$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa File: 3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa (raw, json) Hash identifier: NlqtXEYc0qu5C4pNIHVhgdQEP8qnif0LKTnWyQfNsyQ= Subject key identifier: 1C:BA:54:40:BE:B3:C5:CE:7B:31:30:72:BB:59:A5:7E:49:B5:17:CB Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 4575FD2D931938DA5BF71B5DC8983E17CB8EACF2 Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa Signing time: Thu 26 Mar 2026 05:02:49 +0000 ROA not before: Thu 26 Mar 2026 04:57:49 +0000 ROA not after: Thu 25 Mar 2027 05:02:49 +0000 asID: 59282 IP address blocks: 103.161.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 15:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:75:fd:2d:93:19:38:da:5b:f7:1b:5d:c8:98:3e:17:cb:8e:ac:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Mar 26 04:57:49 2026 GMT Not After : Mar 25 05:02:49 2027 GMT Subject: CN=1CBA5440BEB3C5CE7B313072BB59A57E49B517CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:70:ab:ed:48:67:cd:e7:cd:09:0d:36:7d:d2: b7:30:03:c9:81:ca:0d:2d:c8:42:2e:72:ea:3c:5c: 32:d4:04:fb:be:f3:0c:86:d6:56:d8:2b:4b:0d:08: e0:df:36:44:13:70:a2:9b:26:05:a1:4e:47:7f:fb: 6e:12:24:91:1b:75:7b:2f:0e:2f:0a:1d:45:9c:12: 63:5d:92:0b:a1:90:1b:8d:15:6d:fb:fb:c1:08:6f: d1:c6:94:4f:77:76:99:04:d3:2e:c1:8e:34:cf:0d: dc:17:5c:52:6f:c3:84:a1:34:4d:e9:e6:f2:8c:47: 7a:23:a4:74:a2:70:9b:1e:5f:d7:66:19:e7:b6:e1: 67:2f:a0:75:cd:b3:40:6a:87:63:ad:0a:40:cf:d9: a2:a9:d8:8f:97:80:59:29:ba:1b:89:b2:1d:e9:e4: f9:fb:c5:35:d7:8d:fe:31:7c:23:b4:55:95:2c:bb: b3:ba:dc:71:91:75:5b:91:c3:f9:48:49:21:92:1f: 83:07:a2:18:2d:cc:6c:93:61:b4:05:f0:17:af:8c: 13:23:6c:85:d0:e2:3f:7c:2c:ad:4e:7e:af:86:98: ff:d0:55:e4:a9:46:5c:40:cc:29:b3:e7:89:48:e8: 75:ba:c4:19:d5:91:83:c4:35:36:0a:af:01:1e:27: 32:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BA:54:40:BE:B3:C5:CE:7B:31:30:72:BB:59:A5:7E:49:B5:17:CB X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:4e:f2:d5:a3:66:42:09:1a:75:96:d3:9d:6b:c1:79:79:8e: 4a:5d:6f:b5:6a:06:a6:d1:30:5a:e5:69:3f:28:fa:cc:be:24: 09:0d:cf:f7:21:be:b9:b8:eb:0a:6c:65:a0:40:a3:38:8e:9c: 22:9d:a3:96:df:0a:f4:65:49:d2:de:63:72:ab:aa:7d:80:b8: 20:73:03:a2:4f:76:6a:b8:24:82:90:c4:0f:5c:92:44:7c:15: 2f:3e:d9:7b:9c:65:2d:08:c3:50:d7:e0:1a:98:2a:13:1e:2b: eb:12:7a:5b:b4:71:64:55:68:e7:0d:92:a2:2e:ed:c9:19:ad: 94:36:45:9a:9e:6f:63:28:9a:48:65:00:07:05:93:dc:aa:6e: d4:56:70:e5:69:e3:77:34:ae:b3:55:c6:e1:41:c4:3e:88:3a: bd:ba:5f:c4:63:c8:13:7d:cd:b7:b8:8c:17:46:c3:c4:83:ff: 4e:7c:b3:4b:bc:c7:6d:f1:e8:46:0e:98:8e:c7:ef:5c:7a:6e: a6:4d:7b:28:fe:0f:95:8f:07:48:1b:ed:d5:fe:67:67:a3:89: bf:32:47:7f:7f:84:ab:07:be:08:49:e8:7f:e6:95:3c:97:bb: 1d:7c:a0:91:1c:33:0f:6b:3a:30:f9:d2:26:a3:23:09:40:a5: 9b:87:c4:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURXX9LZMZONpb9xtdyJg+F8uOrPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNjAzMjYwNDU3NDlaFw0yNzAzMjUwNTAyNDlaMDMxMTAvBgNV BAMTKDFDQkE1NDQwQkVCM0M1Q0U3QjMxMzA3MkJCNTlBNTdFNDlCNTE3Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGcKvtSGfN580JDTZ90rcwA8mB yg0tyEIucuo8XDLUBPu+8wyG1lbYK0sNCODfNkQTcKKbJgWhTkd/+24SJJEbdXsv Di8KHUWcEmNdkguhkBuNFW37+8EIb9HGlE93dpkE0y7BjjTPDdwXXFJvw4ShNE3p 5vKMR3ojpHSicJseX9dmGee24WcvoHXNs0Bqh2OtCkDP2aKp2I+XgFkpuhuJsh3p 5Pn7xTXXjf4xfCO0VZUsu7O63HGRdVuRw/lISSGSH4MHohgtzGyTYbQF8BevjBMj bIXQ4j98LK1Ofq+GmP/QVeSpRlxAzCmz54lI6HW6xBnVkYPENTYKrwEeJzLVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHLpUQL6zxc57MTByu1mlfkm1F8swHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6GGMA0GCSqG SIb3DQEBCwUAA4IBAQCKTvLVo2ZCCRp1ltOda8F5eY5KXW+1agam0TBa5Wk/KPrM viQJDc/3Ib65uOsKbGWgQKM4jpwinaOW3wr0ZUnS3mNyq6p9gLggcwOiT3ZquCSC kMQPXJJEfBUvPtl7nGUtCMNQ1+AamCoTHivrEnpbtHFkVWjnDZKiLu3JGa2UNkWa nm9jKJpIZQAHBZPcqm7UVnDlaeN3NK6zVcbhQcQ+iDq9ul/EY8gTfc23uIwXRsPE g/9OfLNLvMdt8ehGDpiOx+9cem6mTXso/g+VjwdIG+3V/mdno4m/Mkd/f4SrB74I Seh/5pU8l7sdfKCRHDMPazow+dImoyMJQKWbh8T3 -----END CERTIFICATE-----Generated at Thu Mar 26 11:57:27 2026 by rpki-client