$ rpki-client -vvf repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3130332e32312e3231362e302f32322d3234203d3e2039393035.roa File: 3130332e32312e3231362e302f32322d3234203d3e2039393035.roa (raw, json) Hash identifier: AegQSPm88mVbswDCQ/i0nklr79l1HH8pa6qP6V8zKjk= Subject key identifier: E0:91:72:A0:4B:E3:2A:5E:2C:75:C3:7F:21:A4:4A:83:E1:1E:B7:7F Certificate issuer: /CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Certificate serial: 5C8F2BD7DCD4768FE7F5A4131FD15E749EDEE522 Authority key identifier: 78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3130332e32312e3231362e302f32322d3234203d3e2039393035.roa Signing time: Wed 18 Mar 2026 23:00:01 +0000 ROA not before: Wed 18 Mar 2026 22:55:01 +0000 ROA not after: Wed 17 Mar 2027 23:00:01 +0000 asID: 9905 IP address blocks: 103.21.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 09:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:8f:2b:d7:dc:d4:76:8f:e7:f5:a4:13:1f:d1:5e:74:9e:de:e5:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Validity Not Before: Mar 18 22:55:01 2026 GMT Not After : Mar 17 23:00:01 2027 GMT Subject: CN=E09172A04BE32A5E2C75C37F21A44A83E11EB77F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7d:5d:09:c7:a0:1f:83:4f:0e:28:6c:ef:42: 5f:8b:81:c2:97:a7:32:c5:02:4c:03:2e:e8:37:77: 2c:4a:47:12:05:11:09:b3:d6:f4:4b:0e:2b:09:02: ce:4d:76:90:5b:5e:4c:15:a9:16:82:58:40:57:de: f0:ea:d2:df:b5:34:2c:09:37:41:19:87:fa:7b:62: d4:e8:7a:4d:bd:93:ce:48:9a:5f:5b:d4:b2:45:a3: ce:b8:27:88:44:ab:f2:49:13:d7:2e:84:83:cc:17: c4:26:18:4e:5f:78:bb:8c:0a:0e:5c:95:be:73:d0: d3:f2:a2:c0:b2:8b:0c:10:83:c3:3d:eb:17:9e:7e: a3:a1:1c:4c:72:88:78:6e:4a:c4:a7:af:0f:13:61: cd:3f:aa:0e:a0:32:d1:a2:d8:5a:c8:07:fe:3e:ad: 69:f5:39:90:44:60:71:34:f0:49:cd:60:b7:4c:a1: d7:22:ff:fe:9e:8d:46:d0:04:6f:4e:dc:a6:fb:9a: a1:0c:2e:c1:8c:75:8e:6c:7e:d1:ab:ad:1c:25:4c: 10:1c:f5:40:67:22:18:ec:9f:f5:2e:59:7c:78:43: 97:80:29:c7:2a:5b:f3:53:9f:49:91:dc:c8:a4:cb: bc:e2:03:89:4b:07:3f:56:99:39:f4:75:7b:1c:b7: ce:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:91:72:A0:4B:E3:2A:5E:2C:75:C3:7F:21:A4:4A:83:E1:1E:B7:7F X509v3 Authority Key Identifier: keyid:78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3130332e32312e3231362e302f32322d3234203d3e2039393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.216.0/22 Signature Algorithm: sha256WithRSAEncryption a9:24:e3:a3:dd:ff:ce:b0:86:0f:fd:6e:7f:fe:81:a3:03:cf: bd:51:52:9c:35:bb:34:11:dc:a8:7c:97:a0:f6:28:24:ba:c6: 8a:15:e7:00:e2:63:ae:23:b5:8f:bc:f1:e6:48:43:49:97:bc: f9:30:60:fa:57:b5:3b:9d:d2:66:a4:25:56:35:4f:fc:6d:e1: 12:f8:46:5d:1d:5f:84:92:dc:2a:42:79:d8:bd:11:f9:cc:2a: 08:ce:45:66:f7:4a:e0:c8:71:3d:5b:98:a6:f4:3b:24:8d:d0: c1:a8:a2:9d:b5:47:f5:58:aa:23:2d:89:66:d6:9d:d2:98:60: 9c:db:95:93:60:72:ec:10:64:0b:cd:d2:e7:19:8f:17:4c:2b: 8d:6c:70:a5:52:33:bd:1e:76:0e:51:64:03:46:1b:1c:ff:f1: f8:b6:cd:61:7b:9a:6b:de:2d:78:e3:62:59:b4:90:92:ba:72: 2a:fe:f9:e5:48:75:0a:aa:49:88:ad:b1:cd:02:ac:83:32:15: b6:e1:aa:0f:38:8e:2f:4e:e1:bc:0c:ad:11:0b:4f:ec:f9:54: f2:22:6a:49:6c:4b:67:36:c7:fc:4d:93:ca:04:5d:96:a8:00: 42:1f:79:aa:84:46:2f:37:0d:31:50:b2:29:98:ec:d5:cc:01: 8a:69:6a:35 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXI8r19zUdo/n9aQTH9FedJ7e5SIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdB RjA5OTlFNzAeFw0yNjAzMTgyMjU1MDFaFw0yNzAzMTcyMzAwMDFaMDMxMTAvBgNV BAMTKEUwOTE3MkEwNEJFMzJBNUUyQzc1QzM3RjIxQTQ0QTgzRTExRUI3N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqfV0Jx6Afg08OKGzvQl+LgcKX pzLFAkwDLug3dyxKRxIFEQmz1vRLDisJAs5NdpBbXkwVqRaCWEBX3vDq0t+1NCwJ N0EZh/p7YtToek29k85Iml9b1LJFo864J4hEq/JJE9cuhIPMF8QmGE5feLuMCg5c lb5z0NPyosCyiwwQg8M96xeefqOhHExyiHhuSsSnrw8TYc0/qg6gMtGi2FrIB/4+ rWn1OZBEYHE08EnNYLdModci//6ejUbQBG9O3Kb7mqEMLsGMdY5sftGrrRwlTBAc 9UBnIhjsn/UuWXx4Q5eAKccqW/NTn0mR3Miky7ziA4lLBz9WmTn0dXsct84VAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU4JFyoEvjKl4sdcN/IaRKg+Eet38wHwYDVR0j BBgwFoAUeCY3tYuOB+xkoPquF2mvF68JmecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OWMwNWVlMy03ZmM4LTQ0MDctYjJjMC1jYjQwYmZjZmI4NjYvMC83ODI2MzdCNThC OEUwN0VDNjRBMEZBQUUxNzY5QUYxN0FGMDk5OUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdBRjA5 OTlFNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5YzA1ZWUzLTdmYzgtNDQwNy1i MmMwLWNiNDBiZmNmYjg2Ni8wLzMxMzAzMzJlMzIzMTJlMzIzMTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnFdgwDQYJKoZIhvcN AQELBQADggEBAKkk46Pd/86whg/9bn/+gaMDz71RUpw1uzQR3Kh8l6D2KCS6xooV 5wDiY64jtY+88eZIQ0mXvPkwYPpXtTud0makJVY1T/xt4RL4Rl0dX4SS3CpCedi9 EfnMKgjORWb3SuDIcT1bmKb0OySN0MGoop21R/VYqiMtiWbWndKYYJzblZNgcuwQ ZAvN0ucZjxdMK41scKVSM70edg5RZANGGxz/8fi2zWF7mmveLXjjYlm0kJK6cir+ +eVIdQqqSYitsc0CrIMyFbbhqg84ji9O4bwMrRELT+z5VPIiaklsS2c2x/xNk8oE XZaoAEIfeaqERi83DTFQsimY7NXMAYppajU= -----END CERTIFICATE-----Generated at Thu Mar 26 13:34:44 2026 by rpki-client