$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: dFvCzz4DaG28iCZNf6uex6BP+H0ISLeKfNuskC4b1Vg= Subject key identifier: 5C:0D:2A:87:F2:EA:49:57:6D:2E:C3:31:D3:E6:5C:E1:1D:4C:E9:40 Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 631FD4055E18970A31614379C269A140FD131AD8 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa Signing time: Sat 07 Mar 2026 18:00:01 +0000 ROA not before: Sat 07 Mar 2026 17:55:01 +0000 ROA not after: Sat 06 Mar 2027 18:00:01 +0000 asID: 133799 IP address blocks: 103.42.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:1f:d4:05:5e:18:97:0a:31:61:43:79:c2:69:a1:40:fd:13:1a:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Mar 7 17:55:01 2026 GMT Not After : Mar 6 18:00:01 2027 GMT Subject: CN=5C0D2A87F2EA49576D2EC331D3E65CE11D4CE940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:f2:fc:e4:f1:a4:f7:df:87:b6:1b:7b:c7: 17:1d:c1:c3:ad:87:14:24:77:d1:89:32:7b:5d:20: bc:b6:8d:33:0f:7c:ea:42:87:bd:c3:de:38:c8:3f: c0:3f:95:29:ec:6b:89:16:fb:66:f3:91:b2:47:e6: a8:bf:9d:2b:2c:ed:d6:1b:81:2d:41:25:82:c4:fd: 03:0a:ce:d4:80:b6:81:74:06:83:59:e8:c1:db:4e: 43:e7:bc:db:32:24:25:05:74:ef:62:96:17:b7:13: 7c:1c:6d:3a:68:d1:ed:9a:89:3f:a2:41:af:2a:1f: d7:17:d4:33:ea:80:12:29:63:1e:c1:da:a6:ef:83: 6d:66:ba:e8:2f:5c:3b:92:83:1d:a1:e8:e6:b7:c6: 9f:12:f6:34:79:83:c1:73:05:2a:e3:12:e3:e8:88: 0d:ce:30:6e:0f:08:b5:dd:c7:3c:ad:2f:fc:08:68: 36:4a:fa:78:d4:e1:13:d0:dc:a2:5a:77:93:2b:32: aa:49:81:62:ac:f7:66:38:d4:c4:f8:51:99:5c:7a: 0e:18:1e:61:74:b1:5f:0d:a2:b9:44:42:56:a5:df: a7:02:e8:60:63:f9:0d:37:1d:d3:74:e8:b5:4f:19: 23:30:18:75:0a:f9:1a:c4:23:cd:41:dc:1e:99:96: 9b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0D:2A:87:F2:EA:49:57:6D:2E:C3:31:D3:E6:5C:E1:1D:4C:E9:40 X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.255.0/24 Signature Algorithm: sha256WithRSAEncryption 06:51:94:a3:4e:72:79:2f:05:9d:41:87:2d:da:08:95:8c:b0: 27:5c:5c:36:b8:fb:24:f3:01:20:9e:3c:ce:a8:78:0c:a2:d3: 2e:4c:6d:b1:8d:c1:a7:d9:55:b9:55:36:72:52:c2:77:92:01: a8:64:8f:21:c7:2b:fa:ce:0a:dc:e9:05:42:49:56:3d:c5:2f: 60:bd:0b:1d:7c:b9:da:11:a1:af:b4:88:aa:dd:4a:fa:d4:df: ee:8d:0a:37:6e:8d:fb:a4:09:35:1d:06:3e:34:a8:73:a4:b7: dd:bb:3a:55:9c:37:b1:1e:87:3e:de:93:89:86:4a:c4:3e:1f: bb:f0:60:25:9a:da:4e:b7:79:1d:c6:dd:81:17:29:61:46:50: 31:94:8a:a1:b5:e3:3a:c0:e7:0a:d4:f7:52:7b:e2:0c:1f:97: 8a:ae:4d:0d:e6:4c:35:f3:3a:d0:c3:d4:12:b9:b2:e8:8a:bf: d0:83:ef:c3:e3:9d:35:4d:af:d1:b9:c2:fe:a4:32:85:24:00: f7:2f:6c:74:43:98:bc:bc:b7:5b:d2:1e:93:67:9e:24:e6:52: 2c:a1:08:99:52:0c:b7:21:14:ec:f2:22:f0:54:a0:13:85:c8: fa:ec:1d:ca:b8:b5:eb:c1:a8:1c:d8:89:01:eb:05:b5:af:08: 43:3d:32:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYx/UBV4YlwoxYUN5wmmhQP0TGtgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNjAzMDcxNzU1MDFaFw0yNzAzMDYxODAwMDFaMDMxMTAvBgNV BAMTKDVDMEQyQTg3RjJFQTQ5NTc2RDJFQzMzMUQzRTY1Q0UxMUQ0Q0U5NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKpvL85PGk99+Htht7xxcdwcOt hxQkd9GJMntdILy2jTMPfOpCh73D3jjIP8A/lSnsa4kW+2bzkbJH5qi/nSss7dYb gS1BJYLE/QMKztSAtoF0BoNZ6MHbTkPnvNsyJCUFdO9ilhe3E3wcbTpo0e2aiT+i Qa8qH9cX1DPqgBIpYx7B2qbvg21muugvXDuSgx2h6Oa3xp8S9jR5g8FzBSrjEuPo iA3OMG4PCLXdxzytL/wIaDZK+njU4RPQ3KJad5MrMqpJgWKs92Y41MT4UZlceg4Y HmF0sV8NorlEQlal36cC6GBj+Q03HdN06LVPGSMwGHUK+RrEI81B3B6ZlptVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXA0qh/LqSVdtLsMx0+Zc4R1M6UAwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr/MA0GCSqG SIb3DQEBCwUAA4IBAQAGUZSjTnJ5LwWdQYct2giVjLAnXFw2uPsk8wEgnjzOqHgM otMuTG2xjcGn2VW5VTZyUsJ3kgGoZI8hxyv6zgrc6QVCSVY9xS9gvQsdfLnaEaGv tIiq3Ur61N/ujQo3bo37pAk1HQY+NKhzpLfduzpVnDexHoc+3pOJhkrEPh+78GAl mtpOt3kdxt2BFylhRlAxlIqhteM6wOcK1PdSe+IMH5eKrk0N5kw18zrQw9QSubLo ir/Qg+/D4501Ta/RucL+pDKFJAD3L2x0Q5i8vLdb0h6TZ54k5lIsoQiZUgy3IRTs 8iLwVKAThcj67B3KuLXrwagc2IkB6wW1rwhDPTJ9 -----END CERTIFICATE-----Generated at Thu Mar 26 21:18:28 2026 by rpki-client