$ rpki-client -vvf repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa File: 3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa (raw, json) Hash identifier: I4l/5SCvPUNR67QS1t6ivbuG/9/G8qw6kcnDyGPuHJY= Subject key identifier: 54:F4:0B:AE:39:06:20:38:C0:FC:6D:70:65:BD:F0:BD:01:9B:CA:C4 Certificate issuer: /CN=DB1E31B6A9856791C31B99A73C0F390118E54EB8 Certificate serial: 19F1C727ECF6ABDD046904B2770E68068BB21912 Authority key identifier: DB:1E:31:B6:A9:85:67:91:C3:1B:99:A7:3C:0F:39:01:18:E5:4E:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa Signing time: Thu 26 Mar 2026 03:02:45 +0000 ROA not before: Thu 26 Mar 2026 02:57:45 +0000 ROA not after: Thu 25 Mar 2027 03:02:45 +0000 asID: 141906 IP address blocks: 103.164.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.crl rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 13:44:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f1:c7:27:ec:f6:ab:dd:04:69:04:b2:77:0e:68:06:8b:b2:19:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB1E31B6A9856791C31B99A73C0F390118E54EB8 Validity Not Before: Mar 26 02:57:45 2026 GMT Not After : Mar 25 03:02:45 2027 GMT Subject: CN=54F40BAE39062038C0FC6D7065BDF0BD019BCAC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:68:fb:11:d4:16:41:c5:57:5d:27:e4:65:93: f3:2a:e3:32:c2:a8:f5:77:e8:2b:0e:13:f8:ad:ba: a4:32:90:4b:c8:b1:4d:20:50:e9:8e:55:99:42:2e: 1f:a6:df:38:d3:5a:ba:2f:cf:9c:d0:2e:1a:20:11: c8:4d:f6:ad:67:72:55:a7:56:df:26:de:42:c2:eb: 38:52:01:13:a2:e3:f2:1a:aa:ce:a6:91:c1:10:71: 7d:7f:69:38:a5:63:45:4d:5b:0d:1f:f4:bd:f9:e5: f7:b2:5c:1a:cc:8c:d9:22:77:dc:65:ff:76:17:25: 55:c4:72:ee:2d:99:be:d2:d0:86:12:da:c7:d4:e6: a4:64:f3:76:24:c9:77:c9:ef:1b:18:b0:c8:79:37: 11:d3:0f:8f:f5:9a:0b:b5:95:eb:33:49:42:ce:bf: 54:c5:93:bc:6e:a7:11:96:97:18:27:8d:98:44:9e: 5a:1d:43:60:15:ff:fc:10:e7:f7:b1:2d:80:38:5c: 4f:72:19:14:e7:20:2c:c1:5e:60:df:be:82:75:a0: c1:8c:c0:f8:0a:49:2b:e1:f3:76:bc:8e:89:ae:eb: 36:9d:9a:e2:39:94:9b:26:82:7c:69:68:0b:7a:90: 57:f6:48:bd:a1:46:04:ce:12:3f:9e:36:bb:0a:33: b1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F4:0B:AE:39:06:20:38:C0:FC:6D:70:65:BD:F0:BD:01:9B:CA:C4 X509v3 Authority Key Identifier: keyid:DB:1E:31:B6:A9:85:67:91:C3:1B:99:A7:3C:0F:39:01:18:E5:4E:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.83.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:46:a8:52:25:64:34:cd:91:cb:90:7d:1f:b4:de:f0:46:0c: e1:c1:57:b6:3b:98:30:d5:64:19:47:50:dc:8e:5c:ed:af:57: 58:54:08:35:61:10:8e:20:aa:a2:5c:59:74:fb:1d:ff:e1:ca: 4d:8e:df:0b:89:38:d0:dd:17:0c:aa:d3:c0:b2:de:af:5c:98: 8d:ae:09:6e:01:55:ce:92:d0:d9:ca:78:96:fb:fc:55:29:b5: 69:21:ad:92:82:93:58:23:1d:1a:9b:fd:bb:e1:0c:55:51:67: b8:bb:10:f4:90:15:cc:1c:e5:3f:8b:5d:55:a8:40:4b:26:8c: 67:8a:87:1f:c7:10:19:cb:7d:bc:e7:f5:f3:aa:d6:96:01:dc: 3d:66:98:07:04:73:96:87:48:16:c0:9c:ef:b1:75:94:4d:30: fc:6e:7b:f5:1c:33:51:44:cd:d3:32:db:66:27:ea:dd:33:5d: 5b:2b:18:7d:45:d3:8d:85:3f:e4:f2:b7:5a:ed:85:a2:50:63: a0:62:12:8e:7a:09:17:10:4f:78:6f:23:44:56:93:09:f3:e5: 86:29:52:6f:67:a7:81:0a:46:e5:37:f5:6f:16:64:fa:32:23: d2:79:45:61:d1:b2:a9:1e:37:3e:b2:88:7e:16:39:e4:27:10: 20:f2:f6:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGfHHJ+z2q90EaQSydw5oBouyGRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREIxRTMxQjZBOTg1Njc5MUMzMUI5OUE3M0MwRjM5MDEx OEU1NEVCODAeFw0yNjAzMjYwMjU3NDVaFw0yNzAzMjUwMzAyNDVaMDMxMTAvBgNV BAMTKDU0RjQwQkFFMzkwNjIwMzhDMEZDNkQ3MDY1QkRGMEJEMDE5QkNBQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJaPsR1BZBxVddJ+Rlk/Mq4zLC qPV36CsOE/ituqQykEvIsU0gUOmOVZlCLh+m3zjTWrovz5zQLhogEchN9q1nclWn Vt8m3kLC6zhSAROi4/Iaqs6mkcEQcX1/aTilY0VNWw0f9L355feyXBrMjNkid9xl /3YXJVXEcu4tmb7S0IYS2sfU5qRk83YkyXfJ7xsYsMh5NxHTD4/1mgu1leszSULO v1TFk7xupxGWlxgnjZhEnlodQ2AV//wQ5/exLYA4XE9yGRTnICzBXmDfvoJ1oMGM wPgKSSvh83a8jomu6zadmuI5lJsmgnxpaAt6kFf2SL2hRgTOEj+eNrsKM7ElAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVPQLrjkGIDjA/G1wZb3wvQGbysQwHwYDVR0j BBgwFoAU2x4xtqmFZ5HDG5mnPA85ARjlTrgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTE4ZjhhMC05M2FlLTQzNTktOGE1ZC0xY2E2NzhiZTU2NjgvMC9EQjFFMzFCNkE5 ODU2NzkxQzMxQjk5QTczQzBGMzkwMTE4RTU0RUI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREIxRTMxQjZBOTg1Njc5MUMzMUI5OUE3M0MwRjM5MDExOEU1 NEVCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhMThmOGEwLTkzYWUtNDM1OS04 YTVkLTFjYTY3OGJlNTY2OC8wLzMxMzAzMzJlMzEzNjM0MmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6RTMA0GCSqG SIb3DQEBCwUAA4IBAQBLRqhSJWQ0zZHLkH0ftN7wRgzhwVe2O5gw1WQZR1Dcjlzt r1dYVAg1YRCOIKqiXFl0+x3/4cpNjt8LiTjQ3RcMqtPAst6vXJiNrgluAVXOktDZ yniW+/xVKbVpIa2SgpNYIx0am/274QxVUWe4uxD0kBXMHOU/i11VqEBLJoxniocf xxAZy3285/XzqtaWAdw9ZpgHBHOWh0gWwJzvsXWUTTD8bnv1HDNRRM3TMttmJ+rd M11bKxh9RdONhT/k8rda7YWiUGOgYhKOegkXEE94byNEVpMJ8+WGKVJvZ6eBCkbl N/VvFmT6MiPSeUVh0bKpHjc+soh+FjnkJxAg8vbo -----END CERTIFICATE-----Generated at Thu Mar 26 16:27:14 2026 by rpki-client