$ rpki-client -vvf repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa File: 3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: gOpiT2ygwdALFaKQD2WqC6dJrmqmX6yVbJIHGQfj3E4= Subject key identifier: F8:F9:39:D0:FA:29:A8:9F:BB:70:9E:E7:7A:A5:13:8A:AA:78:19:7A Certificate issuer: /CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Certificate serial: 5F7F4CC9CE2DBCDDE11532579FE3E37D3736CD2D Authority key identifier: 6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa Signing time: Thu 26 Mar 2026 05:00:00 +0000 ROA not before: Thu 26 Mar 2026 04:55:00 +0000 ROA not after: Thu 25 Mar 2027 05:00:00 +0000 asID: 131111 IP address blocks: 103.158.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7f:4c:c9:ce:2d:bc:dd:e1:15:32:57:9f:e3:e3:7d:37:36:cd:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Validity Not Before: Mar 26 04:55:00 2026 GMT Not After : Mar 25 05:00:00 2027 GMT Subject: CN=F8F939D0FA29A89FBB709EE77AA5138AAA78197A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:57:29:69:c5:3f:19:e7:14:fc:43:41:56:c7: c6:a9:4f:3c:a9:d8:8e:28:a1:89:c4:d4:bc:5e:ae: b1:90:61:eb:c3:1b:02:f8:a6:19:3d:4a:05:66:1b: ae:65:4f:ed:6e:6c:24:7d:3c:10:5d:5a:7d:37:76: df:03:e4:14:b3:06:cd:2a:17:72:47:bd:7e:ca:c6: 08:3d:42:08:9f:5b:42:c5:27:b8:eb:21:09:c4:24: 39:1d:06:29:aa:1b:f5:34:a5:25:93:c5:c6:95:85: 4e:c3:d1:da:da:8a:cf:95:c4:73:0c:eb:a2:f9:12: 3e:81:3b:75:ab:4a:36:27:e1:3b:c3:cc:78:a8:f9: c2:7e:6c:9f:4a:cd:48:03:cc:29:22:03:6a:de:91: 3e:e9:94:ea:ff:1b:5d:e3:d2:22:92:d4:01:cd:24: d9:38:92:0a:89:2d:0c:b3:20:66:ac:4d:77:67:dc: 56:33:34:30:db:e2:e8:18:32:b0:d9:44:5a:1c:b5: 83:f3:47:9a:fe:44:05:81:14:cb:f9:a1:84:35:82: 15:25:f8:3c:f0:20:d2:19:b3:57:9b:b5:40:9a:82: 83:f2:23:c3:0e:71:a8:7c:6d:61:0c:5e:e4:fc:bb: 5e:aa:c0:6e:2b:e7:d6:c8:a8:b7:b2:61:9f:75:ab: f5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F9:39:D0:FA:29:A8:9F:BB:70:9E:E7:7A:A5:13:8A:AA:78:19:7A X509v3 Authority Key Identifier: keyid:6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.194.0/24 Signature Algorithm: sha256WithRSAEncryption 12:33:2e:de:f4:7a:12:00:b9:14:91:0e:0f:15:98:a5:b8:1d: f2:7b:9d:eb:9c:23:d5:dc:30:d2:56:49:a5:79:2e:d6:3d:4d: 64:69:8e:d3:60:84:c2:8d:13:08:5e:11:5b:7d:ca:d8:08:08: 96:18:34:b4:36:16:7e:e6:06:09:0d:78:f9:ea:74:c7:54:00: 60:87:55:12:0f:23:5c:39:86:ed:f2:46:e5:49:da:46:06:42: 2e:72:17:2a:bc:19:c8:b6:90:37:16:01:83:1e:b1:f3:33:19: e8:cb:3e:2f:db:a3:33:f6:5b:eb:7b:50:e2:a3:35:b2:03:37: 3b:32:37:0e:a8:c1:58:20:11:97:f6:b8:fe:82:f1:95:d0:66: 8b:f3:8a:2c:80:85:57:94:42:9d:f2:8b:83:8c:9a:7a:59:18: 6d:98:af:cd:a7:c8:52:04:47:9d:98:2b:04:8b:6b:e1:a3:4e: 88:a1:a0:24:ed:72:89:8a:c8:96:4c:b5:0d:6e:ba:78:b2:14: 06:c9:d1:80:37:4a:9d:f3:aa:55:f0:4d:4c:58:23:50:05:7b: b0:ee:5a:5a:6a:a6:3c:4c:a9:e2:42:f4:53:19:6e:93:f9:9c: d4:09:d0:0e:f9:54:e7:af:e7:1e:bc:e8:a7:16:11:b9:9b:2c: f8:31:cf:0b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX39Myc4tvN3hFTJXn+PjfTc2zS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlD MEYyRTNGNzAeFw0yNjAzMjYwNDU1MDBaFw0yNzAzMjUwNTAwMDBaMDMxMTAvBgNV BAMTKEY4RjkzOUQwRkEyOUE4OUZCQjcwOUVFNzdBQTUxMzhBQUE3ODE5N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoVylpxT8Z5xT8Q0FWx8apTzyp 2I4ooYnE1LxerrGQYevDGwL4phk9SgVmG65lT+1ubCR9PBBdWn03dt8D5BSzBs0q F3JHvX7Kxgg9QgifW0LFJ7jrIQnEJDkdBimqG/U0pSWTxcaVhU7D0drais+VxHMM 66L5Ej6BO3WrSjYn4TvDzHio+cJ+bJ9KzUgDzCkiA2rekT7plOr/G13j0iKS1AHN JNk4kgqJLQyzIGasTXdn3FYzNDDb4ugYMrDZRFoctYPzR5r+RAWBFMv5oYQ1ghUl +DzwINIZs1ebtUCagoPyI8MOcah8bWEMXuT8u16qwG4r59bIqLeyYZ91q/XTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+Pk50PopqJ+7cJ7neqUTiqp4GXowHwYDVR0j BBgwFoAUagLcEPQfzg60l5jdvPMfycDy4/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTQ2YmRhZC1mMTMwLTQ4YTktODUzNC01NGJhM2U4ZWQ2MWYvMC82QTAyREMxMEY0 MUZDRTBFQjQ5Nzk4RERCQ0YzMUZDOUMwRjJFM0Y3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlDMEYy RTNGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNDZiZGFkLWYxMzAtNDhhOS04 NTM0LTU0YmEzZThlZDYxZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsIwDQYJ KoZIhvcNAQELBQADggEBABIzLt70ehIAuRSRDg8VmKW4HfJ7neucI9XcMNJWSaV5 LtY9TWRpjtNghMKNEwheEVt9ytgICJYYNLQ2Fn7mBgkNePnqdMdUAGCHVRIPI1w5 hu3yRuVJ2kYGQi5yFyq8Gci2kDcWAYMesfMzGejLPi/bozP2W+t7UOKjNbIDNzsy Nw6owVggEZf2uP6C8ZXQZovziiyAhVeUQp3yi4OMmnpZGG2Yr82nyFIER52YKwSL a+GjToihoCTtcomKyJZMtQ1uuniyFAbJ0YA3Sp3zqlXwTUxYI1AFe7DuWlpqpjxM qeJC9FMZbpP5nNQJ0A75VOev5x686KcWEbmbLPgxzws= -----END CERTIFICATE-----Generated at Thu Mar 26 21:43:04 2026 by rpki-client