$ rpki-client -vvf repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39312e302f32342d3234203d3e20313338383736.roa File: 3130332e3134302e39312e302f32342d3234203d3e20313338383736.roa (raw, json) Hash identifier: mQS4LiJE4ceMRDyobMHBeWNNLMr7gJoMOJ9JhAyQHto= Subject key identifier: 7F:0E:10:9B:14:28:3D:74:25:86:54:B3:B6:83:E9:11:D6:FB:4C:1F Certificate issuer: /CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Certificate serial: 2D88EF6001F2B675E7532394EA9A9B93C6805F75 Authority key identifier: 45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39312e302f32342d3234203d3e20313338383736.roa Signing time: Tue 17 Mar 2026 14:00:02 +0000 ROA not before: Tue 17 Mar 2026 13:55:02 +0000 ROA not after: Tue 16 Mar 2027 14:00:02 +0000 asID: 138876 IP address blocks: 103.140.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 19:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:88:ef:60:01:f2:b6:75:e7:53:23:94:ea:9a:9b:93:c6:80:5f:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Validity Not Before: Mar 17 13:55:02 2026 GMT Not After : Mar 16 14:00:02 2027 GMT Subject: CN=7F0E109B14283D74258654B3B683E911D6FB4C1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ad:4a:8e:88:da:bb:73:35:a2:26:29:cc:b5: 3a:41:af:7c:1b:d9:40:2f:28:a8:df:85:09:1b:56: 3f:f4:e1:a3:97:5f:df:9f:7b:64:9e:7a:59:06:52: 54:54:ea:e2:e0:ff:04:6d:61:df:e3:32:be:bb:1c: 17:51:fd:86:e9:0e:98:ce:9a:77:1a:ee:0e:0d:c4: 50:57:b2:6f:14:b1:35:e9:20:e8:83:7f:04:94:ef: d5:8e:dc:ac:62:8d:d4:d4:26:40:06:9f:97:73:ab: 0c:52:af:32:b2:c5:5b:da:45:ae:02:4e:bc:f8:d2: 9b:a9:db:f0:3f:3e:64:e6:fe:44:6c:ec:5a:46:5f: ec:66:a8:b1:54:60:67:c9:ff:40:84:a0:7d:b1:28: 31:32:96:f6:73:da:36:02:26:f8:23:b3:76:48:c9: 60:be:39:5d:77:8a:fc:9b:23:88:d9:06:53:6c:e4: 09:53:50:f4:e2:5c:cd:50:50:ce:97:2a:ef:ca:94: 27:ba:96:66:b4:3b:a6:7d:38:58:cf:90:09:bc:ab: c3:cc:3f:91:5b:5e:b8:5d:1d:15:b8:3b:a4:19:be: df:7e:40:0b:7b:33:24:f7:31:9b:8a:f3:4c:2d:a9: 09:96:39:ac:4d:0d:0c:89:b4:06:48:38:79:3b:e1: c8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0E:10:9B:14:28:3D:74:25:86:54:B3:B6:83:E9:11:D6:FB:4C:1F X509v3 Authority Key Identifier: keyid:45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39312e302f32342d3234203d3e20313338383736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.91.0/24 Signature Algorithm: sha256WithRSAEncryption 09:f9:d8:5e:77:28:03:10:02:fc:1f:32:c2:a0:dc:87:5d:eb: 1d:a2:88:f8:27:e6:87:91:0b:ab:52:49:ce:33:1d:c4:5f:f4: da:1a:d3:54:84:3d:cf:77:15:62:4a:c0:18:81:5a:09:b1:0b: 06:a8:c6:45:a3:e8:a9:a1:91:a6:d6:09:dd:6b:bd:12:de:07: df:9a:52:9c:4e:a1:97:cc:8e:06:b7:17:40:29:6a:86:e1:91: df:66:9b:85:72:ac:cd:ad:35:7e:35:22:b3:bd:70:24:a1:c5: 8c:68:b5:12:8e:42:54:00:93:20:b6:22:20:55:0a:c5:f9:e2: 0f:bd:58:da:ac:46:e5:08:75:55:95:dc:45:54:fa:fa:66:a7: a6:b2:f9:0d:90:4d:5f:83:25:a1:62:02:19:89:83:69:03:e1: c4:ff:b0:ff:74:00:b0:50:5e:f7:97:27:f4:38:da:2b:30:15: 13:99:5c:da:bb:46:af:78:3a:6f:bc:8a:ef:6e:fc:11:a7:fa: 82:be:be:56:0a:f0:b0:29:20:e2:7a:63:7f:c9:47:33:49:17: 1a:3e:c4:1c:5e:d5:8f:fb:c9:09:20:e8:42:fe:12:1a:38:dd: f2:e3:0b:5c:bb:1b:a6:b1:f1:9f:57:2d:49:88:e2:a9:73:94: 6d:d4:2e:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULYjvYAHytnXnUyOU6pqbk8aAX3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NB RDk3MkZDRDAeFw0yNjAzMTcxMzU1MDJaFw0yNzAzMTYxNDAwMDJaMDMxMTAvBgNV BAMTKDdGMEUxMDlCMTQyODNENzQyNTg2NTRCM0I2ODNFOTExRDZGQjRDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfrUqOiNq7czWiJinMtTpBr3wb 2UAvKKjfhQkbVj/04aOXX9+fe2SeelkGUlRU6uLg/wRtYd/jMr67HBdR/YbpDpjO mnca7g4NxFBXsm8UsTXpIOiDfwSU79WO3KxijdTUJkAGn5dzqwxSrzKyxVvaRa4C Trz40pup2/A/PmTm/kRs7FpGX+xmqLFUYGfJ/0CEoH2xKDEylvZz2jYCJvgjs3ZI yWC+OV13ivybI4jZBlNs5AlTUPTiXM1QUM6XKu/KlCe6lma0O6Z9OFjPkAm8q8PM P5FbXrhdHRW4O6QZvt9+QAt7MyT3MZuK80wtqQmWOaxNDQyJtAZIOHk74cjLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfw4QmxQoPXQlhlSztoPpEdb7TB8wHwYDVR0j BBgwFoAURWlXtuMqvRV2E2v0s57EzK2XL80wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmE5ZGRmNy01NzZhLTRhNTgtODliYi03ZTg5Mjg5MDIyNzAvMC80NTY5NTdCNkUz MkFCRDE1NzYxMzZCRjRCMzlFQzRDQ0FEOTcyRkNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NBRDk3 MkZDRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YTlkZGY3LTU3NmEtNGE1OC04 OWJiLTdlODkyODkwMjI3MC8wLzMxMzAzMzJlMzEzNDMwMmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4xbMA0GCSqG SIb3DQEBCwUAA4IBAQAJ+dhedygDEAL8HzLCoNyHXesdooj4J+aHkQurUknOMx3E X/TaGtNUhD3PdxViSsAYgVoJsQsGqMZFo+ipoZGm1gnda70S3gffmlKcTqGXzI4G txdAKWqG4ZHfZpuFcqzNrTV+NSKzvXAkocWMaLUSjkJUAJMgtiIgVQrF+eIPvVja rEblCHVVldxFVPr6ZqemsvkNkE1fgyWhYgIZiYNpA+HE/7D/dACwUF73lyf0ONor MBUTmVzau0aveDpvvIrvbvwRp/qCvr5WCvCwKSDiemN/yUczSRcaPsQcXtWP+8kJ IOhC/hIaON3y4wtcuxumsfGfVy1JiOKpc5Rt1C58 -----END CERTIFICATE-----Generated at Thu Mar 26 19:10:45 2026 by rpki-client