$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa File: 3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: b6Ze1Cmi7h0UbgRWSKjWyOEXa3332OwZs4ZuR8D6lzY= Subject key identifier: C8:CE:D8:FB:06:00:8F:5B:FE:44:B4:4E:83:32:81:7D:4E:F4:F1:66 Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Certificate serial: 7A13E16B3F1D3DC8E79DDF74044C2447F7939B4B Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa Signing time: Thu 26 Mar 2026 05:02:49 +0000 ROA not before: Thu 26 Mar 2026 04:57:49 +0000 ROA not after: Thu 25 Mar 2027 05:02:49 +0000 asID: 138096 IP address blocks: 103.207.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 07:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:13:e1:6b:3f:1d:3d:c8:e7:9d:df:74:04:4c:24:47:f7:93:9b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Validity Not Before: Mar 26 04:57:49 2026 GMT Not After : Mar 25 05:02:49 2027 GMT Subject: CN=C8CED8FB06008F5BFE44B44E8332817D4EF4F166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:54:de:d6:e5:22:94:fc:cb:35:40:4e:3e:f0: a1:72:45:8f:f8:72:8f:c0:d2:0d:a0:3b:ed:22:c1: b8:aa:be:59:47:76:32:6a:ac:16:1b:f5:a5:a9:88: 13:b8:8b:4f:8e:b4:53:98:fb:39:ad:fd:5a:1c:ff: 80:63:61:02:cb:b1:48:5d:5d:d0:8e:a6:de:04:d6: 3f:1f:89:11:b8:0e:b7:4c:cf:5c:cd:c4:c4:e5:26: 0b:2c:3e:e3:9e:38:c3:da:e1:e6:36:3d:4b:48:a1: 9d:05:44:eb:a1:7b:01:7a:3a:07:94:1f:a6:ef:9a: 52:0d:85:88:8f:68:1d:c0:37:c2:c2:24:6c:b8:de: 4f:33:18:ee:64:42:b7:d7:03:8d:bc:03:5c:82:7b: 6f:d2:98:e3:64:9a:43:a8:6f:e3:23:f4:b8:93:39: e1:b4:48:3c:43:a3:bf:12:71:ac:c5:a5:ea:aa:4f: 07:a0:fa:66:73:26:05:6e:30:76:5d:e7:6d:30:a4: 66:0e:fa:b8:08:2c:59:55:9e:2d:c7:4b:2d:a5:3a: f1:96:18:30:e0:7a:9d:be:1d:a7:f3:c8:0e:76:b0: b8:65:18:64:05:73:4f:6b:4d:fc:2a:1d:25:65:db: b3:f9:ab:94:22:c6:2a:62:b6:88:80:ee:fa:7f:bf: 77:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CE:D8:FB:06:00:8F:5B:FE:44:B4:4E:83:32:81:7D:4E:F4:F1:66 X509v3 Authority Key Identifier: keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.238.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:70:0d:dc:d2:b8:df:dc:97:dc:62:47:6e:ac:71:71:a8:21: b4:53:3b:6f:82:07:39:88:91:66:d4:a6:de:99:bd:96:2b:d8: 83:10:f4:37:11:70:39:85:6a:a2:6f:d9:50:05:cd:13:d2:29: a2:d2:e2:cb:e8:95:19:b5:1d:3a:b8:bd:f1:09:2a:cb:31:0d: 13:19:2a:70:90:2a:f4:2d:b7:c7:85:cc:18:49:52:a6:3c:b4: af:22:67:73:b2:0d:d9:2d:13:e9:eb:a8:ed:67:df:50:5e:a9: 66:71:64:69:09:4c:70:fa:ca:ae:b7:94:44:13:cc:87:02:ef: 27:34:97:8d:82:46:23:69:e1:40:6c:a6:3e:e3:39:1b:a1:d7: 96:52:f3:80:21:36:c6:91:52:2a:84:5d:d5:47:14:3e:7c:b6: b3:26:f6:aa:94:20:17:e5:d5:b4:1c:c2:0d:17:07:68:64:07: c3:51:33:44:dd:9b:55:59:14:6f:52:02:3a:11:f2:c6:86:5c: 09:ef:d1:79:4f:4c:54:3c:3c:21:8e:94:aa:07:3b:97:89:28: 1e:be:1b:af:79:8b:90:8e:1d:e5:64:28:a9:9d:8e:d5:42:d5: 6b:94:6b:64:58:90:44:6b:0b:3b:df:d7:e9:3f:6f:3a:a5:08: 79:92:1d:2b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUehPhaz8dPcjnnd90BEwkR/eTm0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB MTEwQTAxNDAeFw0yNjAzMjYwNDU3NDlaFw0yNzAzMjUwNTAyNDlaMDMxMTAvBgNV BAMTKEM4Q0VEOEZCMDYwMDhGNUJGRTQ0QjQ0RTgzMzI4MTdENEVGNEYxNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4VN7W5SKU/Ms1QE4+8KFyRY/4 co/A0g2gO+0iwbiqvllHdjJqrBYb9aWpiBO4i0+OtFOY+zmt/Voc/4BjYQLLsUhd XdCOpt4E1j8fiRG4DrdMz1zNxMTlJgssPuOeOMPa4eY2PUtIoZ0FROuhewF6OgeU H6bvmlINhYiPaB3AN8LCJGy43k8zGO5kQrfXA428A1yCe2/SmONkmkOob+Mj9LiT OeG0SDxDo78ScazFpeqqTweg+mZzJgVuMHZd520wpGYO+rgILFlVni3HSy2lOvGW GDDgep2+HafzyA52sLhlGGQFc09rTfwqHSVl27P5q5QixipitoiA7vp/v3c/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyM7Y+wYAj1v+RLROgzKBfU708WYwHwYDVR0j BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw QTAxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnz+4wDQYJ KoZIhvcNAQELBQADggEBACtwDdzSuN/cl9xiR26scXGoIbRTO2+CBzmIkWbUpt6Z vZYr2IMQ9DcRcDmFaqJv2VAFzRPSKaLS4svolRm1HTq4vfEJKssxDRMZKnCQKvQt t8eFzBhJUqY8tK8iZ3OyDdktE+nrqO1n31BeqWZxZGkJTHD6yq63lEQTzIcC7yc0 l42CRiNp4UBspj7jORuh15ZS84AhNsaRUiqEXdVHFD58trMm9qqUIBfl1bQcwg0X B2hkB8NRM0Tdm1VZFG9SAjoR8saGXAnv0XlPTFQ8PCGOlKoHO5eJKB6+G695i5CO HeVkKKmdjtVC1WuUa2RYkERrCzvf1+k/bzqlCHmSHSs= -----END CERTIFICATE-----Generated at Thu Mar 26 10:56:39 2026 by rpki-client