$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34322e302f32342d3234203d3e203535363835.roa File: 3130332e3234372e34322e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: pzNkLG5550K6niPVhjn2lFGp5tmDU271y+wQUgja3O4= Subject key identifier: D0:77:0F:FA:30:9C:2B:74:81:1F:63:5D:98:91:FA:C3:76:9E:11:40 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 644CF5A6E2AFAE8B3474E317E0E80E7A1C29213B Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34322e302f32342d3234203d3e203535363835.roa Signing time: Wed 04 Mar 2026 04:03:19 +0000 ROA not before: Wed 04 Mar 2026 03:58:19 +0000 ROA not after: Wed 03 Mar 2027 04:03:19 +0000 asID: 55685 IP address blocks: 103.247.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 19:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:4c:f5:a6:e2:af:ae:8b:34:74:e3:17:e0:e8:0e:7a:1c:29:21:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: Mar 4 03:58:19 2026 GMT Not After : Mar 3 04:03:19 2027 GMT Subject: CN=D0770FFA309C2B74811F635D9891FAC3769E1140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:8e:2b:2c:c0:e7:92:b0:e8:38:60:f8:87:d8: 1f:4d:e7:da:04:6a:87:4e:48:a8:03:73:a0:17:87: 7b:a8:e7:1a:0c:1f:8f:2b:2e:09:93:ac:1a:0c:7b: 3a:86:bb:27:8c:e4:8a:fd:ab:34:10:e3:2d:6e:74: 7c:a3:dc:98:bd:87:27:0e:7c:1a:38:0b:6d:d2:1f: 02:26:aa:ab:08:e7:52:eb:71:0d:4d:b5:c7:05:da: 0e:55:93:92:44:ed:5b:f6:8b:b5:71:1b:20:c8:1e: d2:4a:7a:5c:9e:9c:06:22:b9:ed:93:da:36:d5:7c: ec:65:e4:57:ac:98:79:2d:b8:da:44:73:b2:44:a4: 8d:b5:17:2f:86:d6:18:dd:83:ed:f0:5a:6f:d4:08: 0a:ef:5c:b0:7b:2a:b4:22:c9:d8:44:cc:ae:58:1e: 11:35:ba:4a:3d:fe:ee:62:d6:15:a8:1e:0a:2c:49: 5a:a5:d7:7f:4f:e2:10:16:63:2e:d6:1e:73:9b:42: 9c:06:d7:3c:1e:d9:c6:e6:36:ae:84:66:4c:f8:9a: fe:a3:43:19:9c:df:cc:ee:48:f8:39:f1:8d:7b:b5: 61:a0:e6:bd:80:f4:cd:6a:37:59:28:3e:d6:c3:63: d5:66:a4:c9:7e:b3:a1:49:ab:90:55:af:93:d4:66: 3b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:77:0F:FA:30:9C:2B:74:81:1F:63:5D:98:91:FA:C3:76:9E:11:40 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34322e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.42.0/24 Signature Algorithm: sha256WithRSAEncryption 19:a9:97:ed:8d:60:54:6a:75:37:0e:1b:b0:cf:cf:87:89:c2: 1e:89:c4:0f:6e:17:b0:af:5b:44:30:ed:b5:ff:74:6b:0f:f2: 61:f8:da:df:4f:ba:3a:9a:17:79:87:f8:52:56:35:93:df:50: f4:b9:b5:ce:48:0a:a5:bd:0a:20:72:44:63:65:16:dd:21:03: d8:33:e2:70:19:39:e1:97:37:e3:1f:17:96:38:c5:24:cb:98: 8f:8c:3d:ae:9f:8c:41:47:e5:30:cc:72:c5:27:4e:ef:56:72: 2d:34:5a:12:28:5c:f0:d5:5a:c2:0c:0e:ed:72:d8:bf:38:73: e4:05:81:7f:19:09:3f:42:53:74:13:b2:9f:ae:c7:dd:98:5d: fe:fe:a4:b0:88:b7:5e:25:6f:03:7b:cc:57:3c:8d:1b:bc:a1: 05:73:09:eb:29:b5:c3:0b:f9:c6:e1:96:05:cd:44:af:eb:63: 6c:f1:6d:28:45:b9:50:1a:b6:9c:42:4b:6e:b4:b0:36:06:a4: 03:98:5d:21:f1:9b:9e:ff:4d:a1:f8:53:16:ce:74:79:a2:85: ae:a0:8a:52:c5:b6:1a:63:9f:ec:54:cf:82:75:54:c6:89:5b: 8a:f2:4d:64:35:51:3b:eb:a1:eb:0f:94:8b:6e:6f:2d:99:88: 55:bd:06:0d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZEz1puKvros0dOMX4OgOehwpITswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNjAzMDQwMzU4MTlaFw0yNzAzMDMwNDAzMTlaMDMxMTAvBgNV BAMTKEQwNzcwRkZBMzA5QzJCNzQ4MTFGNjM1RDk4OTFGQUMzNzY5RTExNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyjisswOeSsOg4YPiH2B9N59oE aodOSKgDc6AXh3uo5xoMH48rLgmTrBoMezqGuyeM5Ir9qzQQ4y1udHyj3Ji9hycO fBo4C23SHwImqqsI51LrcQ1NtccF2g5Vk5JE7Vv2i7VxGyDIHtJKelyenAYiue2T 2jbVfOxl5FesmHktuNpEc7JEpI21Fy+G1hjdg+3wWm/UCArvXLB7KrQiydhEzK5Y HhE1uko9/u5i1hWoHgosSVql139P4hAWYy7WHnObQpwG1zwe2cbmNq6EZkz4mv6j Qxmc38zuSPg58Y17tWGg5r2A9M1qN1koPtbDY9VmpMl+s6FJq5BVr5PUZjvpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0HcP+jCcK3SBH2NdmJH6w3aeEUAwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3KjANBgkqhkiG 9w0BAQsFAAOCAQEAGamX7Y1gVGp1Nw4bsM/Ph4nCHonED24XsK9bRDDttf90aw/y Yfja30+6OpoXeYf4UlY1k99Q9Lm1zkgKpb0KIHJEY2UW3SED2DPicBk54Zc34x8X ljjFJMuYj4w9rp+MQUflMMxyxSdO71ZyLTRaEihc8NVawgwO7XLYvzhz5AWBfxkJ P0JTdBOyn67H3Zhd/v6ksIi3XiVvA3vMVzyNG7yhBXMJ6ym1wwv5xuGWBc1Er+tj bPFtKEW5UBq2nEJLbrSwNgakA5hdIfGbnv9NofhTFs50eaKFrqCKUsW2GmOf7FTP gnVUxolbivJNZDVRO+uh6w+Ui25vLZmIVb0GDQ== -----END CERTIFICATE-----Generated at Thu Mar 26 21:11:39 2026 by rpki-client