$ rpki-client -vvf repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa File: 3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa (raw, json) Hash identifier: M8fCe5D8d2IyMGkvGFHQzCu5uqFZk9IhypXImoxO/WY= Subject key identifier: CD:E6:8D:EA:4C:7A:56:94:34:36:10:6C:21:EB:64:FA:D6:06:63:33 Certificate issuer: /CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Certificate serial: 6358346E9DF26D443ABE7696DFD10FD736C5D306 Authority key identifier: 8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa Signing time: Sat 21 Mar 2026 17:00:00 +0000 ROA not before: Sat 21 Mar 2026 16:55:00 +0000 ROA not after: Sat 20 Mar 2027 17:00:00 +0000 asID: 149707 IP address blocks: 103.186.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 18:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:58:34:6e:9d:f2:6d:44:3a:be:76:96:df:d1:0f:d7:36:c5:d3:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Validity Not Before: Mar 21 16:55:00 2026 GMT Not After : Mar 20 17:00:00 2027 GMT Subject: CN=CDE68DEA4C7A56943436106C21EB64FAD6066333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6d:52:ae:41:a2:0b:87:fd:38:78:65:f2:5f: 82:79:ae:08:32:0a:c9:b2:8b:95:be:a7:e7:b3:6d: 51:40:a2:f2:d7:81:4a:d9:33:0b:ac:c4:91:07:55: 60:e3:ed:89:3c:b3:da:7e:21:66:68:a7:26:0e:78: 4a:3c:8c:c3:79:0f:a8:7a:ca:f3:06:02:4e:34:35: 22:b9:62:03:80:1f:af:0c:de:42:f9:b6:9b:27:af: 25:cd:84:9b:5b:b7:75:b1:33:40:21:90:90:2c:64: ae:88:9c:3b:19:ed:00:cc:76:f0:36:27:f5:8e:f0: 60:37:b8:3a:cf:29:33:5e:39:c4:cc:83:4d:57:dd: 79:80:54:6e:af:0f:34:c1:52:70:40:52:c5:ca:c3: c5:3a:9a:10:a1:a4:a8:9c:e0:4b:7d:48:7c:74:92: 47:d9:aa:7a:4c:b3:df:f5:ce:1d:77:11:1a:cb:29: a7:23:fe:f7:6c:2d:47:17:bd:43:19:af:64:6d:c8: 30:b7:bd:21:19:f7:d7:7c:51:a5:8a:58:e9:a4:af: 2b:d1:f6:14:0a:be:39:9d:4f:8d:28:ed:77:52:c4: b2:6a:93:92:3c:10:fa:19:f2:a0:91:b1:73:49:02: e5:40:07:c4:26:bd:78:d2:48:74:60:32:fb:32:c4: 7d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E6:8D:EA:4C:7A:56:94:34:36:10:6C:21:EB:64:FA:D6:06:63:33 X509v3 Authority Key Identifier: keyid:8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.91.0/24 Signature Algorithm: sha256WithRSAEncryption 30:fd:e6:bf:76:f7:9c:2d:f2:d2:11:51:5d:9f:68:65:14:c1: 19:62:f8:d8:54:95:82:ef:da:ae:c8:38:01:89:c6:e9:6e:2c: de:df:3c:ac:05:17:42:d3:c9:44:65:f0:37:bf:e2:d7:2e:ec: 26:fe:ef:01:38:cc:49:cb:1d:79:b2:01:be:fe:ce:3b:f0:55: 9b:22:72:26:d2:9f:54:06:12:b8:5b:bc:0e:0b:c0:92:54:b8: 9f:0a:4c:62:a9:32:cb:ae:1e:ea:04:a6:25:a4:b1:1d:b3:55: de:c3:c3:a6:ca:a7:78:02:74:79:84:62:c6:6c:09:9e:31:25: 2e:b4:a9:9d:a5:96:b5:bb:df:14:39:c9:fa:87:2a:e0:87:f1: 52:bf:cc:7e:a6:f1:22:97:5c:ae:e3:41:b6:4b:aa:54:f7:08: b0:44:aa:61:03:33:e4:77:4e:cd:d1:3e:2e:e9:92:43:96:48: 90:68:9e:5f:25:c1:6e:f6:c5:d1:f9:79:18:0e:8e:ac:e8:82: 01:b6:d3:ec:40:0a:e3:59:ed:c4:ba:52:cc:cb:23:69:f2:8e: 42:37:30:4c:d5:96:cc:ea:b8:4e:ff:8e:e4:0e:d8:7b:4c:cc: e9:47:f4:5a:e0:a1:22:b4:11:a3:58:e5:75:ad:ce:a8:08:e2: 4e:05:44:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY1g0bp3ybUQ6vnaW39EP1zbF0wYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNB NjFGOEVFMTAeFw0yNjAzMjExNjU1MDBaFw0yNzAzMjAxNzAwMDBaMDMxMTAvBgNV BAMTKENERTY4REVBNEM3QTU2OTQzNDM2MTA2QzIxRUI2NEZBRDYwNjYzMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqbVKuQaILh/04eGXyX4J5rggy Csmyi5W+p+ezbVFAovLXgUrZMwusxJEHVWDj7Yk8s9p+IWZopyYOeEo8jMN5D6h6 yvMGAk40NSK5YgOAH68M3kL5tpsnryXNhJtbt3WxM0AhkJAsZK6InDsZ7QDMdvA2 J/WO8GA3uDrPKTNeOcTMg01X3XmAVG6vDzTBUnBAUsXKw8U6mhChpKic4Et9SHx0 kkfZqnpMs9/1zh13ERrLKacj/vdsLUcXvUMZr2RtyDC3vSEZ99d8UaWKWOmkryvR 9hQKvjmdT40o7XdSxLJqk5I8EPoZ8qCRsXNJAuVAB8QmvXjSSHRgMvsyxH03AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzeaN6kx6VpQ0NhBsIetk+tYGYzMwHwYDVR0j BBgwFoAUjb7PMUvTyCmSOjqXv8YhE6YfjuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OTRjMWU5NS1hNzM4LTRlNDctOGU1Yy03YWY2ODFiMzZiMDAvMC84REJFQ0YzMTRC RDNDODI5OTIzQTNBOTdCRkM2MjExM0E2MUY4RUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNBNjFG OEVFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5NGMxZTk1LWE3MzgtNGU0Ny04 ZTVjLTdhZjY4MWIzNmIwMC8wLzMxMzAzMzJlMzEzODM2MmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7pbMA0GCSqG SIb3DQEBCwUAA4IBAQAw/ea/dvecLfLSEVFdn2hlFMEZYvjYVJWC79quyDgBicbp bize3zysBRdC08lEZfA3v+LXLuwm/u8BOMxJyx15sgG+/s478FWbInIm0p9UBhK4 W7wOC8CSVLifCkxiqTLLrh7qBKYlpLEds1Xew8Omyqd4AnR5hGLGbAmeMSUutKmd pZa1u98UOcn6hyrgh/FSv8x+pvEil1yu40G2S6pU9wiwRKphAzPkd07N0T4u6ZJD lkiQaJ5fJcFu9sXR+XkYDo6s6IIBttPsQArjWe3EulLMyyNp8o5CNzBM1ZbM6rhO /47kDth7TMzpR/Ra4KEitBGjWOV1rc6oCOJOBUT/ -----END CERTIFICATE-----Generated at Thu Mar 26 19:31:44 2026 by rpki-client