$ rpki-client -vvf repo-rpki.idnic.net/repo/832c823d-a4b7-4005-9ab8-d3b2c8bbf763/0/3130332e3136392e3139352e302f32342d3234203d3e20313339393637.roa File: 3130332e3136392e3139352e302f32342d3234203d3e20313339393637.roa (raw, json) Hash identifier: yOWWrmF7VI65mmW/qJSqfIDXS5If5ryvU0shcYEJ4r4= Subject key identifier: C8:CD:8D:76:0F:5A:33:AC:6D:09:59:E8:33:A9:AD:20:D2:08:91:CE Certificate issuer: /CN=9BFE3F2FE97677A590AC77278DA8666C8389D7BF Certificate serial: 206A5F224CE6B2BC41E92BD9A4D3472423819F3E Authority key identifier: 9B:FE:3F:2F:E9:76:77:A5:90:AC:77:27:8D:A8:66:6C:83:89:D7:BF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BFE3F2FE97677A590AC77278DA8666C8389D7BF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/832c823d-a4b7-4005-9ab8-d3b2c8bbf763/0/3130332e3136392e3139352e302f32342d3234203d3e20313339393637.roa Signing time: Thu 05 Mar 2026 12:02:42 +0000 ROA not before: Thu 05 Mar 2026 11:57:42 +0000 ROA not after: Thu 04 Mar 2027 12:02:42 +0000 asID: 139967 IP address blocks: 103.169.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/832c823d-a4b7-4005-9ab8-d3b2c8bbf763/0/9BFE3F2FE97677A590AC77278DA8666C8389D7BF.crl rsync://repo-rpki.idnic.net/repo/832c823d-a4b7-4005-9ab8-d3b2c8bbf763/0/9BFE3F2FE97677A590AC77278DA8666C8389D7BF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BFE3F2FE97677A590AC77278DA8666C8389D7BF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 17:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:6a:5f:22:4c:e6:b2:bc:41:e9:2b:d9:a4:d3:47:24:23:81:9f:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFE3F2FE97677A590AC77278DA8666C8389D7BF Validity Not Before: Mar 5 11:57:42 2026 GMT Not After : Mar 4 12:02:42 2027 GMT Subject: CN=C8CD8D760F5A33AC6D0959E833A9AD20D20891CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:98:6f:ac:3d:45:2c:ed:ed:5a:fc:04:43:92: 9a:ad:9d:65:92:f5:b1:7b:24:1f:2f:a3:66:ed:83: 2b:81:de:e8:0a:c8:43:2a:95:e8:97:3e:5c:bc:5a: bf:dd:75:1e:83:0e:3d:8c:a3:d9:82:2c:49:c0:85: 46:8c:c7:a8:02:db:d9:4e:3a:91:1c:c8:be:77:e7: 4e:80:00:96:6f:cf:64:35:04:fd:20:87:77:54:04: a3:cd:7c:b3:41:70:40:bb:45:1d:0a:42:f6:f6:82: e1:1b:79:12:5b:a5:62:50:c4:9d:1c:fa:ba:41:40: 8e:35:d3:47:6c:4e:37:1f:e5:e9:51:c6:fc:e9:11: 11:07:58:15:5f:1d:31:b2:ef:19:f3:fb:b8:ab:83: b1:d9:f6:b1:c7:59:65:26:64:55:85:a3:84:de:20: 8d:3c:d7:99:2b:2d:c1:91:6b:e6:5c:9d:9a:a3:cf: 33:81:f0:a8:77:23:57:28:e8:c3:cd:a9:2c:fe:66: c9:ec:5f:0f:13:97:3c:96:b8:e8:53:5a:35:49:6d: ee:7a:8e:70:4b:86:19:24:48:da:66:99:6b:a7:6b: e7:6b:5e:3e:19:a9:41:a2:f1:1b:fb:5e:bf:cf:00: 3b:ae:f0:79:68:40:b4:a3:02:32:73:14:32:5e:71: f2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CD:8D:76:0F:5A:33:AC:6D:09:59:E8:33:A9:AD:20:D2:08:91:CE X509v3 Authority Key Identifier: keyid:9B:FE:3F:2F:E9:76:77:A5:90:AC:77:27:8D:A8:66:6C:83:89:D7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/832c823d-a4b7-4005-9ab8-d3b2c8bbf763/0/9BFE3F2FE97677A590AC77278DA8666C8389D7BF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BFE3F2FE97677A590AC77278DA8666C8389D7BF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/832c823d-a4b7-4005-9ab8-d3b2c8bbf763/0/3130332e3136392e3139352e302f32342d3234203d3e20313339393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.195.0/24 Signature Algorithm: sha256WithRSAEncryption a8:ef:65:3a:87:5e:32:7f:7e:5c:79:5c:cf:30:17:ad:69:11: 79:55:4c:71:83:24:a2:40:ee:72:e8:f5:df:33:17:93:fe:17: b3:c6:f3:9e:dd:36:3c:23:27:f7:1a:40:ae:ba:95:82:23:26: 80:15:e3:67:f2:8b:bd:91:f5:b0:61:21:89:8a:fc:ef:fe:07: bb:82:a3:42:cc:5b:55:85:62:04:63:b5:d8:e8:7b:a3:2d:e1: 07:3c:5f:84:d4:04:5a:fd:45:92:04:76:19:8e:98:73:3c:44: bb:ba:07:81:9f:56:c0:08:8e:5a:7f:33:df:58:db:85:f1:58: a8:ed:eb:94:6c:48:21:d2:dd:7b:1f:46:45:20:36:c1:18:5d: b5:fe:b3:a4:21:f4:c3:ef:00:0a:ad:63:64:6c:86:e6:22:f1: 59:b3:00:f1:eb:ea:72:05:5c:13:66:9f:0c:5b:36:7d:52:98: 7d:b6:80:45:c7:a2:cf:92:8e:fa:48:d1:56:ac:6b:47:fc:74: c5:69:21:04:53:95:70:64:4e:1e:06:e4:85:b7:61:20:f3:57: 07:39:fe:c8:d5:b6:62:3b:67:22:8d:26:51:91:0e:a6:bb:eb: 4c:5b:bc:1d:c3:cc:b0:7b:9d:86:1b:fa:b9:4c:1b:3d:82:e5: 79:f2:2b:cb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIGpfIkzmsrxB6SvZpNNHJCOBnz4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGRTNGMkZFOTc2NzdBNTkwQUM3NzI3OERBODY2NkM4 Mzg5RDdCRjAeFw0yNjAzMDUxMTU3NDJaFw0yNzAzMDQxMjAyNDJaMDMxMTAvBgNV BAMTKEM4Q0Q4RDc2MEY1QTMzQUM2RDA5NTlFODMzQTlBRDIwRDIwODkxQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8mG+sPUUs7e1a/ARDkpqtnWWS 9bF7JB8vo2btgyuB3ugKyEMqleiXPly8Wr/ddR6DDj2Mo9mCLEnAhUaMx6gC29lO OpEcyL53506AAJZvz2Q1BP0gh3dUBKPNfLNBcEC7RR0KQvb2guEbeRJbpWJQxJ0c +rpBQI4100dsTjcf5elRxvzpEREHWBVfHTGy7xnz+7irg7HZ9rHHWWUmZFWFo4Te II0815krLcGRa+ZcnZqjzzOB8Kh3I1co6MPNqSz+ZsnsXw8TlzyWuOhTWjVJbe56 jnBLhhkkSNpmmWuna+drXj4ZqUGi8Rv7Xr/PADuu8HloQLSjAjJzFDJecfJbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyM2Ndg9aM6xtCVnoM6mtINIIkc4wHwYDVR0j BBgwFoAUm/4/L+l2d6WQrHcnjahmbIOJ178wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzJjODIzZC1hNGI3LTQwMDUtOWFiOC1kM2IyYzhiYmY3NjMvMC85QkZFM0YyRkU5 NzY3N0E1OTBBQzc3Mjc4REE4NjY2QzgzODlEN0JGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGRTNGMkZFOTc2NzdBNTkwQUM3NzI3OERBODY2NkM4Mzg5 RDdCRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzMmM4MjNkLWE0YjctNDAwNS05 YWI4LWQzYjJjOGJiZjc2My8wLzMxMzAzMzJlMzEzNjM5MmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqcMwDQYJ KoZIhvcNAQELBQADggEBAKjvZTqHXjJ/flx5XM8wF61pEXlVTHGDJKJA7nLo9d8z F5P+F7PG857dNjwjJ/caQK66lYIjJoAV42fyi72R9bBhIYmK/O/+B7uCo0LMW1WF YgRjtdjoe6Mt4Qc8X4TUBFr9RZIEdhmOmHM8RLu6B4GfVsAIjlp/M99Y24XxWKjt 65RsSCHS3XsfRkUgNsEYXbX+s6Qh9MPvAAqtY2RshuYi8VmzAPHr6nIFXBNmnwxb Nn1SmH22gEXHos+SjvpI0Vasa0f8dMVpIQRTlXBkTh4G5IW3YSDzVwc5/sjVtmI7 ZyKNJlGRDqa760xbvB3DzLB7nYYb+rlMGz2C5XnyK8s= -----END CERTIFICATE-----Generated at Thu Mar 26 18:21:29 2026 by rpki-client