$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa File: 3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: S9ss1UFC8ltEsWGGAoKwO6GpiU6tI/d9HG2NbYNNjaw= Subject key identifier: FC:B6:6A:24:EB:53:6D:A6:67:C0:85:A8:02:8C:35:DE:ED:EF:5B:29 Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 43129C99D5FAD405CE6530816A0FA08DC6793FB2 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa Signing time: Mon 23 Mar 2026 04:00:00 +0000 ROA not before: Mon 23 Mar 2026 03:55:00 +0000 ROA not after: Mon 22 Mar 2027 04:00:00 +0000 asID: 140443 IP address blocks: 103.149.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 17:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:12:9c:99:d5:fa:d4:05:ce:65:30:81:6a:0f:a0:8d:c6:79:3f:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Mar 23 03:55:00 2026 GMT Not After : Mar 22 04:00:00 2027 GMT Subject: CN=FCB66A24EB536DA667C085A8028C35DEEDEF5B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:72:36:0e:01:d5:61:ce:e2:db:49:2e:83:77: 20:59:6c:d4:7e:5a:21:8f:97:ad:95:99:50:f4:ee: 11:c8:60:39:a5:e2:85:90:99:c1:05:fb:d7:57:4f: bf:f4:fb:2e:98:6d:43:2c:23:ca:02:ed:58:50:93: f7:37:7c:ba:39:d8:c2:41:19:67:d5:e1:d9:e6:15: 0e:cc:65:4b:4f:15:b0:83:e7:37:35:30:f1:26:08: 28:ca:6d:94:15:c7:b5:a6:1d:de:1b:23:d0:aa:c3: 59:52:05:a9:38:d2:cb:43:6c:78:c9:c5:b6:1d:cc: 9d:95:f7:e4:d5:da:ac:ff:4f:32:90:be:5b:c4:f9: 14:8e:3c:a1:01:84:64:d5:c1:14:74:f7:a0:ad:a0: 96:96:f5:27:23:f9:d8:2b:d3:f6:72:f8:76:39:f2: 59:86:e4:ad:84:2f:86:ce:f6:82:7f:78:75:1f:e1: a6:e6:7a:31:bd:b4:20:de:9a:1b:98:fc:68:16:10: 52:7a:0a:3e:fd:dc:3c:ab:b0:95:49:29:d9:9a:e6: 76:02:99:8f:10:5c:6a:05:00:17:05:5a:4c:53:2c: 27:7c:15:ef:60:ac:d2:04:ba:db:a3:56:76:dd:7a: f8:12:84:02:a6:94:5d:b5:a8:d3:3b:e0:43:e9:69: aa:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B6:6A:24:EB:53:6D:A6:67:C0:85:A8:02:8C:35:DE:ED:EF:5B:29 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.177.0/24 Signature Algorithm: sha256WithRSAEncryption cc:b9:5a:59:fc:fa:2d:8a:f0:d7:9a:1e:65:62:09:d3:10:0d: df:37:ef:b4:5f:ba:c2:85:07:50:ab:57:3d:3e:07:0a:77:09: c2:0c:0b:40:07:df:b1:aa:90:bd:d6:58:46:8c:69:a8:c5:8b: 0d:19:db:d4:e5:a0:32:45:a8:ca:92:44:9e:05:54:9c:37:7b: 43:ab:0d:8a:4f:96:1d:52:1d:6d:a3:b4:aa:7e:6a:12:d8:da: 83:b0:b5:4c:12:00:e0:e0:0d:87:0e:9c:cb:fe:10:24:e9:8b: 3d:f0:cc:e1:63:87:bd:40:59:e7:50:82:80:e9:77:bf:7b:54: 77:69:80:bb:3f:27:de:ac:63:58:2d:b3:31:8f:e1:aa:48:88: 49:19:90:ef:2d:70:94:4c:12:df:b7:8b:53:2b:e0:15:e8:05: d9:f7:f6:57:e1:fa:f6:70:28:0b:06:96:d6:c0:4b:8f:23:88: e0:9c:68:7e:b1:61:11:17:81:e4:db:bc:5a:54:e3:af:1f:a7: 01:92:d1:48:9c:fe:01:a5:95:fd:62:20:81:26:fc:72:0e:13: 9c:41:4b:bb:1a:49:47:b5:b9:72:2e:61:e4:8b:d0:0f:49:7b: c5:82:44:50:72:4e:09:6d:71:42:ab:90:cb:33:31:01:46:ec: 9f:a8:2a:09 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQxKcmdX61AXOZTCBag+gjcZ5P7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNjAzMjMwMzU1MDBaFw0yNzAzMjIwNDAwMDBaMDMxMTAvBgNV BAMTKEZDQjY2QTI0RUI1MzZEQTY2N0MwODVBODAyOEMzNURFRURFRjVCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFcjYOAdVhzuLbSS6DdyBZbNR+ WiGPl62VmVD07hHIYDml4oWQmcEF+9dXT7/0+y6YbUMsI8oC7VhQk/c3fLo52MJB GWfV4dnmFQ7MZUtPFbCD5zc1MPEmCCjKbZQVx7WmHd4bI9Cqw1lSBak40stDbHjJ xbYdzJ2V9+TV2qz/TzKQvlvE+RSOPKEBhGTVwRR096CtoJaW9Scj+dgr0/Zy+HY5 8lmG5K2EL4bO9oJ/eHUf4abmejG9tCDemhuY/GgWEFJ6Cj793DyrsJVJKdma5nYC mY8QXGoFABcFWkxTLCd8Fe9grNIEutujVnbdevgShAKmlF21qNM74EPpaaqVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/LZqJOtTbaZnwIWoAow13u3vWykwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlbEwDQYJ KoZIhvcNAQELBQADggEBAMy5Wln8+i2K8NeaHmViCdMQDd8377RfusKFB1CrVz0+ Bwp3CcIMC0AH37GqkL3WWEaMaajFiw0Z29TloDJFqMqSRJ4FVJw3e0OrDYpPlh1S HW2jtKp+ahLY2oOwtUwSAODgDYcOnMv+ECTpiz3wzOFjh71AWedQgoDpd797VHdp gLs/J96sY1gtszGP4apIiEkZkO8tcJRMEt+3i1Mr4BXoBdn39lfh+vZwKAsGltbA S48jiOCcaH6xYREXgeTbvFpU468fpwGS0Uic/gGllf1iIIEm/HIOE5xBS7saSUe1 uXIuYeSL0A9Je8WCRFByTgltcUKrkMszMQFG7J+oKgk= -----END CERTIFICATE-----Generated at Thu Mar 26 21:58:33 2026 by rpki-client