$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234342e302f32322d3234203d3e203539323832.roa File: 3130332e3232382e3234342e302f32322d3234203d3e203539323832.roa (raw, json) Hash identifier: v3ZYWa8XXb+DFvl8j2lAq20FkxITb0PL+31yaFuYI5A= Subject key identifier: 06:A1:4D:B7:C1:EB:09:38:EC:FE:45:95:07:73:73:BF:37:47:6F:6F Certificate issuer: /CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Certificate serial: 1595F0AE5CD53B37A729E386FBD770F31F6EDD9A Authority key identifier: 69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234342e302f32322d3234203d3e203539323832.roa Signing time: Sun 03 May 2026 02:57:49 +0000 ROA not before: Sun 03 May 2026 02:52:49 +0000 ROA not after: Sun 02 May 2027 02:57:49 +0000 asID: 59282 IP address blocks: 103.228.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:95:f0:ae:5c:d5:3b:37:a7:29:e3:86:fb:d7:70:f3:1f:6e:dd:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Validity Not Before: May 3 02:52:49 2026 GMT Not After : May 2 02:57:49 2027 GMT Subject: CN=06A14DB7C1EB0938ECFE4595077373BF37476F6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:28:5a:d4:e3:cf:0a:84:e7:e4:88:68:dd:b9: 6e:d9:a3:08:fb:61:e0:41:c4:e5:d7:c0:0d:18:1c: cb:29:58:b3:19:ca:7d:de:82:8b:fc:23:90:bb:87: aa:21:c0:a5:fd:9e:07:8b:2c:d2:4c:61:06:b1:21: bd:78:4d:cf:5a:25:c0:35:d1:67:5a:4e:39:59:8f: 33:70:d4:9a:41:e4:55:02:64:9c:b5:e1:53:b5:e2: 63:df:68:6d:65:8e:69:76:33:54:d8:2a:77:f4:fe: 44:27:1d:f7:a1:bb:8e:2e:06:11:0e:d5:03:bc:7d: 98:0d:0d:41:e0:cb:7b:7a:37:cc:fd:7f:0f:84:ce: 0c:6e:c8:a2:ed:a4:fe:e7:70:43:ef:96:1c:82:64: 0a:96:a2:e8:c6:8f:d2:99:6c:8c:1e:90:ad:a2:39: 7b:b8:2f:1b:ee:2a:b2:fe:5e:43:45:7c:ba:2e:8c: 58:fb:82:d6:16:ea:ec:93:f3:c6:e9:e2:60:78:f6: a7:88:03:6d:6d:02:1d:d8:5f:4c:d7:70:5a:e4:61: 65:b0:8a:f6:a2:56:6a:90:ba:b9:31:ba:9a:1c:24: 4b:5b:22:69:d0:33:4d:84:24:9d:41:64:45:d4:96: 44:de:57:69:b3:73:5b:14:a8:4f:18:a2:59:82:0c: b6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A1:4D:B7:C1:EB:09:38:EC:FE:45:95:07:73:73:BF:37:47:6F:6F X509v3 Authority Key Identifier: keyid:69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234342e302f32322d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.244.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:74:c1:5f:f9:6b:9b:6b:16:4f:e2:dd:46:f9:0c:e0:8c:ba: b4:b4:92:55:18:47:48:c7:bf:a3:56:0b:b6:80:2d:c9:a2:09: 4a:48:e1:44:d2:98:9d:ef:e5:90:e9:6e:af:64:96:5a:c3:b9: 01:6d:ed:eb:ea:0a:81:af:ab:be:c3:24:06:bd:18:d2:91:14: 41:bd:b0:13:38:76:82:03:c4:c4:e8:38:5e:1a:48:d0:69:e1: ae:d9:2e:53:74:e4:c7:be:84:6e:18:4f:96:eb:19:10:4d:db: 86:59:3f:17:0d:44:3e:6f:da:c4:95:cb:4d:a8:44:fa:03:2a: b1:f2:15:08:c5:cc:eb:b3:80:f7:9a:25:c7:09:fe:d6:a0:ec: 3e:4f:95:e9:a4:21:bc:7c:2e:a1:e1:1a:62:78:d8:0c:32:33: 43:9a:f0:96:b1:83:bb:8a:eb:1f:6e:f3:4a:15:e4:2e:84:a6: 3c:31:b5:11:66:21:57:62:02:25:32:ad:77:17:31:0d:1a:6b: 62:04:70:28:1e:c2:b5:2a:1d:cb:f2:f0:14:80:00:26:85:a4: eb:f2:3e:73:83:3b:26:09:8f:8f:99:73:c5:7e:48:8c:13:3e: 87:fd:7d:86:72:ca:38:a7:53:e3:b5:ae:72:26:1a:67:0f:52: 51:ed:fe:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFZXwrlzVOzenKeOG+9dw8x9u3ZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk5NTVGQzczRjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4 OUI2QjI1RDAeFw0yNjA1MDMwMjUyNDlaFw0yNzA1MDIwMjU3NDlaMDMxMTAvBgNV BAMTKDA2QTE0REI3QzFFQjA5MzhFQ0ZFNDU5NTA3NzM3M0JGMzc0NzZGNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcKFrU488KhOfkiGjduW7Zowj7 YeBBxOXXwA0YHMspWLMZyn3egov8I5C7h6ohwKX9ngeLLNJMYQaxIb14Tc9aJcA1 0WdaTjlZjzNw1JpB5FUCZJy14VO14mPfaG1ljml2M1TYKnf0/kQnHfehu44uBhEO 1QO8fZgNDUHgy3t6N8z9fw+EzgxuyKLtpP7ncEPvlhyCZAqWoujGj9KZbIwekK2i OXu4LxvuKrL+XkNFfLoujFj7gtYW6uyT88bp4mB49qeIA21tAh3YX0zXcFrkYWWw ivaiVmqQurkxupocJEtbImnQM02EJJ1BZEXUlkTeV2mzc1sUqE8YolmCDLbDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBqFNt8HrCTjs/kWVB3NzvzdHb28wHwYDVR0j BBgwFoAUaZVfxz8SiAJOfK8MHYJeg4m2sl0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTg0NjRhNWItMmZjZS00N2RhLTgwNDctNjhkMmJkNjNjOWMzLzAvNjk5NTVGQzcz RjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4OUI2QjI1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OTk1NUZDNzNGMTI4ODAyNEU3Q0FGMEMxRDgyNUU4Mzg5QjZC MjVELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMxMzAzMzJlMzIzMjM4MmUzMjM0MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+T0MA0GCSqG SIb3DQEBCwUAA4IBAQAKdMFf+WubaxZP4t1G+QzgjLq0tJJVGEdIx7+jVgu2gC3J oglKSOFE0pid7+WQ6W6vZJZaw7kBbe3r6gqBr6u+wyQGvRjSkRRBvbATOHaCA8TE 6DheGkjQaeGu2S5TdOTHvoRuGE+W6xkQTduGWT8XDUQ+b9rElctNqET6Ayqx8hUI xczrs4D3miXHCf7WoOw+T5XppCG8fC6h4RpieNgMMjNDmvCWsYO7iusfbvNKFeQu hKY8MbURZiFXYgIlMq13FzENGmtiBHAoHsK1Kh3L8vAUgAAmhaTr8j5zgzsmCY+P mXPFfkiMEz6H/X2Gcso4p1Pjta5yJhpnD1JR7f6Q -----END CERTIFICATE-----Generated at Tue May 5 21:07:22 2026 by rpki-client