$ rpki-client -vvf repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa File: 3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa (raw, json) Hash identifier: jdLnjPaWdTHZ2AH4DtpLU9Lr5H/sMTNt+97MSzTQyBs= Subject key identifier: 32:6F:C7:2E:92:AC:D2:FA:0E:09:7D:52:39:E5:72:44:58:45:D3:67 Certificate issuer: /CN=4F022459BA46CF30700E070671C752B44729E249 Certificate serial: 7A12999AE669D3D3BC7EA063C3705116503A0D40 Authority key identifier: 4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa Signing time: Tue 03 Mar 2026 08:00:00 +0000 ROA not before: Tue 03 Mar 2026 07:55:00 +0000 ROA not after: Tue 02 Mar 2027 08:00:00 +0000 asID: 150510 IP address blocks: 103.61.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 18:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:12:99:9a:e6:69:d3:d3:bc:7e:a0:63:c3:70:51:16:50:3a:0d:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F022459BA46CF30700E070671C752B44729E249 Validity Not Before: Mar 3 07:55:00 2026 GMT Not After : Mar 2 08:00:00 2027 GMT Subject: CN=326FC72E92ACD2FA0E097D5239E572445845D367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:57:30:3f:37:f9:82:9e:a8:76:3c:42:10:84: f5:db:01:68:61:34:9b:2f:7f:bb:f8:73:e0:88:bc: 0b:28:34:b9:b1:e2:7b:26:71:83:dd:08:f1:be:a8: 2f:6f:45:83:99:dd:1e:2f:ca:f8:81:d6:5e:6f:87: bb:9d:90:53:ad:42:79:62:3a:55:0c:55:0e:c1:34: fc:d4:11:59:b1:4b:97:45:11:af:64:53:ef:ae:fc: f3:e4:70:06:c8:9f:87:91:70:76:3a:0b:a3:5a:d7: 09:9b:5d:6d:6d:d9:6d:df:58:85:80:88:19:68:f6: 47:c2:76:7d:a8:75:01:f5:70:25:c7:25:14:c5:59: 31:d2:f8:93:e0:0b:4d:9a:31:95:29:3e:39:99:5c: 47:7f:9b:e3:2e:9a:1d:97:df:08:c0:37:8b:0c:af: bb:16:2b:6a:0c:a7:8e:42:26:c7:e1:02:d2:19:7c: eb:7a:af:ce:80:5c:75:a2:2e:1d:01:27:b5:4d:c9: 26:db:60:2c:18:bf:13:0c:22:04:94:92:b0:1e:55: b6:78:e9:bb:6b:ac:c0:bc:c7:30:66:33:c0:bf:23: e1:3d:5f:4c:8d:4d:f3:2b:ed:5f:4d:7b:94:de:5f: 9b:db:c0:6d:29:06:8b:86:ed:66:93:e8:d9:87:22: da:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:6F:C7:2E:92:AC:D2:FA:0E:09:7D:52:39:E5:72:44:58:45:D3:67 X509v3 Authority Key Identifier: keyid:4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.234.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:d4:ec:b4:f1:fc:6b:99:38:f1:ff:2e:34:30:49:53:48:f8: db:70:87:f7:90:8f:17:0c:1c:6a:a6:99:75:47:4a:df:cc:71: 27:b5:69:ac:67:b7:6e:49:e8:7c:62:b2:16:f4:d4:c3:36:47: 17:89:6c:41:ff:d7:dc:10:b6:20:ed:ed:db:f9:bc:8d:d7:56: d8:de:82:7d:63:32:9e:35:fa:07:35:2d:a4:41:c6:cc:10:46: 05:59:be:2d:94:00:43:55:1b:39:40:73:e5:e4:5a:5e:9a:6d: c0:75:f7:36:58:90:d1:31:61:70:f8:07:7d:f2:66:e1:64:d8: 34:09:63:67:7a:94:bd:0e:01:be:40:e9:17:62:36:c9:18:f4: 10:35:12:d3:c3:04:be:14:5e:99:6e:57:be:c9:72:70:ce:ca: e6:1c:49:c3:15:a1:1a:5f:d7:4a:c8:59:3a:ba:ce:c5:33:78: 5a:cb:6b:4b:a0:d6:5f:53:60:4b:18:ca:30:0e:e8:25:33:48: 89:02:5d:89:62:a4:d7:07:e8:a5:b9:db:3e:fb:6a:3d:f9:ac: 69:ff:0a:c3:29:41:ef:43:b2:4e:be:56:72:6d:f3:45:86:1d: 45:f2:18:ce:0a:18:58:59:02:ac:26:82:54:16:b2:97:93:08: 77:41:dd:fa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUehKZmuZp09O8fqBjw3BRFlA6DUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0 NzI5RTI0OTAeFw0yNjAzMDMwNzU1MDBaFw0yNzAzMDIwODAwMDBaMDMxMTAvBgNV BAMTKDMyNkZDNzJFOTJBQ0QyRkEwRTA5N0Q1MjM5RTU3MjQ0NTg0NUQzNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2VzA/N/mCnqh2PEIQhPXbAWhh NJsvf7v4c+CIvAsoNLmx4nsmcYPdCPG+qC9vRYOZ3R4vyviB1l5vh7udkFOtQnli OlUMVQ7BNPzUEVmxS5dFEa9kU++u/PPkcAbIn4eRcHY6C6Na1wmbXW1t2W3fWIWA iBlo9kfCdn2odQH1cCXHJRTFWTHS+JPgC02aMZUpPjmZXEd/m+Mumh2X3wjAN4sM r7sWK2oMp45CJsfhAtIZfOt6r86AXHWiLh0BJ7VNySbbYCwYvxMMIgSUkrAeVbZ4 6btrrMC8xzBmM8C/I+E9X0yNTfMr7V9Ne5TeX5vbwG0pBouG7WaT6NmHItoBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMm/HLpKs0voOCX1SOeVyRFhF02cwHwYDVR0j BBgwFoAUTwIkWbpGzzBwDgcGccdStEcp4kkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTJiZmU5YS0zODIzLTQ0ZTktOTdjMC0yMTkxYTU2YmFmZDMvMC80RjAyMjQ1OUJB NDZDRjMwNzAwRTA3MDY3MUM3NTJCNDQ3MjlFMjQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0NzI5 RTI0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMmJmZTlhLTM4MjMtNDRlOS05 N2MwLTIxOTFhNTZiYWZkMy8wLzMxMzAzMzJlMzYzMTJlMzIzMzM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZz3qMA0GCSqG SIb3DQEBCwUAA4IBAQA91Oy08fxrmTjx/y40MElTSPjbcIf3kI8XDBxqppl1R0rf zHEntWmsZ7duSeh8YrIW9NTDNkcXiWxB/9fcELYg7e3b+byN11bY3oJ9YzKeNfoH NS2kQcbMEEYFWb4tlABDVRs5QHPl5Fpemm3Adfc2WJDRMWFw+Ad98mbhZNg0CWNn epS9DgG+QOkXYjbJGPQQNRLTwwS+FF6Zble+yXJwzsrmHEnDFaEaX9dKyFk6us7F M3hay2tLoNZfU2BLGMowDuglM0iJAl2JYqTXB+iluds++2o9+axp/wrDKUHvQ7JO vlZybfNFhh1F8hjOChhYWQKsJoJUFrKXkwh3Qd36 -----END CERTIFICATE-----Generated at Thu Mar 26 10:14:59 2026 by rpki-client