$ rpki-client -vvf repo-rpki.idnic.net/repo/6d4aa7ef-6d95-4eba-a354-fd41858c1ba7/0/3130332e3133372e33322e302f32332d3234203d3e20313338383131.roa File: 3130332e3133372e33322e302f32332d3234203d3e20313338383131.roa (raw, json) Hash identifier: vvzyGmxQpJLqwa9gprTx4R4I6ukPCiomchYJAMO7Ahg= Subject key identifier: 50:F1:0C:FF:CE:EE:A3:9B:5A:AC:B4:80:30:7B:F1:D0:AC:10:98:AD Certificate issuer: /CN=7ED240749DF73AB541823D94017C578425D757A6 Certificate serial: 5E118175815BEC8CD83017FD62939923E5FBA37D Authority key identifier: 7E:D2:40:74:9D:F7:3A:B5:41:82:3D:94:01:7C:57:84:25:D7:57:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7ED240749DF73AB541823D94017C578425D757A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d4aa7ef-6d95-4eba-a354-fd41858c1ba7/0/3130332e3133372e33322e302f32332d3234203d3e20313338383131.roa Signing time: Thu 26 Mar 2026 04:03:42 +0000 ROA not before: Thu 26 Mar 2026 03:58:42 +0000 ROA not after: Thu 25 Mar 2027 04:03:42 +0000 asID: 138811 IP address blocks: 103.137.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d4aa7ef-6d95-4eba-a354-fd41858c1ba7/0/7ED240749DF73AB541823D94017C578425D757A6.crl rsync://repo-rpki.idnic.net/repo/6d4aa7ef-6d95-4eba-a354-fd41858c1ba7/0/7ED240749DF73AB541823D94017C578425D757A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7ED240749DF73AB541823D94017C578425D757A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 13:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:11:81:75:81:5b:ec:8c:d8:30:17:fd:62:93:99:23:e5:fb:a3:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ED240749DF73AB541823D94017C578425D757A6 Validity Not Before: Mar 26 03:58:42 2026 GMT Not After : Mar 25 04:03:42 2027 GMT Subject: CN=50F10CFFCEEEA39B5AACB480307BF1D0AC1098AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ef:f2:50:65:02:ed:f8:15:13:66:45:28:e9: e7:a7:07:6e:3b:f5:e2:48:da:ad:91:ca:f1:05:e2: f1:44:af:2b:02:6d:b8:ca:36:19:07:6d:55:08:b9: d3:fd:d5:fc:9a:10:55:80:60:47:76:e4:9e:3b:5e: a5:b3:b5:0e:aa:11:87:a5:5a:05:18:51:51:24:06: 28:cd:39:2a:7e:11:bc:77:0a:26:bf:f7:9e:c2:be: 39:48:14:30:da:d9:8a:e8:56:43:66:e7:21:cd:79: 85:ed:23:b9:a9:5b:73:2f:a7:40:06:25:ff:eb:79: 3d:c1:64:d8:78:a0:e5:44:bb:16:27:73:d2:d7:e4: 7a:18:ca:71:b3:86:fb:72:59:70:98:36:ed:ff:e6: 02:86:da:f8:e8:3d:50:98:f6:83:8e:a0:11:58:a2: 4a:e7:bf:e0:3e:61:62:2e:b6:4c:90:14:33:64:9e: ae:ee:f9:d5:fa:65:fb:12:52:84:66:3a:38:88:d2: 26:2f:74:d2:e6:8b:58:37:53:2b:68:ec:b4:36:83: ba:51:a7:f8:4c:7a:91:61:9d:3f:53:00:1e:a0:1d: 1a:66:92:09:84:fd:a0:25:1e:71:99:2c:5e:04:1d: 39:d8:e8:92:1a:19:e0:cf:68:31:c0:6d:f8:54:01: 4f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F1:0C:FF:CE:EE:A3:9B:5A:AC:B4:80:30:7B:F1:D0:AC:10:98:AD X509v3 Authority Key Identifier: keyid:7E:D2:40:74:9D:F7:3A:B5:41:82:3D:94:01:7C:57:84:25:D7:57:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d4aa7ef-6d95-4eba-a354-fd41858c1ba7/0/7ED240749DF73AB541823D94017C578425D757A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7ED240749DF73AB541823D94017C578425D757A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d4aa7ef-6d95-4eba-a354-fd41858c1ba7/0/3130332e3133372e33322e302f32332d3234203d3e20313338383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.32.0/23 Signature Algorithm: sha256WithRSAEncryption 15:43:bb:d2:7a:74:a8:a9:8d:30:0a:19:7c:86:d9:0e:b4:ab: 28:1b:dd:dd:00:32:48:74:0a:bb:59:e1:8f:17:a8:5b:f7:ed: 31:bb:df:8c:e1:af:82:92:27:af:b0:5c:c6:7c:f5:a3:7f:d4: 55:19:da:fd:8f:59:d1:72:ef:28:a6:31:b2:70:9f:a8:ce:26: bd:ea:56:a3:48:4e:21:6c:b9:e2:dd:d8:4f:09:ac:04:d9:62: e7:82:50:df:5c:a9:bf:f6:56:1f:bf:52:1d:a8:e8:a2:48:fe: 16:a4:ea:91:62:9c:e7:d0:6c:61:d8:6e:f4:d2:23:ab:8a:d6: b5:f9:76:dc:7b:7a:7f:f5:7b:90:61:3b:82:5d:e8:a5:26:50: c0:5f:36:7f:23:2b:56:a4:f9:ab:d4:d1:ff:b1:41:cb:d4:6b: 5c:02:1d:89:a6:88:bc:59:39:f9:77:60:c8:8c:57:50:ec:25: be:5d:dc:47:e3:5c:f0:74:b8:52:c2:bb:5b:17:21:e5:ea:4a: cf:55:21:d8:e0:9d:c0:c1:0e:2f:80:c1:a7:71:8f:d9:74:a7: 3b:72:c8:fe:3b:ce:9c:42:f4:47:da:bd:a2:b3:4d:c7:c3:00: 65:d5:06:a0:54:72:b8:9a:95:87:e4:6c:f9:6e:71:f5:4b:a2: 88:e7:ec:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXhGBdYFb7IzYMBf9YpOZI+X7o30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VEMjQwNzQ5REY3M0FCNTQxODIzRDk0MDE3QzU3ODQy NUQ3NTdBNjAeFw0yNjAzMjYwMzU4NDJaFw0yNzAzMjUwNDAzNDJaMDMxMTAvBgNV BAMTKDUwRjEwQ0ZGQ0VFRUEzOUI1QUFDQjQ4MDMwN0JGMUQwQUMxMDk4QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI7/JQZQLt+BUTZkUo6eenB247 9eJI2q2RyvEF4vFErysCbbjKNhkHbVUIudP91fyaEFWAYEd25J47XqWztQ6qEYel WgUYUVEkBijNOSp+Ebx3Cia/957CvjlIFDDa2YroVkNm5yHNeYXtI7mpW3Mvp0AG Jf/reT3BZNh4oOVEuxYnc9LX5HoYynGzhvtyWXCYNu3/5gKG2vjoPVCY9oOOoBFY okrnv+A+YWIutkyQFDNknq7u+dX6ZfsSUoRmOjiI0iYvdNLmi1g3Uyto7LQ2g7pR p/hMepFhnT9TAB6gHRpmkgmE/aAlHnGZLF4EHTnY6JIaGeDPaDHAbfhUAU9/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUPEM/87uo5tarLSAMHvx0KwQmK0wHwYDVR0j BBgwFoAUftJAdJ33OrVBgj2UAXxXhCXXV6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDRhYTdlZi02ZDk1LTRlYmEtYTM1NC1mZDQxODU4YzFiYTcvMC83RUQyNDA3NDlE RjczQUI1NDE4MjNEOTQwMTdDNTc4NDI1RDc1N0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0VEMjQwNzQ5REY3M0FCNTQxODIzRDk0MDE3QzU3ODQyNUQ3 NTdBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkNGFhN2VmLTZkOTUtNGViYS1h MzU0LWZkNDE4NThjMWJhNy8wLzMxMzAzMzJlMzEzMzM3MmUzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4kgMA0GCSqG SIb3DQEBCwUAA4IBAQAVQ7vSenSoqY0wChl8htkOtKsoG93dADJIdAq7WeGPF6hb 9+0xu9+M4a+CkievsFzGfPWjf9RVGdr9j1nRcu8opjGycJ+ozia96lajSE4hbLni 3dhPCawE2WLnglDfXKm/9lYfv1IdqOiiSP4WpOqRYpzn0Gxh2G700iOrita1+Xbc e3p/9XuQYTuCXeilJlDAXzZ/IytWpPmr1NH/sUHL1GtcAh2Jpoi8WTn5d2DIjFdQ 7CW+XdxH41zwdLhSwrtbFyHl6krPVSHY4J3AwQ4vgMGncY/ZdKc7csj+O86cQvRH 2r2is03HwwBl1QagVHK4mpWH5Gz5bnH1S6KI5+x4 -----END CERTIFICATE-----Generated at Thu Mar 26 21:40:28 2026 by rpki-client