$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa File: 3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa (raw, json) Hash identifier: aW/uUXbkxJYBViD7wNIMNmfKm91NHMXKaNMrrbbLaYo= Subject key identifier: 9B:3D:2E:15:43:96:96:5D:24:90:20:4A:44:EE:B1:E6:39:1C:69:72 Certificate issuer: /CN=71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B Certificate serial: 741372C1E0ABFFC6FC980B2C672E6F02301A3B22 Authority key identifier: 71:EA:AE:94:B4:B9:7C:5E:D5:3A:52:F7:20:BB:E5:EA:78:EF:DE:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa Signing time: Sun 03 May 2026 02:21:50 +0000 ROA not before: Sun 03 May 2026 02:16:50 +0000 ROA not after: Sun 02 May 2027 02:21:50 +0000 asID: 139421 IP address blocks: 103.144.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.crl rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:13:72:c1:e0:ab:ff:c6:fc:98:0b:2c:67:2e:6f:02:30:1a:3b:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B Validity Not Before: May 3 02:16:50 2026 GMT Not After : May 2 02:21:50 2027 GMT Subject: CN=9B3D2E154396965D2490204A44EEB1E6391C6972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:90:47:3b:71:a2:97:c6:49:92:58:2a:ac:33: b7:51:ec:89:6a:91:05:e2:11:7f:37:12:fd:f7:a2: e0:ae:73:bd:d3:2b:ab:82:47:ff:c9:71:21:f0:57: 66:e4:c7:8a:3f:e7:c7:03:eb:e9:bd:4c:82:1d:7c: ff:48:d3:7e:3f:11:7a:87:3e:71:27:69:9d:0f:50: a7:98:1b:ed:d4:ee:11:87:c6:6e:b9:38:dc:a9:02: b5:d2:52:f8:85:0b:72:17:83:c7:a0:f2:f9:e3:ac: d9:56:ae:53:e7:cb:9c:87:01:a7:9c:3a:c8:27:76: 07:e4:ea:1d:b5:c1:f7:4c:bd:e1:6d:e0:be:68:4b: ac:47:9f:88:ab:23:ac:f9:a4:ae:6f:1e:b6:63:b3: 52:c8:f5:58:54:17:cb:5c:ea:d6:d1:6f:1e:c5:92: 3d:01:01:f2:f6:00:5d:a4:fc:18:8c:c2:ab:48:5c: 11:dd:18:7b:21:d7:2b:64:79:04:24:e8:e3:01:95: f3:a7:34:58:f3:81:8e:81:d6:d6:d8:6e:e6:4b:38: 4d:6e:cd:bd:13:cc:11:bd:5a:73:e1:52:38:87:86: 33:75:e0:64:e3:df:e5:37:e0:5f:46:1d:5d:52:a7: 36:89:9b:68:b2:69:3f:6f:e4:82:f5:24:31:94:d0: a0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3D:2E:15:43:96:96:5D:24:90:20:4A:44:EE:B1:E6:39:1C:69:72 X509v3 Authority Key Identifier: keyid:71:EA:AE:94:B4:B9:7C:5E:D5:3A:52:F7:20:BB:E5:EA:78:EF:DE:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.102.0/23 Signature Algorithm: sha256WithRSAEncryption 62:83:c3:3f:a0:ef:4d:77:11:24:50:c1:b1:09:9e:21:67:24: 50:56:2a:19:a8:c4:7f:e0:a0:78:a5:bd:db:77:1c:55:0a:51: 3d:cd:46:24:b7:91:68:8a:13:1e:13:af:ad:39:45:0c:69:8c: 1d:16:1f:18:89:a7:28:ca:d4:7a:4b:a4:1c:21:c1:fb:03:11: a2:d3:a3:c2:1e:ad:54:76:b7:cc:08:ff:ac:1c:b1:83:4d:4c: 16:97:6d:cc:5c:4d:65:9c:65:fe:3d:66:a9:5a:8c:37:0f:a7: 22:e8:98:36:78:e9:63:94:c4:cd:c1:fc:b8:40:ba:b4:a6:e8: 59:3c:be:bb:98:f2:1b:96:8c:1d:c5:cb:c5:19:77:45:e6:af: 47:61:7a:f3:51:a3:0f:79:47:fa:3e:9e:16:d4:2c:7b:12:9c: ad:61:6d:71:0b:b7:e0:b6:1d:1c:af:a6:7a:e5:24:f5:e9:37: 5b:03:5e:f5:bc:c5:cd:9b:4c:1f:9a:77:c5:4d:0f:cf:03:40: f2:04:d2:81:ce:3e:46:90:0b:b1:04:3e:ca:9b:c7:4f:71:ec: 42:ae:8d:d7:92:3f:d2:1b:fe:ec:96:2e:75:6d:3f:87:31:e5: 6c:b7:47:57:85:62:7d:b4:a3:83:ce:b6:af:16:0a:0d:3b:48: 49:d7:55:0f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdBNyweCr/8b8mAssZy5vAjAaOyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFFQUFFOTRCNEI5N0M1RUQ1M0E1MkY3MjBCQkU1RUE3 OEVGREU1QjAeFw0yNjA1MDMwMjE2NTBaFw0yNzA1MDIwMjIxNTBaMDMxMTAvBgNV BAMTKDlCM0QyRTE1NDM5Njk2NUQyNDkwMjA0QTQ0RUVCMUU2MzkxQzY5NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOkEc7caKXxkmSWCqsM7dR7Ilq kQXiEX83Ev33ouCuc73TK6uCR//JcSHwV2bkx4o/58cD6+m9TIIdfP9I034/EXqH PnEnaZ0PUKeYG+3U7hGHxm65ONypArXSUviFC3IXg8eg8vnjrNlWrlPny5yHAaec Osgndgfk6h21wfdMveFt4L5oS6xHn4irI6z5pK5vHrZjs1LI9VhUF8tc6tbRbx7F kj0BAfL2AF2k/BiMwqtIXBHdGHsh1ytkeQQk6OMBlfOnNFjzgY6B1tbYbuZLOE1u zb0TzBG9WnPhUjiHhjN14GTj3+U34F9GHV1SpzaJm2iyaT9v5IL1JDGU0KDhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmz0uFUOWll0kkCBKRO6x5jkcaXIwHwYDVR0j BBgwFoAUcequlLS5fF7VOlL3ILvl6njv3lswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE1MzQxZTgtMjJkOC00NDljLWE3NTMtZTQ3YmJmYzQ4NTM4LzAvNzFFQUFFOTRC NEI5N0M1RUQ1M0E1MkY3MjBCQkU1RUE3OEVGREU1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MUVBQUU5NEI0Qjk3QzVFRDUzQTUyRjcyMEJCRTVFQTc4RUZE RTVCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkGYwDQYJ KoZIhvcNAQELBQADggEBAGKDwz+g7013ESRQwbEJniFnJFBWKhmoxH/goHilvdt3 HFUKUT3NRiS3kWiKEx4Tr605RQxpjB0WHxiJpyjK1HpLpBwhwfsDEaLTo8IerVR2 t8wI/6wcsYNNTBaXbcxcTWWcZf49ZqlajDcPpyLomDZ46WOUxM3B/LhAurSm6Fk8 vruY8huWjB3Fy8UZd0Xmr0dhevNRow95R/o+nhbULHsSnK1hbXELt+C2HRyvpnrl JPXpN1sDXvW8xc2bTB+ad8VND88DQPIE0oHOPkaQC7EEPsqbx09x7EKujdeSP9Ib /uyWLnVtP4cx5Wy3R1eFYn20o4POtq8WCg07SEnXVQ8= -----END CERTIFICATE-----Generated at Wed May 13 02:12:33 2026 by rpki-client