$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32342d3234203d3e203535363632.roa File: 3130332e37312e382e302f32342d3234203d3e203535363632.roa (raw, json) Hash identifier: 4e1qd57hMv+OkXmKRzkE4lf5ZpRQjvmNHhGL7MHMPZQ= Subject key identifier: 25:63:4D:66:8C:C2:D1:AE:1E:A3:29:57:4E:D0:72:A0:46:A4:85:DF Certificate issuer: /CN=8110570CE55D8512FCBDF02819FB8A0D3BAD1F94 Certificate serial: 71E4063D050332095315F6B3CB1D66B0AEC9A90D Authority key identifier: 81:10:57:0C:E5:5D:85:12:FC:BD:F0:28:19:FB:8A:0D:3B:AD:1F:94 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32342d3234203d3e203535363632.roa Signing time: Sun 03 May 2026 02:21:47 +0000 ROA not before: Sun 03 May 2026 02:16:47 +0000 ROA not after: Sun 02 May 2027 02:21:47 +0000 asID: 55662 IP address blocks: 103.71.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.crl rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e4:06:3d:05:03:32:09:53:15:f6:b3:cb:1d:66:b0:ae:c9:a9:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8110570CE55D8512FCBDF02819FB8A0D3BAD1F94 Validity Not Before: May 3 02:16:47 2026 GMT Not After : May 2 02:21:47 2027 GMT Subject: CN=25634D668CC2D1AE1EA329574ED072A046A485DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:58:a8:aa:aa:2b:a0:1f:a6:f7:26:ca:8d:79: 73:28:8a:40:58:dd:9f:09:71:a2:ac:c1:4a:72:3b: 53:21:34:1f:32:e5:5f:2a:ac:7a:32:d2:99:53:d4: bc:d3:16:0c:37:97:79:4d:cc:3f:ca:97:c4:eb:22: 55:58:42:23:bc:e7:13:b1:84:5d:e4:8c:ba:44:8f: 65:f4:1a:96:5e:86:23:5d:02:33:cb:48:24:fe:09: fe:53:f2:c7:31:30:91:1a:81:6f:3e:4c:69:81:27: 4a:4a:b3:ac:eb:d7:90:ed:cb:f0:63:e1:0e:9f:0a: 7c:d8:f3:7b:7a:cb:00:34:c4:b6:5a:bc:e8:92:3a: 66:6d:7d:9b:e9:45:62:f1:2d:85:0b:d8:e1:66:f5: 2b:81:f7:b0:89:5d:38:0e:96:07:6c:cd:bf:91:74: b8:3b:9e:79:bc:f5:ce:f1:0a:14:50:53:0c:e9:7e: 98:83:7e:db:a0:3a:29:ec:9a:3e:d2:a8:0c:3c:29: 3d:f1:01:a6:2d:db:8f:5f:b7:63:8d:d4:b2:5c:fb: 28:a1:89:65:90:4e:8b:f7:ba:1e:94:05:1b:c3:06: bc:3c:28:6f:79:8d:4d:28:56:2e:b1:8a:c7:6f:b6: f9:29:db:f8:a5:6a:1b:b9:cf:c0:8d:c4:e8:61:8f: 97:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:63:4D:66:8C:C2:D1:AE:1E:A3:29:57:4E:D0:72:A0:46:A4:85:DF X509v3 Authority Key Identifier: keyid:81:10:57:0C:E5:5D:85:12:FC:BD:F0:28:19:FB:8A:0D:3B:AD:1F:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32342d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.8.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:26:a3:f7:07:16:49:68:c2:d3:9e:42:7e:00:66:55:c1:b2: 65:7c:ec:49:9c:43:72:73:ef:d6:c8:36:db:b4:0c:41:bf:4f: 0c:c8:47:59:5a:b4:42:81:49:40:25:b7:60:7e:58:8e:2c:72: 19:a3:87:cb:0e:26:62:82:fd:ba:4b:61:02:82:dc:2d:31:03: 43:d5:3a:07:59:5f:d4:94:04:3d:46:04:a2:3a:bc:31:75:68: f6:8e:e6:13:5e:bb:f3:9d:08:82:f5:14:dc:f1:75:b3:c8:17: 72:36:5f:64:80:79:52:00:9b:52:80:70:30:a5:bd:fc:40:f2: 0e:68:0d:d5:3f:1e:ef:db:af:8f:c1:31:da:50:83:d8:5c:f6: e7:f0:77:e2:3b:05:27:7f:96:3e:04:ce:0f:d9:08:50:d0:b8: 7b:7e:7f:75:ea:81:71:53:c4:7d:82:22:fa:49:ab:75:9d:2e: 79:93:d8:fe:89:93:a4:ce:a9:88:e8:17:ed:1a:74:b5:fc:07: 7d:a3:08:2f:fd:c1:13:0a:31:6c:e6:35:e7:fa:f5:35:3d:1a: c5:9e:53:03:44:cf:9a:1f:34:63:f9:0d:ec:16:50:91:71:f3: ed:6e:ff:05:55:77:a7:8b:a5:7c:09:8d:be:d1:00:32:1b:5b: e2:a4:be:16 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUceQGPQUDMglTFfazyx1msK7JqQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODExMDU3MENFNTVEODUxMkZDQkRGMDI4MTlGQjhBMEQz QkFEMUY5NDAeFw0yNjA1MDMwMjE2NDdaFw0yNzA1MDIwMjIxNDdaMDMxMTAvBgNV BAMTKDI1NjM0RDY2OENDMkQxQUUxRUEzMjk1NzRFRDA3MkEwNDZBNDg1REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSWKiqqiugH6b3JsqNeXMoikBY 3Z8JcaKswUpyO1MhNB8y5V8qrHoy0plT1LzTFgw3l3lNzD/Kl8TrIlVYQiO85xOx hF3kjLpEj2X0GpZehiNdAjPLSCT+Cf5T8scxMJEagW8+TGmBJ0pKs6zr15Dty/Bj 4Q6fCnzY83t6ywA0xLZavOiSOmZtfZvpRWLxLYUL2OFm9SuB97CJXTgOlgdszb+R dLg7nnm89c7xChRQUwzpfpiDftugOinsmj7SqAw8KT3xAaYt249ft2ON1LJc+yih iWWQTov3uh6UBRvDBrw8KG95jU0oVi6xisdvtvkp2/ilahu5z8CNxOhhj5c7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUJWNNZozC0a4eoylXTtByoEakhd8wHwYDVR0j BBgwFoAUgRBXDOVdhRL8vfAoGfuKDTutH5QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE0OTYwODItYTBhYS00ODM2LWI1ODctOTczZGQ3ZTI5N2FmLzAvODExMDU3MENF NTVEODUxMkZDQkRGMDI4MTlGQjhBMEQzQkFEMUY5NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84MTEwNTcwQ0U1NUQ4NTEyRkNCREYwMjgxOUZCOEEwRDNCQUQx Rjk0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmE0OTYwODItYTBhYS00ODM2LWI1 ODctOTczZGQ3ZTI5N2FmLzAvMzEzMDMzMmUzNzMxMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnRwgwDQYJKoZIhvcNAQEL BQADggEBACwmo/cHFklowtOeQn4AZlXBsmV87EmcQ3Jz79bINtu0DEG/TwzIR1la tEKBSUAlt2B+WI4schmjh8sOJmKC/bpLYQKC3C0xA0PVOgdZX9SUBD1GBKI6vDF1 aPaO5hNeu/OdCIL1FNzxdbPIF3I2X2SAeVIAm1KAcDClvfxA8g5oDdU/Hu/br4/B MdpQg9hc9ufwd+I7BSd/lj4Ezg/ZCFDQuHt+f3XqgXFTxH2CIvpJq3WdLnmT2P6J k6TOqYjoF+0adLX8B32jCC/9wRMKMWzmNef69TU9GsWeUwNEz5ofNGP5DewWUJFx 8+1u/wVVd6eLpXwJjb7RADIbW+KkvhY= -----END CERTIFICATE-----Generated at Wed May 13 02:51:09 2026 by rpki-client