$ rpki-client -vvf rpki-rsync.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/3130332e35342e3137322e302f32342d3234203d3e203538383234.roa File: 3130332e35342e3137322e302f32342d3234203d3e203538383234.roa (raw, json) Hash identifier: 2hznDtF+sHEQo6Fg1DwDt2/m1fqJNRXXGLkGt1F7ms0= Subject key identifier: 5D:8B:26:E0:D8:A6:29:91:DF:47:EE:55:B0:54:3D:ED:09:9A:01:5D Certificate issuer: /CN=AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A Certificate serial: 628D9FB8F6D02B7C56031C11DA44A231F54D3576 Authority key identifier: AC:21:F3:02:F8:FE:87:98:E3:EB:EC:F7:4F:BB:4A:1A:FA:8C:0A:5A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/3130332e35342e3137322e302f32342d3234203d3e203538383234.roa Signing time: Sun 03 May 2026 03:14:31 +0000 ROA not before: Sun 03 May 2026 03:09:31 +0000 ROA not after: Sun 02 May 2027 03:14:31 +0000 asID: 58824 IP address blocks: 103.54.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A.crl rsync://rpki-rsync.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:8d:9f:b8:f6:d0:2b:7c:56:03:1c:11:da:44:a2:31:f5:4d:35:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A Validity Not Before: May 3 03:09:31 2026 GMT Not After : May 2 03:14:31 2027 GMT Subject: CN=5D8B26E0D8A62991DF47EE55B0543DED099A015D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:65:cc:07:87:b9:c6:68:0b:72:df:77:69:70: 49:2f:0c:bb:c0:38:af:2c:12:dd:db:f4:5d:56:2f: 2d:dd:78:00:07:e3:60:6c:07:8e:6f:cd:10:96:fe: e6:23:6f:50:19:57:cc:79:5b:fb:6a:48:8b:a0:1d: 09:5d:5a:51:36:5f:26:d6:c5:de:67:f8:c3:4e:d4: 17:a3:af:06:b2:c3:f7:98:13:63:85:05:77:9d:8e: 93:ef:76:2c:04:4c:ad:9f:35:ff:6d:3d:b4:ef:83: 33:34:1e:49:1f:7a:ca:1c:2a:c8:f5:07:d9:58:22: fa:e8:9e:8e:3d:98:64:60:60:21:5b:36:3c:d5:c3: cb:bc:cd:44:73:f9:70:c8:49:6f:94:e9:8e:63:ba: e4:fb:cf:83:ce:e2:7c:f2:9e:36:ab:bb:3d:a8:f6: d6:76:a4:76:30:c3:67:7d:5c:ab:1e:48:61:48:5d: 14:fa:4c:a5:17:d8:a4:19:23:86:25:64:2f:71:1b: f2:3a:b6:50:df:7a:45:e5:20:81:4a:57:ab:6a:fc: 9b:54:45:05:df:99:15:8f:36:a8:cc:73:f1:07:6f: 7d:dd:a0:53:03:8a:d0:ed:07:c2:ae:2b:4f:0f:e5: da:76:97:c1:3d:75:5e:84:ca:30:2d:01:44:3d:bc: f4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8B:26:E0:D8:A6:29:91:DF:47:EE:55:B0:54:3D:ED:09:9A:01:5D X509v3 Authority Key Identifier: keyid:AC:21:F3:02:F8:FE:87:98:E3:EB:EC:F7:4F:BB:4A:1A:FA:8C:0A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC21F302F8FE8798E3EBECF74FBB4A1AFA8C0A5A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/3130332e35342e3137322e302f32342d3234203d3e203538383234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.172.0/24 Signature Algorithm: sha256WithRSAEncryption 28:4d:56:b1:e8:32:8f:0f:fd:c9:64:61:bc:b1:3c:b0:75:aa: c4:cd:9f:3e:8f:28:4d:fe:46:2d:2a:35:d1:77:b5:db:af:1d: 71:63:c4:ac:4e:21:66:02:d9:3a:69:e1:4b:e2:46:6b:2c:e5: 8c:2f:5e:6f:79:ed:23:b9:78:3f:a1:b3:9e:c9:7a:f0:9f:79: 64:e5:5f:ac:62:87:e2:9b:af:1e:8d:ff:f5:a6:07:52:e4:5e: 76:6b:46:34:82:d8:b8:25:76:73:25:65:53:1a:7c:38:4e:f3: 72:1d:cc:3a:eb:79:b9:8a:3e:66:9e:e2:ab:aa:6f:42:4b:ef: 27:5b:0b:8a:44:9a:5a:bd:cf:7a:29:7c:38:97:cc:ba:01:8c: b8:bb:ca:c5:61:a4:18:20:2e:24:b8:7b:90:ad:90:e2:46:ec: 28:1a:26:b5:31:db:62:b2:57:5e:35:39:c0:31:35:59:6a:63: df:44:d5:57:ab:78:a3:4d:7c:d3:09:31:b0:c6:0f:3c:d1:50: 19:6b:68:6c:57:3b:b1:c0:bf:d7:49:6b:33:1e:85:7c:b6:1f: ba:9d:f6:ca:0b:4a:24:51:97:50:7f:38:4f:98:76:99:06:d7: ca:d8:1d:20:92:c7:fd:56:56:12:fe:27:a8:62:7b:c5:90:9b: 34:58:c1:fd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYo2fuPbQK3xWAxwR2kSiMfVNNXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyMUYzMDJGOEZFODc5OEUzRUJFQ0Y3NEZCQjRBMUFG QThDMEE1QTAeFw0yNjA1MDMwMzA5MzFaFw0yNzA1MDIwMzE0MzFaMDMxMTAvBgNV BAMTKDVEOEIyNkUwRDhBNjI5OTFERjQ3RUU1NUIwNTQzREVEMDk5QTAxNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnZcwHh7nGaAty33dpcEkvDLvA OK8sEt3b9F1WLy3deAAH42BsB45vzRCW/uYjb1AZV8x5W/tqSIugHQldWlE2XybW xd5n+MNO1Bejrwayw/eYE2OFBXedjpPvdiwETK2fNf9tPbTvgzM0HkkfesocKsj1 B9lYIvrono49mGRgYCFbNjzVw8u8zURz+XDISW+U6Y5juuT7z4PO4nzynjaruz2o 9tZ2pHYww2d9XKseSGFIXRT6TKUX2KQZI4YlZC9xG/I6tlDfekXlIIFKV6tq/JtU RQXfmRWPNqjMc/EHb33doFMDitDtB8KuK08P5dp2l8E9dV6EyjAtAUQ9vPS7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXYsm4NimKZHfR+5VsFQ97QmaAV0wHwYDVR0j BBgwFoAUrCHzAvj+h5jj6+z3T7tKGvqMClowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTdlMGZhZjAtNzg4ZC00OTViLWFjOTgtZjM1MTYxOTVkYjYwLzAvQUMyMUYzMDJG OEZFODc5OEUzRUJFQ0Y3NEZCQjRBMUFGQThDMEE1QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIxRjMwMkY4RkU4Nzk4RTNFQkVDRjc0RkJCNEExQUZBOEMw QTVBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U3ZTBmYWYwLTc4OGQtNDk1Yi1h Yzk4LWYzNTE2MTk1ZGI2MC8wLzMxMzAzMzJlMzUzNDJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM4MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc2rDANBgkqhkiG 9w0BAQsFAAOCAQEAKE1Wsegyjw/9yWRhvLE8sHWqxM2fPo8oTf5GLSo10Xe1268d cWPErE4hZgLZOmnhS+JGayzljC9eb3ntI7l4P6Gznsl68J95ZOVfrGKH4puvHo3/ 9aYHUuRedmtGNILYuCV2cyVlUxp8OE7zch3MOut5uYo+Zp7iq6pvQkvvJ1sLikSa Wr3Peil8OJfMugGMuLvKxWGkGCAuJLh7kK2Q4kbsKBomtTHbYrJXXjU5wDE1WWpj 30TVV6t4o0180wkxsMYPPNFQGWtobFc7scC/10lrMx6FfLYfup32ygtKJFGXUH84 T5h2mQbXytgdIJLH/VZWEv4nqGJ7xZCbNFjB/Q== -----END CERTIFICATE-----Generated at Wed May 13 13:51:01 2026 by rpki-client