$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137312e302f32342d3234203d3e203338353036.roa File: 3131372e3130332e3137312e302f32342d3234203d3e203338353036.roa (raw, json) Hash identifier: XZlD8l7T5G9t+cHIAR+1PIe8LedIntTnzcBzapuPT88= Subject key identifier: 01:94:C4:32:86:69:6A:22:E8:9D:30:C1:01:ED:C9:45:C0:C2:C2:C9 Certificate issuer: /CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Certificate serial: 65DF97F42FA890EA10E61A6A95F2242FD753AB7C Authority key identifier: 21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137312e302f32342d3234203d3e203338353036.roa Signing time: Sun 03 May 2026 02:49:42 +0000 ROA not before: Sun 03 May 2026 02:44:42 +0000 ROA not after: Sun 02 May 2027 02:49:42 +0000 asID: 38506 IP address blocks: 117.103.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:df:97:f4:2f:a8:90:ea:10:e6:1a:6a:95:f2:24:2f:d7:53:ab:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Validity Not Before: May 3 02:44:42 2026 GMT Not After : May 2 02:49:42 2027 GMT Subject: CN=0194C43286696A22E89D30C101EDC945C0C2C2C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:da:42:27:f1:a6:d8:7b:be:de:77:38:e0: ca:28:3b:33:63:c6:90:70:8f:6f:6d:e5:76:ac:fe: 10:70:49:48:ca:de:59:30:1a:bd:87:27:f5:0d:b8: c7:b7:cb:fc:20:db:e7:c8:e6:45:da:39:0c:63:12: e5:f8:ff:fb:8f:e8:ef:ea:01:db:f3:18:ee:69:ee: 40:56:d2:48:c6:ee:3f:46:6f:9e:64:98:d0:58:de: 30:75:da:81:36:2b:df:72:ab:6f:40:29:02:70:f4: 41:8d:14:bb:b4:11:6a:be:4e:c6:76:a8:66:f7:9a: fe:3b:27:17:97:a7:b9:16:bf:8c:de:1c:d6:cb:bd: 54:70:4f:90:85:2a:56:92:01:89:2f:c4:eb:03:0f: 60:4a:6f:84:5d:ed:77:f0:7a:9e:07:cd:13:43:51: c3:97:ce:50:a8:13:05:29:1e:3e:ad:69:dd:2b:61: 31:4c:73:85:3d:6a:db:28:33:e3:4f:77:fa:38:84: a9:d2:a5:f3:24:33:ff:e6:5c:bd:5b:3e:82:21:b9: 16:ba:fc:e9:9e:92:b2:74:92:3e:97:01:bb:7a:cd: c0:9b:07:6a:e3:89:1b:3b:d0:6b:49:2d:b2:69:34: 33:3b:70:b0:77:6e:08:77:1d:b6:d9:2c:f1:cc:85: e2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:94:C4:32:86:69:6A:22:E8:9D:30:C1:01:ED:C9:45:C0:C2:C2:C9 X509v3 Authority Key Identifier: keyid:21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137312e302f32342d3234203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.171.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:3f:84:60:f6:ec:fc:98:87:d4:54:25:d5:11:4e:9c:67:bb: f2:d3:6e:69:24:8a:ea:4a:6c:1e:29:bf:0b:ff:fa:87:6d:b2: 3a:18:80:22:44:5d:cd:17:71:8e:cf:3d:ab:21:79:37:02:13: 03:63:35:2d:cd:da:f8:43:3e:48:10:96:2e:a2:a4:4e:4f:59: fc:93:8f:da:c2:2f:5a:68:f9:ef:a3:5d:b4:e8:75:7f:4b:1c: 11:68:ce:f1:8f:35:03:0b:58:0f:a2:0e:e5:45:ad:df:7e:1c: 4d:f0:60:d4:99:dc:9f:1d:94:4c:d0:65:9b:35:45:e4:08:b1: f4:43:16:b4:e7:b1:2d:68:e0:db:fe:f1:c9:d4:58:42:9c:1d: e6:8a:c5:d3:9b:1b:45:d9:92:c2:b5:8d:79:a9:fa:34:be:2d: e0:a5:42:a5:aa:4f:f2:b6:a4:c0:ce:41:89:3e:ec:59:84:55: dd:45:8e:11:fc:ab:d2:48:1b:1c:ea:e5:9f:fd:56:d5:6e:f5: ae:02:40:93:98:a0:a2:4b:f3:82:46:f2:20:e5:7b:53:66:18: 16:39:77:c3:6a:19:5c:0d:51:cb:82:5a:bc:ca:e4:c0:29:b2: b0:58:e7:f0:1d:7e:84:0b:de:af:dd:4a:00:45:04:9b:8e:c1: 66:ba:73:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZd+X9C+okOoQ5hpqlfIkL9dTq3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBMUFGMTM4MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEz RUI2NDQ1QjAeFw0yNjA1MDMwMjQ0NDJaFw0yNzA1MDIwMjQ5NDJaMDMxMTAvBgNV BAMTKDAxOTRDNDMyODY2OTZBMjJFODlEMzBDMTAxRURDOTQ1QzBDMkMyQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC409pCJ/Gm2Hu+3nc44MooOzNj xpBwj29t5Xas/hBwSUjK3lkwGr2HJ/UNuMe3y/wg2+fI5kXaOQxjEuX4//uP6O/q AdvzGO5p7kBW0kjG7j9Gb55kmNBY3jB12oE2K99yq29AKQJw9EGNFLu0EWq+TsZ2 qGb3mv47JxeXp7kWv4zeHNbLvVRwT5CFKlaSAYkvxOsDD2BKb4Rd7Xfwep4HzRND UcOXzlCoEwUpHj6tad0rYTFMc4U9atsoM+NPd/o4hKnSpfMkM//mXL1bPoIhuRa6 /OmekrJ0kj6XAbt6zcCbB2rjiRs70GtJLbJpNDM7cLB3bgh3HbbZLPHMheIRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAZTEMoZpaiLonTDBAe3JRcDCwskwHwYDVR0j BBgwFoAUIaGvE4IP7KrIced7pwbfkT62RFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI1NDhiYWQtN2ZlZC00MWZkLWI0MmUtNzgwMzcyYzQ1MjU1LzAvMjFBMUFGMTM4 MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEzRUI2NDQ1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMUExQUYxMzgyMEZFQ0FBQzg3MUU3N0JBNzA2REY5MTNFQjY0 NDVCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzNzJlMzEzMDMzMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdWerMA0GCSqG SIb3DQEBCwUAA4IBAQAsP4Rg9uz8mIfUVCXVEU6cZ7vy025pJIrqSmweKb8L//qH bbI6GIAiRF3NF3GOzz2rIXk3AhMDYzUtzdr4Qz5IEJYuoqROT1n8k4/awi9aaPnv o1206HV/SxwRaM7xjzUDC1gPog7lRa3ffhxN8GDUmdyfHZRM0GWbNUXkCLH0Qxa0 57EtaODb/vHJ1FhCnB3misXTmxtF2ZLCtY15qfo0vi3gpUKlqk/ytqTAzkGJPuxZ hFXdRY4R/KvSSBsc6uWf/VbVbvWuAkCTmKCiS/OCRvIg5XtTZhgWOXfDahlcDVHL glq8yuTAKbKwWOfwHX6EC96v3UoARQSbjsFmunMv -----END CERTIFICATE-----Generated at Wed May 13 02:33:39 2026 by rpki-client