$ rpki-client -vvf repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e342e3137342e302f32342d3234203d3e203536323531.roa File: 3130332e342e3137342e302f32342d3234203d3e203536323531.roa (raw, json) Hash identifier: FwcFScp7Cs7HZfIouUaq3jflFIuNZirrbsGdb6d6Gyk= Subject key identifier: A3:F1:D2:C3:4C:25:06:62:B5:F3:42:D5:55:C1:5A:58:0A:A0:72:02 Certificate issuer: /CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Certificate serial: 03449D5CF10EC0BE6A98DD3189221165EF626864 Authority key identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e342e3137342e302f32342d3234203d3e203536323531.roa Signing time: Tue 24 Mar 2026 10:00:00 +0000 ROA not before: Tue 24 Mar 2026 09:55:00 +0000 ROA not after: Tue 23 Mar 2027 10:00:00 +0000 asID: 56251 IP address blocks: 103.4.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 18:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:44:9d:5c:f1:0e:c0:be:6a:98:dd:31:89:22:11:65:ef:62:68:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Validity Not Before: Mar 24 09:55:00 2026 GMT Not After : Mar 23 10:00:00 2027 GMT Subject: CN=A3F1D2C34C250662B5F342D555C15A580AA07202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5e:da:df:18:6c:d2:4c:42:5a:16:ef:d2:f9: 00:76:9f:6d:1f:03:49:f5:07:ba:d4:61:96:cc:f2: 02:cb:ef:80:c8:9d:61:2a:ef:5d:88:15:dc:2d:53: ad:17:9f:05:b0:15:db:ee:b5:27:06:eb:c5:31:5e: a9:10:ea:6f:64:b7:d7:7a:b8:c9:d7:4e:cf:2e:fe: f1:50:ff:62:77:d4:ff:9c:5c:27:0d:c4:66:b9:f3: 5a:bf:15:18:0e:8d:f0:d0:8f:7f:3c:9c:0c:47:1d: 5f:25:8a:b4:07:ed:93:84:ad:25:8c:4e:9b:e0:80: de:ff:d2:8f:fc:0b:08:57:eb:ca:c0:ee:81:2c:36: aa:ff:fa:db:c0:9e:31:10:a6:23:10:d8:9d:c2:66: 10:ac:13:c5:9b:13:f0:dc:fe:9d:f0:f5:51:44:42: 20:a9:b2:a7:96:6f:97:7f:cf:29:64:fa:64:21:c1: 40:88:6f:ff:f0:f1:67:21:ea:8e:82:02:50:62:9a: 93:18:10:cf:94:64:d3:09:ee:25:2a:60:40:4a:1b: 38:8d:a9:09:c4:48:94:b3:66:63:a6:a3:9b:dd:bd: df:71:49:65:fc:cb:41:f6:23:eb:bf:c9:4d:c9:36: f1:d0:03:1d:30:d0:82:94:a7:f0:62:71:10:0e:69: a6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F1:D2:C3:4C:25:06:62:B5:F3:42:D5:55:C1:5A:58:0A:A0:72:02 X509v3 Authority Key Identifier: keyid:CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e342e3137342e302f32342d3234203d3e203536323531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.174.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:3a:f6:73:6e:b5:eb:e3:00:47:56:58:f9:92:dd:42:4a:f0: 77:75:7a:f1:8f:dc:ce:59:3b:a2:ba:98:3e:bf:cb:34:0e:01: e0:ca:1f:03:23:7b:3e:37:b9:74:7e:9f:d3:4c:58:85:85:aa: e1:ca:fe:18:e7:da:1c:32:10:63:3c:5d:80:4d:01:97:c5:2c: 63:e2:1b:72:bc:58:0e:9f:fe:41:3f:b2:6c:e2:9f:c2:6a:b7: 53:81:17:3f:a7:28:e7:22:9e:9b:e1:56:1b:c0:a9:8e:48:8e: e5:48:93:8c:06:4c:fe:03:cc:47:61:95:64:e6:45:1b:11:2e: 45:02:3f:4e:ca:dd:3e:d5:1e:2c:10:34:00:6b:81:dd:0c:02: 92:82:4a:38:3a:6f:46:19:6c:95:ba:11:c5:8e:d5:5d:b7:9f: 27:eb:51:47:da:b1:05:23:83:90:69:d4:39:76:f7:2c:4e:aa: 76:de:9c:c8:5e:96:a3:44:95:24:4b:ff:49:ab:62:69:f6:bc: 21:9d:11:64:44:03:29:f5:b2:d3:e9:43:49:d0:82:06:b6:9f: d0:49:4c:0a:c7:6b:52:37:21:12:c3:2b:67:7e:8f:9a:d1:71: ad:90:3b:19:f6:c5:02:e9:3f:7c:42:eb:c5:c1:be:19:56:9d: 6d:a3:06:67 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUA0SdXPEOwL5qmN0xiSIRZe9iaGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4 NDk1MDNCNTAeFw0yNjAzMjQwOTU1MDBaFw0yNzAzMjMxMDAwMDBaMDMxMTAvBgNV BAMTKEEzRjFEMkMzNEMyNTA2NjJCNUYzNDJENTU1QzE1QTU4MEFBMDcyMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLXtrfGGzSTEJaFu/S+QB2n20f A0n1B7rUYZbM8gLL74DInWEq712IFdwtU60XnwWwFdvutScG68UxXqkQ6m9kt9d6 uMnXTs8u/vFQ/2J31P+cXCcNxGa581q/FRgOjfDQj388nAxHHV8lirQH7ZOErSWM TpvggN7/0o/8CwhX68rA7oEsNqr/+tvAnjEQpiMQ2J3CZhCsE8WbE/Dc/p3w9VFE QiCpsqeWb5d/zylk+mQhwUCIb//w8Wch6o6CAlBimpMYEM+UZNMJ7iUqYEBKGziN qQnESJSzZmOmo5vdvd9xSWX8y0H2I+u/yU3JNvHQAx0w0IKUp/BicRAOaaZnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUo/HSw0wlBmK180LVVcFaWAqgcgIwHwYDVR0j BBgwFoAUzA4MQcypVmiU0dNf3i1kJYSVA7UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDVmNzY4Yi00MjE4LTRjNWQtODkzYS0wZmY2OTY1MjY2MzkvMC9DQzBFMEM0MUND QTk1NjY4OTREMUQzNUZERTJENjQyNTg0OTUwM0I1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4NDk1 MDNCNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNWY3NjhiLTQyMTgtNGM1ZC04 OTNhLTBmZjY5NjUyNjYzOS8wLzMxMzAzMzJlMzQyZTMxMzczNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzYzMjM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnBK4wDQYJKoZIhvcN AQELBQADggEBAB469nNutevjAEdWWPmS3UJK8Hd1evGP3M5ZO6K6mD6/yzQOAeDK HwMjez43uXR+n9NMWIWFquHK/hjn2hwyEGM8XYBNAZfFLGPiG3K8WA6f/kE/smzi n8Jqt1OBFz+nKOcinpvhVhvAqY5IjuVIk4wGTP4DzEdhlWTmRRsRLkUCP07K3T7V HiwQNABrgd0MApKCSjg6b0YZbJW6EcWO1V23nyfrUUfasQUjg5Bp1Dl29yxOqnbe nMhelqNElSRL/0mrYmn2vCGdEWREAyn1stPpQ0nQgga2n9BJTArHa1I3IRLDK2d+ j5rRca2QOxn2xQLpP3xC68XBvhlWnW2jBmc= -----END CERTIFICATE-----Generated at Thu Mar 26 23:45:03 2026 by rpki-client