$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137322e302f32342d3234203d3e203338353036.roa File: 3131372e3130332e3137322e302f32342d3234203d3e203338353036.roa (raw, json) Hash identifier: FE1sTTsqKrtuLPqfAQchwB+jO4XN69uM26+KGEYAKWY= Subject key identifier: CF:40:B0:F2:BD:65:6E:D6:AC:25:23:2A:85:91:CC:CA:FB:24:2D:0D Certificate issuer: /CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Certificate serial: 31E5BC9A10CB93EA17F4E1570E903FF476517E35 Authority key identifier: 21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137322e302f32342d3234203d3e203338353036.roa Signing time: Sun 03 May 2026 02:49:40 +0000 ROA not before: Sun 03 May 2026 02:44:40 +0000 ROA not after: Sun 02 May 2027 02:49:40 +0000 asID: 38506 IP address blocks: 117.103.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e5:bc:9a:10:cb:93:ea:17:f4:e1:57:0e:90:3f:f4:76:51:7e:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Validity Not Before: May 3 02:44:40 2026 GMT Not After : May 2 02:49:40 2027 GMT Subject: CN=CF40B0F2BD656ED6AC25232A8591CCCAFB242D0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e6:2f:0a:fc:fd:ed:93:ce:0f:0e:03:52:04: 91:80:e2:0c:44:4d:ff:83:3a:bc:78:02:b8:78:72: 76:19:06:b3:74:94:aa:e3:4a:30:67:ec:fc:41:10: 60:b4:92:cc:d1:33:e2:b2:38:7b:93:a4:bb:83:09: 09:81:2e:79:27:cc:62:21:36:7e:95:97:d5:ee:a0: 01:a4:1d:9f:6a:c6:32:c4:b2:8e:ec:38:ce:33:8e: 18:68:3c:55:2d:bb:5b:f0:91:7d:c6:86:aa:6f:7f: ce:07:59:f3:c3:33:22:b3:ae:2a:cc:c6:78:5e:e5: a4:3b:1e:d4:ea:9a:e9:d9:07:22:a5:ec:1a:b6:2c: 22:64:5a:2d:c8:8c:c9:99:d3:c4:22:81:61:0a:ff: 67:11:82:03:d2:4b:2e:e4:8f:5c:34:77:86:e6:72: 2a:46:96:a0:e7:e6:85:44:31:34:a7:6c:65:84:fa: 04:c4:7c:c4:8f:b9:c0:94:49:a1:b7:9f:50:d0:c2: 3c:74:6b:d5:ca:c2:a3:5c:20:39:15:03:73:40:9b: d7:f4:cd:b1:81:bf:c9:27:8a:d7:15:9f:30:e6:87: b5:3a:1d:89:c9:15:dd:11:73:de:44:6e:da:c7:49: 18:54:5f:b8:21:36:fd:ab:e5:26:4c:29:df:b9:26: d5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:40:B0:F2:BD:65:6E:D6:AC:25:23:2A:85:91:CC:CA:FB:24:2D:0D X509v3 Authority Key Identifier: keyid:21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137322e302f32342d3234203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.172.0/24 Signature Algorithm: sha256WithRSAEncryption d4:29:bf:1a:4f:1b:61:0e:43:c3:65:26:9e:17:51:b5:1c:c0: 84:75:00:7a:2e:0d:47:2a:85:46:12:d5:cd:a3:2b:fd:57:79: 2c:9d:be:77:9c:f4:c5:36:d3:56:68:81:bc:3d:f9:49:2b:12: 41:76:55:64:11:33:a3:04:26:6c:79:40:87:da:7b:dd:d5:f4: d7:cf:62:e0:a8:67:53:95:37:5e:79:c3:26:96:db:34:ff:49: 34:9e:fd:43:98:10:86:3f:ad:be:04:ff:cc:c5:e4:df:1a:c8: 02:41:d3:3c:04:da:ae:74:a0:bc:ee:b1:c6:60:a3:30:17:36: 9e:e9:49:ec:92:b8:61:2a:8a:2d:9b:95:b9:91:8a:05:50:ae: e7:8c:25:07:26:ce:a7:96:17:a6:a4:b9:d8:a3:c7:1a:6d:ee: 2e:05:6c:55:30:8e:4c:8c:e1:4d:cb:11:c0:36:e0:51:07:79: 55:e2:e5:3c:37:44:38:8e:8f:b5:97:3d:4d:10:f1:36:6b:03: 6c:d4:80:00:c3:1e:e5:16:be:58:9f:83:32:8b:73:2b:f9:07: 92:9b:34:21:8a:3f:44:a3:bc:3d:69:ad:84:99:46:18:e3:4d: f6:f1:59:0a:f8:cb:5c:88:7a:ed:34:fe:35:7b:39:ed:32:53: de:df:66:67 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMeW8mhDLk+oX9OFXDpA/9HZRfjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBMUFGMTM4MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEz RUI2NDQ1QjAeFw0yNjA1MDMwMjQ0NDBaFw0yNzA1MDIwMjQ5NDBaMDMxMTAvBgNV BAMTKENGNDBCMEYyQkQ2NTZFRDZBQzI1MjMyQTg1OTFDQ0NBRkIyNDJEMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+5i8K/P3tk84PDgNSBJGA4gxE Tf+DOrx4Arh4cnYZBrN0lKrjSjBn7PxBEGC0kszRM+KyOHuTpLuDCQmBLnknzGIh Nn6Vl9XuoAGkHZ9qxjLEso7sOM4zjhhoPFUtu1vwkX3Ghqpvf84HWfPDMyKzrirM xnhe5aQ7HtTqmunZByKl7Bq2LCJkWi3IjMmZ08QigWEK/2cRggPSSy7kj1w0d4bm cipGlqDn5oVEMTSnbGWE+gTEfMSPucCUSaG3n1DQwjx0a9XKwqNcIDkVA3NAm9f0 zbGBv8knitcVnzDmh7U6HYnJFd0Rc95EbtrHSRhUX7ghNv2r5SZMKd+5JtU7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz0Cw8r1lbtasJSMqhZHMyvskLQ0wHwYDVR0j BBgwFoAUIaGvE4IP7KrIced7pwbfkT62RFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI1NDhiYWQtN2ZlZC00MWZkLWI0MmUtNzgwMzcyYzQ1MjU1LzAvMjFBMUFGMTM4 MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEzRUI2NDQ1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMUExQUYxMzgyMEZFQ0FBQzg3MUU3N0JBNzA2REY5MTNFQjY0 NDVCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzNzJlMzEzMDMzMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdWesMA0GCSqG SIb3DQEBCwUAA4IBAQDUKb8aTxthDkPDZSaeF1G1HMCEdQB6Lg1HKoVGEtXNoyv9 V3ksnb53nPTFNtNWaIG8PflJKxJBdlVkETOjBCZseUCH2nvd1fTXz2LgqGdTlTde ecMmlts0/0k0nv1DmBCGP62+BP/MxeTfGsgCQdM8BNqudKC87rHGYKMwFzae6Uns krhhKootm5W5kYoFUK7njCUHJs6nlhempLnYo8cabe4uBWxVMI5MjOFNyxHANuBR B3lV4uU8N0Q4jo+1lz1NEPE2awNs1IAAwx7lFr5Yn4Myi3Mr+QeSmzQhij9Eo7w9 aa2EmUYY40328VkK+MtciHrtNP41ezntMlPe32Zn -----END CERTIFICATE-----Generated at Wed May 13 00:53:59 2026 by rpki-client