$ rpki-client -vvf repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/3130332e3132332e3137352e302f32342d3234203d3e20313530393638.roa File: 3130332e3132332e3137352e302f32342d3234203d3e20313530393638.roa (raw, json) Hash identifier: lX7hQlJeRcZ+gsTgjHlrDPxZb7NRV7+p4hILddhebUs= Subject key identifier: E5:C8:62:2D:30:2F:94:7D:50:18:39:F9:19:C9:D8:0E:12:D6:33:78 Certificate issuer: /CN=5AD19173FE66EE2B9E995A99ED7DC4230113BDEF Certificate serial: 251B860140077ECA3A9A78187B9B10B7BD02ADB0 Authority key identifier: 5A:D1:91:73:FE:66:EE:2B:9E:99:5A:99:ED:7D:C4:23:01:13:BD:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/3130332e3132332e3137352e302f32342d3234203d3e20313530393638.roa Signing time: Wed 18 Mar 2026 04:01:25 +0000 ROA not before: Wed 18 Mar 2026 03:56:25 +0000 ROA not after: Wed 17 Mar 2027 04:01:25 +0000 asID: 150968 IP address blocks: 103.123.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.crl rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 17:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:1b:86:01:40:07:7e:ca:3a:9a:78:18:7b:9b:10:b7:bd:02:ad:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AD19173FE66EE2B9E995A99ED7DC4230113BDEF Validity Not Before: Mar 18 03:56:25 2026 GMT Not After : Mar 17 04:01:25 2027 GMT Subject: CN=E5C8622D302F947D501839F919C9D80E12D63378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:09:da:ef:c4:6f:59:e1:68:28:6c:89:d1:2f: c1:ba:80:1e:eb:cb:92:9f:11:6d:ca:f1:c7:01:d1: 73:b2:d3:20:e4:5d:b4:2c:d6:06:c2:a0:66:00:95: 99:b6:29:de:9c:f5:24:1b:10:6b:c7:38:d2:dd:c4: 47:f1:67:01:40:56:64:b0:cc:df:2e:75:b7:7d:2e: 72:ef:76:8e:e0:c9:cf:60:6b:7e:ee:cc:ad:64:c3: 7d:69:47:87:11:1f:e6:69:d8:69:d1:1e:f8:ab:b6: c9:51:42:d6:0c:f3:c6:b3:ba:f8:6c:73:73:a5:96: 27:af:55:c6:93:33:0b:0c:c9:2e:a5:bb:1f:f3:7f: c5:53:ad:48:e9:35:a0:aa:11:f3:6a:3d:26:75:a1: d0:70:6c:7d:d1:70:74:1c:25:c7:88:04:96:68:2a: 3e:f4:2f:47:74:61:3a:e0:69:d7:67:08:db:c0:6c: ac:d6:22:4a:e9:40:45:a1:8c:ca:f1:76:c6:42:2d: 92:59:78:4c:09:4f:ab:e4:0b:74:c6:f8:77:c5:d1: cc:4b:2c:c0:4c:ab:79:7b:8c:64:01:25:15:51:fa: 7c:b1:eb:21:cd:b8:a6:e7:0d:33:97:b0:cf:73:f4: 03:d7:a1:f0:02:c4:10:72:8f:87:ae:e8:dd:ef:e8: 92:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C8:62:2D:30:2F:94:7D:50:18:39:F9:19:C9:D8:0E:12:D6:33:78 X509v3 Authority Key Identifier: keyid:5A:D1:91:73:FE:66:EE:2B:9E:99:5A:99:ED:7D:C4:23:01:13:BD:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AD19173FE66EE2B9E995A99ED7DC4230113BDEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1fedb28f-f3f9-4199-85a3-c9bf9a7a7df8/0/3130332e3132332e3137352e302f32342d3234203d3e20313530393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.175.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:44:87:10:fe:d5:c3:d6:05:ee:fa:91:cc:39:79:7f:e3:26: 48:7f:60:71:15:9e:d9:aa:4f:c9:59:2c:d2:37:09:a0:83:90: 7c:7e:8c:2d:23:92:30:3e:4d:d0:d7:77:cf:f8:80:3d:5f:77: 73:4b:50:41:5e:3b:c6:25:8a:99:6b:ce:96:db:ac:26:53:01: 20:fe:33:6a:24:f8:85:6c:c7:6a:7f:93:8b:2a:7d:87:38:0d: b6:78:f7:61:d7:2f:71:aa:dc:65:61:94:ba:ce:fd:37:5d:53: 88:47:90:a7:60:1d:d8:72:cb:26:c6:47:31:41:6c:77:79:09: ce:45:63:00:0c:c0:d7:b7:91:38:39:91:70:69:35:df:1f:2a: f4:9c:81:14:7a:b9:17:12:36:81:aa:85:e9:4e:66:d3:b3:8e: c0:0f:51:18:64:9c:90:4e:0e:52:84:8b:1c:30:ff:04:23:8c: 99:f8:1c:4e:f8:38:7a:82:0c:d8:ea:0e:b9:bb:72:e1:96:b6: 18:ee:7e:28:3b:dc:05:d3:bd:cb:2f:2a:c9:b8:bb:f8:6a:a9: aa:8e:97:52:36:63:eb:36:7f:70:0d:0e:c8:58:eb:4f:66:99: bf:d3:44:23:3f:e4:f5:fc:c2:79:f7:ca:ea:b2:9e:07:6a:01: 78:5c:a4:7b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJRuGAUAHfso6mngYe5sQt70CrbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFEMTkxNzNGRTY2RUUyQjlFOTk1QTk5RUQ3REM0MjMw MTEzQkRFRjAeFw0yNjAzMTgwMzU2MjVaFw0yNzAzMTcwNDAxMjVaMDMxMTAvBgNV BAMTKEU1Qzg2MjJEMzAyRjk0N0Q1MDE4MzlGOTE5QzlEODBFMTJENjMzNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXCdrvxG9Z4WgobInRL8G6gB7r y5KfEW3K8ccB0XOy0yDkXbQs1gbCoGYAlZm2Kd6c9SQbEGvHONLdxEfxZwFAVmSw zN8udbd9LnLvdo7gyc9ga37uzK1kw31pR4cRH+Zp2GnRHvirtslRQtYM88azuvhs c3OllievVcaTMwsMyS6lux/zf8VTrUjpNaCqEfNqPSZ1odBwbH3RcHQcJceIBJZo Kj70L0d0YTrgaddnCNvAbKzWIkrpQEWhjMrxdsZCLZJZeEwJT6vkC3TG+HfF0cxL LMBMq3l7jGQBJRVR+nyx6yHNuKbnDTOXsM9z9APXofACxBByj4eu6N3v6JKJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5chiLTAvlH1QGDn5GcnYDhLWM3gwHwYDVR0j BBgwFoAUWtGRc/5m7iuemVqZ7X3EIwETve8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmVkYjI4Zi1mM2Y5LTQxOTktODVhMy1jOWJmOWE3YTdkZjgvMC81QUQxOTE3M0ZF NjZFRTJCOUU5OTVBOTlFRDdEQzQyMzAxMTNCREVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFEMTkxNzNGRTY2RUUyQjlFOTk1QTk5RUQ3REM0MjMwMTEz QkRFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZWRiMjhmLWYzZjktNDE5OS04 NWEzLWM5YmY5YTdhN2RmOC8wLzMxMzAzMzJlMzEzMjMzMmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne68wDQYJ KoZIhvcNAQELBQADggEBAJtEhxD+1cPWBe76kcw5eX/jJkh/YHEVntmqT8lZLNI3 CaCDkHx+jC0jkjA+TdDXd8/4gD1fd3NLUEFeO8YliplrzpbbrCZTASD+M2ok+IVs x2p/k4sqfYc4DbZ492HXL3Gq3GVhlLrO/TddU4hHkKdgHdhyyybGRzFBbHd5Cc5F YwAMwNe3kTg5kXBpNd8fKvScgRR6uRcSNoGqhelOZtOzjsAPURhknJBODlKEixww /wQjjJn4HE74OHqCDNjqDrm7cuGWthjufig73AXTvcsvKsm4u/hqqaqOl1I2Y+s2 f3ANDshY609mmb/TRCM/5PX8wnn3yuqyngdqAXhcpHs= -----END CERTIFICATE-----Generated at Thu Mar 26 18:59:22 2026 by rpki-client