$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32342d3234203d3e20313432333636.roa File: 3130332e3137302e33302e302f32342d3234203d3e20313432333636.roa (raw, json) Hash identifier: QyrGvl3uJu4kbUzsbT9TbYc82tEmeuxMRe2nDKPqdys= Subject key identifier: DF:D5:48:DC:F4:68:82:5E:10:23:D4:17:70:88:4C:B3:EE:E2:03:1A Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 5CC99F489EAA8EBF06BAFAD667CEBE0B4D163B9E Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32342d3234203d3e20313432333636.roa Signing time: Tue 17 Mar 2026 04:00:01 +0000 ROA not before: Tue 17 Mar 2026 03:55:01 +0000 ROA not after: Tue 16 Mar 2027 04:00:01 +0000 asID: 142366 IP address blocks: 103.170.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 12:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c9:9f:48:9e:aa:8e:bf:06:ba:fa:d6:67:ce:be:0b:4d:16:3b:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: Mar 17 03:55:01 2026 GMT Not After : Mar 16 04:00:01 2027 GMT Subject: CN=DFD548DCF468825E1023D41770884CB3EEE2031A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:50:88:48:be:80:62:ff:76:b4:3f:e1:eb:5e: 06:67:3f:27:c6:92:bb:32:d9:94:5b:2f:e7:53:da: c4:81:5f:08:fd:77:c4:8e:c4:0d:63:d6:ec:84:ec: 10:3b:f0:ce:f4:4b:a6:d4:48:e6:c7:d3:70:bb:d1: 48:47:33:90:16:63:8f:ce:91:55:19:36:f8:e3:c1: 2a:fb:cb:ef:19:bb:78:f5:14:43:cc:78:98:cc:98: 94:3c:76:6f:ba:50:ef:84:b4:79:55:f2:8a:28:8c: 25:c8:e6:82:05:1b:9b:db:1d:53:fb:1d:28:2a:9d: 35:df:ff:b0:90:4a:ea:87:eb:43:39:cb:95:6e:b4: ed:8c:6e:46:b1:29:e5:ad:96:12:a3:1a:f7:72:cc: 8e:52:61:86:b3:57:54:dd:3e:fc:5a:5e:e5:06:fc: b3:7b:18:34:2e:9b:52:a6:79:fc:60:ad:d8:d6:05: 64:90:14:db:2d:4b:4a:7d:97:c2:31:15:2b:c5:be: 1c:6a:5a:f8:12:2d:4a:63:a0:9c:b6:29:5f:51:ff: 8e:4e:b1:d0:d8:68:71:79:71:76:ca:49:04:c8:60: 08:72:b9:66:d8:84:44:a5:b7:b8:61:f6:67:6b:58: b0:6c:ce:f2:2e:21:7b:97:47:67:c8:3d:2c:9a:f3: 6d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D5:48:DC:F4:68:82:5E:10:23:D4:17:70:88:4C:B3:EE:E2:03:1A X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32342d3234203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.30.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:ed:a9:d6:8e:c2:ea:09:0c:42:e2:ac:51:97:e5:20:59:d5: 92:30:9d:b6:23:c1:51:9a:b1:ff:f5:26:fb:34:01:c1:25:33: 66:44:3d:6f:7e:a9:16:9b:c9:81:fd:b3:d2:f9:e2:15:04:b1: 03:54:4b:41:e9:c0:27:d5:78:a6:b8:48:85:f8:d5:08:dc:ef: ca:04:35:0e:77:52:fb:00:09:35:a2:2c:6e:2e:cb:5d:19:d0: dd:6a:a4:41:d5:8f:01:c9:33:3e:cd:d1:a7:b3:42:a6:c9:98: 4c:9e:89:84:4a:4a:78:3e:3f:26:6a:c5:fa:20:cc:21:15:8a: f4:99:11:04:1b:51:79:52:f6:07:56:50:cf:f1:2e:90:31:14: 66:28:af:be:a3:49:4a:f1:61:f7:b0:91:b8:e1:19:30:34:62: 77:37:cd:26:38:43:d9:82:5c:c3:1c:08:71:2a:e0:3f:cd:9a: 29:83:90:2c:f3:2e:db:7c:33:83:32:99:08:de:33:39:5a:00: 7a:04:ab:f0:c1:c3:35:cc:d4:35:c0:cf:69:17:30:60:a5:d7: 20:7a:f4:8f:a8:c0:22:5b:24:cc:da:a2:69:6b:64:63:ae:73: 6c:0d:17:f3:6d:ac:64:78:92:04:5b:c3:da:2b:97:d7:45:d2: ba:1e:af:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXMmfSJ6qjr8GuvrWZ86+C00WO54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNjAzMTcwMzU1MDFaFw0yNzAzMTYwNDAwMDFaMDMxMTAvBgNV BAMTKERGRDU0OERDRjQ2ODgyNUUxMDIzRDQxNzcwODg0Q0IzRUVFMjAzMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJUIhIvoBi/3a0P+HrXgZnPyfG krsy2ZRbL+dT2sSBXwj9d8SOxA1j1uyE7BA78M70S6bUSObH03C70UhHM5AWY4/O kVUZNvjjwSr7y+8Zu3j1FEPMeJjMmJQ8dm+6UO+EtHlV8ooojCXI5oIFG5vbHVP7 HSgqnTXf/7CQSuqH60M5y5VutO2MbkaxKeWtlhKjGvdyzI5SYYazV1TdPvxaXuUG /LN7GDQum1KmefxgrdjWBWSQFNstS0p9l8IxFSvFvhxqWvgSLUpjoJy2KV9R/45O sdDYaHF5cXbKSQTIYAhyuWbYhESlt7hh9mdrWLBszvIuIXuXR2fIPSya8231AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU39VI3PRogl4QI9QXcIhMs+7iAxowHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMxMzAzMzJlMzEzNzMwMmUzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6oeMA0GCSqG SIb3DQEBCwUAA4IBAQA77anWjsLqCQxC4qxRl+UgWdWSMJ22I8FRmrH/9Sb7NAHB JTNmRD1vfqkWm8mB/bPS+eIVBLEDVEtB6cAn1XimuEiF+NUI3O/KBDUOd1L7AAk1 oixuLstdGdDdaqRB1Y8ByTM+zdGns0KmyZhMnomESkp4Pj8masX6IMwhFYr0mREE G1F5UvYHVlDP8S6QMRRmKK++o0lK8WH3sJG44RkwNGJ3N80mOEPZglzDHAhxKuA/ zZopg5As8y7bfDODMpkI3jM5WgB6BKvwwcM1zNQ1wM9pFzBgpdcgevSPqMAiWyTM 2qJpa2RjrnNsDRfzbaxkeJIEW8PaK5fXRdK6Hq9g -----END CERTIFICATE-----Generated at Thu Mar 26 15:24:21 2026 by rpki-client