$ rpki-client -vvf repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e34332e302e302f32342d3234203d3e203539313333.roa File: 3130332e34332e302e302f32342d3234203d3e203539313333.roa (raw, json) Hash identifier: Yl7eAdHU7Khq4n62jp66bnB7sPgBOKQb/qT7F8A5A38= Subject key identifier: 38:2D:64:B2:BB:48:7E:01:F5:7D:BC:7F:73:0E:51:A5:BA:05:BF:88 Certificate issuer: /CN=34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869 Certificate serial: 16770B331F388EB9CC1880BD45A449EB7770A47B Authority key identifier: 34:C4:7E:CC:8E:DF:AA:05:EF:FF:41:FB:FF:0F:6A:46:6F:A3:18:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer Subject info access: rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e34332e302e302f32342d3234203d3e203539313333.roa Signing time: Fri 20 Mar 2026 10:02:45 +0000 ROA not before: Fri 20 Mar 2026 09:57:45 +0000 ROA not after: Fri 19 Mar 2027 10:02:45 +0000 asID: 59133 IP address blocks: 103.43.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.crl rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:77:0b:33:1f:38:8e:b9:cc:18:80:bd:45:a4:49:eb:77:70:a4:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869 Validity Not Before: Mar 20 09:57:45 2026 GMT Not After : Mar 19 10:02:45 2027 GMT Subject: CN=382D64B2BB487E01F57DBC7F730E51A5BA05BF88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3e:7a:0f:0c:cf:c2:51:75:b5:b9:36:7f:11: b1:81:31:77:5d:b2:88:1c:bf:24:a4:f1:5c:b7:d7: d6:77:fa:2b:9f:9a:91:cc:bb:49:69:cc:f2:47:5c: d6:8e:90:fc:e2:0b:cf:3d:34:e8:77:83:72:bc:fe: 33:e2:b2:07:72:de:88:8d:90:dc:2f:1b:f8:35:ff: 79:24:ec:7d:8b:80:af:b3:2a:c3:67:e1:1a:cd:f0: 4f:a4:6f:31:f7:1c:a5:08:ba:37:c8:b1:84:2f:56: d8:a6:b5:02:95:b2:fd:74:f1:9f:7c:c0:5c:28:25: a0:45:23:38:9c:60:66:cd:ff:49:82:ed:37:23:4d: 27:d8:0a:b4:6d:fc:19:b6:1d:d4:be:d6:b2:fc:5c: ec:97:c7:65:fd:e3:33:a3:6b:a1:bf:9d:91:3b:0e: e9:09:8b:6a:68:3b:07:68:8b:ac:be:e6:2d:8a:f0: a4:42:63:a2:d8:15:aa:ca:56:78:26:12:1a:6a:92: c9:54:57:dd:1d:f1:da:e4:02:42:3d:22:e8:38:23: 1b:74:ef:e9:95:c4:4f:fb:c6:c2:05:96:30:63:cd: 46:39:3d:3a:67:93:da:5d:b4:91:b7:e7:ad:52:c3: f2:2d:6d:f2:d7:2d:bd:6f:04:68:4c:c2:df:d7:55: 39:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2D:64:B2:BB:48:7E:01:F5:7D:BC:7F:73:0E:51:A5:BA:05:BF:88 X509v3 Authority Key Identifier: keyid:34:C4:7E:CC:8E:DF:AA:05:EF:FF:41:FB:FF:0F:6A:46:6F:A3:18:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/3130332e34332e302e302f32342d3234203d3e203539313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.0.0/24 Signature Algorithm: sha256WithRSAEncryption 91:2d:f6:aa:83:dc:ab:0d:b4:cb:6a:37:bd:30:81:86:69:d4: 49:bc:ab:b1:37:cd:39:42:f6:4e:bb:6b:d5:f5:0c:c5:5a:bc: 63:a0:fc:64:5c:e9:cc:70:78:d4:77:45:a8:d6:fd:bc:84:59: 0d:d6:6f:92:89:2e:07:d8:61:a7:56:9e:ee:26:d2:c0:d2:7f: 0d:62:fe:16:74:95:a9:45:15:70:6e:f8:78:ec:56:e5:b2:38: 04:e9:37:ea:93:db:f2:ef:02:68:d9:25:d0:75:13:43:7d:2a: 4f:ac:61:a2:00:da:9c:6a:4c:dc:36:b1:43:15:6f:4c:69:c0: 50:81:27:04:69:74:87:3b:e8:b0:03:6b:9e:73:7e:7a:42:41: 6d:42:5d:6e:9e:f7:6a:44:cb:f8:5a:a8:0b:79:03:2a:47:fa: b9:23:36:0e:6a:fc:43:5f:ec:08:b3:86:50:be:d7:8d:0d:31: e6:7b:db:38:63:6e:ca:e4:eb:68:b9:ef:9e:54:de:b3:a5:ff: 0b:16:39:03:d6:7f:32:8c:d9:95:95:4b:4c:e3:fc:e7:d3:fa: e1:3e:94:39:2b:03:ef:20:01:28:0d:cc:e9:03:06:64:26:fa: c3:98:a0:27:c5:b6:67:92:8e:1f:de:84:1a:3c:45:35:e7:56: 70:c9:9a:2a -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUFncLMx84jrnMGIC9RaRJ63dwpHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRDNDdFQ0M4RURGQUEwNUVGRkY0MUZCRkYwRjZBNDY2 RkEzMTg2OTAeFw0yNjAzMjAwOTU3NDVaFw0yNzAzMTkxMDAyNDVaMDMxMTAvBgNV BAMTKDM4MkQ2NEIyQkI0ODdFMDFGNTdEQkM3RjczMEU1MUE1QkEwNUJGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTPnoPDM/CUXW1uTZ/EbGBMXdd sogcvySk8Vy319Z3+iufmpHMu0lpzPJHXNaOkPziC889NOh3g3K8/jPisgdy3oiN kNwvG/g1/3kk7H2LgK+zKsNn4RrN8E+kbzH3HKUIujfIsYQvVtimtQKVsv108Z98 wFwoJaBFIzicYGbN/0mC7TcjTSfYCrRt/Bm2HdS+1rL8XOyXx2X94zOja6G/nZE7 DukJi2poOwdoi6y+5i2K8KRCY6LYFarKVngmEhpqkslUV90d8drkAkI9Iug4Ixt0 7+mVxE/7xsIFljBjzUY5PTpnk9pdtJG3561Sw/ItbfLXLb1vBGhMwt/XVTkHAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUOC1ksrtIfgH1fbx/cw5RpboFv4gwHwYDVR0j BBgwFoAUNMR+zI7fqgXv/0H7/w9qRm+jGGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDBlYzQzYi00MzNkLTQwN2QtYmRlZS1lZWE2MjE2YTZmZjQvMC8zNEM0N0VDQzhF REZBQTA1RUZGRjQxRkJGRjBGNkE0NjZGQTMxODY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzRDNDdFQ0M4RURGQUEwNUVGRkY0MUZCRkYwRjZBNDY2RkEz MTg2OS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDAwZWM0M2ItNDMzZC00MDdkLWJk ZWUtZWVhNjIxNmE2ZmY0LzAvMzEzMDMzMmUzNDMzMmUzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzkzMTMzMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnKwAwDQYJKoZIhvcNAQEL BQADggEBAJEt9qqD3KsNtMtqN70wgYZp1Em8q7E3zTlC9k67a9X1DMVavGOg/GRc 6cxweNR3RajW/byEWQ3Wb5KJLgfYYadWnu4m0sDSfw1i/hZ0lalFFXBu+HjsVuWy OATpN+qT2/LvAmjZJdB1E0N9Kk+sYaIA2pxqTNw2sUMVb0xpwFCBJwRpdIc76LAD a55zfnpCQW1CXW6e92pEy/haqAt5AypH+rkjNg5q/ENf7AizhlC+140NMeZ72zhj bsrk62i5755U3rOl/wsWOQPWfzKM2ZWVS0zj/OfT+uE+lDkrA+8gASgNzOkDBmQm +sOYoCfFtmeSjh/ehBo8RTXnVnDJmio= -----END CERTIFICATE-----Generated at Thu Mar 26 11:57:33 2026 by rpki-client