$ rpki-client -vvf repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa File: 3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa (raw, json) Hash identifier: 3Qg9iurIgTfr9YpCp3r7IVR3FrXPSUTSH/qNP2Qjoek= Subject key identifier: 81:61:A6:55:32:B2:CE:63:54:88:30:EC:B9:56:33:05:FC:24:24:89 Certificate issuer: /CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Certificate serial: 5476FB2CBCA3D2802AB7769A71AB534E2D9094E6 Authority key identifier: B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa Signing time: Sat 07 Mar 2026 18:02:45 +0000 ROA not before: Sat 07 Mar 2026 17:57:45 +0000 ROA not after: Sat 06 Mar 2027 18:02:45 +0000 asID: 141062 IP address blocks: 103.155.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.crl rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 04:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:76:fb:2c:bc:a3:d2:80:2a:b7:76:9a:71:ab:53:4e:2d:90:94:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Validity Not Before: Mar 7 17:57:45 2026 GMT Not After : Mar 6 18:02:45 2027 GMT Subject: CN=8161A65532B2CE63548830ECB9563305FC242489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c7:d5:54:7f:ba:e2:a7:26:26:d1:76:f9:b3: 5f:20:22:db:73:d8:2a:b5:df:7f:0a:b9:8a:92:ed: 49:40:34:3b:2e:8f:a3:e3:4b:57:3c:f6:93:31:cb: 9f:bb:2d:61:19:db:b2:d2:7a:45:b9:2b:25:ce:d7: 1f:25:61:97:f1:3e:8f:bf:3f:3b:bf:08:06:ac:7b: 87:05:30:66:8b:e4:04:63:c3:b3:af:71:a0:9a:14: a4:db:b0:99:6f:7d:bb:1c:f3:39:0e:2b:95:1a:dc: 0f:28:a0:5c:c7:13:3c:74:df:65:9f:d5:cd:d8:7a: 00:22:f8:ab:10:2b:94:6f:71:aa:0c:81:83:ae:4b: 71:cb:46:c5:bd:44:62:9c:6d:bd:47:34:ec:05:cb: a6:fd:ff:63:80:23:39:16:f0:97:0e:b4:0f:ec:be: 84:88:11:3d:10:8b:e4:ff:da:31:c9:0d:66:b5:e8: e5:11:48:7f:d0:7e:61:c0:07:0a:72:d9:00:f9:90: 41:39:8a:db:6a:7f:dd:05:1e:a2:ed:06:5e:d7:a5: 26:59:5c:c4:44:44:0c:3a:06:58:11:8f:47:06:b9: ce:db:17:50:49:66:99:f0:ce:f5:5e:8f:98:ce:c6: 26:6d:f3:a2:4e:66:31:d4:de:89:56:02:d8:06:cb: ec:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:61:A6:55:32:B2:CE:63:54:88:30:EC:B9:56:33:05:FC:24:24:89 X509v3 Authority Key Identifier: keyid:B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.156.0/24 Signature Algorithm: sha256WithRSAEncryption 84:f1:97:d9:89:6f:b9:4a:97:23:81:18:f9:14:6b:55:04:70: df:28:d2:ca:6f:60:75:d4:f4:da:c0:9e:b8:f0:5c:79:50:28: 02:60:ce:e7:b2:16:03:4b:40:1c:97:6f:ae:d5:25:47:0d:6d: 9d:56:05:38:cc:29:67:f1:4d:d0:1a:30:4a:a4:3a:7f:7e:4a: 62:ad:54:18:e9:7b:83:e6:bc:9c:7b:aa:39:6a:8a:d7:9f:1b: 7d:9e:f2:67:d2:cb:a7:3b:6a:d7:0d:f0:64:ff:9b:82:49:7f: 27:4a:1f:12:85:41:6c:45:69:34:d4:50:e0:e9:e7:3c:02:c9: 1b:bf:08:45:6c:4b:1f:32:17:9a:45:98:ea:d4:a2:d9:10:4f: 8a:9f:19:93:b6:9a:2d:ca:f9:ea:5c:a2:5c:dc:18:63:19:94: d6:b1:06:97:ec:47:6f:46:cf:9f:9a:71:17:78:14:7e:a5:f1: e6:1e:7e:34:c2:05:ae:82:aa:23:1e:f6:8a:20:32:fb:c0:8c: 5f:8c:a2:2a:c6:91:de:7d:61:13:81:90:8c:f0:d6:ac:a1:f7: 36:79:9e:ba:20:98:e1:bc:fa:86:ec:b4:fb:1e:95:98:6e:50: be:25:c6:dd:7b:fc:83:b2:17:a6:de:f9:ba:2f:f9:fa:78:29: 6e:c0:99:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVHb7LLyj0oAqt3aacatTTi2QlOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk3MkYwNzNCOEFGMjZCODUzM0U5N0FBRkJBRUMxN0ZD RUZENkY4QzAeFw0yNjAzMDcxNzU3NDVaFw0yNzAzMDYxODAyNDVaMDMxMTAvBgNV BAMTKDgxNjFBNjU1MzJCMkNFNjM1NDg4MzBFQ0I5NTYzMzA1RkMyNDI0ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8x9VUf7ripyYm0Xb5s18gIttz 2Cq1338KuYqS7UlANDsuj6PjS1c89pMxy5+7LWEZ27LSekW5KyXO1x8lYZfxPo+/ Pzu/CAase4cFMGaL5ARjw7OvcaCaFKTbsJlvfbsc8zkOK5Ua3A8ooFzHEzx032Wf 1c3YegAi+KsQK5RvcaoMgYOuS3HLRsW9RGKcbb1HNOwFy6b9/2OAIzkW8JcOtA/s voSIET0Qi+T/2jHJDWa16OURSH/QfmHABwpy2QD5kEE5ittqf90FHqLtBl7XpSZZ XMRERAw6BlgRj0cGuc7bF1BJZpnwzvVej5jOxiZt86JOZjHU3olWAtgGy+yXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgWGmVTKyzmNUiDDsuVYzBfwkJIkwHwYDVR0j BBgwFoAUuXLwc7ivJrhTPpeq+67Bf879b4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDE2MTljYi1jMDFjLTQ2MTQtODYzZS1jZTI4OGQ3YmE3NjUvMC9COTcyRjA3M0I4 QUYyNkI4NTMzRTk3QUFGQkFFQzE3RkNFRkQ2RjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjk3MkYwNzNCOEFGMjZCODUzM0U5N0FBRkJBRUMxN0ZDRUZE NkY4Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkMTYxOWNiLWMwMWMtNDYxNC04 NjNlLWNlMjg4ZDdiYTc2NS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM1MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm5wwDQYJ KoZIhvcNAQELBQADggEBAITxl9mJb7lKlyOBGPkUa1UEcN8o0spvYHXU9NrAnrjw XHlQKAJgzueyFgNLQByXb67VJUcNbZ1WBTjMKWfxTdAaMEqkOn9+SmKtVBjpe4Pm vJx7qjlqitefG32e8mfSy6c7atcN8GT/m4JJfydKHxKFQWxFaTTUUODp5zwCyRu/ CEVsSx8yF5pFmOrUotkQT4qfGZO2mi3K+epcolzcGGMZlNaxBpfsR29Gz5+acRd4 FH6l8eYefjTCBa6CqiMe9oogMvvAjF+MoirGkd59YROBkIzw1qyh9zZ5nrogmOG8 +obstPselZhuUL4lxt17/IOyF6be+bov+fp4KW7AmVc= -----END CERTIFICATE-----Generated at Fri Mar 27 02:34:01 2026 by rpki-client