$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33312e302f32342d3234203d3e20313432333636.roa File: 3130332e3137302e33312e302f32342d3234203d3e20313432333636.roa (raw, json) Hash identifier: kiDIcGQKQVZgpPkBmd3kKHyPvS5ByOoUMCBMCrkzvlY= Subject key identifier: 57:CE:B0:21:A1:C5:76:CD:AF:7C:59:17:2C:A6:4E:80:F3:D6:36:52 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 4FFAC4D03A65DCCB2F80E65817EE79CF88B61A9A Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33312e302f32342d3234203d3e20313432333636.roa Signing time: Tue 17 Mar 2026 06:03:28 +0000 ROA not before: Tue 17 Mar 2026 05:58:28 +0000 ROA not after: Tue 16 Mar 2027 06:03:28 +0000 asID: 142366 IP address blocks: 103.170.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 12:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:fa:c4:d0:3a:65:dc:cb:2f:80:e6:58:17:ee:79:cf:88:b6:1a:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: Mar 17 05:58:28 2026 GMT Not After : Mar 16 06:03:28 2027 GMT Subject: CN=57CEB021A1C576CDAF7C59172CA64E80F3D63652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0e:53:0d:b4:07:78:da:54:50:a2:8c:55:81: e2:b6:d8:1a:81:34:7f:c3:ea:e1:b8:d6:17:0e:80: 2a:76:c9:11:07:77:ab:d3:4a:0b:28:4b:4a:2c:fb: 36:87:cb:2e:76:2f:6b:c2:44:80:43:a4:96:15:ff: 8d:6f:19:e4:40:64:4a:4c:df:f6:76:26:0d:a8:24: a1:51:55:b9:f0:10:0a:46:cd:25:ff:16:c7:5d:8f: b8:d2:55:24:87:cb:93:9b:ae:2e:52:6f:58:d0:1b: 88:c5:71:1e:4c:2d:34:f8:3c:3f:70:78:01:a4:70: d2:12:6d:62:63:77:b0:79:61:59:ad:d5:1a:81:db: fb:c8:7e:42:b8:7a:cb:17:e3:4a:11:cb:77:70:df: 9b:c0:79:d8:6d:59:25:ef:95:45:75:dd:54:1a:a0: 36:57:3b:26:d9:23:b0:0d:f2:35:b1:b6:9f:9e:39: 67:a8:54:8e:c6:42:9b:50:3d:05:fe:29:2e:0d:b8: fa:7f:81:29:fa:98:ff:ff:c7:e1:5b:2d:1e:3b:ef: 8b:5e:02:11:a2:24:82:bd:e4:0c:63:82:38:d6:0e: 8e:ae:77:40:e0:32:ce:4a:c2:4b:e3:f0:26:1c:c5: 76:50:03:c1:81:16:9a:a9:6f:1f:83:3a:74:53:50: 37:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CE:B0:21:A1:C5:76:CD:AF:7C:59:17:2C:A6:4E:80:F3:D6:36:52 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33312e302f32342d3234203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.31.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:1a:97:11:66:60:fd:f1:70:cf:c8:ba:55:53:67:f8:a8:d2: 4c:20:2c:c1:fb:37:b8:0f:47:9f:1c:b4:58:1d:58:24:07:70: 94:36:33:e8:e3:42:01:74:18:10:c8:ec:98:11:79:e6:95:d4: 7b:71:c6:70:86:f1:14:a7:28:54:06:1d:e7:20:a4:a3:e5:4d: 75:fa:ac:b3:3f:9e:13:d3:57:6f:2e:75:66:d4:d9:1d:19:b5: a0:21:61:33:85:6d:4b:93:76:b3:c0:5b:ea:63:89:91:ad:b8: 3b:23:bc:bc:71:08:f3:4a:71:5b:51:70:f5:5c:d0:d1:08:7a: 35:87:6e:56:0b:dc:e3:67:17:00:46:fb:83:b2:8a:42:a1:de: 3d:98:39:70:20:dd:57:e9:bb:65:1e:57:98:8a:3f:d8:09:4c: 29:50:bf:02:1a:37:36:ac:1e:04:17:ff:d0:8d:f1:9a:1c:14: 27:31:f3:f1:65:19:8b:08:b0:1c:83:9b:fc:86:46:9f:77:b2: 9b:96:34:86:c1:b3:5e:03:c5:d2:c9:65:fa:25:d1:07:4b:55: 91:9c:8f:03:e5:94:8c:34:02:8e:c0:64:fe:01:a0:51:36:98: 87:dd:e3:8e:34:7d:5e:31:20:d3:82:19:7d:c8:dc:53:c8:17: d8:9f:ca:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT/rE0Dpl3MsvgOZYF+55z4i2GpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNjAzMTcwNTU4MjhaFw0yNzAzMTYwNjAzMjhaMDMxMTAvBgNV BAMTKDU3Q0VCMDIxQTFDNTc2Q0RBRjdDNTkxNzJDQTY0RTgwRjNENjM2NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYDlMNtAd42lRQooxVgeK22BqB NH/D6uG41hcOgCp2yREHd6vTSgsoS0os+zaHyy52L2vCRIBDpJYV/41vGeRAZEpM 3/Z2Jg2oJKFRVbnwEApGzSX/Fsddj7jSVSSHy5Obri5Sb1jQG4jFcR5MLTT4PD9w eAGkcNISbWJjd7B5YVmt1RqB2/vIfkK4essX40oRy3dw35vAedhtWSXvlUV13VQa oDZXOybZI7AN8jWxtp+eOWeoVI7GQptQPQX+KS4NuPp/gSn6mP//x+FbLR4774te AhGiJIK95AxjgjjWDo6ud0DgMs5Kwkvj8CYcxXZQA8GBFpqpbx+DOnRTUDdXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUV86wIaHFds2vfFkXLKZOgPPWNlIwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMxMzAzMzJlMzEzNzMwMmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ofMA0GCSqG SIb3DQEBCwUAA4IBAQBNGpcRZmD98XDPyLpVU2f4qNJMICzB+ze4D0efHLRYHVgk B3CUNjPo40IBdBgQyOyYEXnmldR7ccZwhvEUpyhUBh3nIKSj5U11+qyzP54T01dv LnVm1NkdGbWgIWEzhW1Lk3azwFvqY4mRrbg7I7y8cQjzSnFbUXD1XNDRCHo1h25W C9zjZxcARvuDsopCod49mDlwIN1X6btlHleYij/YCUwpUL8CGjc2rB4EF//QjfGa HBQnMfPxZRmLCLAcg5v8hkafd7KbljSGwbNeA8XSyWX6JdEHS1WRnI8D5ZSMNAKO wGT+AaBRNpiH3eOONH1eMSDTghl9yNxTyBfYn8oy -----END CERTIFICATE-----Generated at Thu Mar 26 18:52:32 2026 by rpki-client