$ rpki-client -vvf repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa File: 3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: e8eIFrn/eUH5duTImnVIIrZAb8UtgLMsSB2c7nTYPik= Subject key identifier: 55:C7:84:44:31:42:F7:34:D8:A5:02:2C:B4:E6:24:62:C6:C6:F3:C4 Certificate issuer: /CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Certificate serial: 29F44D42CE6707EBE24D8133071EA1FB93BDBFA4 Authority key identifier: BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa Signing time: Wed 18 Mar 2026 09:00:01 +0000 ROA not before: Wed 18 Mar 2026 08:55:01 +0000 ROA not after: Wed 17 Mar 2027 09:00:01 +0000 asID: 149746 IP address blocks: 103.189.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 14:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f4:4d:42:ce:67:07:eb:e2:4d:81:33:07:1e:a1:fb:93:bd:bf:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Validity Not Before: Mar 18 08:55:01 2026 GMT Not After : Mar 17 09:00:01 2027 GMT Subject: CN=55C784443142F734D8A5022CB4E62462C6C6F3C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e4:82:17:19:04:57:e6:53:f2:c4:a5:d5:54: 81:06:1d:57:4e:e4:54:c4:6e:d2:e8:bd:6e:36:15: e7:7f:96:47:b0:f9:2e:90:a2:fc:7e:f4:6e:34:09: 80:43:f2:90:b2:4c:52:92:3d:d1:4b:a6:cb:0f:8d: 69:9f:2f:a7:1d:82:fa:32:47:90:60:8f:5e:9f:2c: 30:5b:9d:dc:10:38:0b:d3:c5:90:c3:62:fb:c0:8b: 4c:d3:ef:c8:2f:ee:be:7d:c2:42:a5:4a:30:35:40: 4d:00:0e:1d:f6:83:d6:85:33:c1:83:00:02:35:8d: 5e:6e:54:91:ad:42:6e:fd:68:82:73:82:5c:0f:da: 12:df:8c:9c:24:0a:7b:e5:e9:8f:1b:fe:9a:8e:39: 2d:44:da:ee:6b:43:ce:00:dd:33:33:e5:05:ec:7c: c1:a8:10:87:4a:08:b6:06:08:cc:af:00:6b:74:67: 43:0f:7d:8f:62:20:de:5f:9e:99:b9:87:f0:56:97: 36:e7:19:21:36:4e:9a:98:22:34:22:05:cb:f0:12: 5f:f3:7e:fd:6a:d4:22:c2:3e:47:6d:76:a4:cd:09: 8c:a7:c4:61:ae:08:18:60:8f:63:28:74:38:fa:8f: 15:90:93:57:03:67:e5:bc:3d:80:20:04:4f:5f:b5: c9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C7:84:44:31:42:F7:34:D8:A5:02:2C:B4:E6:24:62:C6:C6:F3:C4 X509v3 Authority Key Identifier: keyid:BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.62.0/24 Signature Algorithm: sha256WithRSAEncryption a5:c5:87:18:0b:92:23:f6:ac:3c:33:eb:4d:57:b3:46:bb:57: 26:a6:2b:8d:bd:9a:20:69:70:a8:d8:25:9d:38:df:60:d2:f4: a7:98:42:8c:d0:66:99:6d:d1:24:d6:4a:79:6b:46:5e:4c:f1: b2:38:95:88:f7:82:f9:40:24:db:5f:af:19:49:92:aa:49:35: 34:2f:94:5e:1e:79:88:4b:8d:77:8f:ab:e1:ef:f0:51:42:94: f8:72:0c:c5:02:3d:08:17:7f:62:1b:5b:e4:86:44:09:47:38: ae:44:9f:f6:64:e4:12:f0:35:25:d1:01:19:b3:b0:7b:25:66: dc:ba:c9:c5:6e:63:7e:dd:a0:e5:19:db:9e:8f:e1:6a:84:45: 08:89:26:56:fd:ee:8d:d1:fd:dd:54:9b:91:ab:5a:0f:94:87: 47:06:5e:44:33:c5:01:5a:27:ad:31:95:0e:19:6d:a3:79:8b: b9:16:5f:5e:60:11:b2:c6:04:56:2f:52:ad:7c:93:07:55:90: c6:30:e5:36:80:72:9d:59:75:77:fe:55:ac:79:5e:5f:59:c9: 3b:46:53:40:7e:07:40:b6:39:d6:68:d7:04:19:90:54:9d:52: ab:0d:d7:7f:81:d4:f8:e5:e8:d2:92:7a:4c:cc:5d:74:5a:20: 95:d6:62:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKfRNQs5nB+viTYEzBx6h+5O9v6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZF RTczRjMwNzAeFw0yNjAzMTgwODU1MDFaFw0yNzAzMTcwOTAwMDFaMDMxMTAvBgNV BAMTKDU1Qzc4NDQ0MzE0MkY3MzREOEE1MDIyQ0I0RTYyNDYyQzZDNkYzQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo5IIXGQRX5lPyxKXVVIEGHVdO 5FTEbtLovW42Fed/lkew+S6Qovx+9G40CYBD8pCyTFKSPdFLpssPjWmfL6cdgvoy R5Bgj16fLDBbndwQOAvTxZDDYvvAi0zT78gv7r59wkKlSjA1QE0ADh32g9aFM8GD AAI1jV5uVJGtQm79aIJzglwP2hLfjJwkCnvl6Y8b/pqOOS1E2u5rQ84A3TMz5QXs fMGoEIdKCLYGCMyvAGt0Z0MPfY9iIN5fnpm5h/BWlzbnGSE2TpqYIjQiBcvwEl/z fv1q1CLCPkdtdqTNCYynxGGuCBhgj2ModDj6jxWQk1cDZ+W8PYAgBE9ftcmJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVceERDFC9zTYpQIstOYkYsbG88QwHwYDVR0j BBgwFoAUvzjd1doqvwjrHdjYe1ZvNu5z8wcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjM0ZWYxZC03MzRkLTRjNzEtOGJhNy1kMzFlMTY4YjYzMmMvMC9CRjM4RERENURB MkFCRjA4RUIxREQ4RDg3QjU2NkYzNkVFNzNGMzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZFRTcz RjMwNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMzRlZjFkLTczNGQtNGM3MS04 YmE3LWQzMWUxNjhiNjMyYy8wLzMxMzAzMzJlMzEzODM5MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ70+MA0GCSqG SIb3DQEBCwUAA4IBAQClxYcYC5Ij9qw8M+tNV7NGu1cmpiuNvZogaXCo2CWdON9g 0vSnmEKM0GaZbdEk1kp5a0ZeTPGyOJWI94L5QCTbX68ZSZKqSTU0L5ReHnmIS413 j6vh7/BRQpT4cgzFAj0IF39iG1vkhkQJRziuRJ/2ZOQS8DUl0QEZs7B7JWbcusnF bmN+3aDlGduej+FqhEUIiSZW/e6N0f3dVJuRq1oPlIdHBl5EM8UBWietMZUOGW2j eYu5Fl9eYBGyxgRWL1KtfJMHVZDGMOU2gHKdWXV3/lWseV5fWck7RlNAfgdAtjnW aNcEGZBUnVKrDdd/gdT45ejSknpMzF10WiCV1mLq -----END CERTIFICATE-----Generated at Thu Mar 26 23:52:28 2026 by rpki-client