$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa File: 3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa (raw, json) Hash identifier: NVvHOXca2LITMgeQ8pj0e3M7sUAPWn5Q20ai1Hw8JHw= Subject key identifier: 0E:A3:43:A2:B7:86:A6:0D:FE:8D:3C:E4:36:15:D1:5D:BA:DC:FD:8D Certificate issuer: /CN=71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B Certificate serial: 25CF3B56993785EAF2839AD0A9AE8E5437995051 Authority key identifier: 71:EA:AE:94:B4:B9:7C:5E:D5:3A:52:F7:20:BB:E5:EA:78:EF:DE:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa Signing time: Sun 03 May 2026 02:21:50 +0000 ROA not before: Sun 03 May 2026 02:16:50 +0000 ROA not after: Sun 02 May 2027 02:21:50 +0000 asID: 139421 IP address blocks: 103.144.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.crl rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:cf:3b:56:99:37:85:ea:f2:83:9a:d0:a9:ae:8e:54:37:99:50:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B Validity Not Before: May 3 02:16:50 2026 GMT Not After : May 2 02:21:50 2027 GMT Subject: CN=0EA343A2B786A60DFE8D3CE43615D15DBADCFD8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:36:21:62:be:7a:ac:8b:32:e2:bd:70:51: 09:03:0e:22:e9:1c:80:3a:28:3b:5f:b4:2b:ea:69: 58:39:35:c9:8c:fd:a5:6f:ab:9a:15:f3:9d:89:57: 62:91:59:83:5b:ef:85:f0:df:1e:22:d4:4d:ba:48: 84:07:5f:f9:19:23:96:c5:54:25:75:ed:7a:46:05: e9:28:27:0e:79:78:b0:30:2f:5b:a4:03:38:8d:09: 55:6e:00:39:eb:e9:64:92:10:12:ed:0d:51:40:07: 8a:98:c1:69:51:7f:80:f5:c4:09:ed:fc:7f:31:35: d2:04:36:98:af:78:74:86:a2:b3:77:f6:e1:cc:d1: 27:eb:e7:11:b0:f5:92:b5:90:52:e8:2f:4b:ee:9f: 57:f8:37:2f:e4:65:f5:bb:85:78:ba:3f:21:4d:ce: ca:93:c1:87:61:44:0d:0f:67:19:99:cb:6f:8e:b8: 74:60:e0:fb:b0:d7:25:3a:83:7e:f6:af:cc:be:61: 67:07:b1:d3:3f:46:93:25:ca:d5:91:c6:12:89:bf: b9:a6:59:e3:0f:39:db:e6:fd:8d:c3:74:33:86:28: f6:a3:14:45:97:2e:3f:dc:bc:01:12:01:47:86:64: c3:fe:8c:f8:c9:2d:f5:3a:7c:41:de:58:d2:78:73: e8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A3:43:A2:B7:86:A6:0D:FE:8D:3C:E4:36:15:D1:5D:BA:DC:FD:8D X509v3 Authority Key Identifier: keyid:71:EA:AE:94:B4:B9:7C:5E:D5:3A:52:F7:20:BB:E5:EA:78:EF:DE:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71EAAE94B4B97C5ED53A52F720BBE5EA78EFDE5B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.103.0/24 Signature Algorithm: sha256WithRSAEncryption 30:e1:24:9e:09:16:7e:23:ad:83:93:79:0d:ca:0f:7b:de:97: c5:fe:f2:72:85:27:99:f9:97:3b:5d:32:23:54:f5:71:72:80: d4:93:88:ed:7e:b5:9f:fb:b6:75:e8:33:1b:36:c0:c8:9f:29: 0f:f9:78:91:dd:71:be:0e:7f:a0:db:1a:d2:9b:2e:8d:66:9f: da:7b:f3:72:0f:6b:3a:e3:b6:4b:c2:2f:f7:c6:e7:91:78:0d: 17:28:35:56:52:f0:c7:af:dc:0e:9c:0e:fc:c0:94:3a:7b:e6: ca:da:ab:23:54:fc:ad:b4:fd:28:c2:d9:d5:0f:88:00:d2:5d: 5c:91:b7:ec:c6:c0:48:c7:53:4d:13:7e:4f:5b:28:bb:c7:1f: 1e:ad:04:65:8a:56:d6:3f:95:69:93:a6:81:1c:f9:89:88:bd: 85:2b:4c:ce:bf:f7:7c:d0:f7:f4:de:56:43:19:4b:78:8f:cf: 69:87:6b:08:35:6a:2d:3b:b4:24:f2:99:a0:f2:41:60:89:45: 72:da:25:38:1f:27:2b:3a:3c:f9:4a:06:7c:a0:0c:fe:f5:aa: 84:d9:2e:63:a0:54:46:92:ca:38:44:b3:23:ce:56:ab:67:3b: 49:06:29:8d:31:21:9a:a5:8b:6d:d3:14:4b:46:5c:49:f7:54: d9:73:7a:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJc87Vpk3heryg5rQqa6OVDeZUFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFFQUFFOTRCNEI5N0M1RUQ1M0E1MkY3MjBCQkU1RUE3 OEVGREU1QjAeFw0yNjA1MDMwMjE2NTBaFw0yNzA1MDIwMjIxNTBaMDMxMTAvBgNV BAMTKDBFQTM0M0EyQjc4NkE2MERGRThEM0NFNDM2MTVEMTVEQkFEQ0ZEOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEijYhYr56rIsy4r1wUQkDDiLp HIA6KDtftCvqaVg5NcmM/aVvq5oV852JV2KRWYNb74Xw3x4i1E26SIQHX/kZI5bF VCV17XpGBekoJw55eLAwL1ukAziNCVVuADnr6WSSEBLtDVFAB4qYwWlRf4D1xAnt /H8xNdIENpiveHSGorN39uHM0Sfr5xGw9ZK1kFLoL0vun1f4Ny/kZfW7hXi6PyFN zsqTwYdhRA0PZxmZy2+OuHRg4Puw1yU6g372r8y+YWcHsdM/RpMlytWRxhKJv7mm WeMPOdvm/Y3DdDOGKPajFEWXLj/cvAESAUeGZMP+jPjJLfU6fEHeWNJ4c+ifAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDqNDoreGpg3+jTzkNhXRXbrc/Y0wHwYDVR0j BBgwFoAUcequlLS5fF7VOlL3ILvl6njv3lswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE1MzQxZTgtMjJkOC00NDljLWE3NTMtZTQ3YmJmYzQ4NTM4LzAvNzFFQUFFOTRC NEI5N0M1RUQ1M0E1MkY3MjBCQkU1RUE3OEVGREU1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MUVBQUU5NEI0Qjk3QzVFRDUzQTUyRjcyMEJCRTVFQTc4RUZE RTVCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkGcwDQYJ KoZIhvcNAQELBQADggEBADDhJJ4JFn4jrYOTeQ3KD3vel8X+8nKFJ5n5lztdMiNU 9XFygNSTiO1+tZ/7tnXoMxs2wMifKQ/5eJHdcb4Of6DbGtKbLo1mn9p783IPazrj tkvCL/fG55F4DRcoNVZS8Mev3A6cDvzAlDp75sraqyNU/K20/SjC2dUPiADSXVyR t+zGwEjHU00Tfk9bKLvHHx6tBGWKVtY/lWmTpoEc+YmIvYUrTM6/93zQ9/TeVkMZ S3iPz2mHawg1ai07tCTymaDyQWCJRXLaJTgfJys6PPlKBnygDP71qoTZLmOgVEaS yjhEsyPOVqtnO0kGKY0xIZqli23TFEtGXEn3VNlzek8= -----END CERTIFICATE-----Generated at Wed May 13 00:43:25 2026 by rpki-client