89:be:59:48: 69:8f:70:7a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcG1ntsK/Us2bFtruZDmrIstFjp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIxOEI4MTlCQzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0 QUY1MkVENDAeFw0yNjA1MDMwMjE5MjRaFw0yNzA1MDIwMjI0MjRaMDMxMTAvBgNV BAMTKDRDQzFGQTNGMzcwM0VGNDc4NTFBNzBFOTQ1OTA4Q0Q1Q0ZDQjhGMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3o79U4DRYIqcBsJHDEYBWZi8r Ez/ucTp/jc6uGsDhZH97kceHfmVUyUcwVjYmcvKfS4w/bhAMJLNXAigMVtDDlr0q xz7j4CEyfQG5vv8eBAFRTMPw2baDCA2c0zKcaqjFct5ZF/DW7maeqIVjrj8ledHh 64SfOAZSRrjyeTyEc1g8gWMq31b/qyC9fY/ra1i/+jdprnTrMcny2C/aZ4UIexaR RQZbrvzbn+B1Vh5ft0ss1mctVCfCcwzYF79vTcu5P0UUTnwW/TDMXGmlqVfbj4OZ OubF9H3aDPTpOYYPeWWATHPTStJmv/TplSbKBSdKpZc4I8u0OXS2RnnDS3UXAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUTMH6PzcD70eFGnDpRZCM1c/LjxUwHwYDVR0j BBgwFoAUixi4GbwBC0pOxmd3VDSG40r1LtQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzMwNTE3N2EtYTUwMC00OTk2LWIzZmYtNzBjMTQ0ZWRmZWNlLzAvOEIxOEI4MTlC QzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0QUY1MkVENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjE4QjgxOUJDMDEwQjRBNEVDNjY3Nzc1NDM0ODZFMzRBRjUy RUQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzMxMzAzMzJlMzIzODJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHDswDQYJKoZIhvcN AQELBQADggEBAITlMznV5Yd1k1/fAWImZyakU6tyksz9aGNw1Qn8cdJsTk9Psa30 u55CHTtxgaoKwdZ6KfC0FMvHw6/X4CvL7FY/f+2LCRiBfUj+Vv+6q10nOfPDpzN9 pi5jvxGfpMRaUL46iFCRvgDOTWuC/vi9+67qZ58a8SL4kH/TDYQKny3wm734cgmK SDrK4SA3YXiEoyGni5rqsl++zJxmBaH7xswZg9vgt7u8Jb64g+VaqyvoQDwmv5Z0 +CkwC7phoQNMlkxjCaq0yVYae7zQh6ezpN9DdnEOCdB8lYrIUaU0iErY3HadbzER iDlPtjcm0cdLbNt045+FdrvYib5ZSGmPcHo= -----END CERTIFICATE-----Generated at Mon May 4 13:02:02 2026 by rpki-client