$ rpki-client -vvf repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa File: 3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa (raw, json) Hash identifier: mBYH8gEsLmD3y+qkk4G3qCPY2je4uGHtFmuvsJ2F9co= Subject key identifier: 09:A1:14:D2:3A:80:FE:16:62:41:86:0F:B0:DA:66:22:B8:31:E6:71 Certificate issuer: /CN=688610C731A4E7A1D35B3E264DF9A05873F1E6C1 Certificate serial: 5482D54C53C3EE6392675FFE74B99B128038A086 Authority key identifier: 68:86:10:C7:31:A4:E7:A1:D3:5B:3E:26:4D:F9:A0:58:73:F1:E6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa Signing time: Tue 17 Mar 2026 09:03:21 +0000 ROA not before: Tue 17 Mar 2026 08:58:21 +0000 ROA not after: Tue 16 Mar 2027 09:03:21 +0000 asID: 142312 IP address blocks: 103.168.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.crl rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 00:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:82:d5:4c:53:c3:ee:63:92:67:5f:fe:74:b9:9b:12:80:38:a0:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=688610C731A4E7A1D35B3E264DF9A05873F1E6C1 Validity Not Before: Mar 17 08:58:21 2026 GMT Not After : Mar 16 09:03:21 2027 GMT Subject: CN=09A114D23A80FE166241860FB0DA6622B831E671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:88:e5:bd:8d:a9:85:56:a6:75:84:aa:5a:22: 4f:27:60:04:cd:97:81:aa:1c:f7:c9:fd:c3:fd:df: de:b5:1a:fd:5a:ab:f6:fb:2c:b9:c2:b0:98:bd:e9: 25:65:70:38:d1:99:d0:4f:e0:b3:c6:fa:6a:6a:a6: 7a:45:dd:fd:87:fa:f7:a7:d0:67:05:4b:ea:ec:ed: 76:04:de:78:a2:92:04:5d:f9:63:ec:17:4f:b7:03: 61:1f:25:d7:0f:84:cc:5c:e1:ea:90:31:10:52:86: d6:9b:c5:d4:7e:da:4c:3f:55:e9:c8:84:47:d0:53: 86:ee:2f:b0:ac:6b:a2:eb:d3:d7:47:87:fa:b5:d1: 99:76:2d:3d:09:e2:51:e1:b8:3f:41:a7:e4:20:5a: f0:12:8d:a2:f7:25:2a:97:1f:01:ac:52:31:2a:09: f3:07:ef:88:00:bb:2a:6e:d4:b6:1e:16:ed:74:70: ff:6f:28:56:29:b6:5c:fa:cf:96:fc:b2:5a:f7:01: 5e:ee:32:38:d1:c7:42:e4:2e:14:c4:84:21:70:d8: dc:64:ef:7c:b4:8b:62:37:ac:04:93:7a:0d:95:3d: 1b:98:5c:53:0a:3f:65:7f:9d:4f:3f:91:8c:cb:a9: 92:04:f9:e4:0a:15:c1:03:1c:00:e4:aa:0c:bd:bd: 6c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A1:14:D2:3A:80:FE:16:62:41:86:0F:B0:DA:66:22:B8:31:E6:71 X509v3 Authority Key Identifier: keyid:68:86:10:C7:31:A4:E7:A1:D3:5B:3E:26:4D:F9:A0:58:73:F1:E6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.28.0/24 Signature Algorithm: sha256WithRSAEncryption 13:9c:54:9d:0a:8d:20:98:28:7a:c6:46:b4:ab:b8:62:f1:a8: 5f:1a:0d:cb:d6:17:60:43:ee:84:cd:48:55:8f:d9:08:2a:b0: 3a:4a:eb:d1:de:35:42:e5:90:81:89:8c:73:81:af:ad:9b:8d: f5:7f:b5:8c:b5:c2:79:c5:dc:0c:af:70:14:50:0c:ff:a7:96: 34:2f:d4:8b:da:2d:cf:b2:e2:d0:64:75:9a:75:1c:30:d7:7d: 24:84:1e:ca:59:4b:45:a7:27:c7:11:7b:50:33:80:6d:05:55: b0:fb:c3:69:22:95:2c:d7:c3:af:47:46:ee:8a:cb:0d:a9:c1: 22:80:ce:6c:ae:9a:1a:ee:cb:23:1b:1f:82:9f:f6:dc:2d:ec: 88:c4:07:db:a3:b5:95:29:b7:10:e1:48:31:22:70:c4:ad:c7: d5:95:32:a4:b4:7d:86:03:2b:6a:4b:b6:3d:65:54:00:a2:5b: b0:a3:12:16:25:d4:f3:4e:3d:0b:6f:3a:3c:e4:71:e5:01:ff: 70:52:9c:64:5f:b0:2c:b1:c3:d9:f9:ba:ba:ca:44:f1:af:09: 2d:8f:a4:0e:11:33:fe:17:c3:a0:66:df:c8:7f:23:bf:da:51: 60:ef:be:18:85:38:dc:e0:7b:37:a5:a0:65:48:96:e6:c6:8f: 43:a8:18:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVILVTFPD7mOSZ1/+dLmbEoA4oIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg4NjEwQzczMUE0RTdBMUQzNUIzRTI2NERGOUEwNTg3 M0YxRTZDMTAeFw0yNjAzMTcwODU4MjFaFw0yNzAzMTYwOTAzMjFaMDMxMTAvBgNV BAMTKDA5QTExNEQyM0E4MEZFMTY2MjQxODYwRkIwREE2NjIyQjgzMUU2NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0iOW9jamFVqZ1hKpaIk8nYATN l4GqHPfJ/cP93961Gv1aq/b7LLnCsJi96SVlcDjRmdBP4LPG+mpqpnpF3f2H+ven 0GcFS+rs7XYE3niikgRd+WPsF0+3A2EfJdcPhMxc4eqQMRBShtabxdR+2kw/VenI hEfQU4buL7Csa6Lr09dHh/q10Zl2LT0J4lHhuD9Bp+QgWvASjaL3JSqXHwGsUjEq CfMH74gAuypu1LYeFu10cP9vKFYptlz6z5b8slr3AV7uMjjRx0LkLhTEhCFw2Nxk 73y0i2I3rASTeg2VPRuYXFMKP2V/nU8/kYzLqZIE+eQKFcEDHADkqgy9vWwTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCaEU0jqA/hZiQYYPsNpmIrgx5nEwHwYDVR0j BBgwFoAUaIYQxzGk56HTWz4mTfmgWHPx5sEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWVlNDBkYy01MWJhLTQ3NjktODYxOS0yMjg5Y2NlOTYyOWUvMC82ODg2MTBDNzMx QTRFN0ExRDM1QjNFMjY0REY5QTA1ODczRjFFNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg4NjEwQzczMUE0RTdBMUQzNUIzRTI2NERGOUEwNTg3M0Yx RTZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZWU0MGRjLTUxYmEtNDc2OS04 NjE5LTIyODljY2U5NjI5ZS8wLzMxMzAzMzJlMzEzNjM4MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6gcMA0GCSqG SIb3DQEBCwUAA4IBAQATnFSdCo0gmCh6xka0q7hi8ahfGg3L1hdgQ+6EzUhVj9kI KrA6SuvR3jVC5ZCBiYxzga+tm431f7WMtcJ5xdwMr3AUUAz/p5Y0L9SL2i3PsuLQ ZHWadRww130khB7KWUtFpyfHEXtQM4BtBVWw+8NpIpUs18OvR0buissNqcEigM5s rpoa7ssjGx+Cn/bcLeyIxAfbo7WVKbcQ4UgxInDErcfVlTKktH2GAytqS7Y9ZVQA oluwoxIWJdTzTj0Lbzo85HHlAf9wUpxkX7AsscPZ+bq6ykTxrwktj6QOETP+F8Og Zt/IfyO/2lFg774YhTjc4Hs3paBlSJbmxo9DqBjA -----END CERTIFICATE-----Generated at Thu Mar 26 23:23:16 2026 by rpki-client