$ rpki-client -vvf repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233342e302f32342d3234203d3e203536323531.roa File: 3130332e32332e3233342e302f32342d3234203d3e203536323531.roa (raw, json) Hash identifier: mZZxWzYI+/x/HPmJcFlJlvOu172XUYAgVPc/9sUojk8= Subject key identifier: 60:81:07:02:02:15:D7:61:06:A0:5A:0D:97:AF:EA:18:06:C0:FF:A6 Certificate issuer: /CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Certificate serial: 69B1E002000928F812263446CFBCB80102F467D9 Authority key identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233342e302f32342d3234203d3e203536323531.roa Signing time: Tue 24 Mar 2026 10:00:00 +0000 ROA not before: Tue 24 Mar 2026 09:55:00 +0000 ROA not after: Tue 23 Mar 2027 10:00:00 +0000 asID: 56251 IP address blocks: 103.23.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 18:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b1:e0:02:00:09:28:f8:12:26:34:46:cf:bc:b8:01:02:f4:67:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Validity Not Before: Mar 24 09:55:00 2026 GMT Not After : Mar 23 10:00:00 2027 GMT Subject: CN=608107020215D76106A05A0D97AFEA1806C0FFA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:fb:9e:f6:fd:ad:84:af:3d:ec:a3:77:90:01: 5d:7e:ee:19:59:f0:76:b5:01:0c:ac:a0:e6:6e:6f: 5a:9f:61:1e:4d:85:ff:70:09:e8:a9:aa:be:5f:bf: 56:ca:72:40:39:44:55:e6:e4:3d:5e:32:5a:f6:de: 82:e0:ea:8b:ad:95:39:9e:cd:4c:c8:f3:fa:3b:a8: 84:c9:58:90:c4:d0:b9:88:5a:40:96:1a:fa:e8:9e: 43:e1:35:c1:8d:7d:34:e1:e2:f9:4f:34:14:26:5e: 7f:bd:56:93:3a:cf:c2:f5:27:58:8b:ca:97:1f:a3: e8:8d:c6:c8:fd:57:22:4b:66:d3:de:de:4d:36:6a: 00:d1:8b:f6:e6:fd:a4:d0:a5:62:19:ce:db:79:5f: bb:46:33:4d:68:38:a5:50:45:8f:e9:36:9b:01:fc: 37:9a:d6:06:88:3f:43:f3:67:41:01:19:7e:6f:55: df:28:ec:d9:27:a8:f5:61:8c:72:a7:be:76:f6:cb: 9b:ad:8e:11:80:d7:e1:ab:3b:99:88:33:e3:05:28: a0:9a:00:c0:b5:ab:9e:29:02:49:7d:c0:49:98:2d: ed:81:a1:c6:2b:c7:02:b3:ce:db:de:6e:ce:e5:72: 38:62:01:9a:f6:b4:96:05:51:20:0d:23:3a:e2:d5: 62:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:81:07:02:02:15:D7:61:06:A0:5A:0D:97:AF:EA:18:06:C0:FF:A6 X509v3 Authority Key Identifier: keyid:CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233342e302f32342d3234203d3e203536323531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.234.0/24 Signature Algorithm: sha256WithRSAEncryption 88:dd:ea:cd:bf:0b:dc:22:fb:06:c4:dd:fc:6f:1b:13:3c:b0: 7a:df:92:f8:72:1d:5e:3e:1d:de:73:bc:4b:7a:81:fa:da:6c: 0d:11:92:33:50:08:cf:c3:25:15:cd:09:1b:03:8a:75:04:e9: f2:c5:b9:59:5d:94:a9:d0:b2:7a:76:4b:a5:5a:cf:d9:0b:60: a8:88:14:44:bb:fd:bb:b0:05:02:53:2d:32:c2:1a:fb:1d:c2: fa:d3:3e:71:01:39:2c:02:9c:9f:9f:f0:82:30:b7:03:96:2a: ee:19:5e:dd:75:8e:b6:b4:43:c7:92:ba:14:8a:3a:b1:51:d6: 8e:0b:f3:66:82:54:05:61:4c:24:d9:81:3b:eb:ee:12:a2:36: 5a:39:c5:ae:1c:df:72:e6:0a:b3:59:76:ac:ef:69:60:7e:2d: c7:09:6e:35:81:ef:5d:16:37:47:31:80:e9:b3:8e:b6:16:fe: b3:da:ed:b7:7d:31:b2:fe:89:ac:2d:a8:8f:a2:dd:bc:a5:f2: b9:c3:ff:8c:c5:13:28:70:ed:d6:c8:29:e4:1e:ba:10:7b:3b: 19:5f:71:4f:17:f8:56:2f:7f:64:3f:73:fd:35:52:2e:27:89: 05:85:93:46:73:0b:25:20:23:6f:f6:23:66:a7:1b:a4:d9:ef: 82:21:2d:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUabHgAgAJKPgSJjRGz7y4AQL0Z9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4 NDk1MDNCNTAeFw0yNjAzMjQwOTU1MDBaFw0yNzAzMjMxMDAwMDBaMDMxMTAvBgNV BAMTKDYwODEwNzAyMDIxNUQ3NjEwNkEwNUEwRDk3QUZFQTE4MDZDMEZGQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0+572/a2Erz3so3eQAV1+7hlZ 8Ha1AQysoOZub1qfYR5Nhf9wCeipqr5fv1bKckA5RFXm5D1eMlr23oLg6outlTme zUzI8/o7qITJWJDE0LmIWkCWGvronkPhNcGNfTTh4vlPNBQmXn+9VpM6z8L1J1iL ypcfo+iNxsj9VyJLZtPe3k02agDRi/bm/aTQpWIZztt5X7tGM01oOKVQRY/pNpsB /Dea1gaIP0PzZ0EBGX5vVd8o7NknqPVhjHKnvnb2y5utjhGA1+GrO5mIM+MFKKCa AMC1q54pAkl9wEmYLe2BocYrxwKzztvebs7lcjhiAZr2tJYFUSANIzri1WKDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYIEHAgIV12EGoFoNl6/qGAbA/6YwHwYDVR0j BBgwFoAUzA4MQcypVmiU0dNf3i1kJYSVA7UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDVmNzY4Yi00MjE4LTRjNWQtODkzYS0wZmY2OTY1MjY2MzkvMC9DQzBFMEM0MUND QTk1NjY4OTREMUQzNUZERTJENjQyNTg0OTUwM0I1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4NDk1 MDNCNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNWY3NjhiLTQyMTgtNGM1ZC04 OTNhLTBmZjY5NjUyNjYzOS8wLzMxMzAzMzJlMzIzMzJlMzIzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcX6jANBgkqhkiG 9w0BAQsFAAOCAQEAiN3qzb8L3CL7BsTd/G8bEzywet+S+HIdXj4d3nO8S3qB+tps DRGSM1AIz8MlFc0JGwOKdQTp8sW5WV2UqdCyenZLpVrP2QtgqIgURLv9u7AFAlMt MsIa+x3C+tM+cQE5LAKcn5/wgjC3A5Yq7hle3XWOtrRDx5K6FIo6sVHWjgvzZoJU BWFMJNmBO+vuEqI2WjnFrhzfcuYKs1l2rO9pYH4txwluNYHvXRY3RzGA6bOOthb+ s9rtt30xsv6JrC2oj6LdvKXyucP/jMUTKHDt1sgp5B66EHs7GV9xTxf4Vi9/ZD9z /TVSLieJBYWTRnMLJSAjb/YjZqcbpNnvgiEtEw== -----END CERTIFICATE-----Generated at Thu Mar 26 23:47:42 2026 by rpki-client