$ rpki-client -vvf repo-rpki.idnic.net/repo/c30c8f86-bcd5-4b7a-a9b1-465ef0c9f87a/0/3130332e3230352e35362e302f32342d3234203d3e20313334363339.roa File: 3130332e3230352e35362e302f32342d3234203d3e20313334363339.roa (raw, json) Hash identifier: X7U6Nfg8aziHHVToy8L18dYTQrmR8o6W4wdMG2jrZeY= Subject key identifier: 16:01:92:FC:36:DA:94:2C:08:40:5D:11:8C:8B:82:CC:74:46:AE:55 Certificate issuer: /CN=15B96A3BCE4C10C17F4BDB7700A33F886ACD8717 Certificate serial: 0DDF9CD39B35F0AD1B6BDABEDDBEB139C6E2F62C Authority key identifier: 15:B9:6A:3B:CE:4C:10:C1:7F:4B:DB:77:00:A3:3F:88:6A:CD:87:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B96A3BCE4C10C17F4BDB7700A33F886ACD8717.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c30c8f86-bcd5-4b7a-a9b1-465ef0c9f87a/0/3130332e3230352e35362e302f32342d3234203d3e20313334363339.roa Signing time: Mon 16 Mar 2026 04:01:27 +0000 ROA not before: Mon 16 Mar 2026 03:56:27 +0000 ROA not after: Mon 15 Mar 2027 04:01:27 +0000 asID: 134639 IP address blocks: 103.205.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c30c8f86-bcd5-4b7a-a9b1-465ef0c9f87a/0/15B96A3BCE4C10C17F4BDB7700A33F886ACD8717.crl rsync://repo-rpki.idnic.net/repo/c30c8f86-bcd5-4b7a-a9b1-465ef0c9f87a/0/15B96A3BCE4C10C17F4BDB7700A33F886ACD8717.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B96A3BCE4C10C17F4BDB7700A33F886ACD8717.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 03:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:df:9c:d3:9b:35:f0:ad:1b:6b:da:be:dd:be:b1:39:c6:e2:f6:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15B96A3BCE4C10C17F4BDB7700A33F886ACD8717 Validity Not Before: Mar 16 03:56:27 2026 GMT Not After : Mar 15 04:01:27 2027 GMT Subject: CN=160192FC36DA942C08405D118C8B82CC7446AE55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:07:41:56:b6:46:db:6f:d2:fe:cc:27:1d:a7: a1:16:9c:b5:1e:1b:7b:7e:fd:be:05:35:f9:50:d3: e3:0f:2e:ae:8b:4f:67:c4:f9:fd:29:1d:5c:c4:ad: 1e:45:a7:16:84:c1:81:61:db:c6:64:8c:73:f1:f0: bf:77:42:99:da:1f:1a:60:ec:92:4e:2c:47:3b:87: 5a:b6:8b:ab:56:84:51:d0:3f:cd:76:0d:63:23:7f: 03:21:1e:c3:30:ab:04:ae:66:b9:a1:f3:02:1d:81: 7a:a8:fd:43:cb:3b:5c:65:39:31:04:d9:7b:70:66: cb:ee:17:48:43:9f:e6:aa:e7:ca:d0:b9:20:3c:0e: da:8d:a2:e1:48:5a:44:87:9e:af:32:66:fe:0d:59: 66:84:b6:22:28:c8:61:b6:0d:1c:5c:4f:5c:69:ad: 2e:ab:ad:66:cf:72:e2:f6:53:44:8f:5f:51:95:74: 2f:46:a7:ce:8c:f6:ea:01:7a:48:da:4d:1e:e1:f5: db:3a:4f:d7:a2:45:eb:b6:2d:95:91:43:16:93:8a: 46:be:4e:42:30:36:7e:ba:23:a7:d5:81:5b:b4:9f: c1:d4:4a:ac:fd:b4:47:93:7d:5e:86:2e:21:3f:72: 9f:22:bb:17:24:db:d4:b3:a4:8d:47:18:58:52:ea: 29:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:01:92:FC:36:DA:94:2C:08:40:5D:11:8C:8B:82:CC:74:46:AE:55 X509v3 Authority Key Identifier: keyid:15:B9:6A:3B:CE:4C:10:C1:7F:4B:DB:77:00:A3:3F:88:6A:CD:87:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c30c8f86-bcd5-4b7a-a9b1-465ef0c9f87a/0/15B96A3BCE4C10C17F4BDB7700A33F886ACD8717.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B96A3BCE4C10C17F4BDB7700A33F886ACD8717.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c30c8f86-bcd5-4b7a-a9b1-465ef0c9f87a/0/3130332e3230352e35362e302f32342d3234203d3e20313334363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.56.0/24 Signature Algorithm: sha256WithRSAEncryption 81:86:41:5e:33:8f:b3:b4:69:36:2a:61:a4:0f:78:fa:e5:5e: 49:ed:f1:39:a9:ae:fe:ca:36:3e:74:c4:00:09:de:dc:dd:be: f9:fe:b8:f6:a5:af:4f:56:44:88:28:2b:73:94:1b:1f:38:b8: 72:67:b1:d1:3a:53:97:0e:61:e9:e7:75:61:3f:16:d0:c2:70: 59:b2:d5:f6:c3:36:f4:5b:a0:7d:61:5a:17:33:f7:30:d0:f6: 53:04:c2:de:f2:0b:bd:25:b5:53:b0:65:7a:42:01:59:8b:f7: a9:c0:a5:cc:03:fc:71:56:c9:10:ab:d0:5f:46:2b:c3:0e:c6: 08:6d:f5:48:89:42:eb:5d:d8:17:47:e5:9f:52:41:d7:bb:db: ea:a3:a0:7e:fd:19:57:f3:70:bc:61:43:30:65:d1:70:90:8e: d4:d0:f6:73:f7:f4:07:4a:de:ff:2b:35:f3:e3:1a:2b:61:e0: 1b:a7:90:9a:6f:47:c7:05:fb:09:60:3d:74:4a:02:b5:e6:8c: 3b:e1:5d:71:c3:80:f1:7a:ec:62:9a:e6:54:34:3a:7c:95:a8: d9:a1:dd:d3:74:02:f0:df:20:78:c0:d5:27:dc:66:af:7d:72: 4a:8b:6b:f6:5b:1e:4a:f4:e8:98:b2:91:1e:fa:6b:e7:0f:ea: da:42:ef:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDd+c05s18K0ba9q+3b6xOcbi9iwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCOTZBM0JDRTRDMTBDMTdGNEJEQjc3MDBBMzNGODg2 QUNEODcxNzAeFw0yNjAzMTYwMzU2MjdaFw0yNzAzMTUwNDAxMjdaMDMxMTAvBgNV BAMTKDE2MDE5MkZDMzZEQTk0MkMwODQwNUQxMThDOEI4MkNDNzQ0NkFFNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLB0FWtkbbb9L+zCcdp6EWnLUe G3t+/b4FNflQ0+MPLq6LT2fE+f0pHVzErR5FpxaEwYFh28ZkjHPx8L93QpnaHxpg 7JJOLEc7h1q2i6tWhFHQP812DWMjfwMhHsMwqwSuZrmh8wIdgXqo/UPLO1xlOTEE 2XtwZsvuF0hDn+aq58rQuSA8DtqNouFIWkSHnq8yZv4NWWaEtiIoyGG2DRxcT1xp rS6rrWbPcuL2U0SPX1GVdC9Gp86M9uoBekjaTR7h9ds6T9eiReu2LZWRQxaTika+ TkIwNn66I6fVgVu0n8HUSqz9tEeTfV6GLiE/cp8iuxck29SzpI1HGFhS6ik3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFgGS/DbalCwIQF0RjIuCzHRGrlUwHwYDVR0j BBgwFoAUFblqO85MEMF/S9t3AKM/iGrNhxcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzBjOGY4Ni1iY2Q1LTRiN2EtYTliMS00NjVlZjBjOWY4N2EvMC8xNUI5NkEzQkNF NEMxMEMxN0Y0QkRCNzcwMEEzM0Y4ODZBQ0Q4NzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTVCOTZBM0JDRTRDMTBDMTdGNEJEQjc3MDBBMzNGODg2QUNE ODcxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMGM4Zjg2LWJjZDUtNGI3YS1h OWIxLTQ2NWVmMGM5Zjg3YS8wLzMxMzAzMzJlMzIzMDM1MmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ804MA0GCSqG SIb3DQEBCwUAA4IBAQCBhkFeM4+ztGk2KmGkD3j65V5J7fE5qa7+yjY+dMQACd7c 3b75/rj2pa9PVkSIKCtzlBsfOLhyZ7HROlOXDmHp53VhPxbQwnBZstX2wzb0W6B9 YVoXM/cw0PZTBMLe8gu9JbVTsGV6QgFZi/epwKXMA/xxVskQq9BfRivDDsYIbfVI iULrXdgXR+WfUkHXu9vqo6B+/RlX83C8YUMwZdFwkI7U0PZz9/QHSt7/KzXz4xor YeAbp5Cab0fHBfsJYD10SgK15ow74V1xw4DxeuximuZUNDp8lajZod3TdALw3yB4 wNUn3GavfXJKi2v2Wx5K9OiYspEe+mvnD+raQu+n -----END CERTIFICATE-----Generated at Thu Mar 26 19:32:22 2026 by rpki-client