$ rpki-client -vvf repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/3130332e3132332e3137342e302f32342d3234203d3e20313530393638.roa File: 3130332e3132332e3137342e302f32342d3234203d3e20313530393638.roa (raw, json) Hash identifier: o1UGgLrYpGF/8t4HBvB/dOfi8G0yQMGfokHklcajpzQ= Subject key identifier: 65:AF:F3:A5:FF:3E:3B:94:AF:1A:87:9B:B4:E3:79:F1:CF:A6:5B:88 Certificate issuer: /CN=5AD19173FE66EE2B9E995A99ED7DC4230113BDEF Certificate serial: 602D08A9BB612C0F6FDB1C656B47708DF13D54D9 Authority key identifier: 5A:D1:91:73:FE:66:EE:2B:9E:99:5A:99:ED:7D:C4:23:01:13:BD:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/3130332e3132332e3137342e302f32342d3234203d3e20313530393638.roa Signing time: Wed 18 Mar 2026 04:01:24 +0000 ROA not before: Wed 18 Mar 2026 03:56:24 +0000 ROA not after: Wed 17 Mar 2027 04:01:24 +0000 asID: 150968 IP address blocks: 103.123.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.crl rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 17:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:2d:08:a9:bb:61:2c:0f:6f:db:1c:65:6b:47:70:8d:f1:3d:54:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AD19173FE66EE2B9E995A99ED7DC4230113BDEF Validity Not Before: Mar 18 03:56:24 2026 GMT Not After : Mar 17 04:01:24 2027 GMT Subject: CN=65AFF3A5FF3E3B94AF1A879BB4E379F1CFA65B88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ce:14:2d:aa:1d:e1:65:49:06:04:51:0c:79: 70:fc:e0:eb:05:5b:f3:05:10:35:88:d2:20:3b:8c: 1c:66:d5:0c:32:96:69:07:4b:b3:fb:f5:f6:5f:e0: 73:bb:1d:01:88:64:02:b6:02:97:47:ea:43:17:e7: 41:ce:0e:54:67:0a:19:a4:77:8f:4b:dd:d9:26:f3: aa:0a:9f:a8:55:e0:16:ad:d2:44:d9:93:79:cd:d4: c8:41:2f:24:39:30:aa:9b:d8:a1:85:79:85:c0:eb: 4d:3b:09:86:30:3c:9a:eb:fa:c1:45:7e:dd:07:be: 2b:3b:27:60:a1:db:34:e3:a2:03:86:3e:08:e8:c4: 24:07:88:1b:e1:e5:e7:58:2f:f8:79:b7:f0:02:4d: 69:5d:a6:c0:c9:1f:89:c4:fb:74:df:1c:68:8c:19: 45:6d:8b:46:8a:86:5d:21:f6:aa:ee:9d:4e:e9:0f: c7:54:2c:c9:00:95:ce:26:f6:df:62:cd:01:45:02: 8b:88:04:11:40:95:42:98:b8:be:77:aa:60:a8:fd: 18:f1:52:5c:e0:ef:fb:85:ff:c3:4c:f6:42:51:12: c3:03:b3:de:52:84:d3:82:82:b7:5a:ad:bb:4f:89: a6:a5:77:2e:3b:e4:fa:ba:5a:7a:ec:01:ad:01:71: 19:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:AF:F3:A5:FF:3E:3B:94:AF:1A:87:9B:B4:E3:79:F1:CF:A6:5B:88 X509v3 Authority Key Identifier: keyid:5A:D1:91:73:FE:66:EE:2B:9E:99:5A:99:ED:7D:C4:23:01:13:BD:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/3130332e3132332e3137342e302f32342d3234203d3e20313530393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.174.0/24 Signature Algorithm: sha256WithRSAEncryption 28:b0:42:3e:68:69:d2:34:45:d6:50:a2:42:ea:ec:31:90:d8: ce:2d:17:c8:fa:de:d0:ee:65:33:0a:2a:6f:10:e5:55:b4:31: 8b:8f:f5:71:6e:ad:92:42:b3:22:2b:bb:64:cf:c4:fa:a9:1d: a3:35:85:9d:c8:16:13:14:5b:f4:7c:79:78:89:aa:bb:b0:17: af:b8:fa:3d:78:ee:ae:8f:25:9a:58:75:39:25:c3:97:05:78: 15:30:fc:59:de:44:13:53:b3:89:99:bf:86:c2:5f:1c:a0:1c: d7:eb:b2:94:31:fa:45:24:82:af:86:e5:75:86:69:91:97:cc: 12:31:e4:6a:d5:d0:61:7f:56:9f:35:63:c6:a4:cc:b0:78:bd: b4:ae:d5:b7:a7:fd:e4:5a:53:2f:45:b5:6d:9e:50:37:35:47: 94:df:15:43:1d:e4:65:3c:97:9c:39:51:e0:c5:78:74:5e:77: c4:12:84:eb:61:3b:7b:ea:19:6c:6d:73:2b:0f:de:dd:64:67: bb:e8:58:99:f5:1a:cc:cd:90:4a:88:5e:0a:c6:61:cf:50:47: 23:50:ff:5d:8b:d3:32:51:2a:18:bd:c2:b3:e1:25:0d:7d:55: a9:fc:c6:04:69:be:7f:40:de:da:3e:d7:54:17:ec:a5:36:f4: 82:97:eb:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYC0IqbthLA9v2xxla0dwjfE9VNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFEMTkxNzNGRTY2RUUyQjlFOTk1QTk5RUQ3REM0MjMw MTEzQkRFRjAeFw0yNjAzMTgwMzU2MjRaFw0yNzAzMTcwNDAxMjRaMDMxMTAvBgNV BAMTKDY1QUZGM0E1RkYzRTNCOTRBRjFBODc5QkI0RTM3OUYxQ0ZBNjVCODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfzhQtqh3hZUkGBFEMeXD84OsF W/MFEDWI0iA7jBxm1QwylmkHS7P79fZf4HO7HQGIZAK2ApdH6kMX50HODlRnChmk d49L3dkm86oKn6hV4Bat0kTZk3nN1MhBLyQ5MKqb2KGFeYXA6007CYYwPJrr+sFF ft0Hvis7J2Ch2zTjogOGPgjoxCQHiBvh5edYL/h5t/ACTWldpsDJH4nE+3TfHGiM GUVti0aKhl0h9qrunU7pD8dULMkAlc4m9t9izQFFAouIBBFAlUKYuL53qmCo/Rjx Ulzg7/uF/8NM9kJREsMDs95ShNOCgrdarbtPiaaldy475Pq6WnrsAa0BcRmTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZa/zpf8+O5SvGoebtON58c+mW4gwHwYDVR0j BBgwFoAUWtGRc/5m7iuemVqZ7X3EIwETve8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmVkYjI4Zi1mM2Y5LTQxOTktODVhMy1jOWJmOWE3YTdkZjgvMC81QUQxOTE3M0ZF NjZFRTJCOUU5OTVBOTlFRDdEQzQyMzAxMTNCREVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFEMTkxNzNGRTY2RUUyQjlFOTk1QTk5RUQ3REM0MjMwMTEz QkRFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZWRiMjhmLWYzZjktNDE5OS04 NWEzLWM5YmY5YTdhN2RmOC8wLzMxMzAzMzJlMzEzMjMzMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne64wDQYJ KoZIhvcNAQELBQADggEBACiwQj5oadI0RdZQokLq7DGQ2M4tF8j63tDuZTMKKm8Q 5VW0MYuP9XFurZJCsyIru2TPxPqpHaM1hZ3IFhMUW/R8eXiJqruwF6+4+j147q6P JZpYdTklw5cFeBUw/FneRBNTs4mZv4bCXxygHNfrspQx+kUkgq+G5XWGaZGXzBIx 5GrV0GF/Vp81Y8akzLB4vbSu1ben/eRaUy9FtW2eUDc1R5TfFUMd5GU8l5w5UeDF eHRed8QShOthO3vqGWxtcysP3t1kZ7voWJn1GszNkEqIXgrGYc9QRyNQ/12L0zJR Khi9wrPhJQ19Van8xgRpvn9A3to+11QX7KU29IKX61w= -----END CERTIFICATE-----Generated at Thu Mar 26 21:58:22 2026 by rpki-client