$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa File: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (raw, json) Hash identifier: bcZ9qQT0HvAnyExnxlI05eaei51KPs6LOG2hjtNqzjc= Subject key identifier: 79:6B:AD:04:80:3E:CD:A0:69:19:8D:4A:CC:E3:60:59:88:1D:37:7B Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 3523C562D78DA9889E97AC8442A2B8D3930A3AE2 Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa Signing time: Wed 11 Mar 2026 10:02:44 +0000 ROA not before: Wed 11 Mar 2026 09:57:44 +0000 ROA not after: Wed 10 Mar 2027 10:02:44 +0000 asID: 151000 IP address blocks: 103.179.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 20:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:23:c5:62:d7:8d:a9:88:9e:97:ac:84:42:a2:b8:d3:93:0a:3a:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Mar 11 09:57:44 2026 GMT Not After : Mar 10 10:02:44 2027 GMT Subject: CN=796BAD04803ECDA069198D4ACCE36059881D377B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fa:6b:f7:32:b4:24:e3:f1:89:cf:bd:45:f7: 4e:00:14:ab:92:3f:22:e9:50:8b:2e:42:42:53:db: 34:ad:aa:4c:26:da:c6:a0:43:55:51:ee:1f:15:a3: 92:41:3d:20:aa:71:39:9b:c1:d5:0f:5a:82:27:ae: aa:fc:3b:2c:45:8d:0a:65:ca:34:7d:67:11:a6:07: 76:c4:57:6f:c4:d2:cb:ea:92:8f:36:ec:75:6a:6f: de:47:aa:b4:79:04:41:03:d4:4d:f8:d3:72:03:da: a3:f5:88:ae:a7:cc:ba:5e:ba:b8:6b:d4:10:6b:9f: 07:41:3f:47:71:70:65:0d:a0:31:50:2e:0a:2f:eb: 16:33:56:a2:43:a6:25:a7:18:c9:fc:78:ef:32:a5: bb:ae:aa:0e:d4:66:67:fd:12:59:35:27:ac:85:a8: 24:8a:14:fb:a0:81:f1:f9:5f:eb:b9:c6:eb:2f:da: e2:a0:2b:0d:5c:a5:1e:8f:44:e2:74:70:f4:56:03: 4d:6c:4b:5e:d0:b9:03:33:ca:4e:a2:14:a0:0c:6f: 38:69:f0:00:cd:b4:ce:2b:aa:60:67:58:53:38:61: 72:59:89:15:6a:ba:ba:20:f8:1f:75:5f:96:fb:f3: 96:f5:24:c6:ad:f4:dc:8a:b8:ea:7d:6f:74:85:bc: 50:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6B:AD:04:80:3E:CD:A0:69:19:8D:4A:CC:E3:60:59:88:1D:37:7B X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.66.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:27:12:af:1e:88:1a:6f:6e:56:2f:b5:87:d4:38:2e:ac:f3: 60:9d:16:2e:42:e8:3c:c3:df:62:24:e8:42:4d:25:c6:23:a5: 59:55:15:3b:66:69:d7:66:5d:37:ad:fd:ed:13:fb:ad:42:fa: 56:e4:92:61:2a:26:df:ba:2a:7d:a4:19:3a:d9:49:a2:8c:29: 26:fb:1d:8c:27:c2:e9:e9:6e:98:ce:27:a8:bc:95:5c:d6:46: b9:37:85:37:2c:63:d3:0c:f7:7d:fa:4f:08:97:dd:5b:11:d8: 2f:5e:2e:82:c4:23:dc:35:ac:00:60:13:13:49:da:54:aa:03: 89:c4:49:ef:97:a7:dc:b9:c7:4f:2d:7f:f6:93:a3:46:77:cd: 04:2d:e3:66:48:75:93:74:79:8f:5e:59:a2:5c:78:79:ee:f9: f7:ae:a4:1a:61:7d:21:8a:b2:2d:23:d0:65:ac:7f:f4:c9:0d: 84:47:fa:08:15:39:7a:7d:b9:ae:33:b0:cd:90:e9:2b:29:4c: ef:d1:df:38:d3:9d:81:34:2a:48:37:34:8d:28:d0:e6:bb:6a: 9a:59:3a:c6:e3:85:11:89:de:be:f4:4b:7d:45:ac:5f:4d:15: 8e:64:5f:a4:db:bc:7e:da:1a:5f:c7:d8:7e:87:6f:99:b4:6c: 95:f0:8d:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNSPFYteNqYiel6yEQqK405MKOuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNjAzMTEwOTU3NDRaFw0yNzAzMTAxMDAyNDRaMDMxMTAvBgNV BAMTKDc5NkJBRDA0ODAzRUNEQTA2OTE5OEQ0QUNDRTM2MDU5ODgxRDM3N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ+mv3MrQk4/GJz71F904AFKuS PyLpUIsuQkJT2zStqkwm2sagQ1VR7h8Vo5JBPSCqcTmbwdUPWoInrqr8OyxFjQpl yjR9ZxGmB3bEV2/E0svqko827HVqb95HqrR5BEED1E3403ID2qP1iK6nzLpeurhr 1BBrnwdBP0dxcGUNoDFQLgov6xYzVqJDpiWnGMn8eO8ypbuuqg7UZmf9Elk1J6yF qCSKFPuggfH5X+u5xusv2uKgKw1cpR6PROJ0cPRWA01sS17QuQMzyk6iFKAMbzhp 8ADNtM4rqmBnWFM4YXJZiRVqurog+B91X5b785b1JMat9NyKuOp9b3SFvFChAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeWutBIA+zaBpGY1KzONgWYgdN3swHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMTI3NDNkLWQ1NmQtNGE3Ny05 MGUyLWM1MmU2ZGZlMDZjMi8wLzMxMzAzMzJlMzEzNzM5MmUzNjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzAzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7NCMA0GCSqG SIb3DQEBCwUAA4IBAQBPJxKvHogab25WL7WH1DgurPNgnRYuQug8w99iJOhCTSXG I6VZVRU7ZmnXZl03rf3tE/utQvpW5JJhKibfuip9pBk62UmijCkm+x2MJ8Lp6W6Y zieovJVc1ka5N4U3LGPTDPd9+k8Il91bEdgvXi6CxCPcNawAYBMTSdpUqgOJxEnv l6fcucdPLX/2k6NGd80ELeNmSHWTdHmPXlmiXHh57vn3rqQaYX0hirItI9BlrH/0 yQ2ER/oIFTl6fbmuM7DNkOkrKUzv0d84052BNCpINzSNKNDmu2qaWTrG44URid6+ 9Et9RaxfTRWOZF+k27x+2hpfx9h+h2+ZtGyV8I0U -----END CERTIFICATE-----Generated at Thu Mar 26 17:54:35 2026 by rpki-client