$ rpki-client -vvf repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa File: 3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa (raw, json) Hash identifier: tGBrE+oUpgj94wIHMM93fQpwszSHXN/ehjuYmbZG0vo= Subject key identifier: BB:4A:8B:6E:B6:B8:EC:33:37:46:DF:FF:90:34:DB:A0:77:E0:0A:ED Certificate issuer: /CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Certificate serial: 60DC2B2C3E5BF1458669FC360C5E197010F7EDAF Authority key identifier: 28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject info access: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa Signing time: Thu 12 Mar 2026 04:03:50 +0000 ROA not before: Thu 12 Mar 2026 03:58:50 +0000 ROA not after: Thu 11 Mar 2027 04:03:50 +0000 asID: 139447 IP address blocks: 103.145.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 05:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:dc:2b:2c:3e:5b:f1:45:86:69:fc:36:0c:5e:19:70:10:f7:ed:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Validity Not Before: Mar 12 03:58:50 2026 GMT Not After : Mar 11 04:03:50 2027 GMT Subject: CN=BB4A8B6EB6B8EC333746DFFF9034DBA077E00AED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:89:5f:d1:1b:5a:b9:9d:46:6b:3b:9e:3f:9d: 7f:fe:bd:5b:72:03:35:b6:a0:f4:e6:a8:64:ed:c6: 0f:f0:5d:07:ed:b2:49:bf:24:93:d4:e1:77:f9:42: 9a:dd:32:69:46:3a:b5:dd:2e:0b:5e:e1:0b:11:d4: c4:18:a4:40:e7:24:87:cf:fc:7f:d6:26:2c:bc:4c: 89:6e:17:11:87:6d:30:9a:a0:ea:85:4f:94:b1:eb: 47:79:9f:25:3e:08:e7:7e:e4:aa:13:fe:93:90:a9: ff:d1:89:92:95:5d:f4:4f:8b:37:3c:72:84:16:5c: b7:85:49:79:ef:86:d1:e3:4c:45:af:9a:b1:94:a7: 1a:66:7c:99:86:a8:fa:6d:33:14:ef:82:e3:51:6e: a6:d8:48:ca:18:00:8a:a1:67:fb:19:9e:02:d6:ea: f6:5c:e9:8c:a5:81:ea:e2:96:ef:0d:59:2e:60:12: 90:2f:f2:f4:2f:23:dd:16:e1:de:02:53:cf:5b:a4: f3:24:07:0e:72:6a:02:55:52:2e:a4:e1:80:cf:07: d6:ff:8d:a5:20:e3:ca:94:2a:b8:f5:70:2b:06:1e: 08:8b:47:b4:64:f2:83:6a:88:70:3e:16:02:7c:2b: b5:37:4d:d2:0d:95:0a:7e:df:5e:84:04:a2:c4:e5: 4a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4A:8B:6E:B6:B8:EC:33:37:46:DF:FF:90:34:DB:A0:77:E0:0A:ED X509v3 Authority Key Identifier: keyid:28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.125.0/24 Signature Algorithm: sha256WithRSAEncryption 45:1d:8b:55:a7:c6:5e:c9:b9:7a:97:95:e3:3a:df:9d:0b:6d: 24:c3:09:59:9c:63:c0:75:4e:69:a9:8f:fd:22:3d:30:46:cd: 89:10:bc:3d:75:07:e4:f5:14:71:3b:f5:2c:cb:79:12:be:79: f0:49:bf:fc:37:62:f2:22:cb:bc:10:f9:ac:4b:17:78:e8:b8: e2:ac:d3:fc:f9:cc:23:00:19:73:95:ce:fa:49:be:22:cb:13: 31:df:33:1f:c5:a6:5a:eb:fa:90:00:c3:33:b2:c4:bb:de:8b: 15:08:0a:fa:41:8a:7f:19:58:16:4d:b9:2c:42:c0:67:89:99: 5d:fe:6d:cb:5c:d4:98:1b:7a:b2:e7:f4:a4:33:0d:17:7d:b3: 5b:7b:36:fd:54:67:0a:22:5e:94:fe:8c:ed:eb:60:cb:a2:3e: 79:cb:74:37:13:db:bc:20:8c:b4:d8:c8:0c:a2:48:be:ad:57: bd:e9:60:67:84:8b:5c:0a:9a:60:63:6f:b2:c5:1b:76:d3:8f: a2:4d:91:0b:f6:28:28:c1:6f:81:b8:78:da:2c:98:06:3f:c6: d3:a8:06:00:da:d6:09:f2:c6:08:48:6d:66:c2:60:64:3e:aa: d0:f6:7d:ff:b3:c3:65:78:94:45:01:a2:30:c4:4e:67:3e:c0: db:b2:35:f9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYNwrLD5b8UWGafw2DF4ZcBD37a8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNC QTcwQTgyMjAeFw0yNjAzMTIwMzU4NTBaFw0yNzAzMTEwNDAzNTBaMDMxMTAvBgNV BAMTKEJCNEE4QjZFQjZCOEVDMzMzNzQ2REZGRjkwMzREQkEwNzdFMDBBRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBiV/RG1q5nUZrO54/nX/+vVty AzW2oPTmqGTtxg/wXQftskm/JJPU4Xf5QprdMmlGOrXdLgte4QsR1MQYpEDnJIfP /H/WJiy8TIluFxGHbTCaoOqFT5Sx60d5nyU+COd+5KoT/pOQqf/RiZKVXfRPizc8 coQWXLeFSXnvhtHjTEWvmrGUpxpmfJmGqPptMxTvguNRbqbYSMoYAIqhZ/sZngLW 6vZc6Yylgerilu8NWS5gEpAv8vQvI90W4d4CU89bpPMkBw5yagJVUi6k4YDPB9b/ jaUg48qUKrj1cCsGHgiLR7Rk8oNqiHA+FgJ8K7U3TdINlQp+316EBKLE5UpRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUu0qLbra47DM3Rt//kDTboHfgCu0wHwYDVR0j BBgwFoAUKCiB5rQ9IG+vvRh57VZ47LpwqCIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTdkNGQ4MS0zYmU4LTQyMzAtODk1OS0yZGMyYWY5ZDA4NWUvMC8yODI4ODFFNkI0 M0QyMDZGQUZCRDE4NzlFRDU2NzhFQ0JBNzBBODIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNCQTcw QTgyMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1N2Q0ZDgxLTNiZTgtNDIzMC04 OTU5LTJkYzJhZjlkMDg1ZS8wLzMxMzAzMzJlMzEzNDM1MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkX0wDQYJ KoZIhvcNAQELBQADggEBAEUdi1Wnxl7JuXqXleM6350LbSTDCVmcY8B1Tmmpj/0i PTBGzYkQvD11B+T1FHE79SzLeRK+efBJv/w3YvIiy7wQ+axLF3jouOKs0/z5zCMA GXOVzvpJviLLEzHfMx/Fplrr+pAAwzOyxLveixUICvpBin8ZWBZNuSxCwGeJmV3+ bctc1JgberLn9KQzDRd9s1t7Nv1UZwoiXpT+jO3rYMuiPnnLdDcT27wgjLTYyAyi SL6tV73pYGeEi1wKmmBjb7LFG3bTj6JNkQv2KCjBb4G4eNosmAY/xtOoBgDa1gny xghIbWbCYGQ+qtD2ff+zw2V4lEUBojDETmc+wNuyNfk= -----END CERTIFICATE-----Generated at Fri Mar 27 00:11:20 2026 by rpki-client