$ rpki-client -vvf rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa File: AS59281.roa (raw, json) Hash identifier: 4dojGotTg4XtSOrmn0m37E03swYPUund5r2u/43L0Tk= Subject key identifier: 89:10:8D:74:AA:DA:A2:A3:FF:77:90:84:FE:F6:D3:BC:B3:1C:E2:3A Certificate issuer: /CN=897D06B789644C150E8DD42A6444FA986BC2AC88 Certificate serial: 73BDC8E2AD9726DC030B9B3A2C959A3D9BE58D79 Authority key identifier: 89:7D:06:B7:89:64:4C:15:0E:8D:D4:2A:64:44:FA:98:6B:C2:AC:88 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/897D06B789644C150E8DD42A6444FA986BC2AC88.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa Signing time: Sun 03 May 2026 02:48:57 +0000 ROA not before: Sun 03 May 2026 02:43:57 +0000 ROA not after: Sun 02 May 2027 02:48:57 +0000 asID: 59281 IP address blocks: 101.255.170.0/23 maxlen: 24 115.124.70.0/23 maxlen: 24 202.182.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.crl rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/897D06B789644C150E8DD42A6444FA986BC2AC88.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:bd:c8:e2:ad:97:26:dc:03:0b:9b:3a:2c:95:9a:3d:9b:e5:8d:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=897D06B789644C150E8DD42A6444FA986BC2AC88 Validity Not Before: May 3 02:43:57 2026 GMT Not After : May 2 02:48:57 2027 GMT Subject: CN=89108D74AADAA2A3FF779084FEF6D3BCB31CE23A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dc:85:79:42:bb:3c:a2:aa:62:57:8a:f6:97: c3:b8:ad:09:0a:0d:93:64:5d:9e:5b:af:bc:60:50: c9:e8:6a:a4:8f:4d:82:73:ba:cc:5b:e8:60:9b:eb: 92:8f:7c:f9:2f:ea:9a:55:99:53:c4:04:fd:23:16: ee:52:a8:a7:ca:0d:f3:8b:d3:0c:94:a0:bf:ad:a0: ce:38:d3:0f:d3:76:ab:1d:4b:36:c3:97:d2:21:65: ed:bc:68:cb:94:6b:7c:ec:c0:11:1b:01:e4:33:89: c4:77:44:99:aa:12:46:73:d6:8c:14:e2:d7:fb:48: c4:8f:76:94:6c:2a:15:f9:f2:c3:dd:dd:7f:09:96: 08:1b:89:62:30:17:0c:fd:96:93:36:fe:b5:0a:69: f1:f4:b1:43:4f:19:29:45:90:03:d1:17:27:71:cf: 68:d9:47:40:67:91:dd:3c:02:b7:d6:6d:5e:29:a0: 7a:c0:6a:e4:55:4e:e4:c5:a0:85:57:87:36:2c:1b: d0:b2:a8:30:2b:07:0d:05:a4:9f:84:e7:d7:34:06: 7e:00:13:98:d4:d8:dd:c4:f4:af:f8:0b:5f:1b:5a: e0:3a:d0:26:9c:6a:0a:77:6d:b3:ed:18:97:90:ad: d3:c0:c3:f0:4e:e5:0b:02:af:de:1d:43:5f:60:5a: 0c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:10:8D:74:AA:DA:A2:A3:FF:77:90:84:FE:F6:D3:BC:B3:1C:E2:3A X509v3 Authority Key Identifier: keyid:89:7D:06:B7:89:64:4C:15:0E:8D:D4:2A:64:44:FA:98:6B:C2:AC:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/897D06B789644C150E8DD42A6444FA986BC2AC88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.255.170.0/23 115.124.70.0/23 202.182.49.0/24 Signature Algorithm: sha256WithRSAEncryption 58:c9:ba:14:b7:51:b2:c2:a6:bf:51:5a:8b:af:5d:52:b3:47: a1:4b:22:bc:5a:4e:43:aa:3b:5c:28:0a:a6:89:53:4c:13:d0: 86:e2:95:2a:03:9a:6e:46:03:99:c1:4d:45:5b:67:e1:8b:bc: a1:b3:9f:9a:f5:cd:f7:b5:6d:42:fd:81:37:27:74:b4:03:d4: 38:02:2c:0c:67:a0:88:75:b7:96:39:ff:a1:93:bc:53:c9:07: 25:20:65:cf:fa:1e:52:e0:f5:cb:86:46:ed:4b:b7:aa:73:0a: ac:f0:69:43:54:5b:f4:1d:0a:7b:dc:65:bd:00:44:f9:10:03: 97:09:1f:ef:86:13:77:20:fe:c5:c2:4d:d6:68:64:db:de:80: 8e:9d:f9:24:50:53:b9:91:ce:44:6e:d1:c7:1d:a7:f7:10:84: dc:10:d7:fe:56:bb:2f:23:b6:80:76:d6:b5:ba:01:fa:77:04: 99:97:11:c6:db:69:fb:f2:c3:cd:3d:73:01:65:37:67:5b:ed: fd:8b:53:72:7e:31:40:20:e8:0b:da:65:a5:ac:17:ce:42:3c: b3:50:e2:bf:1a:bf:a4:0e:9a:05:0b:59:53:88:92:a0:16:c5: c3:aa:08:fa:44:6e:17:94:62:d0:59:1e:64:47:e0:fb:bd:41: 78:1e:da:c2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUc73I4q2XJtwDC5s6LJWaPZvljXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk3RDA2Qjc4OTY0NEMxNTBFOERENDJBNjQ0NEZBOTg2 QkMyQUM4ODAeFw0yNjA1MDMwMjQzNTdaFw0yNzA1MDIwMjQ4NTdaMDMxMTAvBgNV BAMTKDg5MTA4RDc0QUFEQUEyQTNGRjc3OTA4NEZFRjZEM0JDQjMxQ0UyM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC03IV5Qrs8oqpiV4r2l8O4rQkK DZNkXZ5br7xgUMnoaqSPTYJzusxb6GCb65KPfPkv6ppVmVPEBP0jFu5SqKfKDfOL 0wyUoL+toM440w/TdqsdSzbDl9IhZe28aMuUa3zswBEbAeQzicR3RJmqEkZz1owU 4tf7SMSPdpRsKhX58sPd3X8JlggbiWIwFwz9lpM2/rUKafH0sUNPGSlFkAPRFydx z2jZR0Bnkd08ArfWbV4poHrAauRVTuTFoIVXhzYsG9CyqDArBw0FpJ+E59c0Bn4A E5jU2N3E9K/4C18bWuA60Cacagp3bbPtGJeQrdPAw/BO5QsCr94dQ19gWgxzAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUiRCNdKraoqP/d5CE/vbTvLMc4jowHwYDVR0j BBgwFoAUiX0Gt4lkTBUOjdQqZET6mGvCrIgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODhmMjkxNWQtMThjOS00ZTAzLWJiZmItMjA3NGM1OTgwODk4LzAvODk3RDA2Qjc4 OTY0NEMxNTBFOERENDJBNjQ0NEZBOTg2QkMyQUM4OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84OTdEMDZCNzg5NjQ0QzE1MEU4REQ0MkE2NDQ0RkE5ODZCQzJB Qzg4LmNlcjBwBggrBgEFBQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBr aS1yc3luYy5pZG5pYy5uZXQvcmVwby84OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0y MDc0YzU5ODA4OTgvMC9BUzU5MjgxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBZf+qAwQBc3xGAwQAyrYx MA0GCSqGSIb3DQEBCwUAA4IBAQBYyboUt1Gywqa/UVqLr11Ss0ehSyK8Wk5Dqjtc KAqmiVNME9CG4pUqA5puRgOZwU1FW2fhi7yhs5+a9c33tW1C/YE3J3S0A9Q4AiwM Z6CIdbeWOf+hk7xTyQclIGXP+h5S4PXLhkbtS7eqcwqs8GlDVFv0HQp73GW9AET5 EAOXCR/vhhN3IP7Fwk3WaGTb3oCOnfkkUFO5kc5EbtHHHaf3EITcENf+VrsvI7aA dta1ugH6dwSZlxHG22n78sPNPXMBZTdnW+39i1NyfjFAIOgL2mWlrBfOQjyzUOK/ Gr+kDpoFC1lTiJKgFsXDqgj6RG4XlGLQWR5kR+D7vUF4HtrC -----END CERTIFICATE-----Generated at Wed May 13 00:34:57 2026 by rpki-client