$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: bqgcJ4WcL/qUF3TOomQ6qI1u/7pKQo9ovuu/3Kq5nZg= Subject key identifier: DA:61:3C:CE:03:DB:6C:04:69:FE:4C:C4:C2:8C:D6:E3:A1:72:F3:A8 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 706CD84A9732BC3581B15028B5D320CADE112024 Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa Signing time: Wed 04 Mar 2026 03:00:01 +0000 ROA not before: Wed 04 Mar 2026 02:55:01 +0000 ROA not after: Wed 03 Mar 2027 03:00:01 +0000 asID: 55685 IP address blocks: 103.108.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 17:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:6c:d8:4a:97:32:bc:35:81:b1:50:28:b5:d3:20:ca:de:11:20:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: Mar 4 02:55:01 2026 GMT Not After : Mar 3 03:00:01 2027 GMT Subject: CN=DA613CCE03DB6C0469FE4CC4C28CD6E3A172F3A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:a9:a9:23:8c:12:1e:fe:90:2f:9b:cc:59: 24:86:a3:16:69:53:a1:b1:b1:6a:15:a5:17:a8:c4: 63:58:c0:ec:4f:e0:36:ba:e4:4d:53:9c:82:33:ce: 1c:73:f9:20:e1:12:bc:d3:b0:6c:13:f1:bc:21:45: 49:89:7c:27:f4:2c:23:91:b6:0d:e6:35:0f:a5:9f: f1:58:e8:5b:fd:9b:51:03:e8:94:0d:99:f2:97:d2: 10:71:61:2e:91:dd:c6:10:fb:99:0e:82:dc:f7:40: 81:e6:f4:3d:80:f2:46:5b:56:26:02:61:cc:25:f1: ac:7b:ec:83:8a:3e:e2:d6:b2:0a:cb:74:a2:3f:ab: 30:84:f4:45:01:b1:d0:bd:bc:a1:cd:df:f3:8b:f4: 69:96:76:24:a8:d2:44:79:d2:e6:1c:af:3d:b5:95: 8a:3d:72:29:db:c8:df:f3:85:83:6e:23:b5:f3:ef: 79:b2:31:58:97:03:ee:73:0b:93:2f:4b:4d:11:53: 20:98:0e:fb:e6:f6:25:26:03:ba:47:7c:2b:7b:f9: 18:d5:ce:57:98:d8:5c:6b:98:65:ba:ec:d6:17:9e: a2:7d:51:4f:0e:e6:02:18:4b:bc:25:c5:4a:64:b6: 10:02:94:a4:93:8e:94:2a:b3:5e:02:4f:7f:28:5b: 1f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:61:3C:CE:03:DB:6C:04:69:FE:4C:C4:C2:8C:D6:E3:A1:72:F3:A8 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.128.0/24 Signature Algorithm: sha256WithRSAEncryption 51:bd:9a:4f:25:fd:b6:52:68:3b:04:21:f5:cd:12:74:6c:31: b9:0a:37:43:d2:21:9b:5f:fd:00:f9:ae:86:6a:42:de:d5:91: 63:31:80:b6:bc:b8:5f:61:0e:1a:5a:74:87:07:71:86:42:20: f5:da:bb:bb:fe:2e:16:85:d1:f3:cc:19:7c:e9:99:9f:29:65: e0:d5:70:58:fe:cd:22:bc:5e:ca:94:59:58:50:77:d0:a1:82: a5:c9:94:d9:04:e3:a5:75:73:80:b5:99:c4:6a:63:72:ce:aa: 8c:9d:21:42:4a:55:f7:76:aa:3a:de:4c:a3:97:77:b0:b6:e4: d5:c5:19:a2:1e:89:56:13:bc:a9:12:2a:c7:6c:5b:98:a0:0f: 2e:81:79:a3:c9:01:f1:93:9c:c7:d2:92:e6:4d:19:1d:3d:a4: 45:b3:0f:93:9d:f3:7d:63:0b:3a:5f:89:8f:1e:3d:b7:a8:24: 9a:99:ba:d7:f1:b1:48:a1:04:a5:45:a6:3c:47:09:6d:a6:d2: e7:59:92:ca:02:2e:fa:1a:bf:a2:1d:88:cf:c7:a6:8c:66:d5: 35:e7:74:5c:1e:7d:f8:81:fc:af:a7:c8:68:ee:d2:b5:08:9f: 2a:58:fb:e7:2d:23:48:dd:a9:2f:f5:4f:74:d0:b0:cd:86:f8: 9c:16:a0:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcGzYSpcyvDWBsVAotdMgyt4RICQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNjAzMDQwMjU1MDFaFw0yNzAzMDMwMzAwMDFaMDMxMTAvBgNV BAMTKERBNjEzQ0NFMDNEQjZDMDQ2OUZFNENDNEMyOENENkUzQTE3MkYzQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsg6mpI4wSHv6QL5vMWSSGoxZp U6GxsWoVpReoxGNYwOxP4Da65E1TnIIzzhxz+SDhErzTsGwT8bwhRUmJfCf0LCOR tg3mNQ+ln/FY6Fv9m1ED6JQNmfKX0hBxYS6R3cYQ+5kOgtz3QIHm9D2A8kZbViYC Ycwl8ax77IOKPuLWsgrLdKI/qzCE9EUBsdC9vKHN3/OL9GmWdiSo0kR50uYcrz21 lYo9cinbyN/zhYNuI7Xz73myMViXA+5zC5MvS00RUyCYDvvm9iUmA7pHfCt7+RjV zleY2FxrmGW67NYXnqJ9UU8O5gIYS7wlxUpkthAClKSTjpQqs14CT38oWx9XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2mE8zgPbbARp/kzEwozW46Fy86gwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yAMA0GCSqG SIb3DQEBCwUAA4IBAQBRvZpPJf22Umg7BCH1zRJ0bDG5CjdD0iGbX/0A+a6GakLe 1ZFjMYC2vLhfYQ4aWnSHB3GGQiD12ru7/i4WhdHzzBl86ZmfKWXg1XBY/s0ivF7K lFlYUHfQoYKlyZTZBOOldXOAtZnEamNyzqqMnSFCSlX3dqo63kyjl3ewtuTVxRmi HolWE7ypEirHbFuYoA8ugXmjyQHxk5zH0pLmTRkdPaRFsw+TnfN9Yws6X4mPHj23 qCSambrX8bFIoQSlRaY8RwltptLnWZLKAi76Gr+iHYjPx6aMZtU153RcHn34gfyv p8ho7tK1CJ8qWPvnLSNI3akv9U900LDNhvicFqB7 -----END CERTIFICATE-----Generated at Thu Mar 26 18:07:16 2026 by rpki-client