$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa File: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (raw, json) Hash identifier: 4X8Kz+hrvczZsab/uaMNm2DvsPE7IvXYSmEJwXv1W3g= Subject key identifier: 47:D2:82:4E:35:AA:54:63:39:C7:20:FA:65:69:44:85:2D:94:08:A5 Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 4605976DA2FFF1A4862FA11CD98AA56829AA261C Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa Signing time: Tue 24 Mar 2026 07:00:03 +0000 ROA not before: Tue 24 Mar 2026 06:55:03 +0000 ROA not after: Tue 23 Mar 2027 07:00:03 +0000 asID: 131743 IP address blocks: 103.191.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 10:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:05:97:6d:a2:ff:f1:a4:86:2f:a1:1c:d9:8a:a5:68:29:aa:26:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: Mar 24 06:55:03 2026 GMT Not After : Mar 23 07:00:03 2027 GMT Subject: CN=47D2824E35AA546339C720FA656944852D9408A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:28:e0:72:b4:f3:2b:ca:35:16:12:74:5b: 6f:92:c6:4f:31:04:32:12:30:b0:35:8a:11:ff:22: 5b:ce:dd:24:1b:e8:8b:fe:fd:8d:8f:9f:0d:67:c3: 19:23:b5:a4:f2:e6:51:46:12:11:67:03:cd:c3:16: b9:f2:82:b3:37:cc:97:d5:3f:73:13:61:90:66:a5: 90:86:d9:da:51:bd:76:9f:cf:ec:fd:0a:3b:18:4f: 2d:7b:88:07:17:e5:5b:96:cc:2f:c4:26:83:d6:59: 49:ca:e9:c7:b0:62:68:61:1b:71:bb:e3:ea:d3:21: 09:90:ba:b7:4b:5d:33:b7:16:76:68:1d:1e:55:f2: 41:76:47:85:6f:1d:82:d3:fe:5c:88:2d:a3:ce:a5: 95:bc:f6:1d:bd:7d:18:55:f7:77:4d:4c:2c:40:d2: 0a:eb:00:64:dd:67:82:6e:45:8d:97:84:99:31:bc: cc:bd:8d:55:03:0a:14:df:38:50:e0:d6:28:34:72: 08:b7:9e:35:65:5c:6b:a2:37:24:a2:1c:68:f2:29: eb:ac:3e:5e:9e:04:ef:d5:bd:d6:06:38:62:13:85: 4e:db:26:e9:67:70:12:85:04:0b:2c:af:02:ec:dc: 78:b4:23:ee:a8:42:64:a2:f7:90:da:36:6d:a6:e6: f0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D2:82:4E:35:AA:54:63:39:C7:20:FA:65:69:44:85:2D:94:08:A5 X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.56.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:72:a4:e5:a9:1d:95:10:9e:29:84:43:ff:d6:0a:a0:cf:47: 76:f1:4b:16:3c:d4:4b:cd:de:48:40:11:8d:20:90:cc:53:d0: 83:fe:83:3d:37:d5:e1:f2:c0:2c:6c:a9:32:b7:19:d1:34:8f: 09:6d:74:00:01:1c:34:37:88:a1:ec:b6:b3:7a:a9:cc:57:06: 34:55:9b:26:0f:ed:e1:39:b3:1a:86:f7:e7:e5:f4:1b:26:6c: a6:66:d5:c2:af:43:6a:49:62:7b:d5:24:2e:53:2e:15:e9:b1: 20:92:b0:91:b3:03:af:d1:d6:78:5f:af:0b:48:bd:4d:3e:5a: 64:fa:97:f5:e9:73:d5:ba:fc:1c:b5:1a:a9:83:4e:9b:f1:4d: 7a:d9:f4:bd:19:6c:7e:08:4a:7a:1a:09:9e:e4:46:e9:02:ab: 5e:6a:9c:bf:12:8d:44:b1:c9:4c:0a:96:15:9e:4d:2d:65:bc: d5:1e:4b:55:79:cb:aa:e7:67:dd:06:d7:96:3f:db:a0:79:37: 89:42:fc:49:5d:d9:99:9a:54:59:70:4c:9c:bc:cc:cb:ab:89: 7b:de:e3:21:61:31:16:26:a3:4d:cc:32:2d:5d:10:92:5f:e1: 0b:fd:9d:71:8f:58:38:b3:59:40:0f:d0:ea:df:c7:be:0e:53: 69:21:0c:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURgWXbaL/8aSGL6Ec2YqlaCmqJhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNjAzMjQwNjU1MDNaFw0yNzAzMjMwNzAwMDNaMDMxMTAvBgNV BAMTKDQ3RDI4MjRFMzVBQTU0NjMzOUM3MjBGQTY1Njk0NDg1MkQ5NDA4QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFDSjgcrTzK8o1FhJ0W2+Sxk8x BDISMLA1ihH/IlvO3SQb6Iv+/Y2Pnw1nwxkjtaTy5lFGEhFnA83DFrnygrM3zJfV P3MTYZBmpZCG2dpRvXafz+z9CjsYTy17iAcX5VuWzC/EJoPWWUnK6cewYmhhG3G7 4+rTIQmQurdLXTO3FnZoHR5V8kF2R4VvHYLT/lyILaPOpZW89h29fRhV93dNTCxA 0grrAGTdZ4JuRY2XhJkxvMy9jVUDChTfOFDg1ig0cgi3njVlXGuiNySiHGjyKeus Pl6eBO/VvdYGOGIThU7bJulncBKFBAssrwLs3Hi0I+6oQmSi95DaNm2m5vCdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR9KCTjWqVGM5xyD6ZWlEhS2UCKUwHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyMjljYTUwLWU5NWMtNDViYi05 YzMwLTYzZTEyYWY3YTVlMS8wLzMxMzAzMzJlMzEzOTMxMmUzNTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ784MA0GCSqG SIb3DQEBCwUAA4IBAQA/cqTlqR2VEJ4phEP/1gqgz0d28UsWPNRLzd5IQBGNIJDM U9CD/oM9N9Xh8sAsbKkytxnRNI8JbXQAARw0N4ih7LazeqnMVwY0VZsmD+3hObMa hvfn5fQbJmymZtXCr0NqSWJ71SQuUy4V6bEgkrCRswOv0dZ4X68LSL1NPlpk+pf1 6XPVuvwctRqpg06b8U162fS9GWx+CEp6Ggme5EbpAqteapy/Eo1EsclMCpYVnk0t ZbzVHktVecuq52fdBteWP9ugeTeJQvxJXdmZmlRZcEycvMzLq4l73uMhYTEWJqNN zDItXRCSX+EL/Z1xj1g4s1lAD9Dq38e+DlNpIQx2 -----END CERTIFICATE-----Generated at Thu Mar 26 10:53:25 2026 by rpki-client