$ rpki-client -vvf repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa File: 3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa (raw, json) Hash identifier: ITCh+tFYqc0HYkTDA6BvFsZR5bxxFQkwifdLEI/iw0g= Subject key identifier: CB:7C:6C:19:90:6D:9A:D3:CC:5A:46:34:1C:6A:2C:60:98:B5:4E:85 Certificate issuer: /CN=BB64FDB64281947C3567104C08735A011C6210F4 Certificate serial: 7E0AE78A4B8305B8677005F77804889AA69B22AF Authority key identifier: BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa Signing time: Thu 05 Mar 2026 12:01:07 +0000 ROA not before: Thu 05 Mar 2026 11:56:07 +0000 ROA not after: Thu 04 Mar 2027 12:01:07 +0000 asID: 142348 IP address blocks: 103.169.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.crl rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 19:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0a:e7:8a:4b:83:05:b8:67:70:05:f7:78:04:88:9a:a6:9b:22:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB64FDB64281947C3567104C08735A011C6210F4 Validity Not Before: Mar 5 11:56:07 2026 GMT Not After : Mar 4 12:01:07 2027 GMT Subject: CN=CB7C6C19906D9AD3CC5A46341C6A2C6098B54E85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:41:8d:a1:7e:2c:14:9d:81:e8:10:fd:fe:b9: 4f:09:ff:fe:8b:6f:13:e9:06:e6:d5:5f:15:fb:8a: 2b:95:73:d2:f3:0f:2c:b0:4a:00:c0:90:f4:bf:75: ac:94:0a:66:ba:e6:83:4f:08:85:13:72:c8:dc:82: 85:4f:2f:ff:14:d5:59:6c:7d:e8:61:02:42:b0:3e: 1d:f9:ca:a0:d6:ae:f6:93:7c:c3:dd:18:8a:bb:13: f7:67:0d:63:0d:35:c4:db:be:b1:34:5c:59:69:bf: 2c:16:6f:09:1a:99:0d:1a:86:e8:27:cc:9f:a2:7f: ba:b3:2c:28:1b:81:71:8b:ce:19:fd:a6:95:af:f7: 26:75:42:5a:26:21:c9:6b:67:19:fe:97:c8:b3:36: df:cf:19:54:93:c7:02:dc:22:e4:e5:60:27:6a:21: 5f:e6:42:88:3e:30:ee:a4:ce:c5:3c:53:66:2c:8e: f4:a6:24:0a:8d:7e:f6:9c:41:5b:60:df:7b:1e:9f: ff:90:1f:55:a8:82:db:93:f5:d2:54:e9:29:03:8a: c7:b2:1b:8b:b4:85:46:d9:bf:37:11:12:28:49:fa: df:ee:ce:ab:9a:e2:6e:66:a3:d4:ea:f4:7b:f7:c3: 7f:28:5a:81:83:65:ba:f7:3a:2e:8e:17:d9:91:7a: 2f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:7C:6C:19:90:6D:9A:D3:CC:5A:46:34:1C:6A:2C:60:98:B5:4E:85 X509v3 Authority Key Identifier: keyid:BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.192.0/23 Signature Algorithm: sha256WithRSAEncryption 10:f0:7e:3c:8e:2f:c7:94:43:ae:b4:a3:3b:ef:51:c3:0d:8b: 19:f7:66:cc:d1:4e:a4:0d:2d:de:32:0b:65:6c:10:ef:55:fe: d3:9e:58:9e:31:66:c1:58:58:4c:85:6c:04:93:5f:a3:a4:98: 3e:79:91:34:b1:e9:0b:c6:36:c6:99:c1:3a:8e:ae:30:1b:9d: a3:40:35:28:03:42:ad:dd:00:ff:66:68:f4:24:e0:42:54:0a: 31:50:02:17:4a:39:66:f2:f6:c1:a9:ce:43:b6:76:63:ec:44: c8:43:0f:c1:69:d2:11:44:c9:eb:60:b5:36:ac:c4:cc:dc:92: e6:72:75:df:95:24:ac:fd:eb:f7:0d:ea:5a:04:a2:64:a4:3d: 15:a0:30:05:9b:d9:ec:c2:fe:c0:47:63:8d:40:b2:4f:1e:84: ff:f2:bd:cd:be:11:65:49:1f:ec:29:a1:a7:5b:73:8e:54:30: 35:a2:76:34:11:64:76:d0:9a:79:8e:7f:66:f0:24:b6:29:c3: 50:59:92:24:10:c3:32:68:c3:0c:63:b7:d9:cd:b9:36:e6:cf: f6:16:b9:a9:a5:c8:f3:bd:29:4b:09:e8:35:b2:81:24:70:11: 16:59:23:fd:1e:b9:ed:7e:e6:e2:83:a9:ea:2f:04:ec:95:11: e5:9b:48:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfgrnikuDBbhncAX3eASImqabIq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2NEZEQjY0MjgxOTQ3QzM1NjcxMDRDMDg3MzVBMDEx QzYyMTBGNDAeFw0yNjAzMDUxMTU2MDdaFw0yNzAzMDQxMjAxMDdaMDMxMTAvBgNV BAMTKENCN0M2QzE5OTA2RDlBRDNDQzVBNDYzNDFDNkEyQzYwOThCNTRFODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEQY2hfiwUnYHoEP3+uU8J//6L bxPpBubVXxX7iiuVc9LzDyywSgDAkPS/dayUCma65oNPCIUTcsjcgoVPL/8U1Vls fehhAkKwPh35yqDWrvaTfMPdGIq7E/dnDWMNNcTbvrE0XFlpvywWbwkamQ0ahugn zJ+if7qzLCgbgXGLzhn9ppWv9yZ1QlomIclrZxn+l8izNt/PGVSTxwLcIuTlYCdq IV/mQog+MO6kzsU8U2YsjvSmJAqNfvacQVtg33sen/+QH1WogtuT9dJU6SkDisey G4u0hUbZvzcREihJ+t/uzqua4m5mo9Tq9Hv3w38oWoGDZbr3Oi6OF9mRei+lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUy3xsGZBtmtPMWkY0HGosYJi1ToUwHwYDVR0j BBgwFoAUu2T9tkKBlHw1ZxBMCHNaARxiEPQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGEwMmQzNy0zYjlkLTQ1M2EtOGM4MS0zMjhlNTQwMTQxZmQvMC9CQjY0RkRCNjQy ODE5NDdDMzU2NzEwNEMwODczNUEwMTFDNjIxMEY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkI2NEZEQjY0MjgxOTQ3QzM1NjcxMDRDMDg3MzVBMDExQzYy MTBGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YTAyZDM3LTNiOWQtNDUzYS04 YzgxLTMyOGU1NDAxNDFmZC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqcAwDQYJ KoZIhvcNAQELBQADggEBABDwfjyOL8eUQ660ozvvUcMNixn3ZszRTqQNLd4yC2Vs EO9V/tOeWJ4xZsFYWEyFbASTX6OkmD55kTSx6QvGNsaZwTqOrjAbnaNANSgDQq3d AP9maPQk4EJUCjFQAhdKOWby9sGpzkO2dmPsRMhDD8Fp0hFEyetgtTasxMzckuZy dd+VJKz96/cN6loEomSkPRWgMAWb2ezC/sBHY41Ask8ehP/yvc2+EWVJH+wpoadb c45UMDWidjQRZHbQmnmOf2bwJLYpw1BZkiQQwzJowwxjt9nNuTbmz/YWuamlyPO9 KUsJ6DWygSRwERZZI/0eue1+5uKDqeovBOyVEeWbSPg= -----END CERTIFICATE-----Generated at Thu Mar 26 22:50:14 2026 by rpki-client