$ rpki-client -vvf repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa File: 3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa (raw, json) Hash identifier: Lr0TpG8krLyR3UynL7D81Hjm/IdBbRhWM0bWxe1aX3Q= Subject key identifier: 8E:35:4A:0C:B1:42:64:66:E5:23:C4:AC:BA:D2:42:C7:76:49:4F:4E Certificate issuer: /CN=09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8 Certificate serial: 3F24A74B07C1FF8EE865E0A2983337D061E2A8B6 Authority key identifier: 09:F5:8F:64:1C:5D:42:BD:2D:25:57:FF:A2:EA:06:1B:66:AC:BD:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa Signing time: Tue 24 Mar 2026 11:00:02 +0000 ROA not before: Tue 24 Mar 2026 10:55:02 +0000 ROA not after: Tue 23 Mar 2027 11:00:02 +0000 asID: 139415 IP address blocks: 103.143.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.crl rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 03:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:24:a7:4b:07:c1:ff:8e:e8:65:e0:a2:98:33:37:d0:61:e2:a8:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8 Validity Not Before: Mar 24 10:55:02 2026 GMT Not After : Mar 23 11:00:02 2027 GMT Subject: CN=8E354A0CB1426466E523C4ACBAD242C776494F4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a8:44:c5:2a:c2:fb:3a:b5:38:eb:63:55:2c: 56:9b:5b:8a:82:8e:19:21:71:6c:14:fa:a6:d3:c1: c1:b1:5b:60:9b:d8:59:01:1e:1e:4d:70:e1:45:be: ac:da:a0:b7:d4:a5:31:f4:e6:4b:21:27:6a:41:b6: 63:c3:40:ff:00:a6:4a:7b:da:b3:9d:49:68:70:c1: 8a:2c:3a:e7:3f:25:69:d4:ec:5d:6e:5a:45:bb:e7: 99:d4:ba:36:8b:bd:ab:f1:06:f5:f1:92:81:20:35: ec:dc:5a:e1:a9:5b:a8:9f:2d:ee:18:8d:a6:c8:be: 49:a7:41:9b:bf:ae:cf:25:c7:27:56:32:28:ce:4a: f6:ed:ff:34:9b:4c:8e:1e:4c:5f:4e:d7:99:7d:08: 6e:f8:c1:82:d4:4e:43:87:0a:b0:72:6b:9f:13:a5: 79:3a:d0:db:3b:4c:21:be:81:10:ee:9b:bc:87:f3: 0d:77:b3:70:49:29:69:b1:6a:3b:8f:c6:b6:f4:51: a8:ed:0a:56:02:00:ab:18:b2:fd:f8:a5:fe:5c:35: 60:ab:ef:08:30:70:60:4a:1e:be:c7:58:ed:86:db: 45:1a:e4:45:a2:fc:45:d7:10:8a:63:29:31:0c:c7: 2b:d3:ba:3c:03:e1:4b:01:9b:0f:7b:ee:da:b4:a2: ea:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:35:4A:0C:B1:42:64:66:E5:23:C4:AC:BA:D2:42:C7:76:49:4F:4E X509v3 Authority Key Identifier: keyid:09:F5:8F:64:1C:5D:42:BD:2D:25:57:FF:A2:EA:06:1B:66:AC:BD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.195.0/24 Signature Algorithm: sha256WithRSAEncryption 47:5e:d5:9f:0f:7e:13:8d:82:20:06:25:c8:c9:89:3e:b9:8f: 30:2b:3b:97:4e:16:9e:d0:a9:40:36:5c:5d:c8:3f:b1:17:6a: 89:d1:3b:22:0f:35:a4:be:3c:19:f3:58:99:18:2c:14:72:0c: b7:4c:70:62:c9:04:a3:14:35:3d:5e:c6:c7:fa:ce:91:9c:8e: 77:b4:c7:4c:78:23:6c:c4:10:fd:3d:4a:50:1e:7d:2b:c0:7c: fb:da:de:63:56:d3:54:c0:0b:e0:6c:b1:c9:b0:5e:a8:4e:5e: e4:ac:27:ea:7c:81:ef:7f:bf:fd:5b:1a:fd:47:14:3b:bf:33: ea:94:49:94:c4:c1:b2:6f:92:e4:b2:6e:b8:1e:e0:bf:e6:01: ea:d9:f0:8b:0d:b1:c8:76:31:fa:12:cd:66:8c:1e:f9:df:c4: d6:30:4a:81:a5:4e:82:84:60:23:5b:7b:d5:d8:4b:e4:9d:00: 39:3d:2a:17:a2:31:1a:96:77:2d:ac:3c:39:4f:d1:cc:e7:c7: eb:74:6c:18:53:08:9b:a4:6c:7d:b4:b0:3f:b7:c9:39:81:06: 0d:f7:a4:ff:28:b2:5b:aa:d4:1a:24:6a:15:7e:82:16:24:07: 0b:f4:56:f3:c4:d4:c6:34:b9:f2:d2:34:90:04:ba:c4:fd:c7: 17:6e:f1:af -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPySnSwfB/47oZeCimDM30GHiqLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlGNThGNjQxQzVENDJCRDJEMjU1N0ZGQTJFQTA2MUI2 NkFDQkRBODAeFw0yNjAzMjQxMDU1MDJaFw0yNzAzMjMxMTAwMDJaMDMxMTAvBgNV BAMTKDhFMzU0QTBDQjE0MjY0NjZFNTIzQzRBQ0JBRDI0MkM3NzY0OTRGNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSqETFKsL7OrU462NVLFabW4qC jhkhcWwU+qbTwcGxW2Cb2FkBHh5NcOFFvqzaoLfUpTH05kshJ2pBtmPDQP8Apkp7 2rOdSWhwwYosOuc/JWnU7F1uWkW755nUujaLvavxBvXxkoEgNezcWuGpW6ifLe4Y jabIvkmnQZu/rs8lxydWMijOSvbt/zSbTI4eTF9O15l9CG74wYLUTkOHCrBya58T pXk60Ns7TCG+gRDum7yH8w13s3BJKWmxajuPxrb0UajtClYCAKsYsv34pf5cNWCr 7wgwcGBKHr7HWO2G20Ua5EWi/EXXEIpjKTEMxyvTujwD4UsBmw977tq0ourPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjjVKDLFCZGblI8SsutJCx3ZJT04wHwYDVR0j BBgwFoAUCfWPZBxdQr0tJVf/ouoGG2asvagwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MmUwNmY3Mi0xMzIzLTRmYmQtYjI2ZS05ZWQ5YTlhZGQ4ODAvMC8wOUY1OEY2NDFD NUQ0MkJEMkQyNTU3RkZBMkVBMDYxQjY2QUNCREE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlGNThGNjQxQzVENDJCRDJEMjU1N0ZGQTJFQTA2MUI2NkFD QkRBOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyZTA2ZjcyLTEzMjMtNGZiZC1i MjZlLTllZDlhOWFkZDg4MC8wLzMxMzAzMzJlMzEzNDMzMmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj8MwDQYJ KoZIhvcNAQELBQADggEBAEde1Z8PfhONgiAGJcjJiT65jzArO5dOFp7QqUA2XF3I P7EXaonROyIPNaS+PBnzWJkYLBRyDLdMcGLJBKMUNT1exsf6zpGcjne0x0x4I2zE EP09SlAefSvAfPva3mNW01TAC+BsscmwXqhOXuSsJ+p8ge9/v/1bGv1HFDu/M+qU SZTEwbJvkuSybrge4L/mAerZ8IsNsch2MfoSzWaMHvnfxNYwSoGlToKEYCNbe9XY S+SdADk9KheiMRqWdy2sPDlP0cznx+t0bBhTCJukbH20sD+3yTmBBg33pP8osluq 1BokahV+ghYkBwv0VvPE1MY0ufLSNJAEusT9xxdu8a8= -----END CERTIFICATE-----Generated at Thu Mar 26 23:54:04 2026 by rpki-client