$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa File: 3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa (raw, json) Hash identifier: lwD0HUqunMfmcrBMFPjo8Wy84U1nW2Gl16rAlt9je9I= Subject key identifier: A2:F9:BC:C8:CA:BD:83:BF:60:44:CF:0D:30:48:29:44:11:C6:71:2C Certificate issuer: /CN=71B6074C811D4B60D79A64DA0B9DD38E9AE78B69 Certificate serial: 2042A61CD95AE5B5D41F60B08AE8196C7922495E Authority key identifier: 71:B6:07:4C:81:1D:4B:60:D7:9A:64:DA:0B:9D:D3:8E:9A:E7:8B:69 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa Signing time: Sun 03 May 2026 03:15:01 +0000 ROA not before: Sun 03 May 2026 03:10:01 +0000 ROA not after: Sun 02 May 2027 03:15:01 +0000 asID: 136107 IP address blocks: 103.233.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.crl rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:42:a6:1c:d9:5a:e5:b5:d4:1f:60:b0:8a:e8:19:6c:79:22:49:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71B6074C811D4B60D79A64DA0B9DD38E9AE78B69 Validity Not Before: May 3 03:10:01 2026 GMT Not After : May 2 03:15:01 2027 GMT Subject: CN=A2F9BCC8CABD83BF6044CF0D3048294411C6712C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:88:43:6b:d1:40:ea:fd:4f:e8:0a:d5:1a:b5: 3c:28:89:3f:43:4b:00:14:64:89:db:1d:a5:99:be: 8c:c0:20:53:6b:ce:66:8c:37:13:18:89:32:57:39: b8:d5:82:c8:d1:49:78:8a:72:fc:77:3d:6e:b7:38: ca:d4:d9:71:e4:c5:91:5a:38:a2:3b:44:f2:c7:51: 41:40:0d:b9:17:9b:a7:a1:cb:cf:41:58:11:f8:ac: 19:0e:31:41:d2:a1:89:26:bd:f0:09:1e:96:08:ee: 07:b5:15:64:e5:51:92:e9:ec:4f:6d:be:1a:5e:e2: 41:c5:34:e7:b3:66:09:12:be:67:af:eb:42:48:ea: 0a:0b:05:80:f0:f4:61:f6:be:41:15:fe:06:51:ab: f7:33:f6:18:11:e5:06:4e:46:73:fe:84:5e:40:3c: 2b:44:bd:5c:50:6c:75:7f:b8:0b:3d:3f:37:db:41: 81:6f:7f:5a:dc:ac:34:93:8f:89:90:9f:b0:a3:b8: 10:da:b8:76:cd:4b:92:fc:15:ec:c1:8f:78:26:54: a7:cb:99:66:52:37:c9:c4:f1:71:af:38:b2:f7:90: 5e:5a:a4:50:4f:d1:00:27:82:8d:70:dd:a1:37:53: 99:bc:51:4e:3d:22:da:a7:ee:d6:44:82:c4:cd:9b: e9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F9:BC:C8:CA:BD:83:BF:60:44:CF:0D:30:48:29:44:11:C6:71:2C X509v3 Authority Key Identifier: keyid:71:B6:07:4C:81:1D:4B:60:D7:9A:64:DA:0B:9D:D3:8E:9A:E7:8B:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71B6074C811D4B60D79A64DA0B9DD38E9AE78B69.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.102.0/23 Signature Algorithm: sha256WithRSAEncryption 15:a7:aa:fd:05:ac:87:0c:c6:ce:e4:be:55:10:96:d7:5c:5c: 62:99:1f:32:d2:66:9c:40:23:70:48:04:e9:6d:35:ab:88:09: 18:2c:d4:63:3f:a6:34:51:47:3b:38:45:4f:dd:d9:b6:fa:2d: 41:d4:f1:57:01:e6:d9:af:d5:95:e9:c4:e5:07:bc:20:2e:0d: 60:60:2c:a4:51:4d:c5:33:21:d6:08:6b:23:51:11:78:d3:98: f6:0e:5e:fa:dd:43:48:0a:54:65:1a:e3:b7:e8:10:c9:ae:19: 2b:8b:a6:7f:c7:4b:bb:db:dd:57:4c:78:bc:2c:55:63:bb:4a: a8:70:59:fc:e3:3c:5c:aa:51:9b:e5:e2:dd:2c:74:a1:f7:1f: 91:a5:59:5e:91:79:b7:b9:d8:36:f4:d2:7d:79:b3:16:d5:a2: 3a:da:50:36:f5:b9:87:7c:a3:ef:19:63:d4:30:88:8f:be:12: c8:2b:da:33:33:b7:5e:d4:fe:7c:d2:c6:e6:c8:49:e2:d2:a4: 3b:75:1f:f1:fa:73:ab:5f:7a:a6:e8:d2:bc:f4:b4:02:0a:e9: d1:d7:d5:03:17:e6:10:39:cc:f4:8b:c3:b1:e7:12:a2:d2:24: 2c:f0:29:29:4c:3b:f6:90:3a:95:84:78:86:f3:6a:6b:45:8b: 13:fa:ab:e8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIEKmHNla5bXUH2CwiugZbHkiSV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFCNjA3NEM4MTFENEI2MEQ3OUE2NERBMEI5REQzOEU5 QUU3OEI2OTAeFw0yNjA1MDMwMzEwMDFaFw0yNzA1MDIwMzE1MDFaMDMxMTAvBgNV BAMTKEEyRjlCQ0M4Q0FCRDgzQkY2MDQ0Q0YwRDMwNDgyOTQ0MTFDNjcxMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDciENr0UDq/U/oCtUatTwoiT9D SwAUZInbHaWZvozAIFNrzmaMNxMYiTJXObjVgsjRSXiKcvx3PW63OMrU2XHkxZFa OKI7RPLHUUFADbkXm6ehy89BWBH4rBkOMUHSoYkmvfAJHpYI7ge1FWTlUZLp7E9t vhpe4kHFNOezZgkSvmev60JI6goLBYDw9GH2vkEV/gZRq/cz9hgR5QZORnP+hF5A PCtEvVxQbHV/uAs9PzfbQYFvf1rcrDSTj4mQn7CjuBDauHbNS5L8FezBj3gmVKfL mWZSN8nE8XGvOLL3kF5apFBP0QAngo1w3aE3U5m8UU49Itqn7tZEgsTNm+nLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUovm8yMq9g79gRM8NMEgpRBHGcSwwHwYDVR0j BBgwFoAUcbYHTIEdS2DXmmTaC53Tjprni2kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE0NzIzMWYtMDJkZC00OWU4LWFhMjUtMmQ1NGMwYTk5OWNhLzAvNzFCNjA3NEM4 MTFENEI2MEQ3OUE2NERBMEI5REQzOEU5QUU3OEI2OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MUI2MDc0QzgxMUQ0QjYwRDc5QTY0REEwQjlERDM4RTlBRTc4 QjY5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNDcyMzFmLTAyZGQtNDllOC1h YTI1LTJkNTRjMGE5OTljYS8wLzMxMzAzMzJlMzIzMzMzMmUzMTMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn6WYwDQYJ KoZIhvcNAQELBQADggEBABWnqv0FrIcMxs7kvlUQltdcXGKZHzLSZpxAI3BIBOlt NauICRgs1GM/pjRRRzs4RU/d2bb6LUHU8VcB5tmv1ZXpxOUHvCAuDWBgLKRRTcUz IdYIayNREXjTmPYOXvrdQ0gKVGUa47foEMmuGSuLpn/HS7vb3VdMeLwsVWO7Sqhw WfzjPFyqUZvl4t0sdKH3H5GlWV6Rebe52Db00n15sxbVojraUDb1uYd8o+8ZY9Qw iI++Esgr2jMzt17U/nzSxubISeLSpDt1H/H6c6tfeqbo0rz0tAIK6dHX1QMX5hA5 zPSLw7HnEqLSJCzwKSlMO/aQOpWEeIbzamtFixP6q+g= -----END CERTIFICATE-----Generated at Wed May 13 12:02:07 2026 by rpki-client