$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: Ef5HpkdJVz/4uKZmf0k+esuKvIhSnmMUGjmBM9Einzk= Subject key identifier: 45:3D:29:4B:65:3F:21:92:9F:D1:4F:3D:E0:79:B0:79:11:00:17:37 Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 3064C72F781B3AE9F54B86908C6C91723EBA2024 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa Signing time: Sat 07 Mar 2026 18:00:00 +0000 ROA not before: Sat 07 Mar 2026 17:55:00 +0000 ROA not after: Sat 06 Mar 2027 18:00:00 +0000 asID: 133799 IP address blocks: 103.42.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:64:c7:2f:78:1b:3a:e9:f5:4b:86:90:8c:6c:91:72:3e:ba:20:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Mar 7 17:55:00 2026 GMT Not After : Mar 6 18:00:00 2027 GMT Subject: CN=453D294B653F21929FD14F3DE079B07911001737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:50:a1:f5:3c:7a:5a:82:fa:f1:28:5b:cb:45: a3:28:a3:d8:82:6e:c9:b5:d8:8b:be:35:2a:d8:17: 1c:e7:49:5d:2c:be:26:ce:44:0f:bc:8f:35:9f:4e: 65:bc:ca:8a:fc:de:fc:69:d7:9c:ef:91:be:1d:4c: 67:c9:e5:a6:ef:6a:76:ad:f8:62:22:76:33:19:cb: 7c:d5:a2:be:ee:f2:c5:e0:64:66:29:a3:6d:1f:1e: 23:9e:0b:66:fa:5d:86:8a:54:8c:cb:b2:ef:e4:ee: ea:c5:e4:48:f5:0d:2c:7a:cb:bb:46:59:5b:70:0a: 3e:62:ab:00:1b:29:f4:5d:ae:50:41:a4:67:3c:c0: 61:b2:f1:c8:0e:b1:29:d0:f9:c6:e2:35:11:75:8c: 23:76:24:fb:14:30:47:a2:7f:e0:84:72:42:df:77: 47:b2:0f:3e:51:bc:28:42:6f:93:ee:2b:e9:7d:09: ed:f2:3e:fc:9c:c8:37:5a:62:2c:ad:13:85:5b:ed: 6e:b8:03:60:7c:64:55:b2:28:17:91:a6:1b:93:d3: 1a:54:7a:04:0d:21:2c:ae:b7:b5:95:f7:f2:76:d1: eb:04:c8:98:e6:6b:87:5a:57:15:98:73:f6:1c:94: 3c:74:ba:c6:11:7b:5c:47:4c:2a:47:72:72:89:38: 9e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3D:29:4B:65:3F:21:92:9F:D1:4F:3D:E0:79:B0:79:11:00:17:37 X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.254.0/24 Signature Algorithm: sha256WithRSAEncryption 36:52:d1:c7:37:70:e9:9b:17:8b:52:eb:b1:25:24:49:54:c9: 96:fd:26:07:f9:75:4f:85:f8:b3:cb:62:38:e6:e7:4e:d3:0e: 06:4e:ff:40:b0:2f:3f:b7:b2:8d:22:f9:d6:3c:b2:0a:d8:e0: dc:9f:70:b5:72:ca:35:3f:30:81:f7:dd:e5:b0:b1:7a:9a:8c: f4:95:18:87:cb:87:51:ba:ee:65:02:e8:7c:fb:9d:e0:6b:ae: b2:4a:3e:cd:2a:7a:09:e8:77:af:52:3b:2f:99:bf:7f:32:58: 8c:2c:29:b1:7d:73:f6:e1:84:dc:e7:d7:d2:28:28:e6:10:d1: 79:c5:f9:5e:30:55:d0:b4:b8:38:76:19:8c:9b:a1:17:28:45: db:f8:75:c8:09:ea:e0:67:a7:f4:f1:6e:bf:62:b1:5b:b5:f4: 58:0c:a3:54:bd:fa:dc:ec:a2:36:93:c4:68:dc:6a:d4:0b:52: b9:6b:e3:77:7d:ed:58:19:c6:89:0a:e5:dc:5a:90:99:3c:e7: fb:ff:c3:89:01:c4:70:b5:cb:a8:c9:f6:cd:4b:c6:b6:ed:45: 66:e5:33:d1:08:fa:92:e9:18:4f:f8:62:9d:70:a3:de:b8:11: 85:30:4f:ab:ac:75:b5:77:28:7d:09:df:2d:30:50:f5:78:ea: 32:4e:46:2b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMGTHL3gbOun1S4aQjGyRcj66ICQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNjAzMDcxNzU1MDBaFw0yNzAzMDYxODAwMDBaMDMxMTAvBgNV BAMTKDQ1M0QyOTRCNjUzRjIxOTI5RkQxNEYzREUwNzlCMDc5MTEwMDE3MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyUKH1PHpagvrxKFvLRaMoo9iC bsm12Iu+NSrYFxznSV0svibORA+8jzWfTmW8yor83vxp15zvkb4dTGfJ5abvanat +GIidjMZy3zVor7u8sXgZGYpo20fHiOeC2b6XYaKVIzLsu/k7urF5Ej1DSx6y7tG WVtwCj5iqwAbKfRdrlBBpGc8wGGy8cgOsSnQ+cbiNRF1jCN2JPsUMEeif+CEckLf d0eyDz5RvChCb5PuK+l9Ce3yPvycyDdaYiytE4Vb7W64A2B8ZFWyKBeRphuT0xpU egQNISyut7WV9/J20esEyJjma4daVxWYc/YclDx0usYRe1xHTCpHcnKJOJ6bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURT0pS2U/IZKf0U894HmweREAFzcwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr+MA0GCSqG SIb3DQEBCwUAA4IBAQA2UtHHN3DpmxeLUuuxJSRJVMmW/SYH+XVPhfizy2I45udO 0w4GTv9AsC8/t7KNIvnWPLIK2ODcn3C1cso1PzCB993lsLF6moz0lRiHy4dRuu5l Auh8+53ga66ySj7NKnoJ6HevUjsvmb9/MliMLCmxfXP24YTc59fSKCjmENF5xfle MFXQtLg4dhmMm6EXKEXb+HXICergZ6f08W6/YrFbtfRYDKNUvfrc7KI2k8Ro3GrU C1K5a+N3fe1YGcaJCuXcWpCZPOf7/8OJAcRwtcuoyfbNS8a27UVm5TPRCPqS6RhP +GKdcKPeuBGFME+rrHW1dyh9Cd8tMFD1eOoyTkYr -----END CERTIFICATE-----Generated at Thu Mar 26 19:53:41 2026 by rpki-client