$ rpki-client -vvf rpki-rsync.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32312e302f32342d3234203d3e203438343635.roa File: 3130332e3135382e32312e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: LreF4U4QqN4qHzhmyfVVXaY/bnu6odrNWttsS80jRSQ= Subject key identifier: 6C:13:4C:5B:56:46:07:FF:D9:F6:18:BB:2A:27:3A:AE:4B:AE:76:81 Certificate issuer: /CN=F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0 Certificate serial: 1E05D49AFC6CD85F3AA5B25D95D3A46B8C4CC089 Authority key identifier: F0:63:95:56:CD:4D:4B:AD:69:FE:E0:D7:F2:29:B3:F7:45:CF:A9:E0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32312e302f32342d3234203d3e203438343635.roa Signing time: Sun 03 May 2026 02:56:31 +0000 ROA not before: Sun 03 May 2026 02:51:31 +0000 ROA not after: Sun 02 May 2027 02:56:31 +0000 asID: 48465 IP address blocks: 103.158.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0.crl rsync://rpki-rsync.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 05:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:05:d4:9a:fc:6c:d8:5f:3a:a5:b2:5d:95:d3:a4:6b:8c:4c:c0:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0 Validity Not Before: May 3 02:51:31 2026 GMT Not After : May 2 02:56:31 2027 GMT Subject: CN=6C134C5B564607FFD9F618BB2A273AAE4BAE7681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:64:cb:62:4f:7b:f9:62:3d:85:54:b1:c7:33: 65:a4:54:5d:46:60:d6:40:14:82:de:d0:91:37:44: c3:09:a7:8e:f1:0d:66:e0:e9:f8:57:db:92:08:93: 05:16:8c:77:b2:29:85:a0:79:a2:21:26:a8:f2:ab: e8:41:77:46:af:cd:96:a8:2d:9f:65:ff:4d:6a:9b: 35:66:29:5f:58:c1:33:eb:79:f2:4c:bb:e5:a8:38: 33:3a:95:ab:c1:a0:85:c0:0f:ec:04:49:ed:6f:a1: 7a:27:d5:ca:d3:92:0e:7c:9c:c1:cb:cc:a1:5a:7a: d1:88:c8:56:73:b4:a5:6a:91:ca:53:eb:06:1b:14: 10:99:a9:4f:00:4e:0b:2b:4a:dd:9c:24:70:ef:da: 1a:82:cd:3d:c9:dd:c1:fc:ba:f1:3d:47:eb:2d:9e: b6:de:c4:c5:8c:85:97:db:b3:42:43:96:6b:65:94: 5a:e1:d2:52:11:40:ef:8a:6b:99:76:4e:70:ff:f1: 8b:7a:dd:cc:3c:28:a3:50:3b:27:77:57:ab:e4:a2: ff:f4:5b:79:c3:c1:70:f0:85:04:aa:d2:90:12:17: ff:c1:40:ff:6b:ba:9d:dc:88:ff:69:0d:12:17:8b: 80:da:c6:cc:93:21:b5:d5:ee:e1:e8:7a:d2:be:a2: da:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:13:4C:5B:56:46:07:FF:D9:F6:18:BB:2A:27:3A:AE:4B:AE:76:81 X509v3 Authority Key Identifier: keyid:F0:63:95:56:CD:4D:4B:AD:69:FE:E0:D7:F2:29:B3:F7:45:CF:A9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F0639556CD4D4BAD69FEE0D7F229B3F745CFA9E0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32312e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.21.0/24 Signature Algorithm: sha256WithRSAEncryption 64:d7:ef:86:75:0e:c8:3c:55:33:2f:72:6f:db:07:6c:65:30: 09:83:2b:2b:98:52:f9:93:c8:c1:ce:b1:6f:0d:eb:77:03:b5: 14:dc:38:30:1c:a3:55:69:80:f3:5f:b9:0b:19:a7:ad:b1:b9: 29:df:9b:4f:59:fb:d0:cb:ce:bf:5b:fa:14:85:60:f5:f2:fb: 99:6d:d2:4d:94:da:b4:07:b3:a5:55:40:ac:ad:40:9d:27:79: 0d:a8:00:28:6c:5e:cb:e8:dc:da:82:c8:3f:ab:8c:cb:04:ac: 47:ad:ed:a7:91:6e:4a:a2:c6:d7:83:b9:6d:1c:6a:eb:01:b7: 24:d5:16:34:3d:72:f0:1d:6d:27:b3:62:e7:db:33:80:c6:b4: 1e:3f:bd:a6:1e:5a:e7:0f:c7:bc:34:4a:a0:d2:f1:2b:c2:b8: f3:01:5a:17:b6:95:09:2e:7f:73:d3:46:24:3a:e2:25:a7:34: 94:88:4b:dd:46:4e:60:d7:81:a3:ba:0d:41:ec:8b:21:e0:d0: 60:f6:74:c0:0a:a6:ea:78:3b:5e:44:2f:3b:db:1b:cd:7f:02: 20:34:f9:d2:f0:c1:60:5b:ea:54:69:44:2e:5f:41:07:59:2a: c3:81:a2:18:13:3f:f9:4f:62:a0:95:f7:02:73:38:e8:ef:1c: 4a:c8:0d:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHgXUmvxs2F86pbJdldOka4xMwIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2Mzk1NTZDRDRENEJBRDY5RkVFMEQ3RjIyOUIzRjc0 NUNGQTlFMDAeFw0yNjA1MDMwMjUxMzFaFw0yNzA1MDIwMjU2MzFaMDMxMTAvBgNV BAMTKDZDMTM0QzVCNTY0NjA3RkZEOUY2MThCQjJBMjczQUFFNEJBRTc2ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiZMtiT3v5Yj2FVLHHM2WkVF1G YNZAFILe0JE3RMMJp47xDWbg6fhX25IIkwUWjHeyKYWgeaIhJqjyq+hBd0avzZao LZ9l/01qmzVmKV9YwTPrefJMu+WoODM6lavBoIXAD+wESe1voXon1crTkg58nMHL zKFaetGIyFZztKVqkcpT6wYbFBCZqU8ATgsrSt2cJHDv2hqCzT3J3cH8uvE9R+st nrbexMWMhZfbs0JDlmtllFrh0lIRQO+Ka5l2TnD/8Yt63cw8KKNQOyd3V6vkov/0 W3nDwXDwhQSq0pASF//BQP9rup3ciP9pDRIXi4DaxsyTIbXV7uHoetK+otqdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbBNMW1ZGB//Z9hi7Kic6rkuudoEwHwYDVR0j BBgwFoAU8GOVVs1NS61p/uDX8imz90XPqeAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTQ4MWFjMDEtZjMwMi00NmVkLTllMWItNjU5MzQ1NmYyZDU5LzAvRjA2Mzk1NTZD RDRENEJBRDY5RkVFMEQ3RjIyOUIzRjc0NUNGQTlFMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMDYzOTU1NkNENEQ0QkFENjlGRUUwRDdGMjI5QjNGNzQ1Q0ZB OUUwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E0ODFhYzAxLWYzMDItNDZlZC05 ZTFiLTY1OTM0NTZmMmQ1OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeeFTANBgkqhkiG 9w0BAQsFAAOCAQEAZNfvhnUOyDxVMy9yb9sHbGUwCYMrK5hS+ZPIwc6xbw3rdwO1 FNw4MByjVWmA81+5CxmnrbG5Kd+bT1n70MvOv1v6FIVg9fL7mW3STZTatAezpVVA rK1AnSd5DagAKGxey+jc2oLIP6uMywSsR63tp5FuSqLG14O5bRxq6wG3JNUWND1y 8B1tJ7Ni59szgMa0Hj+9ph5a5w/HvDRKoNLxK8K48wFaF7aVCS5/c9NGJDriJac0 lIhL3UZOYNeBo7oNQeyLIeDQYPZ0wAqm6ng7XkQvO9sbzX8CIDT50vDBYFvqVGlE Ll9BB1kqw4GiGBM/+U9ioJX3AnM46O8cSsgNhg== -----END CERTIFICATE-----Generated at Tue May 5 16:57:28 2026 by rpki-client