$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: TRjfg68H1cvqa28w3D+TRkRhD92nBMq1k+4HcpA2+sQ= Subject key identifier: 4C:24:F9:7F:4E:2F:90:E6:50:16:20:BD:1D:DC:63:14:91:D4:F9:C6 Certificate issuer: /CN=DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C Certificate serial: 61B5804479EAF9E9B4EEF4CFD65B8DE0F541AA02 Authority key identifier: DE:E1:9A:96:E6:FA:5B:36:0F:C8:BF:1C:E5:AC:9B:14:8D:0E:87:4C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 02:32:19 +0000 ROA not before: Sun 03 May 2026 02:27:19 +0000 ROA not after: Sun 02 May 2027 02:32:19 +0000 asID: 135478 IP address blocks: 103.121.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.crl rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b5:80:44:79:ea:f9:e9:b4:ee:f4:cf:d6:5b:8d:e0:f5:41:aa:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C Validity Not Before: May 3 02:27:19 2026 GMT Not After : May 2 02:32:19 2027 GMT Subject: CN=4C24F97F4E2F90E6501620BD1DDC631491D4F9C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b0:5e:56:7b:be:ed:e9:d3:bc:ea:b7:b3:e4: 65:59:fe:6a:3b:c5:00:f2:9a:7d:84:e2:b6:cf:c6: ea:48:a4:a2:c8:44:b6:f7:35:d8:43:45:2d:94:a3: 10:ca:88:87:7c:ed:98:ec:22:a2:a1:7b:25:2b:55: 84:bd:fb:48:41:99:19:55:55:77:68:74:1d:27:d1: 43:95:4b:27:46:9a:35:90:8d:bf:f1:bd:1d:e1:ea: a7:da:39:32:f5:21:ab:d6:27:8e:a7:27:cf:3f:83: 20:2b:a4:95:46:c1:0f:2d:40:b7:23:19:db:50:72: 4c:19:a3:ba:21:80:71:6e:2d:8b:b2:fc:6a:0a:9e: 14:84:17:4d:cf:83:bd:80:89:a3:3b:a3:17:b6:b6: d3:07:7e:fa:f1:46:63:65:59:a6:b3:30:a2:90:d2: a4:cf:67:69:5a:7f:70:0e:87:bd:e7:41:d3:84:a5: 8e:95:19:fd:4b:25:6e:f4:e3:2d:36:46:06:09:ea: 95:70:49:5d:f9:42:15:af:51:b9:29:a7:22:ac:e1: dd:d9:e5:70:a8:fb:8a:21:ed:86:16:09:83:17:4d: 1a:4d:26:f2:ce:0b:03:e2:9b:76:d0:d6:30:ca:6c: b8:ae:3c:a8:6d:e5:1a:d3:50:b5:87:bc:35:cc:9e: c2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:24:F9:7F:4E:2F:90:E6:50:16:20:BD:1D:DC:63:14:91:D4:F9:C6 X509v3 Authority Key Identifier: keyid:DE:E1:9A:96:E6:FA:5B:36:0F:C8:BF:1C:E5:AC:9B:14:8D:0E:87:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DEE19A96E6FA5B360FC8BF1CE5AC9B148D0E874C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.136.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:2c:ad:8f:f5:be:16:b2:9a:00:bd:a9:72:aa:2b:af:f6:52: 44:bf:62:3a:bb:76:75:48:53:45:6c:08:e9:e0:68:6f:68:74: 65:f5:78:81:5d:a9:15:e7:47:ca:80:9e:83:58:d4:23:54:52: 8b:54:19:d3:f1:5e:a6:61:6f:ee:9f:30:c7:5d:26:a7:7b:32: 9b:1b:b0:e5:e1:6a:af:5a:78:b7:5a:e3:69:a4:56:0e:58:ff: 34:14:44:ea:3a:13:e0:5d:b7:e9:97:9c:ca:68:73:53:af:65: 45:2a:47:1f:36:2c:9b:02:3a:47:97:4d:22:1e:d3:d1:d3:30: bc:6b:e5:e3:8b:7c:db:d3:ab:02:71:cb:77:87:7d:92:3d:1e: 20:10:a0:38:e5:af:14:36:c0:51:8e:b6:82:ce:1b:25:3d:8e: 80:ca:67:01:50:0b:46:62:85:e7:29:64:7a:ed:f0:16:58:8e: 9e:ea:68:ae:12:b6:1f:30:9d:93:e5:4b:31:06:04:00:75:68: ae:89:3e:6b:0e:3d:a7:79:7f:88:1d:3c:ae:23:cc:ca:20:39: d0:7b:81:f5:cc:d5:9e:21:3f:a4:b0:fb:c7:2f:52:5a:25:70: 4f:e0:de:76:3d:8c:1b:13:32:19:da:28:0c:64:d1:11:9a:40: 7f:50:7f:6b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYbWARHnq+em07vTP1luN4PVBqgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVFMTlBOTZFNkZBNUIzNjBGQzhCRjFDRTVBQzlCMTQ4 RDBFODc0QzAeFw0yNjA1MDMwMjI3MTlaFw0yNzA1MDIwMjMyMTlaMDMxMTAvBgNV BAMTKDRDMjRGOTdGNEUyRjkwRTY1MDE2MjBCRDFEREM2MzE0OTFENEY5QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAsF5We77t6dO86rez5GVZ/mo7 xQDymn2E4rbPxupIpKLIRLb3NdhDRS2UoxDKiId87ZjsIqKheyUrVYS9+0hBmRlV VXdodB0n0UOVSydGmjWQjb/xvR3h6qfaOTL1IavWJ46nJ88/gyArpJVGwQ8tQLcj GdtQckwZo7ohgHFuLYuy/GoKnhSEF03Pg72AiaM7oxe2ttMHfvrxRmNlWaazMKKQ 0qTPZ2laf3AOh73nQdOEpY6VGf1LJW704y02RgYJ6pVwSV35QhWvUbkppyKs4d3Z 5XCo+4oh7YYWCYMXTRpNJvLOCwPim3bQ1jDKbLiuPKht5RrTULWHvDXMnsK9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTCT5f04vkOZQFiC9HdxjFJHU+cYwHwYDVR0j BBgwFoAU3uGalub6WzYPyL8c5aybFI0Oh0wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY0ZmE3YjgtNTMwMi00OTBiLTkyZTQtMjdmMjhjNjY1NzVjLzAvREVFMTlBOTZF NkZBNUIzNjBGQzhCRjFDRTVBQzlCMTQ4RDBFODc0Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUUxOUE5NkU2RkE1QjM2MEZDOEJGMUNFNUFDOUIxNDhEMEU4 NzRDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmNGZhN2I4LTUzMDItNDkwYi05 MmU0LTI3ZjI4YzY2NTc1Yy8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYgwDQYJ KoZIhvcNAQELBQADggEBAFssrY/1vhaymgC9qXKqK6/2UkS/Yjq7dnVIU0VsCOng aG9odGX1eIFdqRXnR8qAnoNY1CNUUotUGdPxXqZhb+6fMMddJqd7MpsbsOXhaq9a eLda42mkVg5Y/zQUROo6E+Bdt+mXnMpoc1OvZUUqRx82LJsCOkeXTSIe09HTMLxr 5eOLfNvTqwJxy3eHfZI9HiAQoDjlrxQ2wFGOtoLOGyU9joDKZwFQC0ZihecpZHrt 8BZYjp7qaK4Sth8wnZPlSzEGBAB1aK6JPmsOPad5f4gdPK4jzMogOdB7gfXM1Z4h P6Sw+8cvUlolcE/g3nY9jBsTMhnaKAxk0RGaQH9Qf2s= -----END CERTIFICATE-----Generated at Wed May 13 07:11:07 2026 by rpki-client