$ rpki-client -vvf repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39302e302f32332d3233203d3e20313439373037.roa File: 3130332e3138362e39302e302f32332d3233203d3e20313439373037.roa (raw, json) Hash identifier: ICdvINkILNoezpXS4hNV2DoVPsk+RYrVNgwPVBZPvUo= Subject key identifier: BC:02:10:E4:F7:12:68:3F:1A:38:0F:D8:B4:F2:D3:E3:24:B3:28:86 Certificate issuer: /CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Certificate serial: 2096C1BB1BDE0DAE165E94E525E4821BE48B7B77 Authority key identifier: 8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39302e302f32332d3233203d3e20313439373037.roa Signing time: Sat 21 Mar 2026 17:00:00 +0000 ROA not before: Sat 21 Mar 2026 16:55:00 +0000 ROA not after: Sat 20 Mar 2027 17:00:00 +0000 asID: 149707 IP address blocks: 103.186.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 13:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:96:c1:bb:1b:de:0d:ae:16:5e:94:e5:25:e4:82:1b:e4:8b:7b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Validity Not Before: Mar 21 16:55:00 2026 GMT Not After : Mar 20 17:00:00 2027 GMT Subject: CN=BC0210E4F712683F1A380FD8B4F2D3E324B32886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:80:61:be:54:ff:30:db:d7:bf:ec:c2:99:3f: c7:82:15:6e:27:3f:c5:0d:be:2e:95:f9:74:7d:88: dc:ca:88:51:93:29:c4:5d:2f:3e:26:8a:3c:b6:b6: 85:e4:ce:55:e9:9e:c9:4e:ae:74:6c:16:14:ac:f5: 29:e6:a5:ba:ca:36:8b:5a:f2:a2:3f:6b:bf:dc:a6: 1f:6e:0f:b9:f2:0f:87:48:0b:7f:a9:b2:1f:34:ae: 3c:fa:3d:b0:ca:56:e3:9d:db:fc:71:6d:d1:8e:f0: b3:9d:87:52:e4:ea:db:c1:8d:4a:07:32:3d:f6:d4: bb:90:04:75:d2:14:95:af:c4:1c:98:d3:17:83:3a: 98:07:bd:b9:60:99:64:68:1f:88:23:79:ab:b6:85: 7a:a1:b2:9e:f1:26:17:21:0c:c9:2c:a1:ca:21:b6: 5b:f5:d4:04:4b:b3:df:0e:8a:69:a8:92:b8:d5:33: 0f:8a:8b:58:7a:27:1b:69:01:1f:a5:4b:19:18:c6: 29:26:5f:b6:7c:72:af:19:e0:15:04:95:85:1f:13: fb:9a:1e:45:e0:96:98:97:06:ff:0c:cc:3f:4e:93: fe:7c:85:42:28:53:7c:67:81:ff:57:04:2a:42:4f: cb:ff:99:0b:8d:1c:c2:e7:02:d0:07:84:88:b7:06: 0c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:02:10:E4:F7:12:68:3F:1A:38:0F:D8:B4:F2:D3:E3:24:B3:28:86 X509v3 Authority Key Identifier: keyid:8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39302e302f32332d3233203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.90.0/23 Signature Algorithm: sha256WithRSAEncryption 55:dd:f5:df:06:e0:10:93:f3:77:a5:c3:2e:23:db:e5:54:a6: 85:75:9f:0c:05:cf:60:82:7d:99:18:39:7f:ba:4f:0a:ca:d8: a1:a6:c1:29:1e:a2:88:6c:35:9d:37:cb:f5:d4:2e:04:91:4c: 5c:22:c9:6e:5a:e3:99:ca:57:fe:f2:5a:90:0f:cd:5b:1c:18: 52:5b:56:e7:06:49:4e:91:0c:69:94:ac:49:5c:f2:e9:ba:5b: 31:63:c5:b6:d0:66:11:d3:eb:41:93:da:f6:bd:c6:e6:72:1e: 27:8b:dd:7f:50:e0:15:d7:85:4a:1b:47:7d:38:49:a2:cb:c6: bf:e7:10:26:d2:b2:96:5d:24:fc:01:2a:5b:ce:22:69:d0:75: 7b:62:a5:c3:b2:cd:d4:fa:5e:9f:2a:89:32:11:15:e6:db:d4: 23:40:bd:86:95:33:79:f4:d9:e3:f7:e5:96:bf:30:49:2e:08: a7:9c:3f:0b:1d:04:fa:18:c7:54:f9:71:72:cd:e5:1d:44:05: 03:90:b9:20:33:25:b4:19:a0:2d:2f:0d:3b:64:53:26:02:3e: 55:18:e7:15:0f:c4:cf:be:e5:34:6e:b0:7a:b3:c7:43:97:04: 5d:7b:27:2c:8c:bb:0c:da:3e:3e:ab:c0:54:a0:c9:cb:aa:93: 47:4b:71:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIJbBuxveDa4WXpTlJeSCG+SLe3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNB NjFGOEVFMTAeFw0yNjAzMjExNjU1MDBaFw0yNzAzMjAxNzAwMDBaMDMxMTAvBgNV BAMTKEJDMDIxMEU0RjcxMjY4M0YxQTM4MEZEOEI0RjJEM0UzMjRCMzI4ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4gGG+VP8w29e/7MKZP8eCFW4n P8UNvi6V+XR9iNzKiFGTKcRdLz4mijy2toXkzlXpnslOrnRsFhSs9SnmpbrKNota 8qI/a7/cph9uD7nyD4dIC3+psh80rjz6PbDKVuOd2/xxbdGO8LOdh1Lk6tvBjUoH Mj321LuQBHXSFJWvxByY0xeDOpgHvblgmWRoH4gjeau2hXqhsp7xJhchDMksocoh tlv11ARLs98OimmokrjVMw+Ki1h6JxtpAR+lSxkYxikmX7Z8cq8Z4BUElYUfE/ua HkXglpiXBv8MzD9Ok/58hUIoU3xngf9XBCpCT8v/mQuNHMLnAtAHhIi3BgyNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvAIQ5PcSaD8aOA/YtPLT4ySzKIYwHwYDVR0j BBgwFoAUjb7PMUvTyCmSOjqXv8YhE6YfjuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OTRjMWU5NS1hNzM4LTRlNDctOGU1Yy03YWY2ODFiMzZiMDAvMC84REJFQ0YzMTRC RDNDODI5OTIzQTNBOTdCRkM2MjExM0E2MUY4RUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNBNjFG OEVFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5NGMxZTk1LWE3MzgtNGU0Ny04 ZTVjLTdhZjY4MWIzNmIwMC8wLzMxMzAzMzJlMzEzODM2MmUzOTMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7paMA0GCSqG SIb3DQEBCwUAA4IBAQBV3fXfBuAQk/N3pcMuI9vlVKaFdZ8MBc9ggn2ZGDl/uk8K ytihpsEpHqKIbDWdN8v11C4EkUxcIsluWuOZylf+8lqQD81bHBhSW1bnBklOkQxp lKxJXPLpulsxY8W20GYR0+tBk9r2vcbmch4ni91/UOAV14VKG0d9OEmiy8a/5xAm 0rKWXST8ASpbziJp0HV7YqXDss3U+l6fKokyERXm29QjQL2GlTN59Nnj9+WWvzBJ LginnD8LHQT6GMdU+XFyzeUdRAUDkLkgMyW0GaAtLw07ZFMmAj5VGOcVD8TPvuU0 brB6s8dDlwRdeycsjLsM2j4+q8BUoMnLqpNHS3FY -----END CERTIFICATE-----Generated at Thu Mar 26 15:51:40 2026 by rpki-client