$ rpki-client -vvf repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa File: 3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa (raw, json) Hash identifier: K9NpV52vuntZKpwQF+Kz1UmNJo+CR6II9fQsq0M7K5Y= Subject key identifier: 4C:4D:52:4C:A2:40:34:E5:71:1D:FA:60:EF:D8:83:C4:6E:33:BF:7F Certificate issuer: /CN=FF1246B1AF5B158EA26E75654D7B7A6DED645787 Certificate serial: 268BDEC9F0EDACF60F2D560303C440EA918758E5 Authority key identifier: FF:12:46:B1:AF:5B:15:8E:A2:6E:75:65:4D:7B:7A:6D:ED:64:57:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa Signing time: Thu 19 Mar 2026 10:02:48 +0000 ROA not before: Thu 19 Mar 2026 09:57:48 +0000 ROA not after: Thu 18 Mar 2027 10:02:48 +0000 asID: 141912 IP address blocks: 103.161.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.crl rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 17:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:8b:de:c9:f0:ed:ac:f6:0f:2d:56:03:03:c4:40:ea:91:87:58:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF1246B1AF5B158EA26E75654D7B7A6DED645787 Validity Not Before: Mar 19 09:57:48 2026 GMT Not After : Mar 18 10:02:48 2027 GMT Subject: CN=4C4D524CA24034E5711DFA60EFD883C46E33BF7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:53:e1:0e:08:ef:3a:02:8e:47:2d:48:d4:b4: de:19:ec:ab:32:85:ca:08:ee:54:4e:7e:79:ee:bd: da:8a:e5:63:79:34:5f:90:ae:c7:12:82:37:ff:4c: a4:0b:c1:11:ad:a3:8a:20:df:38:9d:42:b5:b3:96: df:ba:dc:15:4e:ff:b6:13:3c:e8:ba:ca:0b:e6:46: 29:06:8a:1b:48:55:12:5a:3f:49:e4:07:37:92:f9: 1e:d4:92:56:dd:d8:0f:82:b9:eb:c8:35:c8:a9:52: 9f:d9:ff:13:17:ba:4a:3b:e9:e6:5f:ba:c9:cc:b0: 3f:e4:98:3e:aa:38:93:83:ca:c7:fc:70:40:77:29: 49:0e:83:e3:4e:74:7f:5e:6d:6f:9b:91:d9:76:fc: 38:30:fc:06:b9:c9:50:17:a6:e0:0b:67:66:6f:6a: f4:4e:c6:f4:6a:f3:c8:ad:58:49:dc:21:a3:85:31: b1:20:bb:fd:80:46:05:2f:38:be:e7:5c:9d:d9:97: af:cb:9e:b0:82:1b:f5:11:3d:37:f5:78:07:ae:41: 1b:f5:24:4c:a0:a5:25:35:a2:a4:68:27:04:81:83: 94:44:c0:a8:08:28:00:62:6d:d0:94:19:f5:bf:7d: 26:39:18:6f:88:ff:81:3f:70:22:52:22:d9:78:f4: 5b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:4D:52:4C:A2:40:34:E5:71:1D:FA:60:EF:D8:83:C4:6E:33:BF:7F X509v3 Authority Key Identifier: keyid:FF:12:46:B1:AF:5B:15:8E:A2:6E:75:65:4D:7B:7A:6D:ED:64:57:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.108.0/24 Signature Algorithm: sha256WithRSAEncryption 92:8c:39:f0:92:c0:d1:1f:4b:ff:03:7f:a4:37:96:a0:94:bb: 4d:3a:9f:35:93:37:45:b8:b1:9d:c8:ac:6d:71:e1:fe:60:75: 01:b4:9d:c5:fd:d2:d8:b0:0d:ad:9e:45:6c:be:ff:25:1c:77: 09:e0:e9:9f:cb:9b:1f:e1:5c:54:da:bd:ef:23:0f:a2:39:ce: 3e:cd:6e:f8:f7:f0:9a:86:4f:e2:80:6d:cb:43:8d:77:96:ac: f9:5b:5d:bf:72:09:e5:13:96:70:d0:08:c0:44:01:af:6b:b0: 74:e6:76:1b:ce:48:f8:59:d4:ca:c8:ad:d3:5b:c1:e3:3d:17: 7c:27:9e:c0:13:37:18:86:56:b0:06:cb:45:c9:90:09:57:31: 96:f9:a0:04:f3:a3:de:b7:e9:3c:3b:96:26:43:d8:7d:10:4e: 90:c3:2f:db:a2:cb:fd:3c:b5:4c:1f:7c:65:00:df:54:31:55: 85:eb:b7:12:f2:a7:15:8d:e3:8e:6f:5b:5a:af:e4:9d:2f:8f: c7:2c:c4:9b:1b:7c:58:a6:74:f0:4b:f9:1e:23:e5:58:ba:c5: 9f:a0:91:45:d9:63:7f:f4:d0:57:13:df:b4:88:d7:56:7e:13: 70:ca:71:c7:1e:2e:ad:d6:4c:41:cf:5f:60:d7:01:6a:d6:36: bb:c9:2c:81 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJoveyfDtrPYPLVYDA8RA6pGHWOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYxMjQ2QjFBRjVCMTU4RUEyNkU3NTY1NEQ3QjdBNkRF RDY0NTc4NzAeFw0yNjAzMTkwOTU3NDhaFw0yNzAzMTgxMDAyNDhaMDMxMTAvBgNV BAMTKDRDNEQ1MjRDQTI0MDM0RTU3MTFERkE2MEVGRDg4M0M0NkUzM0JGN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdU+EOCO86Ao5HLUjUtN4Z7Ksy hcoI7lROfnnuvdqK5WN5NF+QrscSgjf/TKQLwRGto4og3zidQrWzlt+63BVO/7YT POi6ygvmRikGihtIVRJaP0nkBzeS+R7Uklbd2A+CuevINcipUp/Z/xMXuko76eZf usnMsD/kmD6qOJODysf8cEB3KUkOg+NOdH9ebW+bkdl2/Dgw/Aa5yVAXpuALZ2Zv avROxvRq88itWEncIaOFMbEgu/2ARgUvOL7nXJ3Zl6/LnrCCG/URPTf1eAeuQRv1 JEygpSU1oqRoJwSBg5REwKgIKABibdCUGfW/fSY5GG+I/4E/cCJSItl49Fs9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTE1STKJANOVxHfpg79iDxG4zv38wHwYDVR0j BBgwFoAU/xJGsa9bFY6ibnVlTXt6be1kV4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODlhMDY2MS0zMWVlLTQ5YTItYWU5Zi1mNmQ1NzNhMTdkZjcvMC9GRjEyNDZCMUFG NUIxNThFQTI2RTc1NjU0RDdCN0E2REVENjQ1Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkYxMjQ2QjFBRjVCMTU4RUEyNkU3NTY1NEQ3QjdBNkRFRDY0 NTc4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4OWEwNjYxLTMxZWUtNDlhMi1h ZTlmLWY2ZDU3M2ExN2RmNy8wLzMxMzAzMzJlMzEzNjMxMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoWwwDQYJ KoZIhvcNAQELBQADggEBAJKMOfCSwNEfS/8Df6Q3lqCUu006nzWTN0W4sZ3IrG1x 4f5gdQG0ncX90tiwDa2eRWy+/yUcdwng6Z/Lmx/hXFTave8jD6I5zj7Nbvj38JqG T+KAbctDjXeWrPlbXb9yCeUTlnDQCMBEAa9rsHTmdhvOSPhZ1MrIrdNbweM9F3wn nsATNxiGVrAGy0XJkAlXMZb5oATzo9636Tw7liZD2H0QTpDDL9uiy/08tUwffGUA 31QxVYXrtxLypxWN445vW1qv5J0vj8csxJsbfFimdPBL+R4j5Vi6xZ+gkUXZY3/0 0FcT37SI11Z+E3DKccceLq3WTEHPX2DXAWrWNrvJLIE= -----END CERTIFICATE-----Generated at Fri Mar 27 02:08:15 2026 by rpki-client