$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa File: 3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: jPxrDkpEehUiNhQgS/x9kvyzOcfaYH6gxdwrOHOnSCs= Subject key identifier: 48:40:B0:6F:9F:70:21:6F:72:C5:07:CE:D5:70:4F:C2:6F:49:F9:B9 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 283D2CD7F113E995893EF3593287D04DCF60577B Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:00 +0000 ROA not before: Sun 08 Mar 2026 15:55:00 +0000 ROA not after: Sun 07 Mar 2027 16:00:00 +0000 asID: 45725 IP address blocks: 103.245.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:3d:2c:d7:f1:13:e9:95:89:3e:f3:59:32:87:d0:4d:cf:60:57:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:00 2026 GMT Not After : Mar 7 16:00:00 2027 GMT Subject: CN=4840B06F9F70216F72C507CED5704FC26F49F9B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:98:fb:05:8d:e5:de:e3:91:d6:c4:cc:8e:de: 2a:bb:d5:7a:9a:6d:be:69:1f:06:60:97:2d:c4:fc: 1c:6e:0c:13:ea:8e:ad:04:53:5c:94:16:73:76:63: b0:f7:c5:3e:da:e9:88:52:bb:fa:17:91:b9:8f:5a: b4:e0:d5:91:5a:d0:5f:d2:31:b8:2e:e4:c6:d8:59: 96:cf:9e:6f:c4:5e:e0:af:2f:58:3b:b7:91:62:1b: 49:0e:ad:d5:04:4b:6b:8e:ef:90:72:29:4e:e4:d0: 02:47:e0:00:81:9f:78:74:86:ef:af:b2:47:8f:88: d6:9a:96:a9:f3:0c:05:dc:25:c8:57:fa:f5:44:e1: bd:d9:9c:ec:81:4f:32:eb:b6:d3:7f:31:9a:39:20: c7:d3:64:c5:67:46:c1:44:d2:b0:68:eb:7e:04:6e: 88:07:95:9a:49:a9:86:62:16:07:df:51:5e:f7:97: e5:26:1b:01:81:eb:a0:84:fc:d2:00:47:16:c2:8a: e8:8d:7e:fe:0e:98:24:00:2e:39:d3:38:4d:48:83: a3:1d:6d:e7:d7:ef:73:a4:4b:ee:80:c7:9b:2f:20: 20:ad:95:00:49:b0:fb:12:0b:f7:98:db:90:5c:27: 9a:aa:af:e7:86:84:c0:51:1b:38:d8:1e:c2:30:41: 7a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:40:B0:6F:9F:70:21:6F:72:C5:07:CE:D5:70:4F:C2:6F:49:F9:B9 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.138.0/23 Signature Algorithm: sha256WithRSAEncryption c7:10:33:7b:b2:33:77:bf:19:63:f7:4e:50:c8:b1:c5:76:eb: c6:f4:64:14:ab:7c:fe:c2:29:c6:67:a8:57:5a:2e:e1:f8:91: 9b:87:a0:1d:53:2c:ae:f9:53:da:8a:65:b0:03:ee:ce:c9:c9: 52:f2:2e:55:82:13:42:30:b6:f6:2f:b1:94:36:24:75:03:f0: 82:02:67:57:e5:6b:5e:b0:79:42:c5:39:96:7b:e0:05:a9:2a: e9:71:48:0f:e3:42:6f:90:54:a6:f3:48:f0:6b:31:2b:12:e3: 4f:50:5a:ae:af:d3:bf:a3:96:30:5a:ac:c4:55:a5:c0:fd:5a: 63:80:77:2c:7f:6b:ba:0b:35:9c:01:88:fd:ad:d3:3e:90:d6: cb:65:b7:4b:3c:ca:4e:70:78:05:2a:0c:a9:a7:7c:0e:07:8b: ff:a8:b2:54:95:6e:0e:3f:17:9f:47:2a:0e:62:b7:08:96:fe: 61:cb:34:fa:b4:e8:71:85:5f:ab:a7:b6:0e:2d:70:c4:32:40: 4a:86:47:c7:57:50:d2:ef:4e:05:87:64:46:60:13:d4:18:77: c5:ba:00:74:51:a4:a8:70:9a:40:7d:25:90:d1:7c:0d:82:84: 6f:ac:94:2f:98:29:98:0d:56:bc:36:fa:f2:c7:4f:38:a0:ed: 3f:77:2c:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKD0s1/ET6ZWJPvNZMofQTc9gV3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDBaFw0yNzAzMDcxNjAwMDBaMDMxMTAvBgNV BAMTKDQ4NDBCMDZGOUY3MDIxNkY3MkM1MDdDRUQ1NzA0RkMyNkY0OUY5QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrmPsFjeXe45HWxMyO3iq71Xqa bb5pHwZgly3E/BxuDBPqjq0EU1yUFnN2Y7D3xT7a6YhSu/oXkbmPWrTg1ZFa0F/S Mbgu5MbYWZbPnm/EXuCvL1g7t5FiG0kOrdUES2uO75ByKU7k0AJH4ACBn3h0hu+v skePiNaalqnzDAXcJchX+vVE4b3ZnOyBTzLrttN/MZo5IMfTZMVnRsFE0rBo634E bogHlZpJqYZiFgffUV73l+UmGwGB66CE/NIARxbCiuiNfv4OmCQALjnTOE1Ig6Md befX73OkS+6Ax5svICCtlQBJsPsSC/eY25BcJ5qqr+eGhMBRGzjYHsIwQXprAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSECwb59wIW9yxQfO1XBPwm9J+bkwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzAzMzJlMzIzNDM1MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/WKMA0GCSqG SIb3DQEBCwUAA4IBAQDHEDN7sjN3vxlj905QyLHFduvG9GQUq3z+winGZ6hXWi7h +JGbh6AdUyyu+VPaimWwA+7OyclS8i5VghNCMLb2L7GUNiR1A/CCAmdX5WtesHlC xTmWe+AFqSrpcUgP40JvkFSm80jwazErEuNPUFqur9O/o5YwWqzEVaXA/VpjgHcs f2u6CzWcAYj9rdM+kNbLZbdLPMpOcHgFKgypp3wOB4v/qLJUlW4OPxefRyoOYrcI lv5hyzT6tOhxhV+rp7YOLXDEMkBKhkfHV1DS704Fh2RGYBPUGHfFugB0UaSocJpA fSWQ0XwNgoRvrJQvmCmYDVa8Nvryx084oO0/dyxS -----END CERTIFICATE-----Generated at Thu Mar 26 22:11:59 2026 by rpki-client