$ rpki-client -vvf repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa File: 3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: TC7kjKI9TxMB3HNBPej3++Y7S3V1L2WaqE07r70wEgc= Subject key identifier: A6:74:05:AC:7A:1A:33:0D:E1:8E:F6:26:80:D5:D6:75:23:20:78:35 Certificate issuer: /CN=5EC2C02340FBFA79A3352FA18934C1E7B1D9216F Certificate serial: 4C50A2EEB2F9FECF912546037EEB3B4E4BA7A16D Authority key identifier: 5E:C2:C0:23:40:FB:FA:79:A3:35:2F:A1:89:34:C1:E7:B1:D9:21:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa Signing time: Tue 24 Mar 2026 09:00:00 +0000 ROA not before: Tue 24 Mar 2026 08:55:00 +0000 ROA not after: Tue 23 Mar 2027 09:00:00 +0000 asID: 9341 IP address blocks: 103.189.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.crl rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 20:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:50:a2:ee:b2:f9:fe:cf:91:25:46:03:7e:eb:3b:4e:4b:a7:a1:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC2C02340FBFA79A3352FA18934C1E7B1D9216F Validity Not Before: Mar 24 08:55:00 2026 GMT Not After : Mar 23 09:00:00 2027 GMT Subject: CN=A67405AC7A1A330DE18EF62680D5D67523207835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:49:81:0e:23:8f:d6:cc:21:79:ae:df:4f: 1e:55:d1:f2:09:52:77:4e:de:e7:9f:b3:01:0f:f8: e6:37:9f:fd:35:22:ad:cb:b2:e0:66:46:d2:b9:33: ff:5c:42:bc:0b:83:d4:a5:7d:a3:b2:4c:21:2f:ef: f2:75:65:84:b4:55:2d:a2:3f:e1:79:fb:91:27:26: 30:14:c0:a6:ff:7a:0a:fe:17:e7:2c:58:43:72:6f: be:e9:89:a9:c3:b9:cf:30:95:1f:40:78:fa:c5:71: 82:2a:a1:31:58:a2:0d:51:6f:f6:c5:9b:65:1d:12: 17:9d:5f:cc:60:b2:78:d7:6d:2d:bb:7f:1e:ea:6f: 09:35:61:4b:5a:57:74:6a:77:92:6c:d7:6a:63:c7: f6:d5:2b:b4:21:28:de:31:ca:23:1c:b8:80:f7:4c: 59:dd:38:05:a1:f9:71:a0:77:45:ca:f8:7a:6d:2f: d2:c9:4a:fa:5b:57:a5:8c:c4:8f:67:ca:86:88:24: 12:d5:c5:33:77:16:4e:c7:5e:15:fc:6f:af:98:88: 45:e1:2c:db:6e:c4:59:bb:4d:58:37:62:95:83:d8: bf:2e:cd:b6:28:15:7d:45:58:36:63:83:ab:db:8e: 5d:0c:55:8a:e1:1e:ee:c9:7e:a3:08:ec:8b:0e:19: 3a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:74:05:AC:7A:1A:33:0D:E1:8E:F6:26:80:D5:D6:75:23:20:78:35 X509v3 Authority Key Identifier: keyid:5E:C2:C0:23:40:FB:FA:79:A3:35:2F:A1:89:34:C1:E7:B1:D9:21:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.201.0/24 Signature Algorithm: sha256WithRSAEncryption a8:21:a3:57:19:81:c1:63:e3:0f:e0:02:70:d8:d4:0c:e9:0f: aa:3a:46:63:9f:ec:d2:6e:30:d1:bb:cd:45:b9:30:47:7e:54: 73:48:4b:fb:cf:fb:3c:aa:ca:e7:45:31:20:54:93:cb:d9:e4: bc:22:08:04:a4:74:59:f3:43:88:b3:97:ca:7e:d6:dd:e8:9c: 76:bd:24:94:cb:b8:6b:e0:be:c7:60:5c:76:a2:2b:e5:59:53: 7a:6d:04:36:7a:fb:5d:72:cc:fd:74:62:35:9b:ce:d5:a9:b3: 77:49:69:c0:49:1f:8a:02:24:75:26:e8:13:1e:86:4f:28:a1: c8:37:12:7c:96:5d:5c:dc:9f:f8:53:19:46:7c:57:6e:7a:01: f4:1c:6b:8a:dd:f5:58:db:cb:ce:e3:70:4e:a4:1f:94:f3:31: 22:b8:9a:f5:29:a1:56:b4:1f:1e:ef:df:cd:3a:b2:a0:ab:41: 9a:fd:c9:a3:84:62:9e:e0:72:f1:e5:95:9f:1f:e8:ff:b9:9b: 42:fd:c8:e9:68:57:11:e8:89:f3:4b:3b:08:9c:b0:eb:87:e9: 0e:aa:16:80:94:1a:ce:c0:93:57:04:8b:83:c3:92:3b:ec:8d: 11:48:e1:40:a2:d8:db:b6:78:d1:79:80:d5:08:f3:72:4b:d8: b3:e6:0b:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTFCi7rL5/s+RJUYDfus7TkunoW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDMkMwMjM0MEZCRkE3OUEzMzUyRkExODkzNEMxRTdC MUQ5MjE2RjAeFw0yNjAzMjQwODU1MDBaFw0yNzAzMjMwOTAwMDBaMDMxMTAvBgNV BAMTKEE2NzQwNUFDN0ExQTMzMERFMThFRjYyNjgwRDVENjc1MjMyMDc4MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR8UmBDiOP1swhea7fTx5V0fIJ UndO3uefswEP+OY3n/01Iq3LsuBmRtK5M/9cQrwLg9SlfaOyTCEv7/J1ZYS0VS2i P+F5+5EnJjAUwKb/egr+F+csWENyb77pianDuc8wlR9AePrFcYIqoTFYog1Rb/bF m2UdEhedX8xgsnjXbS27fx7qbwk1YUtaV3Rqd5Js12pjx/bVK7QhKN4xyiMcuID3 TFndOAWh+XGgd0XK+HptL9LJSvpbV6WMxI9nyoaIJBLVxTN3Fk7HXhX8b6+YiEXh LNtuxFm7TVg3YpWD2L8uzbYoFX1FWDZjg6vbjl0MVYrhHu7JfqMI7IsOGTpXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpnQFrHoaMw3hjvYmgNXWdSMgeDUwHwYDVR0j BBgwFoAUXsLAI0D7+nmjNS+hiTTB57HZIW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTJlNWYwMy1iZjk2LTRiNDAtYmQ0YS02ZTM4ODhjNDAyMDUvMC81RUMyQzAyMzQw RkJGQTc5QTMzNTJGQTE4OTM0QzFFN0IxRDkyMTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVDMkMwMjM0MEZCRkE3OUEzMzUyRkExODkzNEMxRTdCMUQ5 MjE2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMmU1ZjAzLWJmOTYtNGI0MC1i ZDRhLTZlMzg4OGM0MDIwNS8wLzMxMzAzMzJlMzEzODM5MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe9yTANBgkqhkiG 9w0BAQsFAAOCAQEAqCGjVxmBwWPjD+ACcNjUDOkPqjpGY5/s0m4w0bvNRbkwR35U c0hL+8/7PKrK50UxIFSTy9nkvCIIBKR0WfNDiLOXyn7W3eicdr0klMu4a+C+x2Bc dqIr5VlTem0ENnr7XXLM/XRiNZvO1amzd0lpwEkfigIkdSboEx6GTyihyDcSfJZd XNyf+FMZRnxXbnoB9Bxrit31WNvLzuNwTqQflPMxIria9SmhVrQfHu/fzTqyoKtB mv3Jo4RinuBy8eWVnx/o/7mbQv3I6WhXEeiJ80s7CJyw64fpDqoWgJQazsCTVwSL g8OSO+yNEUjhQKLY27Z40XmA1QjzckvYs+YL7g== -----END CERTIFICATE-----Generated at Thu Mar 26 21:36:59 2026 by rpki-client