$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137332e302f32342d3234203d3e203338353036.roa File: 3131372e3130332e3137332e302f32342d3234203d3e203338353036.roa (raw, json) Hash identifier: 0i4nPEoFpr/GYJfY8pvJCgkOX4n2QXrgXEG0nHDCCVk= Subject key identifier: 1E:A7:11:C5:B9:65:E7:F3:19:54:C3:9E:5D:64:B7:7D:E8:80:11:F9 Certificate issuer: /CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Certificate serial: 03713FF6A91C945C18A3A9D5BCDE0D290F65025C Authority key identifier: 21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137332e302f32342d3234203d3e203338353036.roa Signing time: Sun 03 May 2026 02:49:38 +0000 ROA not before: Sun 03 May 2026 02:44:38 +0000 ROA not after: Sun 02 May 2027 02:49:38 +0000 asID: 38506 IP address blocks: 117.103.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:71:3f:f6:a9:1c:94:5c:18:a3:a9:d5:bc:de:0d:29:0f:65:02:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Validity Not Before: May 3 02:44:38 2026 GMT Not After : May 2 02:49:38 2027 GMT Subject: CN=1EA711C5B965E7F31954C39E5D64B77DE88011F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:53:d3:fc:54:df:14:ec:82:06:92:e1:76:02: 54:c8:83:18:0a:ca:b0:66:c5:61:e3:ec:d0:66:79: a7:61:38:dc:30:64:fe:cf:ca:45:e0:98:e2:4e:f2: 46:b9:99:18:5c:39:41:15:70:9f:d4:8b:f9:e0:58: b4:6c:42:ed:bc:19:08:87:6a:b6:6b:f4:c5:f3:09: 6f:c9:b6:aa:e2:98:d9:bd:2e:cd:40:55:b9:37:be: 15:a4:54:c0:8e:4f:77:1f:24:96:fb:0a:d4:d6:f5: 3c:f1:30:7e:43:4e:99:84:53:15:d6:4f:f4:fd:33: 07:f4:f0:7c:70:2a:81:15:8a:88:fa:dd:09:d5:be: b1:e2:d3:fd:94:67:34:70:e6:1c:f0:4f:4c:1d:59: a0:54:52:c3:22:62:8d:cf:df:dd:ec:9f:ca:29:23: 0a:04:3d:c0:a1:29:57:f9:62:3d:51:ad:94:70:f1: f5:f9:cc:5c:fc:12:e0:86:97:bc:e5:85:a8:3c:91: 10:0c:49:89:10:12:c2:df:5c:b7:77:5f:99:d7:cd: e8:fd:8f:c8:43:43:53:86:4d:4b:4b:ac:ef:1a:3d: a4:74:be:60:c3:b0:ca:2b:80:85:0b:fd:50:77:0e: ae:66:02:44:48:8c:11:99:39:66:c9:7d:6e:da:d9: 9b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A7:11:C5:B9:65:E7:F3:19:54:C3:9E:5D:64:B7:7D:E8:80:11:F9 X509v3 Authority Key Identifier: keyid:21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3137332e302f32342d3234203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.173.0/24 Signature Algorithm: sha256WithRSAEncryption b7:4f:30:50:0b:c1:5d:99:c0:4d:7d:0a:ef:e0:fb:32:dc:0e: 9c:04:67:e7:ec:e2:57:b6:aa:9e:5b:1f:eb:28:48:1f:bd:78: a2:82:57:82:3d:7c:dc:84:40:5f:48:6c:da:17:26:71:88:ce: 91:1a:cc:c2:e1:3e:a2:a3:ac:30:41:4e:f4:87:83:07:6a:fd: 50:3e:61:5d:e4:62:7a:9b:c5:31:a3:6c:d4:2e:b0:f3:8a:8b: e7:78:5a:64:ee:90:1b:2d:38:c8:dc:5c:a2:b9:2b:21:7f:a5: 35:a3:22:41:ec:77:97:bd:a5:92:a6:7a:23:1c:c1:17:93:da: 16:99:58:0e:99:cf:41:9a:90:30:0d:5a:95:99:92:be:45:07: 1c:a7:26:26:bc:01:1b:ba:86:24:a9:db:8e:9b:fd:2c:77:00: 71:2d:28:99:13:0d:fc:8a:7b:ce:cc:31:f9:a7:3e:77:af:03: c9:13:d9:6b:65:77:61:b7:1a:9b:63:d2:69:11:cd:db:28:f8: 6d:fb:12:13:03:24:5d:31:fc:55:23:4c:a5:5a:23:34:24:6b: d2:91:be:16:a3:01:7f:79:69:23:f5:52:99:dc:a7:de:5b:0a: 27:f0:d7:f1:2e:d7:5e:5b:9b:be:90:d0:7a:33:6b:a6:75:64: aa:1b:a1:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA3E/9qkclFwYo6nVvN4NKQ9lAlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBMUFGMTM4MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEz RUI2NDQ1QjAeFw0yNjA1MDMwMjQ0MzhaFw0yNzA1MDIwMjQ5MzhaMDMxMTAvBgNV BAMTKDFFQTcxMUM1Qjk2NUU3RjMxOTU0QzM5RTVENjRCNzdERTg4MDExRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqU9P8VN8U7IIGkuF2AlTIgxgK yrBmxWHj7NBmeadhONwwZP7PykXgmOJO8ka5mRhcOUEVcJ/Ui/ngWLRsQu28GQiH arZr9MXzCW/JtqrimNm9Ls1AVbk3vhWkVMCOT3cfJJb7CtTW9TzxMH5DTpmEUxXW T/T9Mwf08HxwKoEVioj63QnVvrHi0/2UZzRw5hzwT0wdWaBUUsMiYo3P393sn8op IwoEPcChKVf5Yj1RrZRw8fX5zFz8EuCGl7zlhag8kRAMSYkQEsLfXLd3X5nXzej9 j8hDQ1OGTUtLrO8aPaR0vmDDsMorgIUL/VB3Dq5mAkRIjBGZOWbJfW7a2ZvVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHqcRxbll5/MZVMOeXWS3feiAEfkwHwYDVR0j BBgwFoAUIaGvE4IP7KrIced7pwbfkT62RFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI1NDhiYWQtN2ZlZC00MWZkLWI0MmUtNzgwMzcyYzQ1MjU1LzAvMjFBMUFGMTM4 MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEzRUI2NDQ1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMUExQUYxMzgyMEZFQ0FBQzg3MUU3N0JBNzA2REY5MTNFQjY0 NDVCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzNzJlMzEzMDMzMmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdWetMA0GCSqG SIb3DQEBCwUAA4IBAQC3TzBQC8FdmcBNfQrv4Psy3A6cBGfn7OJXtqqeWx/rKEgf vXiigleCPXzchEBfSGzaFyZxiM6RGszC4T6io6wwQU70h4MHav1QPmFd5GJ6m8Ux o2zULrDziovneFpk7pAbLTjI3FyiuSshf6U1oyJB7HeXvaWSpnojHMEXk9oWmVgO mc9BmpAwDVqVmZK+RQccpyYmvAEbuoYkqduOm/0sdwBxLSiZEw38invOzDH5pz53 rwPJE9lrZXdhtxqbY9JpEc3bKPht+xITAyRdMfxVI0ylWiM0JGvSkb4WowF/eWkj 9VKZ3KfeWwon8NfxLtdeW5u+kNB6M2umdWSqG6Ef -----END CERTIFICATE-----Generated at Wed May 13 03:16:14 2026 by rpki-client