$ rpki-client -vvf repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa File: 3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa (raw, json) Hash identifier: Q+IkVv0Bjm3jRiBICSBWGderVAB472l//8aV0DSoflc= Subject key identifier: 8F:8F:9E:29:59:75:27:8C:AD:32:3D:69:C7:E3:70:71:8B:6F:13:35 Certificate issuer: /CN=4F022459BA46CF30700E070671C752B44729E249 Certificate serial: 4DE28F9201400675E9820F5549EC71B10E8733DD Authority key identifier: 4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa Signing time: Tue 03 Mar 2026 08:00:00 +0000 ROA not before: Tue 03 Mar 2026 07:55:00 +0000 ROA not after: Tue 02 Mar 2027 08:00:00 +0000 asID: 150510 IP address blocks: 103.61.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 18:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e2:8f:92:01:40:06:75:e9:82:0f:55:49:ec:71:b1:0e:87:33:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F022459BA46CF30700E070671C752B44729E249 Validity Not Before: Mar 3 07:55:00 2026 GMT Not After : Mar 2 08:00:00 2027 GMT Subject: CN=8F8F9E295975278CAD323D69C7E370718B6F1335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ae:e1:1d:95:84:e6:e8:f3:92:a8:7c:b4:cd: a7:33:80:17:2b:63:12:6a:de:14:71:41:86:ed:24: 77:af:51:57:15:01:90:99:df:fc:c8:2f:81:48:06: ef:51:95:09:b5:86:7a:f1:62:59:98:7e:15:66:f2: df:c8:a3:4e:54:15:4e:34:f2:76:69:c0:01:ff:51: 42:d4:6f:18:d8:cf:0a:7f:81:16:62:b1:dd:06:7e: 96:e1:a5:0d:3d:8d:a1:a0:6a:5a:2b:ca:d3:22:03: 3f:82:d9:27:43:4d:c1:64:20:a9:86:99:0e:d2:a2: 94:41:bf:fe:93:50:ed:c4:ba:52:fa:d0:ee:b5:96: 7d:e2:70:b0:03:5f:1e:ad:ca:54:3c:da:54:4d:81: 81:f1:a4:3e:99:ff:b7:38:ea:56:30:75:7c:95:f3: 75:09:8e:97:5a:fb:b3:7b:d7:00:13:88:b3:f6:10: 5c:22:89:dc:94:ab:10:d5:a4:80:d1:d2:f3:62:91: de:18:07:24:d1:8f:59:b2:60:dd:3f:08:4c:be:df: da:b6:81:20:88:e6:d3:9d:5b:d6:ca:a7:43:bd:8b: 01:3f:c4:b1:fb:71:40:bd:98:fe:2c:0e:51:0b:b5: 53:65:63:7a:b4:17:ea:98:1c:45:85:ab:2e:b9:cc: 47:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:8F:9E:29:59:75:27:8C:AD:32:3D:69:C7:E3:70:71:8B:6F:13:35 X509v3 Authority Key Identifier: keyid:4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.235.0/24 Signature Algorithm: sha256WithRSAEncryption af:a1:0a:bb:0a:af:44:13:fd:a7:0c:14:2f:90:43:ee:a9:92: c9:50:49:ba:f6:a6:70:63:83:8f:00:1b:bb:e1:a3:57:da:0a: 96:16:32:35:c0:d3:d2:4f:1c:ee:74:a4:d4:ba:77:9e:6f:ee: 73:a0:a8:0b:5a:a2:9c:36:a7:33:04:13:dc:03:05:30:3d:86: a6:5c:7d:b0:31:db:02:8f:9b:7f:c1:26:68:43:b6:ee:c4:12: 3e:6f:a2:b5:28:9d:1e:63:62:7f:6c:75:6d:72:25:62:0a:06: 0b:d2:44:70:f7:86:79:89:2c:e2:ef:ee:9a:ec:bb:5b:b5:56: ec:15:6b:55:0f:50:ac:84:cc:64:8d:89:91:aa:ff:84:55:e5: 2d:56:ba:23:f8:ae:9e:22:71:f3:7e:e9:27:3e:a0:4c:61:48: 50:02:1a:2e:10:96:d6:eb:fc:52:53:19:62:1d:e5:3c:11:ed: 43:0a:fa:8f:1e:c7:63:05:2d:c0:4f:07:89:a1:49:03:09:67: 17:3c:bb:ba:6b:2a:67:80:46:4f:cc:ad:4c:da:18:fc:90:8f: 16:53:e4:48:7d:e5:27:9c:43:92:4b:a1:6b:dc:55:0a:81:5d: ed:e6:ea:0b:53:b0:7f:99:cb:ee:2b:e9:be:ec:3d:5f:33:9d: c2:e3:6c:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTeKPkgFABnXpgg9VSexxsQ6HM90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0 NzI5RTI0OTAeFw0yNjAzMDMwNzU1MDBaFw0yNzAzMDIwODAwMDBaMDMxMTAvBgNV BAMTKDhGOEY5RTI5NTk3NTI3OENBRDMyM0Q2OUM3RTM3MDcxOEI2RjEzMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfruEdlYTm6POSqHy0zaczgBcr YxJq3hRxQYbtJHevUVcVAZCZ3/zIL4FIBu9RlQm1hnrxYlmYfhVm8t/Io05UFU40 8nZpwAH/UULUbxjYzwp/gRZisd0GfpbhpQ09jaGgalorytMiAz+C2SdDTcFkIKmG mQ7SopRBv/6TUO3EulL60O61ln3icLADXx6tylQ82lRNgYHxpD6Z/7c46lYwdXyV 83UJjpda+7N71wATiLP2EFwiidyUqxDVpIDR0vNikd4YByTRj1myYN0/CEy+39q2 gSCI5tOdW9bKp0O9iwE/xLH7cUC9mP4sDlELtVNlY3q0F+qYHEWFqy65zEc7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUj4+eKVl1J4ytMj1px+NwcYtvEzUwHwYDVR0j BBgwFoAUTwIkWbpGzzBwDgcGccdStEcp4kkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTJiZmU5YS0zODIzLTQ0ZTktOTdjMC0yMTkxYTU2YmFmZDMvMC80RjAyMjQ1OUJB NDZDRjMwNzAwRTA3MDY3MUM3NTJCNDQ3MjlFMjQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0NzI5 RTI0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMmJmZTlhLTM4MjMtNDRlOS05 N2MwLTIxOTFhNTZiYWZkMy8wLzMxMzAzMzJlMzYzMTJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZz3rMA0GCSqG SIb3DQEBCwUAA4IBAQCvoQq7Cq9EE/2nDBQvkEPuqZLJUEm69qZwY4OPABu74aNX 2gqWFjI1wNPSTxzudKTUuneeb+5zoKgLWqKcNqczBBPcAwUwPYamXH2wMdsCj5t/ wSZoQ7buxBI+b6K1KJ0eY2J/bHVtciViCgYL0kRw94Z5iSzi7+6a7LtbtVbsFWtV D1CshMxkjYmRqv+EVeUtVroj+K6eInHzfuknPqBMYUhQAhouEJbW6/xSUxliHeU8 Ee1DCvqPHsdjBS3ATweJoUkDCWcXPLu6aypngEZPzK1M2hj8kI8WU+RIfeUnnEOS S6Fr3FUKgV3t5uoLU7B/mcvuK+m+7D1fM53C42ys -----END CERTIFICATE-----Generated at Thu Mar 26 08:31:06 2026 by rpki-client