$ rpki-client -vvf repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa File: 3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa (raw, json) Hash identifier: 21fs7o5EBuojvRKKFjYztRKfi3uVShv1etf2zh6TGYI= Subject key identifier: FC:59:B2:C9:09:5C:07:13:46:F7:02:25:43:3C:D4:79:2E:41:C8:B0 Certificate issuer: /CN=EFCC7BEA840185763FF7624CF3DDE00563137A27 Certificate serial: 4904DF99768EB39DFF2828A429A5754E85D8AF33 Authority key identifier: EF:CC:7B:EA:84:01:85:76:3F:F7:62:4C:F3:DD:E0:05:63:13:7A:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa Signing time: Wed 04 Mar 2026 08:00:01 +0000 ROA not before: Wed 04 Mar 2026 07:55:01 +0000 ROA not after: Wed 03 Mar 2027 08:00:01 +0000 asID: 142315 IP address blocks: 103.168.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.crl rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:04:df:99:76:8e:b3:9d:ff:28:28:a4:29:a5:75:4e:85:d8:af:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFCC7BEA840185763FF7624CF3DDE00563137A27 Validity Not Before: Mar 4 07:55:01 2026 GMT Not After : Mar 3 08:00:01 2027 GMT Subject: CN=FC59B2C9095C071346F70225433CD4792E41C8B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9f:82:2a:95:90:ac:9b:a2:b4:42:cf:05:61: 55:3e:d1:c6:a4:d5:d3:d5:27:45:99:ec:04:38:87: 9e:d4:8d:a1:66:6a:4f:48:40:6f:b5:0d:0a:00:78: da:22:7b:53:f4:ea:a9:1d:5b:d3:3d:c5:ac:1a:58: 15:c1:2d:d1:54:a5:a9:f3:27:b2:8d:5c:6d:67:9a: d4:b4:21:0a:33:99:83:48:fd:9b:78:94:8e:72:9f: 39:65:3e:53:07:f7:30:c9:1f:f4:42:b1:1c:34:3e: 8a:cf:95:13:12:1f:5d:aa:6f:97:a9:7f:b5:61:f6: a1:d2:1e:93:c8:63:92:66:86:0c:74:70:40:56:a8: 57:70:f0:af:89:2a:09:7e:70:4a:00:22:c7:31:9a: f0:bb:9d:02:e1:fc:3c:f1:42:93:a1:a9:0a:43:f0: cb:be:e2:19:f0:e6:64:3d:54:d5:f1:7d:70:da:90: c9:fa:40:54:c7:ed:f8:93:13:f0:6b:41:9b:0b:1f: d5:39:f3:40:8b:2e:bb:0d:1a:1d:53:e5:64:5d:00: 98:15:fc:f2:43:93:65:2b:71:b2:f4:db:49:20:68: a3:28:b0:b9:35:ca:01:73:5d:77:88:23:eb:6a:9c: c4:14:69:db:7f:88:8c:96:ef:b3:59:b5:02:e0:3a: bd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:59:B2:C9:09:5C:07:13:46:F7:02:25:43:3C:D4:79:2E:41:C8:B0 X509v3 Authority Key Identifier: keyid:EF:CC:7B:EA:84:01:85:76:3F:F7:62:4C:F3:DD:E0:05:63:13:7A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.149.0/24 Signature Algorithm: sha256WithRSAEncryption 19:53:d4:c2:cf:1a:17:e5:0a:44:c8:fd:07:5d:08:d5:38:34: 55:17:ee:fb:52:d6:5a:5b:5a:d0:d5:6f:71:7d:f5:dd:b6:a5: e3:8d:ba:ea:0f:04:3c:40:af:02:42:67:62:a3:f8:7b:61:50: 03:e5:24:93:f2:27:e7:fd:15:92:a6:11:38:83:ac:80:33:c8: 9f:a3:88:fe:aa:84:1b:8f:2a:f4:7c:87:45:e2:9e:d3:17:2a: d0:c3:9d:65:a3:e4:5e:a8:80:20:c6:bc:ba:da:69:d0:d4:12: 77:e0:3f:bc:bb:e4:b1:0a:30:f7:78:36:53:4e:16:73:f5:05: 57:b7:45:0f:48:60:52:41:80:2a:19:6b:f1:92:eb:8f:02:ce: f8:f2:0d:19:f5:80:c6:01:ff:8a:d5:7e:f4:4d:f8:27:9d:e0: 89:95:ae:08:98:ef:79:14:e7:ca:0a:ff:5b:c1:2a:bc:41:4b: 14:1e:fb:66:db:2f:8d:2e:bd:48:90:bf:11:ec:9e:58:d7:42: ff:2c:c5:84:3c:08:93:a3:b1:fa:39:66:43:d2:95:d9:f5:db: 59:3b:e2:41:50:22:67:04:fd:bb:fc:2d:15:6c:59:cf:dd:a1: 20:69:9f:6e:91:52:b0:8b:bb:43:96:b9:8f:7e:5b:a0:ae:2a: bd:ae:7b:61 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSQTfmXaOs53/KCikKaV1ToXYrzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDQzdCRUE4NDAxODU3NjNGRjc2MjRDRjNEREUwMDU2 MzEzN0EyNzAeFw0yNjAzMDQwNzU1MDFaFw0yNzAzMDMwODAwMDFaMDMxMTAvBgNV BAMTKEZDNTlCMkM5MDk1QzA3MTM0NkY3MDIyNTQzM0NENDc5MkU0MUM4QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvn4IqlZCsm6K0Qs8FYVU+0cak 1dPVJ0WZ7AQ4h57UjaFmak9IQG+1DQoAeNoie1P06qkdW9M9xawaWBXBLdFUpanz J7KNXG1nmtS0IQozmYNI/Zt4lI5ynzllPlMH9zDJH/RCsRw0PorPlRMSH12qb5ep f7Vh9qHSHpPIY5Jmhgx0cEBWqFdw8K+JKgl+cEoAIscxmvC7nQLh/DzxQpOhqQpD 8Mu+4hnw5mQ9VNXxfXDakMn6QFTH7fiTE/BrQZsLH9U580CLLrsNGh1T5WRdAJgV /PJDk2UrcbL020kgaKMosLk1ygFzXXeII+tqnMQUadt/iIyW77NZtQLgOr2FAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/FmyyQlcBxNG9wIlQzzUeS5ByLAwHwYDVR0j BBgwFoAU78x76oQBhXY/92JM893gBWMTeicwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZGQwNzhmZS0wOTMwLTQ1ZGMtYjQwMy0zY2U0ZTg2M2Y4YjUvMC9FRkNDN0JFQTg0 MDE4NTc2M0ZGNzYyNENGM0RERTAwNTYzMTM3QTI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDQzdCRUE4NDAxODU3NjNGRjc2MjRDRjNEREUwMDU2MzEz N0EyNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZDA3OGZlLTA5MzAtNDVkYy1i NDAzLTNjZTRlODYzZjhiNS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJUwDQYJ KoZIhvcNAQELBQADggEBABlT1MLPGhflCkTI/QddCNU4NFUX7vtS1lpbWtDVb3F9 9d22peONuuoPBDxArwJCZ2Kj+HthUAPlJJPyJ+f9FZKmETiDrIAzyJ+jiP6qhBuP KvR8h0XintMXKtDDnWWj5F6ogCDGvLraadDUEnfgP7y75LEKMPd4NlNOFnP1BVe3 RQ9IYFJBgCoZa/GS648CzvjyDRn1gMYB/4rVfvRN+Ced4ImVrgiY73kU58oK/1vB KrxBSxQe+2bbL40uvUiQvxHsnljXQv8sxYQ8CJOjsfo5ZkPSldn121k74kFQImcE /bv8LRVsWc/doSBpn26RUrCLu0OWuY9+W6CuKr2ue2E= -----END CERTIFICATE-----Generated at Thu Mar 26 17:08:04 2026 by rpki-client