$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa File: 3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa (raw, json) Hash identifier: GbW8pIvunTcszaDOe8fHQRX98OSxYPSLoytCW4o6p7M= Subject key identifier: 0D:EE:D7:9C:6D:18:97:46:DD:91:03:A8:C0:67:88:7B:F7:C0:FC:B8 Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 68A0F96CD9D4D142710182C4FDAE87D3118321BA Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa Signing time: Thu 26 Mar 2026 05:02:49 +0000 ROA not before: Thu 26 Mar 2026 04:57:49 +0000 ROA not after: Thu 25 Mar 2027 05:02:49 +0000 asID: 59282 IP address blocks: 103.161.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 15:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a0:f9:6c:d9:d4:d1:42:71:01:82:c4:fd:ae:87:d3:11:83:21:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Mar 26 04:57:49 2026 GMT Not After : Mar 25 05:02:49 2027 GMT Subject: CN=0DEED79C6D189746DD9103A8C067887BF7C0FCB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a9:76:1a:18:a6:39:08:ae:f9:c9:8f:62:8c: 3f:be:e8:c3:6a:a5:f2:81:c7:7e:ef:ef:63:fb:d1: 97:a5:3f:ea:2e:9a:1c:54:d9:77:cf:32:d2:3f:af: f5:59:2f:f2:28:73:7e:d1:d8:fe:cc:c0:3d:21:3b: 09:a0:fe:7d:d9:28:69:35:59:40:72:cd:a3:bc:35: a8:ae:e8:e3:55:47:f1:17:77:b8:33:3e:05:af:a5: 81:99:ae:1d:07:ee:db:3c:3a:9b:1f:13:ba:fe:b1: eb:b8:b1:c1:74:56:ca:86:c5:ef:36:7f:95:eb:99: 5f:ea:2c:10:17:e8:d9:99:14:6b:d1:ef:9f:36:a6: 03:fe:e5:73:07:79:19:98:7d:97:32:9b:10:be:78: 6d:7f:8f:51:87:61:cf:7b:0d:48:fd:1f:db:47:bd: b2:c7:15:5a:17:75:e3:c2:5b:5b:f3:cd:2b:b9:03: 89:81:fe:31:22:ea:1a:8a:4c:3d:00:b5:0e:f2:e5: ea:7c:0a:bf:6d:d8:7e:38:fc:ce:0e:b8:c6:e3:72: 6b:e8:98:e8:fd:a7:7c:0a:3c:14:b2:63:ef:0c:67: ee:71:69:cc:9a:ed:05:a5:10:ce:ac:91:8e:30:0c: 83:60:c8:e0:04:11:c8:1e:f4:ad:4c:1c:81:53:24: 3b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:EE:D7:9C:6D:18:97:46:DD:91:03:A8:C0:67:88:7B:F7:C0:FC:B8 X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.135.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f0:d8:7e:b0:ce:07:7d:8d:eb:ac:fa:77:bf:ca:32:3a:0d: da:a8:0f:a5:d2:74:24:4a:ee:fa:a4:af:02:e8:90:e2:59:b2: 0b:be:8c:e6:e9:9b:88:85:7c:a9:d4:bc:45:ab:08:19:ba:95: 6a:ab:91:c6:a2:c7:50:f3:b8:e5:2e:9f:e7:a4:cd:63:62:2b: 14:b8:3c:1b:7a:38:8e:61:3c:bb:7d:b5:25:77:02:43:4e:29: 9e:c8:fe:13:19:ba:eb:ac:3e:8f:90:af:9d:51:9b:44:aa:62: 91:f2:2a:c1:0f:cb:27:03:96:67:8b:63:8f:ea:bc:8e:85:e1: 11:d3:d0:f1:7b:0e:f3:c8:51:05:bc:bc:ad:0e:48:c1:8b:e9: 59:71:43:3d:3e:61:d8:1e:b1:60:3f:93:98:85:b3:63:07:1b: 6c:c2:aa:46:c2:da:c4:be:49:07:2d:96:1e:10:05:a5:e4:5c: 44:26:f4:1d:a6:51:d6:0f:9d:b0:d3:b2:fb:06:c9:ce:d9:da: dc:ca:c2:29:fe:a0:57:c0:93:60:34:39:be:0b:51:fe:d7:3b: 12:89:49:cf:59:4a:90:7f:f4:a1:2f:d7:64:4e:43:f1:a1:a4: b3:c9:c7:93:d1:49:b1:60:d3:a3:83:f4:57:45:b0:8d:69:e5: 33:be:9c:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaKD5bNnU0UJxAYLE/a6H0xGDIbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNjAzMjYwNDU3NDlaFw0yNzAzMjUwNTAyNDlaMDMxMTAvBgNV BAMTKDBERUVENzlDNkQxODk3NDZERDkxMDNBOEMwNjc4ODdCRjdDMEZDQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjqXYaGKY5CK75yY9ijD++6MNq pfKBx37v72P70ZelP+oumhxU2XfPMtI/r/VZL/Ioc37R2P7MwD0hOwmg/n3ZKGk1 WUByzaO8Naiu6ONVR/EXd7gzPgWvpYGZrh0H7ts8OpsfE7r+seu4scF0VsqGxe82 f5XrmV/qLBAX6NmZFGvR7582pgP+5XMHeRmYfZcymxC+eG1/j1GHYc97DUj9H9tH vbLHFVoXdePCW1vzzSu5A4mB/jEi6hqKTD0AtQ7y5ep8Cr9t2H44/M4OuMbjcmvo mOj9p3wKPBSyY+8MZ+5xacya7QWlEM6skY4wDINgyOAEEcge9K1MHIFTJDsfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDe7XnG0Yl0bdkQOowGeIe/fA/LgwHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6GHMA0GCSqG SIb3DQEBCwUAA4IBAQBe8Nh+sM4HfY3rrPp3v8oyOg3aqA+l0nQkSu76pK8C6JDi WbILvozm6ZuIhXyp1LxFqwgZupVqq5HGosdQ87jlLp/npM1jYisUuDwbejiOYTy7 fbUldwJDTimeyP4TGbrrrD6PkK+dUZtEqmKR8irBD8snA5Zni2OP6ryOheER09Dx ew7zyFEFvLytDkjBi+lZcUM9PmHYHrFgP5OYhbNjBxtswqpGwtrEvkkHLZYeEAWl 5FxEJvQdplHWD52w07L7BsnO2drcysIp/qBXwJNgNDm+C1H+1zsSiUnPWUqQf/Sh L9dkTkPxoaSzyceT0UmxYNOjg/RXRbCNaeUzvpxY -----END CERTIFICATE-----Generated at Thu Mar 26 20:41:15 2026 by rpki-client