$ rpki-client -vvf repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3231312e302f32342d3234203d3e20313336303735.roa File: 3130332e38342e3231312e302f32342d3234203d3e20313336303735.roa (raw, json) Hash identifier: LfOpJuNAFokj2V7rYopo5HcggK0Y2tZWYQ8zCV+kkgI= Subject key identifier: 72:7C:5B:DE:06:0B:15:82:9A:0E:61:FC:BD:DA:1A:64:46:08:F0:FE Certificate issuer: /CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Certificate serial: 19A4C273BAFDD5EA61256AA4CC541F5F9EC6DBDF Authority key identifier: 0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3231312e302f32342d3234203d3e20313336303735.roa Signing time: Sat 21 Mar 2026 19:00:00 +0000 ROA not before: Sat 21 Mar 2026 18:55:00 +0000 ROA not after: Sat 20 Mar 2027 19:00:00 +0000 asID: 136075 IP address blocks: 103.84.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.crl rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 17:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a4:c2:73:ba:fd:d5:ea:61:25:6a:a4:cc:54:1f:5f:9e:c6:db:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Validity Not Before: Mar 21 18:55:00 2026 GMT Not After : Mar 20 19:00:00 2027 GMT Subject: CN=727C5BDE060B15829A0E61FCBDDA1A644608F0FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ef:ca:e7:72:39:82:4c:82:0e:cb:c3:01:74: d5:5d:47:34:df:62:bf:f1:60:d1:c4:57:0b:b9:16: 51:fe:06:1a:ca:c2:88:e9:f2:af:82:3e:f5:eb:82: d7:14:12:83:22:10:c4:21:a3:cc:77:e7:07:58:79: 1a:99:e1:c9:6c:2a:77:59:b4:1e:bd:f3:1d:44:2b: 02:00:94:1e:3f:73:4e:25:14:0f:a5:d7:2c:1f:5f: 62:26:cd:4d:fe:df:93:c4:40:3d:81:d4:38:60:82: 35:06:88:82:0b:ab:3d:0c:30:54:9d:6c:9b:6f:e2: 22:9b:fa:fd:93:7f:30:35:78:1e:8c:3c:b8:5f:21: 20:f5:5d:b5:50:7a:10:08:9b:43:64:93:70:15:10: c7:64:13:e7:4a:0a:e3:74:d2:be:83:70:8f:56:97: d3:0b:05:73:0e:fb:46:05:96:ca:9d:79:cd:0a:7a: 97:dc:52:58:e4:b8:34:6e:f8:3a:24:7a:66:b1:68: 53:21:cc:8b:39:ea:75:23:d7:1c:af:cc:b4:09:d8: 82:63:22:e3:82:0c:62:d3:5d:06:f6:e4:7d:03:8e: 61:0f:ba:fd:bb:58:14:cd:4f:bf:3e:8e:11:7e:2c: c6:3b:35:66:7c:2c:44:24:98:0f:92:89:42:80:7d: 38:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7C:5B:DE:06:0B:15:82:9A:0E:61:FC:BD:DA:1A:64:46:08:F0:FE X509v3 Authority Key Identifier: keyid:0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3231312e302f32342d3234203d3e20313336303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.211.0/24 Signature Algorithm: sha256WithRSAEncryption 86:f9:bb:0a:c3:be:d7:de:db:24:20:4d:e9:80:8b:92:7e:92: b7:67:c2:86:16:36:ea:26:e5:16:0c:6e:fc:95:be:27:31:ee: 02:61:25:ef:f5:88:5c:26:e9:78:90:ad:93:76:8d:fb:d8:a1: a5:61:41:ba:b2:a6:c1:40:19:33:67:22:7d:47:ed:1d:ef:6e: d5:7f:76:64:4e:ee:56:93:f1:67:ae:be:79:65:ce:a0:ed:f6: 27:b8:d5:f7:fa:ec:5d:99:06:c9:75:b1:42:43:62:63:e8:72: 12:00:7a:2b:1f:59:2a:b3:7f:c1:50:c0:f4:bc:6d:bc:19:f2: e2:ac:7d:0b:67:25:25:2a:51:01:ee:a6:72:57:53:a2:bf:d0: c2:e0:a1:2b:d3:7a:95:ad:71:50:05:ba:fd:14:ed:99:26:44: 94:5d:17:15:bc:7d:ef:02:32:80:10:45:0e:fa:3e:56:bd:82: 99:40:69:f8:4c:83:2e:c9:cc:da:ef:c6:87:f2:25:0f:58:d1: 4b:48:b4:d5:4a:00:24:ff:5c:4e:d3:ee:42:d8:46:f0:6c:d9: e3:ba:33:10:43:ba:e4:0b:c6:58:23:97:dc:40:18:f1:aa:3f: a5:89:94:e8:db:19:a1:c1:62:9d:d1:34:21:5b:d2:36:b5:8c: 5c:79:41:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGaTCc7r91ephJWqkzFQfX57G298wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0MjI2QTVGMTc2NkFFQUU3NjhBMkE2NzZDM0U4QjJD QUVBREM5NjAeFw0yNjAzMjExODU1MDBaFw0yNzAzMjAxOTAwMDBaMDMxMTAvBgNV BAMTKDcyN0M1QkRFMDYwQjE1ODI5QTBFNjFGQ0JEREExQTY0NDYwOEYwRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW78rncjmCTIIOy8MBdNVdRzTf Yr/xYNHEVwu5FlH+BhrKwojp8q+CPvXrgtcUEoMiEMQho8x35wdYeRqZ4clsKndZ tB698x1EKwIAlB4/c04lFA+l1ywfX2ImzU3+35PEQD2B1DhggjUGiIILqz0MMFSd bJtv4iKb+v2TfzA1eB6MPLhfISD1XbVQehAIm0Nkk3AVEMdkE+dKCuN00r6DcI9W l9MLBXMO+0YFlsqdec0KepfcUljkuDRu+DokemaxaFMhzIs56nUj1xyvzLQJ2IJj IuOCDGLTXQb25H0DjmEPuv27WBTNT78+jhF+LMY7NWZ8LEQkmA+SiUKAfTh3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcnxb3gYLFYKaDmH8vdoaZEYI8P4wHwYDVR0j BBgwFoAUDkImpfF2aurnaKKmdsPossrq3JYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTBlNWFjMi1iNmJiLTRiZWMtOWRjOS1lNDMwYTY3MzMyMTYvMC8wRTQyMjZBNUYx NzY2QUVBRTc2OEEyQTY3NkMzRThCMkNBRUFEQzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU0MjI2QTVGMTc2NkFFQUU3NjhBMkE2NzZDM0U4QjJDQUVB REM5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMGU1YWMyLWI2YmItNGJlYy05 ZGM5LWU0MzBhNjczMzIxNi8wLzMxMzAzMzJlMzgzNDJlMzIzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1TTMA0GCSqG SIb3DQEBCwUAA4IBAQCG+bsKw77X3tskIE3pgIuSfpK3Z8KGFjbqJuUWDG78lb4n Me4CYSXv9YhcJul4kK2Tdo372KGlYUG6sqbBQBkzZyJ9R+0d727Vf3ZkTu5Wk/Fn rr55Zc6g7fYnuNX3+uxdmQbJdbFCQ2Jj6HISAHorH1kqs3/BUMD0vG28GfLirH0L ZyUlKlEB7qZyV1Oiv9DC4KEr03qVrXFQBbr9FO2ZJkSUXRcVvH3vAjKAEEUO+j5W vYKZQGn4TIMuycza78aH8iUPWNFLSLTVSgAk/1xO0+5C2EbwbNnjujMQQ7rkC8ZY I5fcQBjxqj+liZTo2xmhwWKd0TQhW9I2tYxceUFO -----END CERTIFICATE-----Generated at Thu Mar 26 16:05:36 2026 by rpki-client