$ rpki-client -vvf repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa File: 3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa (raw, json) Hash identifier: 0xPkP0aeNrz87Zm2U7QlyTbDxyUl/q+yySPJihN9ETc= Subject key identifier: 62:05:EB:D3:FC:E6:FD:E8:92:10:C7:BC:9E:F4:9B:A8:D1:10:5F:8F Certificate issuer: /CN=6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF Certificate serial: 1BAE60F5396F381FF59BEE11ECB742611F679332 Authority key identifier: 6E:3C:89:E6:A3:E3:C6:1A:73:15:8A:3C:FF:82:90:9F:AE:F8:ED:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa Signing time: Wed 04 Mar 2026 09:00:01 +0000 ROA not before: Wed 04 Mar 2026 08:55:01 +0000 ROA not after: Wed 03 Mar 2027 09:00:01 +0000 asID: 142335 IP address blocks: 103.169.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.crl rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 17:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ae:60:f5:39:6f:38:1f:f5:9b:ee:11:ec:b7:42:61:1f:67:93:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF Validity Not Before: Mar 4 08:55:01 2026 GMT Not After : Mar 3 09:00:01 2027 GMT Subject: CN=6205EBD3FCE6FDE89210C7BC9EF49BA8D1105F8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e6:6d:0e:46:15:52:51:af:73:53:58:b2:b3: 22:ef:db:49:02:2a:8d:c1:60:a2:fb:55:4f:92:f3: b6:6f:5e:ff:07:8f:c7:8b:77:95:e2:7e:0c:39:ae: 0a:67:b9:93:3d:4d:09:a6:b1:2c:da:07:79:7f:f6: 47:5c:7e:1d:ae:c3:cb:af:b7:a5:25:88:6d:47:6f: 48:07:36:02:da:96:ed:87:33:dd:e8:3b:c3:c4:c0: 5c:f0:8f:40:19:e3:8e:9f:66:12:aa:6e:44:e3:d0: f9:08:76:60:12:d2:f9:ab:db:70:85:3a:63:b9:5a: 21:aa:40:9b:73:47:ed:50:3c:ba:f7:9b:ac:19:0b: 02:62:a8:11:b6:f8:7e:bb:7a:24:ea:e6:fc:c6:56: 05:a2:16:ce:9f:cc:b8:f6:3d:d6:d6:ff:40:2b:32: 45:9b:83:35:32:31:ba:74:71:2a:6e:28:52:de:74: dc:85:e3:f6:d8:00:ed:53:69:c6:10:e7:d9:6a:d4: cf:37:33:50:58:07:f6:13:30:64:d1:96:b9:51:fe: 9d:0c:44:f6:81:c0:36:da:b2:38:47:ce:ec:4c:39: ba:3b:74:57:7b:7f:be:66:df:6b:1e:0c:c0:7c:38: e9:77:c5:cc:5b:97:2c:4e:95:c2:32:88:75:b9:46: b8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:05:EB:D3:FC:E6:FD:E8:92:10:C7:BC:9E:F4:9B:A8:D1:10:5F:8F X509v3 Authority Key Identifier: keyid:6E:3C:89:E6:A3:E3:C6:1A:73:15:8A:3C:FF:82:90:9F:AE:F8:ED:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.10.0/23 Signature Algorithm: sha256WithRSAEncryption 52:54:7f:bf:1c:49:1b:32:87:e8:50:0f:0a:91:bd:1a:52:71: 87:e5:10:95:81:6c:1a:f9:94:ad:cc:73:76:8a:25:5d:28:30: aa:8c:7c:d4:e8:29:78:4f:0e:e7:c3:28:40:59:72:57:c1:27: 6a:ee:4f:e8:22:6b:af:e9:4f:86:8b:21:c9:df:93:d3:7e:97: 16:52:c1:66:c4:1a:cf:e6:dc:fa:d5:72:0f:4c:4f:01:1c:73: 64:a0:5d:e9:f6:12:a0:84:3c:75:e4:8c:3e:3b:73:c7:6a:26: f6:d8:08:83:91:f7:35:37:1f:05:90:e7:28:01:ef:07:a6:8d: aa:d6:a1:5f:9c:f5:74:15:3b:87:1d:d3:fe:40:35:c2:0d:5e: e6:76:00:cb:8b:be:0a:a2:a8:fc:64:7a:49:85:b0:a3:b0:bc: 42:83:c7:85:cd:58:18:23:2f:b5:f9:5d:b3:57:86:3b:1c:00: 4e:e2:f3:d0:a9:82:41:cb:20:7d:a3:92:1f:05:88:76:12:37: 27:d2:e8:46:dc:97:0b:ba:20:48:14:51:ac:f0:80:de:5f:52: 22:43:3d:4c:3e:06:ef:cd:a7:6b:fa:1f:13:c2:9d:a0:30:61: 05:c6:11:e3:3f:52:44:a2:45:f5:fa:03:38:58:86:a7:91:f0: 2c:c6:bb:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG65g9TlvOB/1m+4R7LdCYR9nkzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkUzQzg5RTZBM0UzQzYxQTczMTU4QTNDRkY4MjkwOUZB RUY4RURFRjAeFw0yNjAzMDQwODU1MDFaFw0yNzAzMDMwOTAwMDFaMDMxMTAvBgNV BAMTKDYyMDVFQkQzRkNFNkZERTg5MjEwQzdCQzlFRjQ5QkE4RDExMDVGOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt5m0ORhVSUa9zU1iysyLv20kC Ko3BYKL7VU+S87ZvXv8Hj8eLd5Xifgw5rgpnuZM9TQmmsSzaB3l/9kdcfh2uw8uv t6UliG1Hb0gHNgLalu2HM93oO8PEwFzwj0AZ446fZhKqbkTj0PkIdmAS0vmr23CF OmO5WiGqQJtzR+1QPLr3m6wZCwJiqBG2+H67eiTq5vzGVgWiFs6fzLj2PdbW/0Ar MkWbgzUyMbp0cSpuKFLedNyF4/bYAO1TacYQ59lq1M83M1BYB/YTMGTRlrlR/p0M RPaBwDbasjhHzuxMObo7dFd7f75m32seDMB8OOl3xcxblyxOlcIyiHW5Rrg5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYgXr0/zm/eiSEMe8nvSbqNEQX48wHwYDVR0j BBgwFoAUbjyJ5qPjxhpzFYo8/4KQn6747e8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWFhOGNiZS03MThiLTQ5NTMtYjc4OS02MGZhODU3YWVjOGQvMC82RTNDODlFNkEz RTNDNjFBNzMxNThBM0NGRjgyOTA5RkFFRjhFREVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkUzQzg5RTZBM0UzQzYxQTczMTU4QTNDRkY4MjkwOUZBRUY4 RURFRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlYWE4Y2JlLTcxOGItNDk1My1i Nzg5LTYwZmE4NTdhZWM4ZC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6kKMA0GCSqG SIb3DQEBCwUAA4IBAQBSVH+/HEkbMofoUA8Kkb0aUnGH5RCVgWwa+ZStzHN2iiVd KDCqjHzU6Cl4Tw7nwyhAWXJXwSdq7k/oImuv6U+GiyHJ35PTfpcWUsFmxBrP5tz6 1XIPTE8BHHNkoF3p9hKghDx15Iw+O3PHaib22AiDkfc1Nx8FkOcoAe8Hpo2q1qFf nPV0FTuHHdP+QDXCDV7mdgDLi74Koqj8ZHpJhbCjsLxCg8eFzVgYIy+1+V2zV4Y7 HABO4vPQqYJByyB9o5IfBYh2Ejcn0uhG3JcLuiBIFFGs8IDeX1IiQz1MPgbvzadr +h8Twp2gMGEFxhHjP1JEokX1+gM4WIankfAsxrtI -----END CERTIFICATE-----Generated at Thu Mar 26 19:31:45 2026 by rpki-client