$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS59281.roa File: AS59281.roa (raw, json) Hash identifier: V7upiDJPL0vvya04swA4SwLj/ZX4AFFAmfZa9lqKasc= Subject key identifier: 70:15:B8:FA:B2:1D:9C:0B:30:7B:CC:00:C7:A5:FA:B7:3C:EE:30:9C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 2375922D4BF270EF61B3CDD37EBDEC9705410D00 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59281.roa Signing time: Mon 04 May 2026 04:21:58 +0000 ROA not before: Mon 04 May 2026 04:16:58 +0000 ROA not after: Mon 03 May 2027 04:21:58 +0000 asID: 59281 IP address blocks: 103.10.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:75:92:2d:4b:f2:70:ef:61:b3:cd:d3:7e:bd:ec:97:05:41:0d:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 4 04:16:58 2026 GMT Not After : May 3 04:21:58 2027 GMT Subject: CN=7015B8FAB21D9C0B307BCC00C7A5FAB73CEE309C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:b0:f0:0c:a0:42:7b:18:83:e2:8e:0f:0b: 96:df:80:85:12:8f:72:c5:ec:5d:c9:8b:c5:c8:16: bb:7c:9e:d3:09:8d:c8:52:71:9a:1e:95:4b:11:9e: 1d:a9:8a:40:d2:a4:df:79:cf:3d:3b:7e:a9:3b:2f: c8:1b:33:62:fb:c0:7f:61:1e:b9:47:b4:98:71:53: 12:2b:a3:d3:87:40:f0:83:10:77:46:9a:ae:73:5d: 79:52:32:6d:93:d4:ff:9f:31:00:64:51:ec:33:d8: 44:98:b0:4a:02:d8:a4:33:23:00:62:18:2f:e7:be: 8d:8a:53:21:5f:f9:36:4e:9c:c8:e4:96:fb:e7:c9: df:91:f5:46:79:4f:be:e7:98:7d:18:41:d8:11:64: c9:96:11:e8:85:ce:e0:1b:3a:fc:b9:39:87:9f:17: e2:22:d0:8a:ab:63:3d:ba:1d:a7:04:5f:fd:67:9f: fb:44:10:85:e0:a3:53:4b:a7:97:b4:4a:d1:50:3d: 5b:d3:85:3b:90:92:78:70:04:c4:8c:55:cf:60:e6: fa:17:01:59:6f:40:a4:af:a1:1b:48:6b:3d:81:95: dd:53:a9:c4:26:04:52:a9:40:99:da:81:40:3f:9f: f4:d2:24:01:4f:48:30:01:84:a1:ff:12:45:cb:30: fd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:15:B8:FA:B2:1D:9C:0B:30:7B:CC:00:C7:A5:FA:B7:3C:EE:30:9C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59281.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.58.0/23 Signature Algorithm: sha256WithRSAEncryption 37:7b:d8:3a:dd:b9:f8:2e:03:5e:55:5e:5f:36:ca:2c:39:1c: 14:6b:c1:66:07:f2:f0:a9:66:ed:ce:a9:ca:12:ec:4a:8a:e1: cc:f7:c8:6d:f6:cf:d9:80:4d:4d:46:6b:d3:2d:e1:de:16:05: 97:2b:5b:9d:ce:1f:2c:b7:46:83:5e:57:3a:6d:fd:d6:df:2f: b6:5d:2c:18:06:04:bf:f7:13:52:31:1e:82:56:0c:90:55:26: 60:8f:df:6f:f5:df:77:2c:64:98:75:bf:a1:03:66:bb:93:16: e3:d8:17:c6:12:c5:68:20:5d:78:d1:da:92:37:99:17:ea:a2: 9e:e6:1d:ab:4c:92:14:84:41:60:c9:9f:a5:c8:87:70:9e:b5: a3:ca:02:31:05:b0:e0:27:48:17:11:00:35:f5:f8:58:9a:f6: 59:f8:28:37:c9:ac:58:e3:2c:e8:38:6d:79:c5:7b:6e:d4:97: 1f:b7:53:43:5f:7d:d2:69:57:52:ef:9d:63:26:f6:06:58:26: d2:78:46:a1:bd:f6:d3:ae:00:55:2d:c8:b8:c4:f6:e2:b1:10: dd:f0:bc:85:ea:65:e4:01:fe:3f:a0:b0:27:01:08:10:c4:e4: a7:2d:b7:5a:c0:14:27:e1:59:f8:36:7a:b9:c3:d5:d4:3a:34: 42:63:c6:eb -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUI3WSLUvycO9hs83Tfr3slwVBDQAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNDA0MTY1OFoX DTI3MDUwMzA0MjE1OFowMzExMC8GA1UEAxMoNzAxNUI4RkFCMjFEOUMwQjMwN0JD QzAwQzdBNUZBQjczQ0VFMzA5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3gsPAMoEJ7GIPijg8Llt+AhRKPcsXsXcmLxcgWu3ye0wmNyFJxmh6VSxGe HamKQNKk33nPPTt+qTsvyBszYvvAf2EeuUe0mHFTEiuj04dA8IMQd0aarnNdeVIy bZPU/58xAGRR7DPYRJiwSgLYpDMjAGIYL+e+jYpTIV/5Nk6cyOSW++fJ35H1RnlP vueYfRhB2BFkyZYR6IXO4Bs6/Lk5h58X4iLQiqtjPbodpwRf/Wef+0QQheCjU0un l7RK0VA9W9OFO5CSeHAExIxVz2Dm+hcBWW9ApK+hG0hrPYGV3VOpxCYEUqlAmdqB QD+f9NIkAU9IMAGEof8SRcsw/dsCAwEAAaOCAcswggHHMB0GA1UdDgQWBBRwFbj6 sh2cCzB7zADHpfq3PO4wnDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTkyODEucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnCjowDQYJKoZIhvcNAQELBQADggEBADd72DrdufguA15VXl82yiw5HBRr wWYH8vCpZu3OqcoS7EqK4cz3yG32z9mATU1Ga9Mt4d4WBZcrW53OHyy3RoNeVzpt /dbfL7ZdLBgGBL/3E1IxHoJWDJBVJmCP32/133csZJh1v6EDZruTFuPYF8YSxWgg XXjR2pI3mRfqop7mHatMkhSEQWDJn6XIh3CetaPKAjEFsOAnSBcRADX1+Fia9ln4 KDfJrFjjLOg4bXnFe27Ulx+3U0NffdJpV1LvnWMm9gZYJtJ4RqG99tOuAFUtyLjE 9uKxEN3wvIXqZeQB/j+gsCcBCBDE5Kctt1rAFCfhWfg2ernD1dQ6NEJjxus= -----END CERTIFICATE-----Generated at Tue May 12 22:42:52 2026 by rpki-client