$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234342e302f32342d3234203d3e203539323832.roa File: 3130332e3232382e3234342e302f32342d3234203d3e203539323832.roa (raw, json) Hash identifier: z+PDM1yaJVso/7iy8s/DYFAcGnjvjuuUqet4qK7is+I= Subject key identifier: 97:40:F1:23:01:93:1B:A1:DD:48:7D:93:AF:0A:B7:CB:3C:9A:19:C9 Certificate issuer: /CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Certificate serial: 1629A87D32215B05D682BE405396C6F8D8D35BE2 Authority key identifier: 69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234342e302f32342d3234203d3e203539323832.roa Signing time: Sun 03 May 2026 02:57:50 +0000 ROA not before: Sun 03 May 2026 02:52:50 +0000 ROA not after: Sun 02 May 2027 02:57:50 +0000 asID: 59282 IP address blocks: 103.228.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:29:a8:7d:32:21:5b:05:d6:82:be:40:53:96:c6:f8:d8:d3:5b:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Validity Not Before: May 3 02:52:50 2026 GMT Not After : May 2 02:57:50 2027 GMT Subject: CN=9740F12301931BA1DD487D93AF0AB7CB3C9A19C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:fe:17:63:92:ec:11:b9:36:c7:0b:4e:cb: 93:40:65:ed:33:1f:5b:7a:96:1d:9e:7a:8a:dd:6a: eb:51:a1:5b:3f:a2:23:46:15:5e:b0:c9:8c:ea:2e: 56:ec:05:bf:5f:86:14:6d:a5:85:95:4f:c5:58:6c: 8d:9b:af:23:4f:2d:72:f0:8b:dc:8d:62:36:d1:9b: 81:b6:fa:2c:9f:8c:81:2f:53:51:ff:64:ad:47:31: d1:39:9b:6b:8b:de:dd:a3:27:14:aa:f5:6b:49:35: 68:8b:16:9a:8c:dc:2f:f4:cc:6b:af:03:b6:6a:ec: 7d:46:8d:77:f2:d8:a9:4f:32:1b:8c:06:56:9f:c7: f2:c6:ee:48:37:9a:99:ea:64:4d:c1:49:10:ed:55: f8:0f:66:02:2f:97:3c:44:37:a5:0f:66:de:a5:72: 30:87:5d:3a:f3:a0:ba:8a:a8:e4:c4:5e:7f:7c:62: 8b:46:14:0d:7d:10:f6:d6:5c:30:85:39:86:e0:42: b2:63:f1:74:fc:3e:78:e6:f4:85:b1:7c:66:96:35: 3e:8d:1e:72:4c:e9:94:60:70:09:0f:23:b7:d1:ac: 09:5d:40:8d:31:e8:e4:17:19:d9:12:9a:08:61:21: ee:62:af:87:69:37:95:65:5f:b4:e7:05:ce:3e:bf: c5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:40:F1:23:01:93:1B:A1:DD:48:7D:93:AF:0A:B7:CB:3C:9A:19:C9 X509v3 Authority Key Identifier: keyid:69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234342e302f32342d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.244.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:22:d4:71:6f:85:b3:35:b6:bd:de:98:76:35:da:f0:27:fd: ba:d8:2c:58:38:03:86:f3:3b:a3:9b:d0:3a:b8:e8:9e:cf:92: 2f:de:83:e0:12:76:b0:49:2f:e1:84:64:ec:9e:76:fd:74:27: c5:da:eb:47:b2:8b:ce:e4:83:10:f7:1d:77:45:28:d2:69:a4: e3:51:d8:ec:f3:67:e1:8c:b1:31:83:0f:43:02:e3:10:c2:f3: de:c5:fd:14:8a:74:aa:f6:f6:35:52:97:38:16:12:ac:27:a1: 7b:cf:6a:00:d0:34:5b:36:2b:ca:5e:10:20:5c:30:f7:fc:69: 11:46:b0:b0:cd:c9:0f:27:c8:da:10:5f:4e:ee:d2:8e:25:04: 56:9c:54:00:16:4c:93:65:98:b0:7b:79:27:1b:d6:49:25:ab: 9a:b7:0c:1b:15:b5:c3:04:d5:4f:43:9a:b9:10:c3:00:1e:0e: e9:07:0b:e3:da:29:23:74:bb:0d:8f:f4:0b:cd:37:d5:5d:96: 87:59:16:20:3a:e6:d2:2b:02:bc:d8:ba:fb:c1:93:9c:62:3d: 60:6d:b7:7a:f1:50:3c:11:5d:c1:cf:bd:c3:c7:ce:de:a5:eb: 8d:8e:30:66:7e:4b:97:f7:73:b4:a7:d7:08:db:81:d3:74:ce: 3a:8a:ab:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFimofTIhWwXWgr5AU5bG+NjTW+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk5NTVGQzczRjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4 OUI2QjI1RDAeFw0yNjA1MDMwMjUyNTBaFw0yNzA1MDIwMjU3NTBaMDMxMTAvBgNV BAMTKDk3NDBGMTIzMDE5MzFCQTFERDQ4N0Q5M0FGMEFCN0NCM0M5QTE5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvgf4XY5LsEbk2xwtOy5NAZe0z H1t6lh2eeordautRoVs/oiNGFV6wyYzqLlbsBb9fhhRtpYWVT8VYbI2bryNPLXLw i9yNYjbRm4G2+iyfjIEvU1H/ZK1HMdE5m2uL3t2jJxSq9WtJNWiLFpqM3C/0zGuv A7Zq7H1GjXfy2KlPMhuMBlafx/LG7kg3mpnqZE3BSRDtVfgPZgIvlzxEN6UPZt6l cjCHXTrzoLqKqOTEXn98YotGFA19EPbWXDCFOYbgQrJj8XT8Pnjm9IWxfGaWNT6N HnJM6ZRgcAkPI7fRrAldQI0x6OQXGdkSmghhIe5ir4dpN5VlX7TnBc4+v8VpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUl0DxIwGTG6HdSH2Trwq3yzyaGckwHwYDVR0j BBgwFoAUaZVfxz8SiAJOfK8MHYJeg4m2sl0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTg0NjRhNWItMmZjZS00N2RhLTgwNDctNjhkMmJkNjNjOWMzLzAvNjk5NTVGQzcz RjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4OUI2QjI1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OTk1NUZDNzNGMTI4ODAyNEU3Q0FGMEMxRDgyNUU4Mzg5QjZC MjVELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMxMzAzMzJlMzIzMjM4MmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+T0MA0GCSqG SIb3DQEBCwUAA4IBAQCMItRxb4WzNba93ph2NdrwJ/262CxYOAOG8zujm9A6uOie z5Iv3oPgEnawSS/hhGTsnnb9dCfF2utHsovO5IMQ9x13RSjSaaTjUdjs82fhjLEx gw9DAuMQwvPexf0UinSq9vY1Upc4FhKsJ6F7z2oA0DRbNivKXhAgXDD3/GkRRrCw zckPJ8jaEF9O7tKOJQRWnFQAFkyTZZiwe3knG9ZJJauatwwbFbXDBNVPQ5q5EMMA Hg7pBwvj2ikjdLsNj/QLzTfVXZaHWRYgOubSKwK82Lr7wZOcYj1gbbd68VA8EV3B z73Dx87epeuNjjBmfkuX93O0p9cI24HTdM46iquV -----END CERTIFICATE-----Generated at Tue May 5 21:05:08 2026 by rpki-client