$ rpki-client -vvf rpki-rsync.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa File: 3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa (raw, json) Hash identifier: SJitFwYKCLnaXZQ4OdV1EreS23s72a/7Op1qTgfnrGo= Subject key identifier: A2:21:CC:E8:39:10:E4:37:A3:7D:D3:AD:BE:B9:C6:7B:6F:06:D2:06 Certificate issuer: /CN=71BEA54A40125136212043443871943E11E47CE8 Certificate serial: 54EA3EC4A8155F437FDEE877DA13EC2580B6BDA0 Authority key identifier: 71:BE:A5:4A:40:12:51:36:21:20:43:44:38:71:94:3E:11:E4:7C:E8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71BEA54A40125136212043443871943E11E47CE8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa Signing time: Sun 03 May 2026 02:26:02 +0000 ROA not before: Sun 03 May 2026 02:21:02 +0000 ROA not after: Sun 02 May 2027 02:26:02 +0000 asID: 151506 IP address blocks: 103.234.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/71BEA54A40125136212043443871943E11E47CE8.crl rsync://rpki-rsync.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/71BEA54A40125136212043443871943E11E47CE8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71BEA54A40125136212043443871943E11E47CE8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ea:3e:c4:a8:15:5f:43:7f:de:e8:77:da:13:ec:25:80:b6:bd:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71BEA54A40125136212043443871943E11E47CE8 Validity Not Before: May 3 02:21:02 2026 GMT Not After : May 2 02:26:02 2027 GMT Subject: CN=A221CCE83910E437A37DD3ADBEB9C67B6F06D206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:60:06:30:21:4b:d0:d6:4d:08:4b:74:4f:d2: ee:75:86:79:04:87:6d:a6:b6:58:a1:72:f0:1e:a2: 09:93:a0:cc:85:f4:26:b4:4d:d6:47:fb:3f:6e:1f: 03:91:d5:dd:15:f6:37:7b:52:2f:ec:ab:d9:0a:8a: 54:bc:3c:1a:cd:b5:1f:07:0a:73:f5:aa:a8:f8:91: c9:9c:99:82:a1:aa:12:fe:eb:98:78:92:1f:1a:69: 19:f8:60:e2:30:ce:2a:93:ab:51:90:f6:6d:ea:48: 39:46:2c:7f:d4:c3:fd:b0:fc:0a:6b:ba:a0:b0:d7: fb:21:ff:81:c3:3b:47:72:ed:e0:34:33:ad:0a:6b: 48:b9:25:c5:6c:bf:c4:05:54:59:73:46:9c:bd:c2: 6a:17:53:dd:9d:9e:68:91:1e:cc:7b:5d:b0:af:a7: 60:4f:5b:eb:e5:a5:66:34:04:8f:1f:2a:6e:d7:7b: c4:ee:d0:2a:17:ac:95:0e:3a:a8:e7:30:4a:45:ca: e4:29:8b:0a:7d:ce:e0:f7:b5:8d:8b:ab:07:08:61: 1d:41:40:fc:63:56:ca:53:23:b7:13:c6:35:a7:8f: ef:4f:45:3a:7f:c0:2e:7d:a3:9d:ca:57:da:fb:7e: 0e:25:15:83:3e:ab:2e:59:eb:14:c1:9e:9e:59:e7: 08:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:21:CC:E8:39:10:E4:37:A3:7D:D3:AD:BE:B9:C6:7B:6F:06:D2:06 X509v3 Authority Key Identifier: keyid:71:BE:A5:4A:40:12:51:36:21:20:43:44:38:71:94:3E:11:E4:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/71BEA54A40125136212043443871943E11E47CE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71BEA54A40125136212043443871943E11E47CE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31392e302f32342d3234203d3e20313531353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.19.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:49:48:b7:c2:81:70:36:36:4f:1f:0d:b7:89:8e:78:db:c6: f5:e1:79:67:a4:2d:20:0f:2c:b2:f6:f8:10:c4:ad:30:89:f6: 4f:bf:50:48:20:4f:43:71:bb:82:69:b5:97:60:bd:3e:bb:77: 65:ad:de:81:8c:e5:35:b9:c9:01:81:76:da:4e:bf:90:d5:88: af:bb:6f:34:6a:e1:12:2f:2b:71:ca:45:d8:ba:8a:d2:64:b3: a9:bb:1d:44:fa:80:9f:38:34:3d:54:ed:76:47:82:84:bf:26: 10:8c:b1:57:aa:c3:41:5d:ae:73:cf:0e:ae:01:c6:69:2f:f2: 30:72:4d:a9:68:79:82:15:72:96:08:d3:cd:89:ad:3e:40:5d: a8:4d:da:1f:84:fc:98:e3:98:c7:1f:12:12:b2:ed:7b:c0:59: 5c:bd:71:47:5c:94:1b:e1:96:d7:7b:8a:3b:73:5b:4c:f1:30: 15:5b:c0:15:ef:18:e5:92:dc:e7:a8:b1:43:49:81:b6:14:d9: e6:bf:cb:d7:ac:0f:9d:a4:43:6c:d0:5b:34:e9:23:0c:5e:28: 56:ee:97:5d:71:6f:ed:33:80:48:5c:e0:89:5a:47:a8:40:1e: 23:3b:94:89:a4:b6:cf:02:d7:80:49:2c:fc:a2:1f:99:ff:1e: b2:00:42:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVOo+xKgVX0N/3uh32hPsJYC2vaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFCRUE1NEE0MDEyNTEzNjIxMjA0MzQ0Mzg3MTk0M0Ux MUU0N0NFODAeFw0yNjA1MDMwMjIxMDJaFw0yNzA1MDIwMjI2MDJaMDMxMTAvBgNV BAMTKEEyMjFDQ0U4MzkxMEU0MzdBMzdERDNBREJFQjlDNjdCNkYwNkQyMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkYAYwIUvQ1k0IS3RP0u51hnkE h22mtlihcvAeogmToMyF9Ca0TdZH+z9uHwOR1d0V9jd7Ui/sq9kKilS8PBrNtR8H CnP1qqj4kcmcmYKhqhL+65h4kh8aaRn4YOIwziqTq1GQ9m3qSDlGLH/Uw/2w/Apr uqCw1/sh/4HDO0dy7eA0M60Ka0i5JcVsv8QFVFlzRpy9wmoXU92dnmiRHsx7XbCv p2BPW+vlpWY0BI8fKm7Xe8Tu0CoXrJUOOqjnMEpFyuQpiwp9zuD3tY2LqwcIYR1B QPxjVspTI7cTxjWnj+9PRTp/wC59o53KV9r7fg4lFYM+qy5Z6xTBnp5Z5wi1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoiHM6DkQ5DejfdOtvrnGe28G0gYwHwYDVR0j BBgwFoAUcb6lSkASUTYhIENEOHGUPhHkfOgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg4MzI5Y2EtZThmNy00ZDNkLWFjZTQtODA3ZjhhYTU4YWUwLzAvNzFCRUE1NEE0 MDEyNTEzNjIxMjA0MzQ0Mzg3MTk0M0UxMUU0N0NFOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MUJFQTU0QTQwMTI1MTM2MjEyMDQzNDQzODcxOTQzRTExRTQ3 Q0U4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4ODMyOWNhLWU4ZjctNGQzZC1h Y2U0LTgwN2Y4YWE1OGFlMC8wLzMxMzAzMzJlMzIzMzM0MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+oTMA0GCSqG SIb3DQEBCwUAA4IBAQA6SUi3woFwNjZPHw23iY5428b14XlnpC0gDyyy9vgQxK0w ifZPv1BIIE9DcbuCabWXYL0+u3dlrd6BjOU1uckBgXbaTr+Q1Yivu280auESLytx ykXYuorSZLOpux1E+oCfODQ9VO12R4KEvyYQjLFXqsNBXa5zzw6uAcZpL/Iwck2p aHmCFXKWCNPNia0+QF2oTdofhPyY45jHHxISsu17wFlcvXFHXJQb4ZbXe4o7c1tM 8TAVW8AV7xjlktznqLFDSYG2FNnmv8vXrA+dpENs0Fs06SMMXihW7pddcW/tM4BI XOCJWkeoQB4jO5SJpLbPAteASSz8oh+Z/x6yAELY -----END CERTIFICATE-----Generated at Wed May 13 02:34:51 2026 by rpki-client