$ rpki-client -vvf rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: JdCU8fnwLyrsbyZUM+2ErkfTDZvbcugmKa8c+7GG/sA= Subject key identifier: 80:E6:09:47:4F:AA:58:1E:B3:F2:A0:95:7A:BF:02:E5:34:4C:A3:25 Certificate issuer: /CN=B7D58420DE53EA9E240A03F3E3E81F3D74C05972 Certificate serial: 783185369C1AC0C36D5747620D3E1799618D7C74 Authority key identifier: B7:D5:84:20:DE:53:EA:9E:24:0A:03:F3:E3:E8:1F:3D:74:C0:59:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 02:16:51 +0000 ROA not before: Sun 03 May 2026 02:11:51 +0000 ROA not after: Sun 02 May 2027 02:16:51 +0000 asID: 135478 IP address blocks: 103.121.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.crl rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:31:85:36:9c:1a:c0:c3:6d:57:47:62:0d:3e:17:99:61:8d:7c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7D58420DE53EA9E240A03F3E3E81F3D74C05972 Validity Not Before: May 3 02:11:51 2026 GMT Not After : May 2 02:16:51 2027 GMT Subject: CN=80E609474FAA581EB3F2A0957ABF02E5344CA325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:69:7f:b0:77:0c:ad:36:99:f2:7d:9f:84: da:a8:5d:12:5a:1d:34:0f:51:c0:f3:37:06:be:38: 7f:34:6e:c7:91:99:9b:a5:8c:f3:2d:65:36:2c:0c: 48:8c:8b:3b:5c:5f:8e:46:54:24:85:8b:96:a8:57: 49:c4:58:b0:ff:c5:6e:79:3a:2e:2b:41:f8:a4:4a: bb:08:cd:6a:9d:ff:c7:b7:d0:ec:8a:dd:77:0d:98: 0f:a9:cf:96:d9:c0:7b:62:e8:44:b6:ac:48:96:41: 1e:62:ad:12:ef:e3:e3:47:29:68:36:40:7e:3e:f3: 5b:44:75:b0:c0:14:af:7d:e3:8e:a4:4c:73:64:a2: 8d:9d:19:ae:dd:b3:7c:10:4d:26:2f:79:f5:9c:83: 5f:69:f6:01:df:bd:b7:63:09:da:ce:71:6f:02:f0: 95:e0:e5:d2:de:01:f2:57:20:28:4f:c2:29:da:fd: a8:97:53:4b:06:bf:8a:fd:22:6b:fc:78:1a:6f:92: 2e:b2:b0:dc:0d:62:cb:fe:31:b3:06:39:06:65:fd: f4:d7:68:9e:64:e2:7d:88:da:90:0c:7b:ce:4b:29: 3a:66:fa:ea:19:33:dc:62:18:9e:18:2b:1d:59:6d: f2:9c:8c:b5:cb:8c:a9:35:5c:10:ad:f6:d4:27:03: 0f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E6:09:47:4F:AA:58:1E:B3:F2:A0:95:7A:BF:02:E5:34:4C:A3:25 X509v3 Authority Key Identifier: keyid:B7:D5:84:20:DE:53:EA:9E:24:0A:03:F3:E3:E8:1F:3D:74:C0:59:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.168.0/23 Signature Algorithm: sha256WithRSAEncryption 68:8e:a2:67:18:74:4e:95:21:a0:f7:f4:53:a0:bc:81:2b:3f: d9:a8:12:c9:b5:b6:3e:68:e5:5e:af:dc:5d:3c:fb:a3:f3:84: ae:a5:60:de:04:2f:58:d2:17:3b:08:17:1a:dd:03:e7:69:de: 85:31:48:77:e5:66:31:b3:ed:29:33:4b:ae:c0:2c:2d:de:f4: 2e:1a:8d:96:c2:d8:82:b7:41:ba:0d:27:1a:2a:44:19:89:85: 59:e7:6e:25:5d:aa:64:25:7a:e4:56:62:df:f1:1a:ea:9c:ee: 49:95:b8:91:82:98:69:98:76:e1:11:a4:4b:23:8c:e4:30:dc: 90:82:b4:c5:5a:76:2a:5a:ad:71:00:90:d5:95:f0:e4:e7:46: f2:8c:1c:28:e2:74:1a:d5:a1:97:85:5f:38:5e:c0:5a:4c:0a: 31:9c:ca:5f:bd:8e:2c:f4:75:e6:d5:ed:eb:d1:12:6b:48:7b: 0e:71:13:18:6b:7b:ab:47:40:db:dc:b2:d6:3c:94:d4:96:51: fc:f5:25:02:af:1b:1f:25:ec:da:b7:65:f7:5a:28:ee:e9:0d: 81:73:de:8b:66:bd:88:78:5a:26:6e:bd:cf:88:43:10:c8:83: 43:b7:66:1f:b2:ad:f2:cf:68:25:7b:9b:04:bf:27:92:d3:b4: 76:ad:f1:8a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeDGFNpwawMNtV0diDT4XmWGNfHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdENTg0MjBERTUzRUE5RTI0MEEwM0YzRTNFODFGM0Q3 NEMwNTk3MjAeFw0yNjA1MDMwMjExNTFaFw0yNzA1MDIwMjE2NTFaMDMxMTAvBgNV BAMTKDgwRTYwOTQ3NEZBQTU4MUVCM0YyQTA5NTdBQkYwMkU1MzQ0Q0EzMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/2l/sHcMrTaZ8n2fhNqoXRJa HTQPUcDzNwa+OH80bseRmZuljPMtZTYsDEiMiztcX45GVCSFi5aoV0nEWLD/xW55 Oi4rQfikSrsIzWqd/8e30OyK3XcNmA+pz5bZwHti6ES2rEiWQR5irRLv4+NHKWg2 QH4+81tEdbDAFK99446kTHNkoo2dGa7ds3wQTSYvefWcg19p9gHfvbdjCdrOcW8C 8JXg5dLeAfJXIChPwina/aiXU0sGv4r9Imv8eBpvki6ysNwNYsv+MbMGOQZl/fTX aJ5k4n2I2pAMe85LKTpm+uoZM9xiGJ4YKx1ZbfKcjLXLjKk1XBCt9tQnAw/LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgOYJR0+qWB6z8qCVer8C5TRMoyUwHwYDVR0j BBgwFoAUt9WEIN5T6p4kCgPz4+gfPXTAWXIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWE1OGFmMjQtNDYzYi00NGQ4LWI2ZjAtMzliODJiNDU4Zjc1LzAvQjdENTg0MjBE RTUzRUE5RTI0MEEwM0YzRTNFODFGM0Q3NEMwNTk3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CN0Q1ODQyMERFNTNFQTlFMjQwQTAzRjNFM0U4MUYzRDc0QzA1 OTcyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0LTQ2M2ItNDRkOC1i NmYwLTM5YjgyYjQ1OGY3NS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneagwDQYJ KoZIhvcNAQELBQADggEBAGiOomcYdE6VIaD39FOgvIErP9moEsm1tj5o5V6v3F08 +6PzhK6lYN4EL1jSFzsIFxrdA+dp3oUxSHflZjGz7SkzS67ALC3e9C4ajZbC2IK3 QboNJxoqRBmJhVnnbiVdqmQleuRWYt/xGuqc7kmVuJGCmGmYduERpEsjjOQw3JCC tMVadiparXEAkNWV8OTnRvKMHCjidBrVoZeFXzhewFpMCjGcyl+9jiz0debV7evR EmtIew5xExhre6tHQNvcstY8lNSWUfz1JQKvGx8l7Nq3ZfdaKO7pDYFz3otmvYh4 WiZuvc+IQxDIg0O3Zh+yrfLPaCV7mwS/J5LTtHat8Yo= -----END CERTIFICATE-----Generated at Wed May 13 12:06:40 2026 by rpki-client