$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32332d3234203d3e203535363632.roa File: 3130332e37312e31302e302f32332d3234203d3e203535363632.roa (raw, json) Hash identifier: bEXXfN8D8Iwh6++6Sf4fNdlCeqEZEgaEYsFhbfU8XrA= Subject key identifier: 73:97:A3:9D:0E:6C:2E:35:E9:D0:8B:97:7E:4D:18:6C:62:12:91:02 Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 7393A264F93F4868123A0F37C92B2C9022076092 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32332d3234203d3e203535363632.roa Signing time: Tue 17 Mar 2026 09:03:24 +0000 ROA not before: Tue 17 Mar 2026 08:58:24 +0000 ROA not after: Tue 16 Mar 2027 09:03:24 +0000 asID: 55662 IP address blocks: 103.71.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 15:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:93:a2:64:f9:3f:48:68:12:3a:0f:37:c9:2b:2c:90:22:07:60:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Mar 17 08:58:24 2026 GMT Not After : Mar 16 09:03:24 2027 GMT Subject: CN=7397A39D0E6C2E35E9D08B977E4D186C62129102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:59:1c:9f:f4:f9:ed:c0:c2:db:fa:98:f0:80: ee:e6:16:a3:20:d3:1b:15:d0:15:4a:9e:6a:0f:7e: 12:55:5d:aa:94:2a:f2:19:41:a1:bc:c8:a8:b1:ba: 27:d9:81:24:a5:ba:10:ed:23:ce:4d:d1:51:c6:c3: 02:d1:b5:94:71:4a:6b:1f:33:06:19:5e:33:0c:20: 44:29:d1:c5:bd:48:9d:e1:ca:45:1e:bc:e6:e7:3f: ca:31:e3:e0:d1:ea:e6:10:46:8a:b9:58:24:8d:46: ec:7f:99:84:25:08:ea:3b:dc:60:98:86:b6:a6:b8: fe:cd:d6:16:f6:0f:8c:13:41:8d:1f:48:75:83:ce: f5:77:3b:64:9b:95:fc:03:2c:b0:45:88:e0:49:3d: 54:ef:06:39:6a:f8:71:c5:b6:25:e5:db:1a:2a:7f: 7f:25:57:fa:27:1f:6f:48:77:d1:77:c6:08:e3:d4: b0:28:f4:ba:bc:c6:a0:f1:b2:18:4f:8f:a5:09:7b: d1:c9:fb:e2:4c:b4:f0:88:42:c8:1f:d1:07:81:d2: 81:53:26:9e:7e:31:0a:e7:4c:55:e4:c0:20:e6:d3: 2a:01:8d:fd:52:af:9a:97:58:b6:a1:bd:c4:ed:a3: 51:b8:61:05:8b:d6:96:75:20:c2:72:fa:ad:f8:c5: 29:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:97:A3:9D:0E:6C:2E:35:E9:D0:8B:97:7E:4D:18:6C:62:12:91:02 X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32332d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.10.0/23 Signature Algorithm: sha256WithRSAEncryption 76:cf:b6:20:8a:20:9c:47:d7:ac:bb:14:91:db:a0:f7:42:d8: a7:10:53:01:7c:08:25:77:b4:94:66:34:c8:49:e1:b7:58:70: e0:85:9d:57:f7:1c:5b:06:86:b6:aa:3d:b2:88:2b:ca:1e:38: 68:3b:e4:fd:2e:98:0b:18:47:a8:41:29:de:c0:46:92:53:b4: f2:89:90:bc:3d:f3:93:da:a8:f8:7a:31:23:21:67:02:25:91: 83:45:5c:65:73:b4:b8:fe:41:63:af:7d:b3:37:d7:27:f0:d1: ea:a5:e4:d2:80:c4:15:03:2a:64:d4:ec:35:6c:93:a8:b2:58: 8a:39:d3:18:47:61:c0:8b:a7:fa:69:f2:b0:fe:7b:9b:44:67: 58:39:5c:db:1b:04:98:18:42:d6:d8:c3:78:65:c4:7c:43:3d: e6:73:2d:e1:bd:c2:f3:50:dd:49:d3:94:99:bd:4c:e7:ec:5a: 73:5b:cc:f2:78:27:f8:20:ac:08:17:57:39:87:40:b8:22:26: 24:de:50:34:c3:5f:43:8a:6d:4d:25:d5:06:71:ad:88:7a:ea: a1:b3:65:fd:2d:d7:22:0c:d9:f5:37:05:78:40:3e:c3:ee:98: ce:13:80:ed:71:b5:5c:ff:ae:db:cd:0f:db:96:78:6a:d3:ff: 80:4f:c0:c1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUc5OiZPk/SGgSOg83ySsskCIHYJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNjAzMTcwODU4MjRaFw0yNzAzMTYwOTAzMjRaMDMxMTAvBgNV BAMTKDczOTdBMzlEMEU2QzJFMzVFOUQwOEI5NzdFNEQxODZDNjIxMjkxMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvWRyf9PntwMLb+pjwgO7mFqMg 0xsV0BVKnmoPfhJVXaqUKvIZQaG8yKixuifZgSSluhDtI85N0VHGwwLRtZRxSmsf MwYZXjMMIEQp0cW9SJ3hykUevObnP8ox4+DR6uYQRoq5WCSNRux/mYQlCOo73GCY hramuP7N1hb2D4wTQY0fSHWDzvV3O2SblfwDLLBFiOBJPVTvBjlq+HHFtiXl2xoq f38lV/onH29Id9F3xgjj1LAo9Lq8xqDxshhPj6UJe9HJ++JMtPCIQsgf0QeB0oFT Jp5+MQrnTFXkwCDm0yoBjf1Sr5qXWLahvcTto1G4YQWL1pZ1IMJy+q34xSn1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUc5ejnQ5sLjXp0IuXfk0YbGISkQIwHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNDk2MDgyLWEwYWEtNDgzNi1i NTg3LTk3M2RkN2UyOTdhZi8wLzMxMzAzMzJlMzczMTJlMzEzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnRwowDQYJKoZIhvcN AQELBQADggEBAHbPtiCKIJxH16y7FJHboPdC2KcQUwF8CCV3tJRmNMhJ4bdYcOCF nVf3HFsGhraqPbKIK8oeOGg75P0umAsYR6hBKd7ARpJTtPKJkLw985PaqPh6MSMh ZwIlkYNFXGVztLj+QWOvfbM31yfw0eql5NKAxBUDKmTU7DVsk6iyWIo50xhHYcCL p/pp8rD+e5tEZ1g5XNsbBJgYQtbYw3hlxHxDPeZzLeG9wvNQ3UnTlJm9TOfsWnNb zPJ4J/ggrAgXVzmHQLgiJiTeUDTDX0OKbU0l1QZxrYh66qGzZf0t1yIM2fU3BXhA PsPumM4TgO1xtVz/rtvND9uWeGrT/4BPwME= -----END CERTIFICATE-----Generated at Thu Mar 19 11:22:49 2026 by rpki-client