$ rpki-client -vvf repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38392e302f32342d3234203d3e20313531353732.roa File: 3130332e36302e38392e302f32342d3234203d3e20313531353732.roa (raw, json) Hash identifier: fD+JsAF5IMBZc8QZtWqpSCsBTsofz/k3tLOOnt504Pc= Subject key identifier: F7:68:23:8A:3C:1E:BE:E6:F8:99:50:9F:E9:3E:FC:3A:07:38:24:A7 Certificate issuer: /CN=E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE Certificate serial: 256EAFD2197C63F957375245D17969F8282F9FDF Authority key identifier: E7:C9:E4:E5:C8:EA:98:9F:0F:F7:D6:FE:6D:BD:6A:4F:E8:21:2D:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38392e302f32342d3234203d3e20313531353732.roa Signing time: Tue 24 Mar 2026 12:00:01 +0000 ROA not before: Tue 24 Mar 2026 11:55:01 +0000 ROA not after: Tue 23 Mar 2027 12:00:01 +0000 asID: 151572 IP address blocks: 103.60.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.crl rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 22:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:6e:af:d2:19:7c:63:f9:57:37:52:45:d1:79:69:f8:28:2f:9f:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE Validity Not Before: Mar 24 11:55:01 2026 GMT Not After : Mar 23 12:00:01 2027 GMT Subject: CN=F768238A3C1EBEE6F899509FE93EFC3A073824A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7f:59:f0:48:9b:a9:ba:27:54:28:87:28:a5: 2e:7e:fd:37:68:ab:8c:41:91:03:11:a5:b9:f5:3b: ce:0b:80:2d:ab:6c:4a:59:6d:7d:a0:02:e5:5e:6f: f6:2c:4b:f9:cd:b2:ed:cf:8c:e8:12:3a:f2:e1:b7: 4a:6d:9c:9b:78:99:d1:9c:86:19:e2:12:5a:8e:ea: d8:b5:81:00:6f:e8:6a:25:b5:8b:d5:d9:c9:a0:57: 21:5f:60:e8:aa:4e:e2:1f:e2:c9:79:12:14:60:4b: 23:a6:22:38:9d:bc:dc:70:35:50:8f:50:ee:5f:cc: 34:ec:2e:5f:9f:25:00:5f:0c:1e:f7:d2:cb:9a:44: a1:16:7a:32:df:79:af:da:fb:5b:b6:cc:af:d1:92: f4:54:15:04:90:ab:18:be:28:e3:88:14:17:62:24: c6:63:f5:5e:70:7f:26:30:11:41:65:24:2b:3b:0c: a6:e2:8f:df:2f:9c:ac:1d:90:54:4f:0d:08:1f:7f: e2:0d:99:10:23:a0:1e:1d:25:95:0f:7f:dd:a7:f0: ba:b7:44:bf:5d:d2:e8:73:e7:2b:e1:c9:6a:70:f7: 4d:85:fb:09:93:cf:82:7b:47:54:bb:a0:f6:e9:57: cd:94:48:19:6f:00:df:76:25:51:8f:43:c5:de:ae: 30:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:68:23:8A:3C:1E:BE:E6:F8:99:50:9F:E9:3E:FC:3A:07:38:24:A7 X509v3 Authority Key Identifier: keyid:E7:C9:E4:E5:C8:EA:98:9F:0F:F7:D6:FE:6D:BD:6A:4F:E8:21:2D:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38392e302f32342d3234203d3e20313531353732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.89.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:e0:a8:50:41:5a:6c:a8:90:df:f4:c2:2d:34:24:9f:0c:71: a8:39:33:35:a3:48:3c:39:df:59:60:af:3e:5f:28:7d:6c:5e: 6b:8b:21:46:38:3e:bf:4b:9b:5d:07:f0:e3:b6:c5:90:0b:e1: 4e:3f:86:f3:6a:37:ee:f3:84:c2:a7:74:1b:7c:80:b7:81:ee: 18:f8:ec:4b:9a:67:34:0c:99:e5:53:2d:60:f0:b9:39:b7:35: 2e:44:ae:2b:8a:f4:e4:f7:05:e2:dc:c1:f1:d6:bf:2c:93:4f: 1b:e3:c0:3e:ad:34:bb:60:ca:9b:62:cb:d9:84:fa:22:0a:a1: 29:f6:7c:b2:24:47:2b:f8:c8:40:dd:25:ae:db:14:da:c1:b6: 30:2d:59:f9:bc:f0:83:ba:73:c7:ee:cf:de:69:da:7e:a2:8a: 73:e7:92:bb:78:28:71:72:37:4d:7c:d2:ce:4b:ba:3f:3c:31: 45:d7:29:6c:69:17:0b:e6:21:87:c8:99:61:2e:ce:c6:9b:68: 12:4d:6c:cf:fd:9b:52:db:4c:77:79:92:1b:92:46:b6:fb:2c: 9b:27:91:5d:bc:e2:50:a6:06:65:5c:c2:5f:65:9c:ac:bc:4b: d1:fe:d3:18:db:89:7e:8e:f1:e0:f4:24:a0:60:81:af:97:df: 6b:06:62:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJW6v0hl8Y/lXN1JF0Xlp+Cgvn98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdDOUU0RTVDOEVBOTg5RjBGRjdENkZFNkRCRDZBNEZF ODIxMkRERTAeFw0yNjAzMjQxMTU1MDFaFw0yNzAzMjMxMjAwMDFaMDMxMTAvBgNV BAMTKEY3NjgyMzhBM0MxRUJFRTZGODk5NTA5RkU5M0VGQzNBMDczODI0QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvf1nwSJupuidUKIcopS5+/Tdo q4xBkQMRpbn1O84LgC2rbEpZbX2gAuVeb/YsS/nNsu3PjOgSOvLht0ptnJt4mdGc hhniElqO6ti1gQBv6GoltYvV2cmgVyFfYOiqTuIf4sl5EhRgSyOmIjidvNxwNVCP UO5fzDTsLl+fJQBfDB730suaRKEWejLfea/a+1u2zK/RkvRUFQSQqxi+KOOIFBdi JMZj9V5wfyYwEUFlJCs7DKbij98vnKwdkFRPDQgff+INmRAjoB4dJZUPf92n8Lq3 RL9d0uhz5yvhyWpw902F+wmTz4J7R1S7oPbpV82USBlvAN92JVGPQ8XerjA1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU92gjijwevub4mVCf6T78Ogc4JKcwHwYDVR0j BBgwFoAU58nk5cjqmJ8P99b+bb1qT+ghLd4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzExYWE0Ni1mMjhlLTRjNTUtYjliYS03ZDViZGM5NWI0ZjYvMC9FN0M5RTRFNUM4 RUE5ODlGMEZGN0Q2RkU2REJENkE0RkU4MjEyRERFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdDOUU0RTVDOEVBOTg5RjBGRjdENkZFNkRCRDZBNEZFODIx MkRERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MTFhYTQ2LWYyOGUtNGM1NS1i OWJhLTdkNWJkYzk1YjRmNi8wLzMxMzAzMzJlMzYzMDJlMzgzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc8WTANBgkqhkiG 9w0BAQsFAAOCAQEAC+CoUEFabKiQ3/TCLTQknwxxqDkzNaNIPDnfWWCvPl8ofWxe a4shRjg+v0ubXQfw47bFkAvhTj+G82o37vOEwqd0G3yAt4HuGPjsS5pnNAyZ5VMt YPC5Obc1LkSuK4r05PcF4tzB8da/LJNPG+PAPq00u2DKm2LL2YT6IgqhKfZ8siRH K/jIQN0lrtsU2sG2MC1Z+bzwg7pzx+7P3mnafqKKc+eSu3gocXI3TXzSzku6Pzwx RdcpbGkXC+Yhh8iZYS7OxptoEk1sz/2bUttMd3mSG5JGtvssmyeRXbziUKYGZVzC X2WcrLxL0f7TGNuJfo7x4PQkoGCBr5ffawZizA== -----END CERTIFICATE-----Generated at Fri Mar 27 00:53:04 2026 by rpki-client