$ rpki-client -vvf repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa File: 3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa (raw, json) Hash identifier: zPJwoYlYVUWfKNJbenzQ4XPKJqwUvv7VGWry1rzbZSc= Subject key identifier: CA:6E:54:BC:A5:F4:8A:A5:96:E0:58:5D:C4:84:98:29:BE:12:10:8C Certificate issuer: /CN=00CBB314A3396508984527DC9E3F91DA2A407863 Certificate serial: 4FBD0A944C74A69E4D125207AE62828E71D7F3AB Authority key identifier: 00:CB:B3:14:A3:39:65:08:98:45:27:DC:9E:3F:91:DA:2A:40:78:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer Subject info access: rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa Signing time: Sat 14 Mar 2026 09:00:01 +0000 ROA not before: Sat 14 Mar 2026 08:55:01 +0000 ROA not after: Sat 13 Mar 2027 09:00:01 +0000 asID: 150931 IP address blocks: 103.196.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.crl rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 09:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:bd:0a:94:4c:74:a6:9e:4d:12:52:07:ae:62:82:8e:71:d7:f3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00CBB314A3396508984527DC9E3F91DA2A407863 Validity Not Before: Mar 14 08:55:01 2026 GMT Not After : Mar 13 09:00:01 2027 GMT Subject: CN=CA6E54BCA5F48AA596E0585DC4849829BE12108C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:30:b5:77:92:3d:f9:32:29:39:15:af:1f:23: 75:8e:11:8c:ff:d1:cb:c5:1d:0e:6b:e0:50:e4:ae: a6:9f:75:7d:82:ba:a5:2f:8c:92:6f:01:e2:46:68: 72:8c:ac:34:4a:d9:bc:0c:e3:c4:af:71:54:c9:0d: 3a:e7:f5:29:a5:c1:d9:28:0d:5b:aa:76:8f:2d:78: c4:b4:33:a7:81:8b:d9:f4:7f:a6:1b:7f:65:67:4d: b2:12:ff:86:48:36:d9:62:23:e7:2f:c9:8b:b0:5f: ac:db:2f:e7:1a:20:5d:51:ef:b6:3a:ff:c3:ab:f8: bb:f3:76:76:c3:ae:5b:ff:07:62:f5:d9:b4:c2:04: 9e:12:67:de:15:54:dd:10:94:92:b8:1f:ec:4c:71: 15:6e:3c:16:8e:99:e1:bf:a0:6c:91:71:28:0f:6e: 8d:dc:f8:b0:b9:d8:4b:ef:8d:d6:22:dd:6c:50:e9: 4d:05:45:96:f7:b7:8d:fb:fe:79:24:1b:88:92:95: 9c:f9:4b:83:c9:1f:ae:61:70:a5:a2:cc:48:09:f6: a6:2e:8d:a2:6d:15:bf:e3:73:e5:33:c6:2b:ed:c3: f4:f3:63:40:a9:5d:38:91:51:b7:e0:9c:78:29:2c: 64:3e:80:44:33:89:91:5d:82:fe:61:9d:d1:f5:51: af:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6E:54:BC:A5:F4:8A:A5:96:E0:58:5D:C4:84:98:29:BE:12:10:8C X509v3 Authority Key Identifier: keyid:00:CB:B3:14:A3:39:65:08:98:45:27:DC:9E:3F:91:DA:2A:40:78:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.85.0/24 Signature Algorithm: sha256WithRSAEncryption b7:ec:e9:9c:7a:48:42:fc:22:6a:ba:ae:76:20:21:b6:f9:1a: b1:27:05:be:98:b5:52:36:3a:de:8c:44:bf:2a:7d:04:8a:59: 3f:b1:54:39:09:7c:63:b5:14:3f:d8:c4:99:99:39:20:a3:34: 16:32:43:c1:47:c9:9c:ba:69:16:34:85:40:3e:c1:79:c1:b8: 6e:89:17:60:11:81:a3:44:05:6f:39:ea:51:58:6a:9a:ac:4e: 9a:82:1b:85:af:36:35:45:0e:51:4c:4e:87:52:60:86:c3:f6: 8d:b6:bb:aa:cb:ac:62:a6:c3:c4:e7:2f:bc:4b:e4:7b:8f:5e: 9c:3e:38:a1:7a:32:44:b5:e6:cf:fc:24:45:99:fe:c5:2c:58: fa:ab:84:2b:1c:62:80:eb:ae:94:aa:d4:0c:f9:76:47:92:bc: 65:f5:4c:16:58:5f:be:08:52:98:72:d5:77:17:0d:7c:7f:9b: 88:4d:87:3d:0a:c9:6e:e2:06:90:8f:ed:af:97:f2:06:64:a4: 26:b3:9c:95:c9:c9:a8:e5:45:3f:da:d5:08:af:d9:60:8d:3a: 0a:b5:99:b2:09:5d:c8:0d:d0:35:53:eb:a7:e0:18:06:7c:29: 6a:34:89:f2:b3:5b:d7:19:b6:d6:e2:6a:89:5b:66:7d:67:28: 08:79:8e:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT70KlEx0pp5NElIHrmKCjnHX86swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBDQkIzMTRBMzM5NjUwODk4NDUyN0RDOUUzRjkxREEy QTQwNzg2MzAeFw0yNjAzMTQwODU1MDFaFw0yNzAzMTMwOTAwMDFaMDMxMTAvBgNV BAMTKENBNkU1NEJDQTVGNDhBQTU5NkUwNTg1REM0ODQ5ODI5QkUxMjEwOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXMLV3kj35Mik5Fa8fI3WOEYz/ 0cvFHQ5r4FDkrqafdX2CuqUvjJJvAeJGaHKMrDRK2bwM48SvcVTJDTrn9Smlwdko DVuqdo8teMS0M6eBi9n0f6Ybf2VnTbIS/4ZINtliI+cvyYuwX6zbL+caIF1R77Y6 /8Or+LvzdnbDrlv/B2L12bTCBJ4SZ94VVN0QlJK4H+xMcRVuPBaOmeG/oGyRcSgP bo3c+LC52EvvjdYi3WxQ6U0FRZb3t437/nkkG4iSlZz5S4PJH65hcKWizEgJ9qYu jaJtFb/jc+Uzxivtw/TzY0CpXTiRUbfgnHgpLGQ+gEQziZFdgv5hndH1Ua/xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUym5UvKX0iqWW4FhdxISYKb4SEIwwHwYDVR0j BBgwFoAUAMuzFKM5ZQiYRSfcnj+R2ipAeGMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NzRkYzVlMS0xZDU1LTQ5ZDItOTNkNC01ZDk4ZWFkNzc5ZWQvMC8wMENCQjMxNEEz Mzk2NTA4OTg0NTI3REM5RTNGOTFEQTJBNDA3ODYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBDQkIzMTRBMzM5NjUwODk4NDUyN0RDOUUzRjkxREEyQTQw Nzg2My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3NGRjNWUxLTFkNTUtNDlkMi05 M2Q0LTVkOThlYWQ3NzllZC8wLzMxMzAzMzJlMzEzOTM2MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8RVMA0GCSqG SIb3DQEBCwUAA4IBAQC37OmcekhC/CJquq52ICG2+RqxJwW+mLVSNjrejES/Kn0E ilk/sVQ5CXxjtRQ/2MSZmTkgozQWMkPBR8mcumkWNIVAPsF5wbhuiRdgEYGjRAVv OepRWGqarE6aghuFrzY1RQ5RTE6HUmCGw/aNtruqy6xipsPE5y+8S+R7j16cPjih ejJEtebP/CRFmf7FLFj6q4QrHGKA666UqtQM+XZHkrxl9UwWWF++CFKYctV3Fw18 f5uITYc9Cslu4gaQj+2vl/IGZKQms5yVycmo5UU/2tUIr9lgjToKtZmyCV3IDdA1 U+un4BgGfClqNInys1vXGbbW4mqJW2Z9ZygIeY4V -----END CERTIFICATE-----Generated at Thu Mar 26 17:11:36 2026 by rpki-client