$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34302e302f32322d3234203d3e203535363835.roa File: 3130332e3234372e34302e302f32322d3234203d3e203535363835.roa (raw, json) Hash identifier: OWW18ITJldyqVjtkq8MGwz0R36P6p5kX0KmqqIy9WL4= Subject key identifier: D4:22:CA:E4:76:89:27:55:43:E3:D6:8F:8D:13:A2:D8:63:F0:27:83 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 45C4062022791D0A599DB94DF631A872D28D9EA5 Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34302e302f32322d3234203d3e203535363835.roa Signing time: Wed 04 Mar 2026 02:00:00 +0000 ROA not before: Wed 04 Mar 2026 01:55:00 +0000 ROA not after: Wed 03 Mar 2027 02:00:00 +0000 asID: 55685 IP address blocks: 103.247.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 17:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c4:06:20:22:79:1d:0a:59:9d:b9:4d:f6:31:a8:72:d2:8d:9e:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: Mar 4 01:55:00 2026 GMT Not After : Mar 3 02:00:00 2027 GMT Subject: CN=D422CAE47689275543E3D68F8D13A2D863F02783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ff:0b:93:bb:7c:25:8e:67:4b:9c:99:49:11: ad:32:f2:9a:70:c2:c0:56:f9:7b:6a:8b:68:55:15: 0c:b9:64:13:57:c4:51:9a:a1:2a:9a:fa:23:71:20: 1b:03:9b:05:90:a2:51:21:57:f8:47:b7:36:a9:d6: 2a:67:98:93:26:a8:a1:87:66:8e:e4:41:69:c8:57: a5:58:60:1b:c8:45:a7:25:c4:37:35:44:63:02:0b: 65:49:99:07:aa:37:99:71:fb:85:95:cd:cd:b0:7c: ac:ac:f1:e0:08:59:9d:12:d8:56:39:36:40:ac:ee: fc:df:64:b1:04:bc:30:62:80:39:23:84:ce:ce:31: 8f:a0:5e:7f:90:04:15:b6:10:e0:30:53:53:04:4a: 35:33:90:51:7c:7d:d3:43:59:11:26:bd:51:f9:34: b9:bd:2e:59:cf:d0:b2:63:7a:bf:0b:39:21:5f:ef: a3:f8:e4:89:46:b5:92:b5:3e:2b:8f:9e:fe:5b:a7: 2c:a6:fa:dd:c0:22:ac:61:b5:5e:b3:14:67:fa:a6: 02:ed:6d:82:f0:ec:40:00:27:ca:89:7d:10:5e:d8: 78:fd:c0:c6:d5:3b:cc:a3:48:f8:8d:ee:f0:f2:a9: 2b:be:8b:46:b3:ba:86:8a:a2:a0:58:bc:18:3d:61: f6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:22:CA:E4:76:89:27:55:43:E3:D6:8F:8D:13:A2:D8:63:F0:27:83 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34302e302f32322d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.40.0/22 Signature Algorithm: sha256WithRSAEncryption 45:76:cf:bf:d7:5a:ae:b4:a8:44:fe:56:74:9a:95:62:09:5c: 5d:93:8d:ba:23:6a:1c:ce:b9:a9:64:a5:04:b4:68:78:01:6c: bb:95:95:82:15:2f:5b:e9:c6:65:f4:86:49:2b:fc:63:d5:81: 35:d9:0f:3b:db:4a:8b:fc:e7:6b:99:ec:cf:90:a1:43:e1:69: bb:c6:53:56:81:96:77:eb:3d:a7:3b:9a:73:69:0a:14:a7:48: 4f:87:e4:ea:b2:eb:60:7a:ce:dd:06:3b:14:ff:98:3d:47:32: d1:b9:71:48:1b:43:f9:a2:df:93:c2:91:4e:fb:90:02:db:6f: af:44:a2:84:3d:81:46:7a:0b:7d:34:01:1a:cd:84:70:74:69: 28:65:f3:c1:64:3c:44:30:88:c7:23:44:52:d1:2f:92:42:c9: e6:f2:a4:52:68:2c:9e:22:ea:f2:01:76:f2:a6:01:fe:5f:f5: b1:07:04:c3:5f:bc:a9:cf:91:2f:ed:32:59:22:42:64:c8:87: 93:53:0c:6c:ea:db:39:d2:48:96:3c:f7:15:36:ff:37:b3:d5: 72:c6:4b:63:91:5c:e4:e4:a1:c5:36:af:5a:75:3b:82:8c:8d: a0:b2:d4:4f:62:b9:9c:4b:1d:c9:a2:e8:66:53:a4:81:30:bf: 8a:e3:e7:ce -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURcQGICJ5HQpZnblN9jGoctKNnqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNjAzMDQwMTU1MDBaFw0yNzAzMDMwMjAwMDBaMDMxMTAvBgNV BAMTKEQ0MjJDQUU0NzY4OTI3NTU0M0UzRDY4RjhEMTNBMkQ4NjNGMDI3ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm/wuTu3wljmdLnJlJEa0y8ppw wsBW+Xtqi2hVFQy5ZBNXxFGaoSqa+iNxIBsDmwWQolEhV/hHtzap1ipnmJMmqKGH Zo7kQWnIV6VYYBvIRaclxDc1RGMCC2VJmQeqN5lx+4WVzc2wfKys8eAIWZ0S2FY5 NkCs7vzfZLEEvDBigDkjhM7OMY+gXn+QBBW2EOAwU1MESjUzkFF8fdNDWREmvVH5 NLm9LlnP0LJjer8LOSFf76P45IlGtZK1PiuPnv5bpyym+t3AIqxhtV6zFGf6pgLt bYLw7EAAJ8qJfRBe2Hj9wMbVO8yjSPiN7vDyqSu+i0azuoaKoqBYvBg9YfbFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1CLK5HaJJ1VD49aPjROi2GPwJ4MwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmf3KDANBgkqhkiG 9w0BAQsFAAOCAQEARXbPv9darrSoRP5WdJqVYglcXZONuiNqHM65qWSlBLRoeAFs u5WVghUvW+nGZfSGSSv8Y9WBNdkPO9tKi/zna5nsz5ChQ+Fpu8ZTVoGWd+s9pzua c2kKFKdIT4fk6rLrYHrO3QY7FP+YPUcy0blxSBtD+aLfk8KRTvuQAttvr0SihD2B RnoLfTQBGs2EcHRpKGXzwWQ8RDCIxyNEUtEvkkLJ5vKkUmgsniLq8gF28qYB/l/1 sQcEw1+8qc+RL+0yWSJCZMiHk1MMbOrbOdJIljz3FTb/N7PVcsZLY5Fc5OShxTav WnU7goyNoLLUT2K5nEsdyaLoZlOkgTC/iuPnzg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:44:20 2026 by rpki-client