$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa File: 3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa (raw, json) Hash identifier: nN+scnQd2Bf1TJPwjOUkyJEyMV9Spsgs/notSfMcxTE= Subject key identifier: B0:2B:85:64:A2:F2:58:43:0F:21:C4:43:9A:A3:00:2A:3C:42:A1:66 Certificate issuer: /CN=71B6074C811D4B60D79A64DA0B9DD38E9AE78B69 Certificate serial: 348EDC0A80FFEF7ACE185152F6AEAC1ED16A5456 Authority key identifier: 71:B6:07:4C:81:1D:4B:60:D7:9A:64:DA:0B:9D:D3:8E:9A:E7:8B:69 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa Signing time: Sun 03 May 2026 03:15:01 +0000 ROA not before: Sun 03 May 2026 03:10:01 +0000 ROA not after: Sun 02 May 2027 03:15:01 +0000 asID: 136107 IP address blocks: 103.112.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.crl rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8e:dc:0a:80:ff:ef:7a:ce:18:51:52:f6:ae:ac:1e:d1:6a:54:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71B6074C811D4B60D79A64DA0B9DD38E9AE78B69 Validity Not Before: May 3 03:10:01 2026 GMT Not After : May 2 03:15:01 2027 GMT Subject: CN=B02B8564A2F258430F21C4439AA3002A3C42A166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2f:ad:0f:c8:31:9c:9b:a7:3c:f1:9d:2a:64: 27:6d:f0:01:7f:73:58:0e:dc:9e:10:de:85:51:78: fb:6b:5d:5b:83:06:a3:9a:29:bc:b7:a5:81:ed:d0: 14:c9:a0:0b:e6:4f:ef:85:6a:d4:ed:ed:50:2e:eb: 41:1b:a5:4a:89:0d:b8:69:5e:b8:69:6b:18:04:74: 0e:53:44:ad:ae:2a:09:20:32:25:d1:d3:45:37:04: 10:af:42:b3:59:fe:53:5b:ff:ab:af:ad:35:94:44: ae:bc:e2:9d:38:b1:b4:5d:32:b8:0c:63:00:ce:07: ab:81:04:0c:a7:c7:6d:af:70:7f:c9:a7:5c:1e:e2: b7:b0:e0:1e:9f:43:fa:df:1a:82:1c:80:ca:4c:fc: 7b:74:61:26:7e:58:d0:54:25:c3:43:c8:05:90:e6: a8:d1:1f:c0:fb:18:6c:ec:42:24:87:99:07:4e:e0: 6b:59:24:22:4f:38:bb:40:8b:78:8e:33:39:76:3f: 58:a1:48:31:d6:08:cd:77:41:f8:bc:2d:30:f0:fc: 17:1d:03:82:0d:23:1e:ab:64:49:6a:b0:46:bd:15: 4d:1f:3d:0b:80:bb:9c:88:b8:c5:2f:14:89:cc:00: a8:53:25:0e:7c:6f:ea:ea:48:1b:c7:95:f3:e8:0c: 48:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:2B:85:64:A2:F2:58:43:0F:21:C4:43:9A:A3:00:2A:3C:42:A1:66 X509v3 Authority Key Identifier: keyid:71:B6:07:4C:81:1D:4B:60:D7:9A:64:DA:0B:9D:D3:8E:9A:E7:8B:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.244.0/23 Signature Algorithm: sha256WithRSAEncryption 84:09:7e:eb:c1:6f:e9:83:17:37:81:4c:60:f5:51:1d:fb:15: f5:31:0b:24:65:32:55:9e:bf:59:e3:4f:7a:f3:6a:8a:63:1e: ef:6a:f0:81:02:de:b1:99:12:83:02:e4:68:ca:10:90:3f:fd: fd:88:ef:8a:ec:87:99:de:da:01:df:37:d9:f0:92:46:a7:03: b3:14:6a:68:e6:0e:48:af:34:22:a3:a7:e1:d7:7f:d6:f7:69: 38:3e:3d:52:a0:b0:b5:a3:07:ae:5a:7d:6b:29:11:83:55:00: 54:68:27:54:dd:89:eb:a3:51:85:95:02:19:5f:8e:de:df:f1: 68:11:9d:b9:48:a5:f2:9d:a7:29:e2:a4:9c:e3:5e:7c:5f:d7: 0c:75:20:c2:16:83:95:33:14:b0:db:44:a0:f1:dd:17:aa:a5: c7:e2:89:ff:b0:2e:b6:b7:1d:49:6c:17:72:d2:f5:55:4a:ca: d9:c2:e4:22:f7:43:a7:f8:6c:87:a7:e3:ed:ba:f0:af:64:81: 9e:a4:64:09:1e:8c:b1:53:a5:1e:e3:2b:9e:77:f2:47:dc:bd: 57:51:73:76:9d:26:e6:a4:4a:60:6c:23:e7:d0:30:c7:3f:67: 6d:d3:86:6b:f5:8b:65:7e:5a:93:2a:52:c4:c7:6a:06:00:31: dd:a7:bd:f7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNI7cCoD/73rOGFFS9q6sHtFqVFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFCNjA3NEM4MTFENEI2MEQ3OUE2NERBMEI5REQzOEU5 QUU3OEI2OTAeFw0yNjA1MDMwMzEwMDFaFw0yNzA1MDIwMzE1MDFaMDMxMTAvBgNV BAMTKEIwMkI4NTY0QTJGMjU4NDMwRjIxQzQ0MzlBQTMwMDJBM0M0MkExNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwL60PyDGcm6c88Z0qZCdt8AF/ c1gO3J4Q3oVRePtrXVuDBqOaKby3pYHt0BTJoAvmT++FatTt7VAu60EbpUqJDbhp XrhpaxgEdA5TRK2uKgkgMiXR00U3BBCvQrNZ/lNb/6uvrTWURK684p04sbRdMrgM YwDOB6uBBAynx22vcH/Jp1we4rew4B6fQ/rfGoIcgMpM/Ht0YSZ+WNBUJcNDyAWQ 5qjRH8D7GGzsQiSHmQdO4GtZJCJPOLtAi3iOMzl2P1ihSDHWCM13Qfi8LTDw/Bcd A4INIx6rZElqsEa9FU0fPQuAu5yIuMUvFInMAKhTJQ58b+rqSBvHlfPoDEgdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsCuFZKLyWEMPIcRDmqMAKjxCoWYwHwYDVR0j BBgwFoAUcbYHTIEdS2DXmmTaC53Tjprni2kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE0NzIzMWYtMDJkZC00OWU4LWFhMjUtMmQ1NGMwYTk5OWNhLzAvNzFCNjA3NEM4 MTFENEI2MEQ3OUE2NERBMEI5REQzOEU5QUU3OEI2OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MUI2MDc0QzgxMUQ0QjYwRDc5QTY0REEwQjlERDM4RTlBRTc4 QjY5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNDcyMzFmLTAyZGQtNDllOC1h YTI1LTJkNTRjMGE5OTljYS8wLzMxMzAzMzJlMzEzMTMyMmUzMjM0MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFncPQwDQYJ KoZIhvcNAQELBQADggEBAIQJfuvBb+mDFzeBTGD1UR37FfUxCyRlMlWev1njT3rz aopjHu9q8IEC3rGZEoMC5GjKEJA//f2I74rsh5ne2gHfN9nwkkanA7MUamjmDkiv NCKjp+HXf9b3aTg+PVKgsLWjB65afWspEYNVAFRoJ1TdieujUYWVAhlfjt7f8WgR nblIpfKdpynipJzjXnxf1wx1IMIWg5UzFLDbRKDx3Reqpcfiif+wLra3HUlsF3LS 9VVKytnC5CL3Q6f4bIen4+268K9kgZ6kZAkejLFTpR7jK5538kfcvVdRc3adJuak SmBsI+fQMMc/Z23Thmv1i2V+WpMqUsTHagYAMd2nvfc= -----END CERTIFICATE-----Generated at Wed May 13 07:56:14 2026 by rpki-client