$ rpki-client -vvf repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233352e302f32342d3234203d3e203536323531.roa File: 3130332e32332e3233352e302f32342d3234203d3e203536323531.roa (raw, json) Hash identifier: pPrmF7wA0mkz0XFtTbZ2mXTXaWSM3+27UUv699+o4qw= Subject key identifier: A4:1C:96:4B:49:77:53:3D:A3:6C:DC:C3:98:19:67:4F:EC:2C:E3:FC Certificate issuer: /CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Certificate serial: 53317D083D5E2BE1D6CD25160273E0907A2A5144 Authority key identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233352e302f32342d3234203d3e203536323531.roa Signing time: Tue 24 Mar 2026 10:00:00 +0000 ROA not before: Tue 24 Mar 2026 09:55:00 +0000 ROA not after: Tue 23 Mar 2027 10:00:00 +0000 asID: 56251 IP address blocks: 103.23.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 18:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:31:7d:08:3d:5e:2b:e1:d6:cd:25:16:02:73:e0:90:7a:2a:51:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Validity Not Before: Mar 24 09:55:00 2026 GMT Not After : Mar 23 10:00:00 2027 GMT Subject: CN=A41C964B4977533DA36CDCC39819674FEC2CE3FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:d4:94:af:20:46:b8:0b:96:fc:84:02:d4: 3e:a2:a3:67:63:07:24:bf:71:5f:48:f0:d4:d1:55: b2:56:11:7a:70:dc:c6:e8:7c:86:4e:16:20:2f:66: 34:55:e7:10:4c:4d:bb:c8:69:b3:3f:0f:40:bc:c5: e4:37:52:a0:f8:e9:48:1a:ea:33:ec:fb:a0:d9:cf: fa:95:7d:e6:81:63:39:8a:aa:42:5a:8d:55:b2:2c: 38:a4:88:7b:ec:fb:54:b7:43:ad:4a:f3:28:16:f4: d0:c4:50:03:51:d4:0a:56:c9:e7:ce:2b:df:d1:32: 3c:1a:bf:57:75:03:11:52:1c:d8:25:d9:7f:d1:1d: b6:34:c3:58:05:47:a1:45:30:77:9c:40:85:9c:6c: ea:15:6b:c1:6f:e3:2e:22:22:fa:45:14:64:8e:85: 6d:6a:45:b6:0b:2d:75:e7:dc:14:2e:f0:da:04:c7: 0a:74:34:98:e4:a8:e8:3e:de:1e:b6:e6:d4:77:71: dc:a5:1f:95:dd:fb:d2:41:67:de:eb:77:34:00:4b: 9f:50:e9:5d:91:f0:e6:c9:47:3f:ec:19:d4:d5:bc: ca:d5:06:35:bc:dc:4f:d1:11:97:63:dd:b6:fa:4b: 05:e9:32:74:d4:24:72:30:a3:0e:d3:cc:90:5f:69: ee:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1C:96:4B:49:77:53:3D:A3:6C:DC:C3:98:19:67:4F:EC:2C:E3:FC X509v3 Authority Key Identifier: keyid:CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233352e302f32342d3234203d3e203536323531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.235.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:7c:19:3c:da:f8:39:e8:a6:7f:0e:ba:81:70:9c:fe:35:d1: 5d:88:80:b6:67:f6:aa:ac:fb:5c:ac:a2:a4:44:b3:cd:b9:96: d7:cb:bf:15:c3:64:3d:08:9b:d0:00:8d:b4:df:41:0a:36:98: c3:9b:2c:be:7b:94:77:50:e9:da:f5:24:90:42:5d:1c:54:5f: a4:82:ed:86:95:e3:05:05:88:e1:fc:6d:6a:69:2c:db:7c:29: b3:42:60:2f:2f:7e:58:a9:9b:9a:ef:75:cb:ae:cf:38:d8:38: 06:07:f6:da:34:dc:d9:3a:cb:48:0c:f7:12:51:1a:9d:4f:00: 0d:47:1a:0f:93:87:39:fa:99:ec:17:cb:77:6b:d3:6b:96:f9: 16:a6:fe:5a:ee:d6:2b:58:62:10:bf:ec:48:7e:85:50:d8:6a: 18:60:15:e7:36:72:35:08:1b:40:5c:50:2d:f8:91:ad:a5:c9: 7f:86:3a:7a:5f:22:bb:bd:c3:32:dd:01:dc:ae:b5:41:f6:eb: b5:71:d1:42:82:73:22:e4:f2:6c:01:17:f9:0b:78:18:8b:60: d6:5e:68:1b:8a:39:df:8e:0b:f7:cc:bc:f4:53:2a:05:22:15: 18:53:d0:9f:55:13:59:69:03:14:30:0e:8c:d2:87:ae:44:e5: b1:3a:84:c7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUzF9CD1eK+HWzSUWAnPgkHoqUUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4 NDk1MDNCNTAeFw0yNjAzMjQwOTU1MDBaFw0yNzAzMjMxMDAwMDBaMDMxMTAvBgNV BAMTKEE0MUM5NjRCNDk3NzUzM0RBMzZDRENDMzk4MTk2NzRGRUMyQ0UzRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jNSUryBGuAuW/IQC1D6io2dj ByS/cV9I8NTRVbJWEXpw3MbofIZOFiAvZjRV5xBMTbvIabM/D0C8xeQ3UqD46Uga 6jPs+6DZz/qVfeaBYzmKqkJajVWyLDikiHvs+1S3Q61K8ygW9NDEUANR1ApWyefO K9/RMjwav1d1AxFSHNgl2X/RHbY0w1gFR6FFMHecQIWcbOoVa8Fv4y4iIvpFFGSO hW1qRbYLLXXn3BQu8NoExwp0NJjkqOg+3h625tR3cdylH5Xd+9JBZ97rdzQAS59Q 6V2R8ObJRz/sGdTVvMrVBjW83E/REZdj3bb6SwXpMnTUJHIwow7TzJBfae61AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpByWS0l3Uz2jbNzDmBlnT+ws4/wwHwYDVR0j BBgwFoAUzA4MQcypVmiU0dNf3i1kJYSVA7UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDVmNzY4Yi00MjE4LTRjNWQtODkzYS0wZmY2OTY1MjY2MzkvMC9DQzBFMEM0MUND QTk1NjY4OTREMUQzNUZERTJENjQyNTg0OTUwM0I1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4NDk1 MDNCNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNWY3NjhiLTQyMTgtNGM1ZC04 OTNhLTBmZjY5NjUyNjYzOS8wLzMxMzAzMzJlMzIzMzJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcX6zANBgkqhkiG 9w0BAQsFAAOCAQEAjXwZPNr4Oeimfw66gXCc/jXRXYiAtmf2qqz7XKyipESzzbmW 18u/FcNkPQib0ACNtN9BCjaYw5ssvnuUd1Dp2vUkkEJdHFRfpILthpXjBQWI4fxt amks23wps0JgLy9+WKmbmu91y67PONg4Bgf22jTc2TrLSAz3ElEanU8ADUcaD5OH OfqZ7BfLd2vTa5b5Fqb+Wu7WK1hiEL/sSH6FUNhqGGAV5zZyNQgbQFxQLfiRraXJ f4Y6el8iu73DMt0B3K61QfbrtXHRQoJzIuTybAEX+Qt4GItg1l5oG4o5344L98y8 9FMqBSIVGFPQn1UTWWkDFDAOjNKHrkTlsTqExw== -----END CERTIFICATE-----Generated at Thu Mar 26 23:45:07 2026 by rpki-client