$ rpki-client -vvf repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa File: 3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa (raw, json) Hash identifier: mRpYafT5yxgT8WclK281BLVGzkgjdaJIpnzZSxWdW88= Subject key identifier: 71:F6:ED:A6:E4:E4:DA:A9:69:87:4C:83:5C:C5:45:D4:81:A4:2C:EB Certificate issuer: /CN=DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F Certificate serial: 57D7F2F2C9F51CD11B28336344E8E2ACA5B35764 Authority key identifier: DE:57:8F:4E:41:04:BC:0B:17:EF:2C:75:FB:0E:3A:D2:78:D2:73:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa Signing time: Tue 17 Mar 2026 08:00:00 +0000 ROA not before: Tue 17 Mar 2026 07:55:00 +0000 ROA not after: Tue 16 Mar 2027 08:00:00 +0000 asID: 136125 IP address blocks: 103.186.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.crl rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 18:43:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d7:f2:f2:c9:f5:1c:d1:1b:28:33:63:44:e8:e2:ac:a5:b3:57:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F Validity Not Before: Mar 17 07:55:00 2026 GMT Not After : Mar 16 08:00:00 2027 GMT Subject: CN=71F6EDA6E4E4DAA969874C835CC545D481A42CEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8e:d2:d1:0a:20:7e:10:45:e7:23:98:d5:52: dc:9c:8f:52:39:f7:b4:b1:23:04:cc:58:fb:ad:10: 03:50:fc:57:b9:1e:c8:e4:3d:2b:9f:14:bf:b6:41: 60:3e:94:90:94:a7:88:10:b4:0f:09:83:71:12:0f: c2:d0:f5:a7:42:8b:93:92:d5:dd:5c:c9:32:6b:50: 0b:c3:9d:cd:af:55:b3:db:76:52:7a:00:03:5a:71: 37:1a:ce:0b:cb:d9:c3:a8:6b:e1:8e:a3:26:44:b4: 66:e5:52:95:e0:20:14:be:69:ff:9b:83:fc:c0:0a: 41:9e:76:11:2d:3d:44:f7:76:c9:8c:0b:7a:7a:78: 0d:9c:10:8d:b8:8a:87:78:12:b5:d2:b4:01:7b:fd: 68:72:5e:4e:c3:8c:0d:f7:46:15:9e:de:0e:90:6c: 3c:37:32:3a:38:65:8c:ca:e8:eb:34:b9:0c:e2:17: ad:b4:72:f7:e6:c4:e1:28:bc:e9:df:73:a9:e3:be: d6:71:8c:fe:c0:b4:5c:5c:1c:24:09:3f:1a:7a:fc: 52:51:69:31:41:53:41:08:4b:db:6f:33:9c:e7:a8: 7a:8d:64:e5:c1:05:92:fb:80:1a:d9:b9:6a:27:82: 61:af:01:57:b8:ed:42:8d:66:8b:35:d2:01:ef:5d: 8d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F6:ED:A6:E4:E4:DA:A9:69:87:4C:83:5C:C5:45:D4:81:A4:2C:EB X509v3 Authority Key Identifier: keyid:DE:57:8F:4E:41:04:BC:0B:17:EF:2C:75:FB:0E:3A:D2:78:D2:73:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.81.0/24 Signature Algorithm: sha256WithRSAEncryption 84:90:1c:7d:3f:2e:1d:51:3c:71:88:10:b9:5a:cf:64:66:73: 72:25:e4:fb:8d:2b:64:47:d4:63:35:85:9e:28:d2:2d:9d:ea: f2:36:c4:68:f2:c0:90:62:bc:8a:82:08:66:29:2d:14:38:cd: 60:03:40:ef:7d:67:32:bb:82:6d:73:06:e4:e0:9f:82:ff:c9: 69:de:e9:5e:42:3d:f3:05:78:c9:95:bb:9d:2e:c0:00:21:78: 24:e9:df:47:21:3b:f2:88:dd:18:e7:31:aa:f1:a7:74:b5:76: 27:24:45:93:bd:0d:b8:b5:d2:5f:3e:9f:4f:44:6d:fe:81:2b: c2:34:af:3f:1a:76:a6:36:4b:bc:33:19:1d:0e:7f:20:3f:20: 51:ca:63:b2:c1:ef:1d:01:fc:5c:3c:b7:60:4d:9d:a3:7a:86: 49:bd:23:be:6d:96:38:61:b5:cb:a9:81:11:e1:06:98:34:5a: a0:6d:7a:15:26:38:e5:63:6e:0a:26:3e:b1:1e:43:31:f0:7b: 89:15:73:0b:0d:5f:0b:01:9c:13:09:b8:45:49:df:88:83:e1: 5e:f2:87:c0:69:05:c2:50:aa:cc:01:34:01:da:32:ac:5e:c6: 6f:f4:d4:b9:34:21:c9:2d:2b:dc:23:eb:16:af:60:26:ef:48: b1:c4:8b:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV9fy8sn1HNEbKDNjROjirKWzV2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU1NzhGNEU0MTA0QkMwQjE3RUYyQzc1RkIwRTNBRDI3 OEQyNzM4RjAeFw0yNjAzMTcwNzU1MDBaFw0yNzAzMTYwODAwMDBaMDMxMTAvBgNV BAMTKDcxRjZFREE2RTRFNERBQTk2OTg3NEM4MzVDQzU0NUQ0ODFBNDJDRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJjtLRCiB+EEXnI5jVUtycj1I5 97SxIwTMWPutEANQ/Fe5HsjkPSufFL+2QWA+lJCUp4gQtA8Jg3ESD8LQ9adCi5OS 1d1cyTJrUAvDnc2vVbPbdlJ6AANacTcazgvL2cOoa+GOoyZEtGblUpXgIBS+af+b g/zACkGedhEtPUT3dsmMC3p6eA2cEI24iod4ErXStAF7/WhyXk7DjA33RhWe3g6Q bDw3Mjo4ZYzK6Os0uQziF620cvfmxOEovOnfc6njvtZxjP7AtFxcHCQJPxp6/FJR aTFBU0EIS9tvM5znqHqNZOXBBZL7gBrZuWongmGvAVe47UKNZos10gHvXY3HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcfbtpuTk2qlph0yDXMVF1IGkLOswHwYDVR0j BBgwFoAU3lePTkEEvAsX7yx1+w460njSc48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWNkNGE2Ny1iYzhiLTRhZDctODFhMS1jMDI0YzVhNjJkMzAvMC9ERTU3OEY0RTQx MDRCQzBCMTdFRjJDNzVGQjBFM0FEMjc4RDI3MzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU1NzhGNEU0MTA0QkMwQjE3RUYyQzc1RkIwRTNBRDI3OEQy NzM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxY2Q0YTY3LWJjOGItNGFkNy04 MWExLWMwMjRjNWE2MmQzMC8wLzMxMzAzMzJlMzEzODM2MmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7pRMA0GCSqG SIb3DQEBCwUAA4IBAQCEkBx9Py4dUTxxiBC5Ws9kZnNyJeT7jStkR9RjNYWeKNIt neryNsRo8sCQYryKgghmKS0UOM1gA0DvfWcyu4Jtcwbk4J+C/8lp3uleQj3zBXjJ lbudLsAAIXgk6d9HITvyiN0Y5zGq8ad0tXYnJEWTvQ24tdJfPp9PRG3+gSvCNK8/ GnamNku8MxkdDn8gPyBRymOywe8dAfxcPLdgTZ2jeoZJvSO+bZY4YbXLqYER4QaY NFqgbXoVJjjlY24KJj6xHkMx8HuJFXMLDV8LAZwTCbhFSd+Ig+Fe8ofAaQXCUKrM ATQB2jKsXsZv9NS5NCHJLSvcI+sWr2Am70ixxIvU -----END CERTIFICATE-----Generated at Thu Mar 26 22:33:14 2026 by rpki-client