$ rpki-client -vvf repo-rpki.idnic.net/repo/5004e530-2fcf-4cd6-b05c-eb3c0c135608/0/3130332e3137372e3139392e302f32342d3234203d3e20313437313133.roa File: 3130332e3137372e3139392e302f32342d3234203d3e20313437313133.roa (raw, json) Hash identifier: rsMro+val7v1wrwhLknq6/6YpaGLKJ+zkAstX6h2R5w= Subject key identifier: D4:DB:06:E9:59:BC:76:84:98:9C:16:60:4E:BA:CB:90:0E:3A:7A:3B Certificate issuer: /CN=F03499B3CFC25C7C508C14462AC4268BF1E9F67D Certificate serial: 74C0DA5D3CB36033FC6AADF55F6C51D5568F9359 Authority key identifier: F0:34:99:B3:CF:C2:5C:7C:50:8C:14:46:2A:C4:26:8B:F1:E9:F6:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03499B3CFC25C7C508C14462AC4268BF1E9F67D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5004e530-2fcf-4cd6-b05c-eb3c0c135608/0/3130332e3137372e3139392e302f32342d3234203d3e20313437313133.roa Signing time: Tue 17 Mar 2026 14:02:34 +0000 ROA not before: Tue 17 Mar 2026 13:57:34 +0000 ROA not after: Tue 16 Mar 2027 14:02:34 +0000 asID: 147113 IP address blocks: 103.177.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5004e530-2fcf-4cd6-b05c-eb3c0c135608/0/F03499B3CFC25C7C508C14462AC4268BF1E9F67D.crl rsync://repo-rpki.idnic.net/repo/5004e530-2fcf-4cd6-b05c-eb3c0c135608/0/F03499B3CFC25C7C508C14462AC4268BF1E9F67D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03499B3CFC25C7C508C14462AC4268BF1E9F67D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 12:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c0:da:5d:3c:b3:60:33:fc:6a:ad:f5:5f:6c:51:d5:56:8f:93:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F03499B3CFC25C7C508C14462AC4268BF1E9F67D Validity Not Before: Mar 17 13:57:34 2026 GMT Not After : Mar 16 14:02:34 2027 GMT Subject: CN=D4DB06E959BC7684989C16604EBACB900E3A7A3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:28:d5:65:3f:53:aa:c8:fe:26:77:6b:3a:a7: 42:38:d1:d2:d4:73:e7:dd:32:64:d1:b0:82:76:ea: 29:bb:92:20:bc:d3:21:1a:39:65:e7:c7:07:7f:f3: 63:06:2d:58:fd:a6:89:81:15:c1:18:2b:20:c2:3c: e5:85:06:33:61:61:6d:2e:52:9b:15:4f:4c:05:36: f4:4e:d9:6f:dc:e5:bc:da:66:22:c2:3a:b7:08:8f: bf:bd:dc:69:4b:cb:d9:c3:bc:42:70:5b:88:84:50: 9c:65:72:14:42:71:45:a2:e7:b3:f7:5d:b5:e9:2b: ff:60:ca:02:d3:cf:8d:3a:3f:99:dd:0d:81:f8:05: a8:64:90:ff:50:36:2f:23:76:4b:52:3a:2a:49:10: 3d:52:2f:53:c5:bc:8e:78:62:e4:d1:d3:ee:cc:28: 8f:44:db:0b:02:25:da:cb:2e:46:e8:93:8e:b5:35: 9b:ac:6a:9c:fb:ac:7b:a1:82:54:44:ef:91:9d:db: 22:e7:cb:be:49:8e:a1:7b:29:a9:f4:6c:f4:5f:a9: 04:9e:1f:b6:35:92:95:27:79:e5:3b:77:82:14:4c: 6d:d8:a8:67:d0:d6:f1:3b:7d:12:e4:7c:a5:55:95: af:e1:34:ae:bc:ac:37:99:1f:24:13:df:e8:45:24: 50:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DB:06:E9:59:BC:76:84:98:9C:16:60:4E:BA:CB:90:0E:3A:7A:3B X509v3 Authority Key Identifier: keyid:F0:34:99:B3:CF:C2:5C:7C:50:8C:14:46:2A:C4:26:8B:F1:E9:F6:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5004e530-2fcf-4cd6-b05c-eb3c0c135608/0/F03499B3CFC25C7C508C14462AC4268BF1E9F67D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03499B3CFC25C7C508C14462AC4268BF1E9F67D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5004e530-2fcf-4cd6-b05c-eb3c0c135608/0/3130332e3137372e3139392e302f32342d3234203d3e20313437313133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.199.0/24 Signature Algorithm: sha256WithRSAEncryption 77:bc:ca:51:65:d2:7c:f2:60:43:c3:ed:59:41:23:e6:b4:26: b3:5c:14:2f:9d:c8:75:2f:f5:a1:6f:7f:d9:30:bf:0f:05:a7: e0:94:9c:e5:e7:25:f1:1a:7a:45:01:3e:da:e2:02:07:c1:ca: fc:b4:f2:c4:04:7e:ae:98:27:a2:d2:b1:04:f7:2e:a1:50:6e: 6f:36:8a:45:d4:06:b7:2a:71:69:59:17:0f:46:ec:0a:b2:4b: c0:74:74:34:b3:18:12:40:94:f1:38:0e:d6:a5:7e:86:74:fb: 13:bd:57:a4:8f:59:29:8b:a7:b9:e9:8c:a8:74:fa:f4:a4:a8: 08:a9:f2:6a:44:bd:3c:b8:7f:c6:6a:73:7f:25:c2:ca:0e:11: 8e:d4:5f:cb:f3:09:89:8b:b1:ef:5b:cd:e6:1b:a7:99:b2:df: 08:c0:ed:94:e3:ea:1a:21:28:15:c8:5a:71:85:59:cc:8a:2a: c6:b1:7b:96:79:e8:b1:37:bd:0d:22:ae:e9:78:6d:e7:72:e7: 12:9d:9a:71:d2:35:4e:6e:6f:4f:7b:a9:57:3f:3b:2c:be:62: 06:86:4a:7e:46:d6:91:64:3a:41:c2:97:a4:c6:68:15:bb:22: 92:02:de:20:0a:ae:8b:65:b1:b7:b6:c1:9a:bf:5e:88:c2:3c: 37:46:7e:bc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdMDaXTyzYDP8aq31X2xR1VaPk1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjAzNDk5QjNDRkMyNUM3QzUwOEMxNDQ2MkFDNDI2OEJG MUU5RjY3RDAeFw0yNjAzMTcxMzU3MzRaFw0yNzAzMTYxNDAyMzRaMDMxMTAvBgNV BAMTKEQ0REIwNkU5NTlCQzc2ODQ5ODlDMTY2MDRFQkFDQjkwMEUzQTdBM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8KNVlP1OqyP4md2s6p0I40dLU c+fdMmTRsIJ26im7kiC80yEaOWXnxwd/82MGLVj9pomBFcEYKyDCPOWFBjNhYW0u UpsVT0wFNvRO2W/c5bzaZiLCOrcIj7+93GlLy9nDvEJwW4iEUJxlchRCcUWi57P3 XbXpK/9gygLTz406P5ndDYH4BahkkP9QNi8jdktSOipJED1SL1PFvI54YuTR0+7M KI9E2wsCJdrLLkbok461NZusapz7rHuhglRE75Gd2yLny75JjqF7Kan0bPRfqQSe H7Y1kpUneeU7d4IUTG3YqGfQ1vE7fRLkfKVVla/hNK68rDeZHyQT3+hFJFBbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1NsG6Vm8doSYnBZgTrrLkA46ejswHwYDVR0j BBgwFoAU8DSZs8/CXHxQjBRGKsQmi/Hp9n0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MDA0ZTUzMC0yZmNmLTRjZDYtYjA1Yy1lYjNjMGMxMzU2MDgvMC9GMDM0OTlCM0NG QzI1QzdDNTA4QzE0NDYyQUM0MjY4QkYxRTlGNjdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjAzNDk5QjNDRkMyNUM3QzUwOEMxNDQ2MkFDNDI2OEJGMUU5 RjY3RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwMDRlNTMwLTJmY2YtNGNkNi1i MDVjLWViM2MwYzEzNTYwOC8wLzMxMzAzMzJlMzEzNzM3MmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsccwDQYJ KoZIhvcNAQELBQADggEBAHe8ylFl0nzyYEPD7VlBI+a0JrNcFC+dyHUv9aFvf9kw vw8Fp+CUnOXnJfEaekUBPtriAgfByvy08sQEfq6YJ6LSsQT3LqFQbm82ikXUBrcq cWlZFw9G7AqyS8B0dDSzGBJAlPE4DtalfoZ0+xO9V6SPWSmLp7npjKh0+vSkqAip 8mpEvTy4f8Zqc38lwsoOEY7UX8vzCYmLse9bzeYbp5my3wjA7ZTj6hohKBXIWnGF WcyKKsaxe5Z56LE3vQ0irul4bedy5xKdmnHSNU5ub097qVc/Oyy+YgaGSn5G1pFk OkHCl6TGaBW7IpIC3iAKrotlsbe2wZq/XojCPDdGfrw= -----END CERTIFICATE-----Generated at Thu Mar 26 18:57:23 2026 by rpki-client