$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa File: 3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa (raw, json) Hash identifier: BomqdPcEWc7ThbBvhWDgZwYqBISDPqqeOo30nwHFh5Y= Subject key identifier: 49:B7:04:9D:16:78:72:B3:76:F9:4D:F9:9D:1C:BB:6E:0B:9C:B7:2B Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 6F526B8D0503ABD2D2A8A04105FEF8F7793B69FA Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa Signing time: Thu 12 Mar 2026 08:00:03 +0000 ROA not before: Thu 12 Mar 2026 07:55:03 +0000 ROA not after: Thu 11 Mar 2027 08:00:03 +0000 asID: 149909 IP address blocks: 103.191.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 20:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:52:6b:8d:05:03:ab:d2:d2:a8:a0:41:05:fe:f8:f7:79:3b:69:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: Mar 12 07:55:03 2026 GMT Not After : Mar 11 08:00:03 2027 GMT Subject: CN=49B7049D167872B376F94DF99D1CBB6E0B9CB72B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f2:8c:71:cf:d8:50:59:1d:ca:e7:9f:b0:6b: 07:c0:68:81:6d:da:a9:15:4d:97:77:c7:48:11:7a: 82:0f:98:ca:17:f8:22:18:d5:7f:01:64:25:80:04: 4b:fe:3a:57:64:d9:19:9a:fa:f5:51:94:d9:a3:42: 17:0f:28:85:5e:22:a2:f7:b0:2d:69:09:58:9b:d8: 14:8e:c8:12:07:9f:83:ef:ef:78:e5:b4:3d:94:ec: e2:d1:d6:38:c5:99:b1:92:93:69:9c:01:b8:2c:e9: 00:30:6a:86:06:02:8c:c4:f4:a1:44:f8:7b:94:06: 41:2a:70:cd:10:9c:e1:2a:bf:f3:8b:23:5f:a5:b4: d4:af:76:3c:4b:27:0e:e4:c1:b5:99:a3:bb:bd:55: 37:18:06:f6:77:0a:7b:cd:d6:2e:bb:f8:3a:eb:61: 7f:48:9b:d2:6a:86:c0:0b:42:2e:56:94:f3:e0:13: 81:48:b4:d2:9f:bb:e7:f4:9b:9d:f5:52:68:57:14: 3f:e3:d4:13:51:a4:49:fd:92:e6:35:96:b7:bd:1b: 51:64:22:b8:1b:3e:84:b5:fa:35:d7:a5:d6:a0:3d: 9a:f6:17:b7:6b:1b:dc:3b:bf:a3:d9:46:b2:2a:ef: 91:6b:c7:fc:a6:61:13:57:e4:42:46:d2:d7:ff:0d: bb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B7:04:9D:16:78:72:B3:76:F9:4D:F9:9D:1C:BB:6E:0B:9C:B7:2B X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.58.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:8d:90:7d:7e:7d:d2:81:db:f2:f4:67:b7:8d:5d:91:38:15: 9b:39:b3:f5:65:2d:47:6a:ee:47:08:d0:c7:35:56:9d:72:e0: 41:ee:aa:a8:3e:7f:b2:a8:00:6e:a0:d8:0b:5c:25:42:57:6b: 34:d6:29:53:9c:c5:7d:a4:19:b1:c2:70:d4:f3:bf:c3:06:0c: fc:71:f1:2a:87:51:a6:c5:b7:4b:21:e8:4c:c5:90:9a:e0:71: 28:c8:98:29:70:7f:ae:1d:57:94:17:b0:97:33:e5:77:4c:23: e0:a2:dc:d0:88:62:13:b3:b1:a9:4a:19:b2:c9:cd:a0:d7:f5: 05:65:c3:ec:2e:9e:80:58:0b:cd:d5:69:3a:6a:6f:33:da:8c: 98:74:2f:8f:4b:dc:87:76:19:ce:fe:7f:0e:94:2a:c8:8e:a5: a8:46:c7:4d:15:ee:63:59:95:cc:7a:de:7f:a8:59:4a:12:7f: 7c:e6:62:b5:c4:92:31:8f:df:12:18:a2:57:8f:fc:d6:7a:44: 06:16:8a:01:09:0f:69:e6:fd:ec:a6:cd:de:2c:09:9d:0b:b4: 64:e6:cb:80:c1:24:7f:61:90:1e:7b:dd:ed:41:63:bd:02:25: 51:d0:00:e9:d1:01:02:2e:9d:3e:4e:12:47:9f:e0:52:a4:5e: e5:c8:aa:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb1JrjQUDq9LSqKBBBf7493k7afowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNjAzMTIwNzU1MDNaFw0yNzAzMTEwODAwMDNaMDMxMTAvBgNV BAMTKDQ5QjcwNDlEMTY3ODcyQjM3NkY5NERGOTlEMUNCQjZFMEI5Q0I3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo8oxxz9hQWR3K55+wawfAaIFt 2qkVTZd3x0gReoIPmMoX+CIY1X8BZCWABEv+Oldk2Rma+vVRlNmjQhcPKIVeIqL3 sC1pCVib2BSOyBIHn4Pv73jltD2U7OLR1jjFmbGSk2mcAbgs6QAwaoYGAozE9KFE +HuUBkEqcM0QnOEqv/OLI1+ltNSvdjxLJw7kwbWZo7u9VTcYBvZ3CnvN1i67+Drr YX9Im9JqhsALQi5WlPPgE4FItNKfu+f0m531UmhXFD/j1BNRpEn9kuY1lre9G1Fk IrgbPoS1+jXXpdagPZr2F7drG9w7v6PZRrIq75Frx/ymYRNX5EJG0tf/DbuVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSbcEnRZ4crN2+U35nRy7bguctyswHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiYmU2ODE1LTMxMGUtNDIwNi1h NTAwLTZiYjlkMzI2M2FiZi8wLzMxMzAzMzJlMzEzOTMxMmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ786MA0GCSqG SIb3DQEBCwUAA4IBAQArjZB9fn3Sgdvy9Ge3jV2ROBWbObP1ZS1Hau5HCNDHNVad cuBB7qqoPn+yqABuoNgLXCVCV2s01ilTnMV9pBmxwnDU87/DBgz8cfEqh1GmxbdL IehMxZCa4HEoyJgpcH+uHVeUF7CXM+V3TCPgotzQiGITs7GpShmyyc2g1/UFZcPs Lp6AWAvN1Wk6am8z2oyYdC+PS9yHdhnO/n8OlCrIjqWoRsdNFe5jWZXMet5/qFlK En985mK1xJIxj98SGKJXj/zWekQGFooBCQ9p5v3sps3eLAmdC7Rk5suAwSR/YZAe e93tQWO9AiVR0ADp0QECLp0+ThJHn+BSpF7lyKoC -----END CERTIFICATE-----Generated at Thu Mar 26 22:13:41 2026 by rpki-client