$ rpki-client -vvf repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e3234332e3234362e302f32342d3234203d3e203539313333.roa File: 3130332e3234332e3234362e302f32342d3234203d3e203539313333.roa (raw, json) Hash identifier: 0SXjK6zvaQBJ8uDXunSiVTxj6f6ONI0BqvKnrWkpNbo= Subject key identifier: 67:1B:5C:E7:4D:7C:99:9B:4A:2C:AD:FB:DD:5F:AE:3D:A8:B5:3C:55 Certificate issuer: /CN=34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869 Certificate serial: 54B604A12C947AE00C8D3D9067A9E870E44DC10F Authority key identifier: 34:C4:7E:CC:8E:DF:AA:05:EF:FF:41:FB:FF:0F:6A:46:6F:A3:18:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer Subject info access: rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e3234332e3234362e302f32342d3234203d3e203539313333.roa Signing time: Fri 20 Mar 2026 10:02:44 +0000 ROA not before: Fri 20 Mar 2026 09:57:44 +0000 ROA not after: Fri 19 Mar 2027 10:02:44 +0000 asID: 59133 IP address blocks: 103.243.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.crl rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b6:04:a1:2c:94:7a:e0:0c:8d:3d:90:67:a9:e8:70:e4:4d:c1:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869 Validity Not Before: Mar 20 09:57:44 2026 GMT Not After : Mar 19 10:02:44 2027 GMT Subject: CN=671B5CE74D7C999B4A2CADFBDD5FAE3DA8B53C55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:57:c1:50:d7:c2:81:32:4d:90:2b:86:58:cd: 98:b8:4f:60:10:b5:63:ac:00:e5:e4:69:73:e4:63: b9:a0:5a:d5:ec:68:64:8e:f3:85:a0:e6:76:62:80: b4:5b:b2:9a:69:c9:fa:82:ed:3f:43:e6:f5:1b:21: 30:f8:05:6a:d4:04:49:45:17:c2:7b:aa:5d:7d:9b: 27:bb:d5:23:fa:31:d4:43:b8:5a:1d:b4:a4:91:ca: 15:26:dc:f9:e5:a4:c4:dd:9a:6a:cd:fc:40:a9:6b: f0:bc:ee:3e:3a:7c:fb:e2:79:63:67:ed:c5:6d:49: 33:fd:7f:1b:3a:43:a6:c0:1a:aa:ee:58:9f:b8:15: 5b:f5:7b:4c:80:08:70:e1:49:9b:f0:61:b8:b5:4e: 23:41:13:37:03:88:4c:7d:06:1f:a2:ba:58:81:68: b4:c4:79:fd:f9:b2:46:b1:78:60:b4:a2:03:70:22: 2d:0b:be:ba:d7:1b:f0:58:d3:8c:c4:8c:7c:5c:2b: 49:12:25:8b:db:d4:0e:55:4a:20:ab:5c:b0:17:0f: d2:fe:eb:07:a8:eb:c7:fb:27:a9:85:f6:24:38:28: 73:6f:57:8f:40:68:1c:0e:1b:c5:3b:83:16:ff:72: 99:9c:e4:93:3b:87:30:f5:60:98:c3:e7:e1:ba:46: c1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1B:5C:E7:4D:7C:99:9B:4A:2C:AD:FB:DD:5F:AE:3D:A8:B5:3C:55 X509v3 Authority Key Identifier: keyid:34:C4:7E:CC:8E:DF:AA:05:EF:FF:41:FB:FF:0F:6A:46:6F:A3:18:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e3234332e3234362e302f32342d3234203d3e203539313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.243.246.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:46:31:6e:ae:d7:41:09:e9:16:4a:9a:b3:ae:3b:c1:02:d8: 97:bd:1f:b5:1e:48:6f:42:1f:b3:93:07:e7:0c:69:d0:0f:70: 90:9f:d1:13:8b:e2:d1:1b:11:2f:db:6a:9f:74:2f:5c:2f:22: 04:73:92:c9:09:24:3e:b3:42:0c:5c:37:b8:45:20:ae:01:5a: 2d:cc:45:e0:8a:96:96:a5:59:7f:11:11:2e:de:8e:a0:ee:37: 6f:ee:95:da:d4:0a:8d:16:b6:c3:3c:6e:9a:7b:c5:f4:bd:17: 69:62:56:ad:c5:47:da:75:97:b3:5a:65:98:58:c7:52:cc:fd: 9d:cb:54:0d:f5:5c:1c:67:ed:04:8f:23:2b:8a:40:8a:99:9e: 7e:82:86:09:48:13:a4:2f:b5:a3:84:d0:4e:e9:8e:ab:70:f5: 70:7e:29:36:7d:e5:4b:7e:e4:ee:6a:22:ef:8e:f0:33:97:7a: 5c:19:73:69:6a:3f:eb:cc:e5:05:2d:18:37:0c:33:7b:bf:76: 4a:81:6b:8c:4b:fc:86:ac:e5:72:43:eb:30:34:30:e9:93:4c: aa:48:2a:e0:9d:88:a9:16:ff:f2:e6:2c:c6:3b:8f:fa:a1:ad: 63:35:a2:f5:41:a5:b2:06:7e:08:4c:49:39:7f:f9:7f:e2:38: ba:c1:e2:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVLYEoSyUeuAMjT2QZ6nocORNwQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRDNDdFQ0M4RURGQUEwNUVGRkY0MUZCRkYwRjZBNDY2 RkEzMTg2OTAeFw0yNjAzMjAwOTU3NDRaFw0yNzAzMTkxMDAyNDRaMDMxMTAvBgNV BAMTKDY3MUI1Q0U3NEQ3Qzk5OUI0QTJDQURGQkRENUZBRTNEQThCNTNDNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDV8FQ18KBMk2QK4ZYzZi4T2AQ tWOsAOXkaXPkY7mgWtXsaGSO84Wg5nZigLRbspppyfqC7T9D5vUbITD4BWrUBElF F8J7ql19mye71SP6MdRDuFodtKSRyhUm3PnlpMTdmmrN/ECpa/C87j46fPvieWNn 7cVtSTP9fxs6Q6bAGqruWJ+4FVv1e0yACHDhSZvwYbi1TiNBEzcDiEx9Bh+iuliB aLTEef35skaxeGC0ogNwIi0LvrrXG/BY04zEjHxcK0kSJYvb1A5VSiCrXLAXD9L+ 6weo68f7J6mF9iQ4KHNvV49AaBwOG8U7gxb/cpmc5JM7hzD1YJjD5+G6RsFRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZxtc5018mZtKLK373V+uPai1PFUwHwYDVR0j BBgwFoAUNMR+zI7fqgXv/0H7/w9qRm+jGGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDBlYzQzYi00MzNkLTQwN2QtYmRlZS1lZWE2MjE2YTZmZjQvMC8zNEM0N0VDQzhF REZBQTA1RUZGRjQxRkJGRjBGNkE0NjZGQTMxODY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzRDNDdFQ0M4RURGQUEwNUVGRkY0MUZCRkYwRjZBNDY2RkEz MTg2OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMGVjNDNiLTQzM2QtNDA3ZC1i ZGVlLWVlYTYyMTZhNmZmNC8wLzMxMzAzMzJlMzIzNDMzMmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/P2MA0GCSqG SIb3DQEBCwUAA4IBAQBMRjFurtdBCekWSpqzrjvBAtiXvR+1HkhvQh+zkwfnDGnQ D3CQn9ETi+LRGxEv22qfdC9cLyIEc5LJCSQ+s0IMXDe4RSCuAVotzEXgipaWpVl/ EREu3o6g7jdv7pXa1AqNFrbDPG6ae8X0vRdpYlatxUfadZezWmWYWMdSzP2dy1QN 9VwcZ+0EjyMrikCKmZ5+goYJSBOkL7WjhNBO6Y6rcPVwfik2feVLfuTuaiLvjvAz l3pcGXNpaj/rzOUFLRg3DDN7v3ZKgWuMS/yGrOVyQ+swNDDpk0yqSCrgnYipFv/y 5izGO4/6oa1jNaL1QaWyBn4ITEk5f/l/4ji6weKW -----END CERTIFICATE-----Generated at Thu Mar 26 22:30:50 2026 by rpki-client