$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: pOcown3jT3h6K97fXVcJoCFnUnMhcxvWCGk/yhaw/BA= Subject key identifier: 67:90:A1:33:07:F6:95:5B:0B:D7:60:0A:5B:9F:E8:93:11:DD:22:AD Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 77D426C76002539432801F367399D0473B2E402D Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa Signing time: Wed 04 Mar 2026 03:00:01 +0000 ROA not before: Wed 04 Mar 2026 02:55:01 +0000 ROA not after: Wed 03 Mar 2027 03:00:01 +0000 asID: 55685 IP address blocks: 103.108.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 19:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d4:26:c7:60:02:53:94:32:80:1f:36:73:99:d0:47:3b:2e:40:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: Mar 4 02:55:01 2026 GMT Not After : Mar 3 03:00:01 2027 GMT Subject: CN=6790A13307F6955B0BD7600A5B9FE89311DD22AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ad:fe:21:a3:07:cc:2d:0e:87:21:24:9f:59: 0d:ac:49:4e:4e:d7:32:e1:26:07:03:e9:f0:9d:cf: 14:48:27:9b:ba:aa:80:b0:be:d0:a9:bc:a4:de:c9: ae:e2:4b:14:41:95:77:14:4a:c0:31:3f:f4:38:90: 30:11:59:79:6c:2a:fb:53:c7:e2:cd:4b:b1:ee:b4: 2f:d0:03:0d:eb:73:cb:37:88:80:22:26:34:b6:83: 26:68:c6:6b:de:54:e5:37:4d:65:26:3c:8b:a1:05: 53:82:36:45:bd:bb:13:dc:9f:cb:fb:60:29:97:8d: 30:43:42:ff:6c:9a:ef:8c:dc:8e:82:68:ab:da:0a: f5:90:0b:b9:fe:75:1d:c2:b9:1a:c9:5c:27:29:6a: a3:8d:c7:ed:d9:95:d1:22:0e:35:ff:f9:a3:2d:fe: e1:f4:02:c4:e5:00:a4:f0:e3:0c:b5:91:6b:3e:c2: b8:47:15:98:08:4f:43:2a:76:21:27:cc:07:e4:82: 26:9d:bf:50:c9:f7:e1:42:e6:fa:a8:3f:7f:f3:db: f2:44:6c:62:04:41:99:d3:5e:5b:4a:e9:55:43:d0: bf:a3:9d:b4:8f:65:37:fc:e6:64:46:aa:68:c8:5e: 5b:26:96:ac:f2:3d:1e:09:7f:b2:59:b7:4f:3f:5a: 78:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:90:A1:33:07:F6:95:5B:0B:D7:60:0A:5B:9F:E8:93:11:DD:22:AD X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.131.0/24 Signature Algorithm: sha256WithRSAEncryption 86:19:31:74:3d:33:82:9d:2c:b1:bb:d8:2c:34:59:12:e5:a2: b2:38:f5:99:e7:05:d1:14:8f:0f:6b:d1:3d:d6:f4:6c:c9:aa: f9:97:48:2d:88:35:77:a9:35:0e:1e:84:97:ee:42:4d:04:09: a7:f7:03:3d:f6:bf:28:0c:11:9a:b3:89:7d:17:6e:1e:1e:93: 80:05:12:33:1c:92:b6:cc:48:67:da:9a:c3:56:9b:5a:08:90: f1:d6:2e:59:f1:4e:e8:28:d7:28:14:b7:c0:92:34:c5:6b:f4: 62:cb:0d:b5:f8:cc:96:9c:2c:38:9b:72:a6:a5:bf:b5:95:92: 86:fe:43:5d:18:fd:f8:2a:f9:71:3f:d5:23:ee:5a:bd:5e:1c: 12:9f:72:af:41:de:4f:68:2a:51:b4:e6:f1:9c:1d:99:f8:28: 3b:e4:89:17:30:d0:c0:32:45:7b:d6:ed:f8:67:30:ba:f9:31: 9c:ba:81:8f:a2:23:b7:6c:f2:2b:c1:99:f3:8d:49:78:6c:49: f0:27:bd:f7:6f:37:a8:e0:e8:bd:68:f2:e3:46:85:ad:16:41: 08:91:73:48:b2:23:9b:85:51:3b:2e:6b:4b:57:3c:59:11:30: 8d:62:bb:e7:5c:1c:c2:d9:f9:ae:a0:70:dc:4f:61:a2:d9:e9: 62:e0:9c:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd9Qmx2ACU5QygB82c5nQRzsuQC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNjAzMDQwMjU1MDFaFw0yNzAzMDMwMzAwMDFaMDMxMTAvBgNV BAMTKDY3OTBBMTMzMDdGNjk1NUIwQkQ3NjAwQTVCOUZFODkzMTFERDIyQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqrf4howfMLQ6HISSfWQ2sSU5O 1zLhJgcD6fCdzxRIJ5u6qoCwvtCpvKTeya7iSxRBlXcUSsAxP/Q4kDARWXlsKvtT x+LNS7HutC/QAw3rc8s3iIAiJjS2gyZoxmveVOU3TWUmPIuhBVOCNkW9uxPcn8v7 YCmXjTBDQv9smu+M3I6CaKvaCvWQC7n+dR3CuRrJXCcpaqONx+3ZldEiDjX/+aMt /uH0AsTlAKTw4wy1kWs+wrhHFZgIT0MqdiEnzAfkgiadv1DJ9+FC5vqoP3/z2/JE bGIEQZnTXltK6VVD0L+jnbSPZTf85mRGqmjIXlsmlqzyPR4Jf7JZt08/WniJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ5ChMwf2lVsL12AKW5/okxHdIq0wHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yDMA0GCSqG SIb3DQEBCwUAA4IBAQCGGTF0PTOCnSyxu9gsNFkS5aKyOPWZ5wXRFI8Pa9E91vRs yar5l0gtiDV3qTUOHoSX7kJNBAmn9wM99r8oDBGas4l9F24eHpOABRIzHJK2zEhn 2prDVptaCJDx1i5Z8U7oKNcoFLfAkjTFa/Riyw21+MyWnCw4m3Kmpb+1lZKG/kNd GP34KvlxP9Uj7lq9XhwSn3KvQd5PaCpRtObxnB2Z+Cg75IkXMNDAMkV71u34ZzC6 +TGcuoGPoiO3bPIrwZnzjUl4bEnwJ733bzeo4Oi9aPLjRoWtFkEIkXNIsiObhVE7 LmtLVzxZETCNYrvnXBzC2fmuoHDcT2Gi2eli4JzK -----END CERTIFICATE-----Generated at Thu Mar 26 21:07:18 2026 by rpki-client