$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa File: 3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa (raw, json) Hash identifier: XRR8oor//V2IuRQmaPl+QnumcGK2doN5NfQKW3qBvPE= Subject key identifier: E3:88:7B:AD:24:98:75:E3:42:AB:02:D6:BC:AC:8F:82:F4:32:82:31 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 3EB877143D94DA927F19C24D4A64038B8CA82BBD Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa Signing time: Wed 18 Mar 2026 11:00:45 +0000 ROA not before: Wed 18 Mar 2026 10:55:45 +0000 ROA not after: Wed 17 Mar 2027 11:00:45 +0000 asID: 141591 IP address blocks: 103.159.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 18:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b8:77:14:3d:94:da:92:7f:19:c2:4d:4a:64:03:8b:8c:a8:2b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Mar 18 10:55:45 2026 GMT Not After : Mar 17 11:00:45 2027 GMT Subject: CN=E3887BAD249875E342AB02D6BCAC8F82F4328231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ab:b5:7a:19:51:c2:68:58:5a:02:17:d5:ea: 5b:b2:3a:db:0b:cf:4f:95:8c:cd:d8:bd:81:9a:aa: 16:2f:7a:c1:05:69:22:e9:5f:da:da:10:a2:9b:38: 6d:0a:1e:26:aa:ff:5e:ce:6e:e0:33:ad:28:1a:ae: 6f:9a:c9:5f:be:b0:bb:73:97:2a:38:2f:14:4d:e4: b1:f0:fd:c5:45:5c:cc:ff:cc:8b:70:f9:b1:fa:ca: db:55:4f:fb:f6:ea:02:5a:f2:ad:79:4e:e6:fe:33: 75:e5:8e:73:10:6f:8d:d6:cd:fd:eb:95:27:3c:02: eb:99:c1:88:0b:38:13:15:69:27:99:fc:42:db:6b: 60:e9:65:3c:61:bb:17:c8:09:9f:fe:0a:2c:bb:83: 82:ad:c9:17:c6:d4:60:07:60:7f:b7:0d:c8:d6:75: 95:03:e1:92:1e:7e:cb:68:6b:4e:12:1d:6a:cc:42: f1:16:f5:af:13:3d:3e:14:15:5d:ad:5b:c6:fe:6e: ac:4e:3b:4d:2d:cb:1b:c7:e5:27:ed:0f:fd:fa:f0: ba:e5:4f:ca:93:49:59:08:b1:d4:22:55:26:03:a0: 5c:76:d3:8a:e9:3f:ab:f8:04:84:f9:9c:90:27:2a: 81:21:c1:cf:4d:ad:cc:09:e1:d5:24:41:b5:cf:ab: 95:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:88:7B:AD:24:98:75:E3:42:AB:02:D6:BC:AC:8F:82:F4:32:82:31 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/24 Signature Algorithm: sha256WithRSAEncryption 08:bb:03:b7:99:21:46:a1:85:b2:49:48:db:8d:b6:b2:cd:78: 8a:e5:a9:9b:a4:8e:54:d6:cd:cc:d6:41:86:fb:66:1c:78:d5: 97:05:d3:21:7d:f4:d7:6f:c6:e2:7a:b1:8e:b7:f3:08:6e:e2: 3b:3b:8b:4c:14:47:d0:ac:80:ed:4e:43:2c:df:5e:8a:55:3f: e1:61:2e:82:b1:cb:80:d5:3f:88:cd:50:1b:7e:1e:f8:2b:26: c4:f1:58:15:b2:30:25:81:9f:20:ed:57:af:cb:97:e2:1e:6d: db:dc:d6:b5:11:eb:19:fe:65:b1:ca:b3:57:a9:a2:68:b2:77: 4d:87:f9:5d:63:1d:d8:f6:7b:e0:93:9f:76:2d:cd:e2:01:a3: 1d:8a:70:97:75:64:fd:11:18:98:65:d9:7d:ad:a4:ab:0e:15: 49:0f:29:97:d7:d7:17:72:f3:7b:e7:79:0b:aa:ff:e3:3e:6b: 16:64:5d:47:f3:bc:eb:8e:d2:fa:45:51:ca:a9:0d:7a:d5:33: 35:d5:7f:89:5d:29:80:99:72:bd:73:21:cc:7c:e8:47:03:1b: 68:95:74:8a:1b:93:65:79:30:75:3a:4b:d1:0a:02:01:62:fb: 2d:1c:38:1f:a8:52:79:a9:c2:b8:05:11:87:a6:46:4a:cd:3e: 5b:1b:d7:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPrh3FD2U2pJ/GcJNSmQDi4yoK70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNjAzMTgxMDU1NDVaFw0yNzAzMTcxMTAwNDVaMDMxMTAvBgNV BAMTKEUzODg3QkFEMjQ5ODc1RTM0MkFCMDJENkJDQUM4RjgyRjQzMjgyMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3q7V6GVHCaFhaAhfV6luyOtsL z0+VjM3YvYGaqhYvesEFaSLpX9raEKKbOG0KHiaq/17ObuAzrSgarm+ayV++sLtz lyo4LxRN5LHw/cVFXMz/zItw+bH6yttVT/v26gJa8q15Tub+M3XljnMQb43Wzf3r lSc8AuuZwYgLOBMVaSeZ/ELba2DpZTxhuxfICZ/+Ciy7g4KtyRfG1GAHYH+3DcjW dZUD4ZIefstoa04SHWrMQvEW9a8TPT4UFV2tW8b+bqxOO00tyxvH5SftD/368Lrl T8qTSVkIsdQiVSYDoFx204rpP6v4BIT5nJAnKoEhwc9NrcwJ4dUkQbXPq5W1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU44h7rSSYdeNCqwLWvKyPgvQygjEwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYzE3MWY0LWJkMTEtNDhlZC04 N2YwLTI3ZWExMjA5MDY0Zi8wLzMxMzAzMzJlMzEzNTM5MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ58+MA0GCSqG SIb3DQEBCwUAA4IBAQAIuwO3mSFGoYWySUjbjbayzXiK5ambpI5U1s3M1kGG+2Yc eNWXBdMhffTXb8bierGOt/MIbuI7O4tMFEfQrIDtTkMs316KVT/hYS6CscuA1T+I zVAbfh74KybE8VgVsjAlgZ8g7Vevy5fiHm3b3Na1EesZ/mWxyrNXqaJosndNh/ld Yx3Y9nvgk592Lc3iAaMdinCXdWT9ERiYZdl9raSrDhVJDymX19cXcvN753kLqv/j PmsWZF1H87zrjtL6RVHKqQ161TM11X+JXSmAmXK9cyHMfOhHAxtolXSKG5NleTB1 OkvRCgIBYvstHDgfqFJ5qcK4BRGHpkZKzT5bG9ca -----END CERTIFICATE-----Generated at Thu Mar 26 23:53:09 2026 by rpki-client