$ rpki-client -vvf rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: Tw0jthlgL7LR2s7HS7uvGtTnI6qmhp1zcR5Xc7WR+2U= Subject key identifier: 3A:A1:46:93:1A:6F:7C:2A:4B:31:2A:97:9D:35:1F:AD:8E:00:0E:93 Certificate issuer: /CN=B7D58420DE53EA9E240A03F3E3E81F3D74C05972 Certificate serial: 6D3516EEE1FE37EC3C529E7A96924F046EB8412D Authority key identifier: B7:D5:84:20:DE:53:EA:9E:24:0A:03:F3:E3:E8:1F:3D:74:C0:59:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 02:16:50 +0000 ROA not before: Sun 03 May 2026 02:11:50 +0000 ROA not after: Sun 02 May 2027 02:16:50 +0000 asID: 135478 IP address blocks: 103.121.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.crl rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:35:16:ee:e1:fe:37:ec:3c:52:9e:7a:96:92:4f:04:6e:b8:41:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7D58420DE53EA9E240A03F3E3E81F3D74C05972 Validity Not Before: May 3 02:11:50 2026 GMT Not After : May 2 02:16:50 2027 GMT Subject: CN=3AA146931A6F7C2A4B312A979D351FAD8E000E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:fb:3a:f7:b8:50:79:10:7e:1c:20:a4:96:9a: c8:9f:d3:88:bc:ff:53:da:e0:31:13:48:17:1b:ac: a1:02:f1:36:69:4a:52:a7:50:49:dd:aa:92:46:85: 9c:0c:dd:c4:ac:f1:4e:3a:3f:64:1c:7c:ed:b6:62: 57:69:f6:a4:03:1d:54:1f:61:3e:75:c7:51:0f:0c: 20:dd:63:3c:2a:51:a6:bc:a4:fb:d6:4a:27:25:92: 67:db:ac:33:de:5f:cc:7e:8b:54:38:33:e8:06:95: a1:84:eb:52:a2:09:b2:53:62:64:43:5f:25:9a:85: 43:33:b3:92:e8:be:75:ea:da:37:12:44:3d:d1:af: 59:8e:d1:c8:59:23:10:be:c4:7d:f2:8b:64:e5:cb: a7:dc:4b:72:3d:7c:d4:54:a9:98:7d:30:9a:1c:9c: 5b:9a:17:81:82:19:85:f3:1a:6b:4c:0c:59:12:e9: 19:86:29:01:c6:d4:af:97:90:80:22:41:8c:9c:8f: f4:d3:c6:2a:09:9d:b9:77:1e:a2:a1:ef:b3:cc:2e: 66:1b:79:bf:39:7e:44:92:c3:a4:a8:30:f8:11:54: 19:d8:30:12:ba:68:fc:c7:17:e4:f8:ba:57:75:b5: f9:d2:10:8d:f2:df:71:87:9b:32:a0:e5:a2:23:16: 0d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A1:46:93:1A:6F:7C:2A:4B:31:2A:97:9D:35:1F:AD:8E:00:0E:93 X509v3 Authority Key Identifier: keyid:B7:D5:84:20:DE:53:EA:9E:24:0A:03:F3:E3:E8:1F:3D:74:C0:59:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D58420DE53EA9E240A03F3E3E81F3D74C05972.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.170.0/23 Signature Algorithm: sha256WithRSAEncryption 57:86:52:be:57:ec:73:33:3f:ad:cf:1a:cf:b9:78:81:19:38: 61:b2:b5:e0:f4:77:07:c1:fd:95:fe:d2:ac:04:f7:bd:19:e2: bc:01:55:fb:3b:7b:24:31:e1:70:fb:de:10:54:ef:95:02:b2: 84:41:d1:ce:c0:ca:c3:a9:d5:dd:7b:26:e7:a5:71:84:34:67: e2:8e:eb:4b:a4:62:46:8c:dd:6c:86:b2:47:32:26:e0:6e:3d: 1a:aa:b4:d9:0f:74:74:55:63:c9:36:e9:5c:97:61:12:47:87: 4a:63:39:aa:f1:e3:63:da:13:7e:be:19:22:4d:5e:bc:46:9e: 60:0d:03:af:ca:8a:fb:1f:40:15:3c:1b:7f:c8:6e:e7:6f:6b: 31:59:e7:9a:4e:be:20:6b:25:5f:f8:3a:14:81:96:4d:7a:f9: 7c:81:7b:61:b7:15:91:a4:f1:21:b0:1f:74:a4:a8:45:fe:60: 1c:72:0d:c7:b9:d7:1e:44:de:0f:8c:54:23:6b:3d:36:bc:f2: 57:b1:ea:c7:e2:0a:13:51:41:a1:2b:07:e8:a0:8f:a7:1e:6a: 73:4c:06:05:57:63:74:d5:cf:6f:24:a8:97:bb:3c:d1:09:65: 57:f2:55:9f:b4:dc:27:ff:2c:50:01:6b:47:ec:a4:a3:50:ad: 9c:74:2a:1f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbTUW7uH+N+w8Up56lpJPBG64QS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdENTg0MjBERTUzRUE5RTI0MEEwM0YzRTNFODFGM0Q3 NEMwNTk3MjAeFw0yNjA1MDMwMjExNTBaFw0yNzA1MDIwMjE2NTBaMDMxMTAvBgNV BAMTKDNBQTE0NjkzMUE2RjdDMkE0QjMxMkE5NzlEMzUxRkFEOEUwMDBFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCF+zr3uFB5EH4cIKSWmsif04i8 /1Pa4DETSBcbrKEC8TZpSlKnUEndqpJGhZwM3cSs8U46P2QcfO22Yldp9qQDHVQf YT51x1EPDCDdYzwqUaa8pPvWSiclkmfbrDPeX8x+i1Q4M+gGlaGE61KiCbJTYmRD XyWahUMzs5LovnXq2jcSRD3Rr1mO0chZIxC+xH3yi2Tly6fcS3I9fNRUqZh9MJoc nFuaF4GCGYXzGmtMDFkS6RmGKQHG1K+XkIAiQYycj/TTxioJnbl3HqKh77PMLmYb eb85fkSSw6SoMPgRVBnYMBK6aPzHF+T4uld1tfnSEI3y33GHmzKg5aIjFg0ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOqFGkxpvfCpLMSqXnTUfrY4ADpMwHwYDVR0j BBgwFoAUt9WEIN5T6p4kCgPz4+gfPXTAWXIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWE1OGFmMjQtNDYzYi00NGQ4LWI2ZjAtMzliODJiNDU4Zjc1LzAvQjdENTg0MjBE RTUzRUE5RTI0MEEwM0YzRTNFODFGM0Q3NEMwNTk3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CN0Q1ODQyMERFNTNFQTlFMjQwQTAzRjNFM0U4MUYzRDc0QzA1 OTcyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0LTQ2M2ItNDRkOC1i NmYwLTM5YjgyYjQ1OGY3NS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneaowDQYJ KoZIhvcNAQELBQADggEBAFeGUr5X7HMzP63PGs+5eIEZOGGyteD0dwfB/ZX+0qwE 970Z4rwBVfs7eyQx4XD73hBU75UCsoRB0c7AysOp1d17JuelcYQ0Z+KO60ukYkaM 3WyGskcyJuBuPRqqtNkPdHRVY8k26VyXYRJHh0pjOarx42PaE36+GSJNXrxGnmAN A6/KivsfQBU8G3/IbudvazFZ55pOviBrJV/4OhSBlk16+XyBe2G3FZGk8SGwH3Sk qEX+YBxyDce51x5E3g+MVCNrPTa88lex6sfiChNRQaErB+igj6ceanNMBgVXY3TV z28kqJe7PNEJZVfyVZ+03Cf/LFABa0fspKNQrZx0Kh8= -----END CERTIFICATE-----Generated at Wed May 13 11:47:28 2026 by rpki-client