$ rpki-client -vvf rpki-rsync.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa File: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (raw, json) Hash identifier: XhiLVWroBIGTKL45UQb8xrlJuP9CTy+d6X2Fb8sJelo= Subject key identifier: 47:F8:A0:2C:33:0D:07:63:5B:CC:33:AC:C7:9D:95:B8:B8:8A:C6:9C Certificate issuer: /CN=07036C5527255D59345E40A173983EEEA0C09FD0 Certificate serial: 3109B3EEECD2A09EE78C45F1B606454AF37E1DEB Authority key identifier: 07:03:6C:55:27:25:5D:59:34:5E:40:A1:73:98:3E:EE:A0:C0:9F:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/07036C5527255D59345E40A173983EEEA0C09FD0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa Signing time: Sun 03 May 2026 02:19:36 +0000 ROA not before: Sun 03 May 2026 02:14:36 +0000 ROA not after: Sun 02 May 2027 02:19:36 +0000 asID: 142396 IP address blocks: 103.172.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/07036C5527255D59345E40A173983EEEA0C09FD0.crl rsync://rpki-rsync.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/07036C5527255D59345E40A173983EEEA0C09FD0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/07036C5527255D59345E40A173983EEEA0C09FD0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:09:b3:ee:ec:d2:a0:9e:e7:8c:45:f1:b6:06:45:4a:f3:7e:1d:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07036C5527255D59345E40A173983EEEA0C09FD0 Validity Not Before: May 3 02:14:36 2026 GMT Not After : May 2 02:19:36 2027 GMT Subject: CN=47F8A02C330D07635BCC33ACC79D95B8B88AC69C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:9b:29:c9:70:0f:34:29:fc:3b:f7:01:b8: 78:13:21:bd:ce:31:e2:63:88:a4:53:bd:8e:c4:f8: ef:0d:42:75:d1:14:d3:b6:c8:12:06:50:86:f7:1d: f2:6b:41:ca:80:62:36:91:31:dc:a8:3d:66:8f:e1: 8d:4b:19:46:4a:fa:ca:cd:8b:e1:75:0c:74:0d:b1: 18:52:c5:ca:bf:6e:02:05:66:f9:ae:f4:9d:ae:89: ea:e1:dc:c0:97:31:93:75:9c:5c:57:dc:cf:1e:d1: 0e:53:7a:97:75:f0:70:c9:1b:de:97:f0:06:ac:9b: 14:c9:a4:53:92:13:13:4a:c2:3b:91:4a:4a:2c:a7: 5f:4b:5c:12:e1:5b:64:0b:6d:77:94:f9:bb:a4:c1: 0a:e6:d4:82:8d:50:61:80:7f:a9:33:a0:ac:37:2c: 17:00:f0:23:99:b5:ec:64:cf:ac:1d:2b:77:d4:82: 02:d3:c9:2e:20:fc:4f:75:65:a1:4a:3d:f7:ca:83: 45:39:ba:36:95:0a:fb:bf:cc:f0:8e:41:c6:67:fe: 0c:f2:58:a8:65:bd:4d:93:05:64:c9:ea:d5:ca:de: 63:75:4a:3a:3f:e5:cf:5c:1e:f0:7e:24:86:5e:96: 28:ff:a7:3f:da:1e:68:88:e5:65:49:56:37:3d:be: 90:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F8:A0:2C:33:0D:07:63:5B:CC:33:AC:C7:9D:95:B8:B8:8A:C6:9C X509v3 Authority Key Identifier: keyid:07:03:6C:55:27:25:5D:59:34:5E:40:A1:73:98:3E:EE:A0:C0:9F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/07036C5527255D59345E40A173983EEEA0C09FD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/07036C5527255D59345E40A173983EEEA0C09FD0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.171.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:8c:89:07:f1:ec:cc:af:0d:70:3e:00:dd:31:76:e3:d0:5d: b4:35:1c:6a:c8:9d:8d:6a:d0:f2:37:6f:e8:0f:2a:f4:6a:7e: a4:3d:c8:9e:c2:c2:f5:09:fe:d8:b9:e5:8a:98:46:e6:a2:94: ae:6d:36:25:34:72:93:c5:82:15:83:41:5f:f7:d2:4a:2a:fc: 11:c7:17:b2:3b:b6:24:68:0b:a1:26:f7:37:2c:b0:2e:db:24: e1:c7:78:57:1d:b8:67:02:c6:61:70:a4:b1:da:96:10:dd:1f: 20:e1:8f:07:7e:85:39:87:77:61:43:ec:a4:b4:9c:36:51:0a: b9:92:cc:fe:69:1b:36:79:66:71:01:6a:0a:73:50:d7:79:51: 8c:65:c1:8c:79:0b:4f:f0:34:0c:17:f0:4c:81:a1:68:9d:89: 1b:20:2d:57:15:1a:93:ce:1b:4d:19:fd:af:e8:56:60:5b:09: 74:30:ed:6d:fe:89:96:30:23:95:bb:1e:2c:7a:c6:64:85:ca: 22:d1:96:e0:99:18:a6:0d:61:f9:27:6d:9e:5b:6f:73:ca:25: e7:8a:9c:58:bf:be:07:04:e6:ef:40:f4:da:56:41:41:f1:bb: c3:47:01:b3:d4:2a:1a:b8:39:b6:2d:39:47:67:0d:59:5b:70: 94:3a:c3:4c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMQmz7uzSoJ7njEXxtgZFSvN+HeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDcwMzZDNTUyNzI1NUQ1OTM0NUU0MEExNzM5ODNFRUVB MEMwOUZEMDAeFw0yNjA1MDMwMjE0MzZaFw0yNzA1MDIwMjE5MzZaMDMxMTAvBgNV BAMTKDQ3RjhBMDJDMzMwRDA3NjM1QkNDMzNBQ0M3OUQ5NUI4Qjg4QUM2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxwZspyXAPNCn8O/cBuHgTIb3O MeJjiKRTvY7E+O8NQnXRFNO2yBIGUIb3HfJrQcqAYjaRMdyoPWaP4Y1LGUZK+srN i+F1DHQNsRhSxcq/bgIFZvmu9J2uierh3MCXMZN1nFxX3M8e0Q5Tepd18HDJG96X 8AasmxTJpFOSExNKwjuRSkosp19LXBLhW2QLbXeU+bukwQrm1IKNUGGAf6kzoKw3 LBcA8COZtexkz6wdK3fUggLTyS4g/E91ZaFKPffKg0U5ujaVCvu/zPCOQcZn/gzy WKhlvU2TBWTJ6tXK3mN1Sjo/5c9cHvB+JIZelij/pz/aHmiI5WVJVjc9vpChAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUR/igLDMNB2NbzDOsx52VuLiKxpwwHwYDVR0j BBgwFoAUBwNsVSclXVk0XkChc5g+7qDAn9AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjFkYjZjOWItZDhmYy00ZDhjLTgwY2ItZmQyMjQxMjA4ZGRlLzAvMDcwMzZDNTUy NzI1NUQ1OTM0NUU0MEExNzM5ODNFRUVBMEMwOUZEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNzAzNkM1NTI3MjU1RDU5MzQ1RTQwQTE3Mzk4M0VFRUEwQzA5 RkQwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIxZGI2YzliLWQ4ZmMtNGQ4Yy04 MGNiLWZkMjI0MTIwOGRkZS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrKswDQYJ KoZIhvcNAQELBQADggEBAE6MiQfx7MyvDXA+AN0xduPQXbQ1HGrInY1q0PI3b+gP KvRqfqQ9yJ7CwvUJ/ti55YqYRuailK5tNiU0cpPFghWDQV/30koq/BHHF7I7tiRo C6Em9zcssC7bJOHHeFcduGcCxmFwpLHalhDdHyDhjwd+hTmHd2FD7KS0nDZRCrmS zP5pGzZ5ZnEBagpzUNd5UYxlwYx5C0/wNAwX8EyBoWidiRsgLVcVGpPOG00Z/a/o VmBbCXQw7W3+iZYwI5W7Hix6xmSFyiLRluCZGKYNYfknbZ5bb3PKJeeKnFi/vgcE 5u9A9NpWQUHxu8NHAbPUKhq4ObYtOUdnDVlbcJQ6w0w= -----END CERTIFICATE-----Generated at Wed May 13 03:47:44 2026 by rpki-client