$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137302e302f32342d3234203d3e203338353036.roa File: 3131372e3130332e3137302e302f32342d3234203d3e203338353036.roa (raw, json) Hash identifier: sUfhjuCfR1bqJMgvzr7mWjRLO1nuckRuTj3jz6hr/A4= Subject key identifier: 2C:21:85:63:46:46:E6:01:65:D9:99:A2:D8:1F:61:32:B9:A3:AC:E4 Certificate issuer: /CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Certificate serial: 09CF2A3028C17BD72C3588B87347C8EA03C3ACE4 Authority key identifier: 21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137302e302f32342d3234203d3e203338353036.roa Signing time: Sun 03 May 2026 02:49:41 +0000 ROA not before: Sun 03 May 2026 02:44:41 +0000 ROA not after: Sun 02 May 2027 02:49:41 +0000 asID: 38506 IP address blocks: 117.103.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:cf:2a:30:28:c1:7b:d7:2c:35:88:b8:73:47:c8:ea:03:c3:ac:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Validity Not Before: May 3 02:44:41 2026 GMT Not After : May 2 02:49:41 2027 GMT Subject: CN=2C2185634646E60165D999A2D81F6132B9A3ACE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:64:eb:42:fd:2b:32:42:96:3c:b0:45:4c:cb: cc:9e:e7:bd:55:af:ce:f9:a1:1e:31:c1:78:23:63: 96:6d:ab:e0:38:d0:c6:f1:ef:e9:25:63:d3:2e:7b: b7:cd:97:dd:4a:e2:6d:8f:8c:30:29:3e:33:fc:04: 8a:ce:8e:d0:02:53:c8:09:a0:ce:25:80:37:2a:40: f5:26:5a:eb:9c:1f:cd:63:66:26:e3:19:6c:1b:b6: e8:0b:2d:73:21:a1:07:e1:b4:a1:7a:a7:9d:01:5e: 2c:40:d5:1d:f6:dc:28:af:8e:f1:cb:d7:33:59:8b: f1:8b:8f:87:6f:86:fa:cc:04:ec:86:81:d0:71:e0: 07:bc:b6:77:b7:99:7b:b6:8e:84:dd:73:ef:96:4f: 6d:38:ca:f4:14:2a:b7:15:0f:a9:55:89:48:2e:a0: 8b:31:52:23:7d:31:db:11:23:7e:f1:0e:7d:52:0d: a1:94:0b:b0:8a:d5:2b:45:5e:5a:1f:ff:8c:af:8a: f9:d8:5d:2e:4f:b9:fd:cb:b4:26:b0:62:b8:b7:9b: 18:c0:f1:0d:6a:f1:c7:bc:11:72:c1:21:e0:7f:9e: da:a3:29:a8:e8:ee:df:3e:8f:1b:4a:c5:ef:6d:ae: 1a:fa:05:35:22:74:8c:f2:3e:ba:19:a6:af:be:cd: 90:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:21:85:63:46:46:E6:01:65:D9:99:A2:D8:1F:61:32:B9:A3:AC:E4 X509v3 Authority Key Identifier: keyid:21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137302e302f32342d3234203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.170.0/24 Signature Algorithm: sha256WithRSAEncryption cb:fa:61:b3:5b:b2:30:94:b9:fb:60:ea:46:b0:ed:f7:51:07: 04:e4:b2:c4:ac:ec:ec:be:f1:17:21:0b:1d:e8:d3:1c:59:2e: 5e:53:b8:6f:2c:31:2b:04:a7:a4:b9:53:f8:c0:6c:32:35:a8: 45:ff:0c:2c:66:ec:9f:da:0b:79:a8:f3:e4:2d:e9:c1:77:22: 82:c2:8f:57:7b:aa:90:c1:54:c5:8a:51:7e:80:cb:65:c5:d3: a2:12:6c:1f:26:26:d0:a8:e1:1f:b4:19:a6:6a:38:39:52:d2: 9c:dc:1c:cb:3d:33:a2:eb:b3:6a:d2:8e:05:67:d9:77:f4:84: 4b:da:55:85:34:23:26:e6:ec:42:2d:56:da:f9:9e:9b:08:5c: ed:54:e7:55:be:bf:84:44:f4:dc:5a:46:09:60:ca:a9:1b:25: b0:f6:2d:f5:ed:aa:ea:b9:00:0a:c0:0f:f6:1b:02:8b:04:bd: 97:d8:41:e2:36:11:fa:34:79:df:05:14:32:ec:db:07:04:7e: 59:af:36:e7:f0:a9:82:3f:f4:a5:2b:c7:77:c2:5b:dc:4f:43: cf:eb:ce:61:bd:5e:71:d3:f2:d2:7c:20:99:d1:2b:a0:0a:b6: 47:96:43:d7:e0:a0:9f:bc:00:ad:82:26:da:20:a8:8d:6c:5b: cb:06:e2:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCc8qMCjBe9csNYi4c0fI6gPDrOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBMUFGMTM4MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEz RUI2NDQ1QjAeFw0yNjA1MDMwMjQ0NDFaFw0yNzA1MDIwMjQ5NDFaMDMxMTAvBgNV BAMTKDJDMjE4NTYzNDY0NkU2MDE2NUQ5OTlBMkQ4MUY2MTMyQjlBM0FDRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfZOtC/SsyQpY8sEVMy8ye571V r875oR4xwXgjY5Ztq+A40Mbx7+klY9Mue7fNl91K4m2PjDApPjP8BIrOjtACU8gJ oM4lgDcqQPUmWuucH81jZibjGWwbtugLLXMhoQfhtKF6p50BXixA1R323CivjvHL 1zNZi/GLj4dvhvrMBOyGgdBx4Ae8tne3mXu2joTdc++WT204yvQUKrcVD6lViUgu oIsxUiN9MdsRI37xDn1SDaGUC7CK1StFXlof/4yvivnYXS5Puf3LtCawYri3mxjA 8Q1q8ce8EXLBIeB/ntqjKajo7t8+jxtKxe9trhr6BTUidIzyProZpq++zZCLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULCGFY0ZG5gFl2Zmi2B9hMrmjrOQwHwYDVR0j BBgwFoAUIaGvE4IP7KrIced7pwbfkT62RFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI1NDhiYWQtN2ZlZC00MWZkLWI0MmUtNzgwMzcyYzQ1MjU1LzAvMjFBMUFGMTM4 MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEzRUI2NDQ1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMUExQUYxMzgyMEZFQ0FBQzg3MUU3N0JBNzA2REY5MTNFQjY0 NDVCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzNzJlMzEzMDMzMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdWeqMA0GCSqG SIb3DQEBCwUAA4IBAQDL+mGzW7IwlLn7YOpGsO33UQcE5LLErOzsvvEXIQsd6NMc WS5eU7hvLDErBKekuVP4wGwyNahF/wwsZuyf2gt5qPPkLenBdyKCwo9Xe6qQwVTF ilF+gMtlxdOiEmwfJibQqOEftBmmajg5UtKc3BzLPTOi67Nq0o4FZ9l39IRL2lWF NCMm5uxCLVba+Z6bCFztVOdVvr+ERPTcWkYJYMqpGyWw9i317arquQAKwA/2GwKL BL2X2EHiNhH6NHnfBRQy7NsHBH5Zrzbn8KmCP/SlK8d3wlvcT0PP685hvV5x0/LS fCCZ0SugCrZHlkPX4KCfvACtgibaIKiNbFvLBuJB -----END CERTIFICATE-----Generated at Wed May 13 02:36:58 2026 by rpki-client