$ rpki-client -vvf repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130352e3231372e302f32342d3234203d3e20313431313337.roa File: 3130332e3130352e3231372e302f32342d3234203d3e20313431313337.roa (raw, json) Hash identifier: 7m0QSCyloL6293h/iAVfHEmDIOW+hDqf+006NWJ7o/U= Subject key identifier: 18:C8:1D:AB:A5:1F:6D:1C:A5:4F:BA:3A:5B:88:8D:A4:58:D7:65:40 Certificate issuer: /CN=2247520F1208C8D9AC33B3035016DC4EC62CDEB1 Certificate serial: 4F48F3D8894EE9F8881C989E3B0329D7A0629047 Authority key identifier: 22:47:52:0F:12:08:C8:D9:AC:33:B3:03:50:16:DC:4E:C6:2C:DE:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130352e3231372e302f32342d3234203d3e20313431313337.roa Signing time: Tue 10 Mar 2026 21:00:02 +0000 ROA not before: Tue 10 Mar 2026 20:55:02 +0000 ROA not after: Tue 09 Mar 2027 21:00:02 +0000 asID: 141137 IP address blocks: 103.105.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.crl rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:48:f3:d8:89:4e:e9:f8:88:1c:98:9e:3b:03:29:d7:a0:62:90:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2247520F1208C8D9AC33B3035016DC4EC62CDEB1 Validity Not Before: Mar 10 20:55:02 2026 GMT Not After : Mar 9 21:00:02 2027 GMT Subject: CN=18C81DABA51F6D1CA54FBA3A5B888DA458D76540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:98:b4:b0:bf:77:78:eb:54:f3:26:5f:52:09: 33:7f:01:dd:3b:23:4d:5d:92:cf:a8:1e:24:0f:84: f2:58:ad:a3:23:03:3e:83:15:3c:bc:32:c0:23:ed: c5:eb:e2:95:28:b5:8c:6e:b5:4c:e1:10:af:57:b9: 12:bc:c7:62:f3:98:a7:89:e8:57:52:f1:13:c8:f3: 38:11:b7:2b:64:97:7b:ad:0d:ad:ee:97:30:f6:6c: c3:c1:b9:20:98:ba:ea:df:d8:48:62:4c:2b:07:d5: f0:36:d0:92:8f:c6:d8:ba:f9:ed:56:63:11:e4:05: 1b:f5:03:0d:79:2b:5c:af:db:84:29:47:ce:b9:1c: 87:bb:80:52:97:77:b8:3b:7e:34:e4:3f:21:17:0c: 2e:aa:27:af:30:6e:68:b7:4a:eb:af:a7:44:bb:e0: 90:63:8b:06:4f:48:64:09:82:45:b7:0a:20:dc:4a: 6d:bd:c7:ca:97:f7:65:ec:b3:05:30:f9:de:14:13: 66:c1:01:fd:2a:9a:ab:fd:48:9e:f1:d7:94:21:5b: 1e:8e:b2:3f:a2:12:8e:a0:fe:63:ec:93:49:87:c1: fa:0a:6e:1b:a6:79:e9:20:57:94:85:f1:6e:a8:25: 07:e4:c2:c4:97:cd:6c:aa:56:85:3c:a3:3a:4a:67: 35:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C8:1D:AB:A5:1F:6D:1C:A5:4F:BA:3A:5B:88:8D:A4:58:D7:65:40 X509v3 Authority Key Identifier: keyid:22:47:52:0F:12:08:C8:D9:AC:33:B3:03:50:16:DC:4E:C6:2C:DE:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130352e3231372e302f32342d3234203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.217.0/24 Signature Algorithm: sha256WithRSAEncryption 87:b0:ef:f9:d7:35:76:14:a5:38:f0:d5:e0:5a:cc:a8:2b:d3: f6:70:eb:45:4f:ce:a1:d0:e8:87:1f:ed:0a:ca:0d:ba:58:2e: 23:57:08:c7:02:d9:6c:f1:90:c5:63:99:b9:a8:de:71:a7:19: 40:80:3e:d8:78:89:e9:c2:8f:02:87:32:aa:9e:60:61:6d:5c: b9:5b:80:b5:66:f6:b7:66:bf:c5:c2:18:71:ea:b3:ad:80:66: 3e:f7:d7:b3:1d:42:54:38:0a:f7:ee:50:e1:e2:82:91:71:b6: e9:7a:9c:e0:22:9e:4d:82:e9:75:18:c9:0b:49:d2:3c:49:92: 70:f4:38:a4:d9:f7:9d:5b:86:af:b2:fd:74:88:e7:a5:17:09: 48:e4:89:5a:9a:d2:c1:65:df:7a:bf:58:a2:31:9d:96:24:a9: 43:2a:36:a2:61:6e:d8:42:1f:4a:8d:b5:56:91:96:c7:f2:53: d4:2a:c0:27:c3:dc:30:4e:f7:fd:bb:e9:bf:2d:07:06:98:66: 3f:66:8b:49:11:fc:a9:75:47:e1:39:38:de:50:58:b5:67:b2: a4:e4:ab:fa:05:0e:aa:16:87:54:6f:90:01:56:dd:d9:fb:67: 85:96:dd:09:bd:1a:6b:b1:1b:92:66:e8:f5:f6:0e:e2:79:01: 5c:d6:d8:2d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUT0jz2IlO6fiIHJieOwMp16BikEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NzUyMEYxMjA4QzhEOUFDMzNCMzAzNTAxNkRDNEVD NjJDREVCMTAeFw0yNjAzMTAyMDU1MDJaFw0yNzAzMDkyMTAwMDJaMDMxMTAvBgNV BAMTKDE4QzgxREFCQTUxRjZEMUNBNTRGQkEzQTVCODg4REE0NThENzY1NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDmLSwv3d461TzJl9SCTN/Ad07 I01dks+oHiQPhPJYraMjAz6DFTy8MsAj7cXr4pUotYxutUzhEK9XuRK8x2LzmKeJ 6FdS8RPI8zgRtytkl3utDa3ulzD2bMPBuSCYuurf2EhiTCsH1fA20JKPxti6+e1W YxHkBRv1Aw15K1yv24QpR865HIe7gFKXd7g7fjTkPyEXDC6qJ68wbmi3Suuvp0S7 4JBjiwZPSGQJgkW3CiDcSm29x8qX92XsswUw+d4UE2bBAf0qmqv9SJ7x15QhWx6O sj+iEo6g/mPsk0mHwfoKbhumeekgV5SF8W6oJQfkwsSXzWyqVoU8ozpKZzVrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGMgdq6UfbRylT7o6W4iNpFjXZUAwHwYDVR0j BBgwFoAUIkdSDxIIyNmsM7MDUBbcTsYs3rEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZGRmMTgxZi0xZTg5LTQwMjItODJmOC1lMGRiYTg1OWVlMmUvMC8yMjQ3NTIwRjEy MDhDOEQ5QUMzM0IzMDM1MDE2REM0RUM2MkNERUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI0NzUyMEYxMjA4QzhEOUFDMzNCMzAzNTAxNkRDNEVDNjJD REVCMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkZGYxODFmLTFlODktNDAyMi04 MmY4LWUwZGJhODU5ZWUyZS8wLzMxMzAzMzJlMzEzMDM1MmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnadkwDQYJ KoZIhvcNAQELBQADggEBAIew7/nXNXYUpTjw1eBazKgr0/Zw60VPzqHQ6Icf7QrK DbpYLiNXCMcC2WzxkMVjmbmo3nGnGUCAPth4ienCjwKHMqqeYGFtXLlbgLVm9rdm v8XCGHHqs62AZj7317MdQlQ4CvfuUOHigpFxtul6nOAink2C6XUYyQtJ0jxJknD0 OKTZ951bhq+y/XSI56UXCUjkiVqa0sFl33q/WKIxnZYkqUMqNqJhbthCH0qNtVaR lsfyU9QqwCfD3DBO9/276b8tBwaYZj9mi0kR/Kl1R+E5ON5QWLVnsqTkq/oFDqoW h1RvkAFW3dn7Z4WW3Qm9GmuxG5Jm6PX2DuJ5AVzW2C0= -----END CERTIFICATE-----Generated at Thu Mar 26 17:55:08 2026 by rpki-client