$ rpki-client -vvf repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32342d3234203d3e20313530393434.roa File: 3130332e3130372e3137362e302f32342d3234203d3e20313530393434.roa (raw, json) Hash identifier: n7eWIcnUuPxT4uKWSwqzx/Xe+eF7FqVCQsseGr+M6EE= Subject key identifier: 6B:B7:AB:CB:82:BA:3C:6B:70:5E:10:6D:9D:E1:15:47:88:7F:FB:CC Certificate issuer: /CN=1D4A7562F096F3F753E388C14594BA75AE09E7F3 Certificate serial: 7F5B141E4FA0333A715E454CC1AC69FEC210A8E8 Authority key identifier: 1D:4A:75:62:F0:96:F3:F7:53:E3:88:C1:45:94:BA:75:AE:09:E7:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D4A7562F096F3F753E388C14594BA75AE09E7F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32342d3234203d3e20313530393434.roa Signing time: Tue 10 Mar 2026 02:00:02 +0000 ROA not before: Tue 10 Mar 2026 01:55:02 +0000 ROA not after: Tue 09 Mar 2027 02:00:02 +0000 asID: 150944 IP address blocks: 103.107.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/1D4A7562F096F3F753E388C14594BA75AE09E7F3.crl rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/1D4A7562F096F3F753E388C14594BA75AE09E7F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D4A7562F096F3F753E388C14594BA75AE09E7F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 13:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:5b:14:1e:4f:a0:33:3a:71:5e:45:4c:c1:ac:69:fe:c2:10:a8:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4A7562F096F3F753E388C14594BA75AE09E7F3 Validity Not Before: Mar 10 01:55:02 2026 GMT Not After : Mar 9 02:00:02 2027 GMT Subject: CN=6BB7ABCB82BA3C6B705E106D9DE11547887FFBCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fa:6b:2b:69:3b:00:84:9e:b7:9c:35:2b:88: 99:00:c6:8a:75:d5:d3:20:18:06:73:83:37:56:8a: f6:43:60:24:95:bd:97:9d:01:04:f0:0a:2b:05:18: 63:f9:66:fc:30:5c:1e:d3:01:aa:30:87:40:8b:4b: 94:d0:04:32:3e:e7:26:98:2f:5a:36:cb:dd:3b:6a: a8:30:02:aa:7f:87:f5:ef:ba:3c:e5:52:23:47:ee: 46:8a:1d:95:81:6b:05:bc:73:ad:b3:d5:75:25:71: e7:75:49:11:63:6b:63:91:10:0c:78:dd:6d:64:2e: da:b5:e8:02:8e:fc:86:07:b0:79:e9:7d:03:22:fd: 2e:6c:e1:e5:5a:4b:36:1e:09:2e:69:9c:d6:53:9e: 74:5c:09:e9:c1:65:e3:8d:19:98:5e:81:3d:f3:32: a5:48:4b:dc:ab:47:6c:19:48:56:f0:de:2b:57:94: b0:53:04:c6:cb:c7:10:4f:72:fe:f3:1d:05:da:50: 74:6a:ef:99:58:84:e4:e0:89:44:c0:c9:81:01:58: d5:92:c6:e6:35:22:a9:e1:ad:6f:9c:b8:d9:1f:c5: c4:f5:b5:61:71:2d:49:49:c6:7c:45:b5:d1:59:c6: c7:24:43:e1:6e:08:cb:f1:8a:08:ab:33:6e:59:af: 3b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B7:AB:CB:82:BA:3C:6B:70:5E:10:6D:9D:E1:15:47:88:7F:FB:CC X509v3 Authority Key Identifier: keyid:1D:4A:75:62:F0:96:F3:F7:53:E3:88:C1:45:94:BA:75:AE:09:E7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/1D4A7562F096F3F753E388C14594BA75AE09E7F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D4A7562F096F3F753E388C14594BA75AE09E7F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d36ab04d-68c7-4249-b109-46b28cf803f3/0/3130332e3130372e3137362e302f32342d3234203d3e20313530393434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.176.0/24 Signature Algorithm: sha256WithRSAEncryption c7:2f:93:02:a8:25:da:49:d5:91:59:b1:74:08:70:92:b8:c0: c8:9b:46:ec:4e:3f:b5:62:eb:bb:09:dd:ee:ff:ce:30:0d:66: d0:09:eb:6d:60:09:4f:6e:c0:f7:06:bd:21:25:13:21:07:5c: d8:25:eb:56:62:df:ff:e0:7b:09:4f:f5:99:f8:9e:fe:33:f4: d7:27:b1:1e:08:96:87:7f:ce:01:65:07:02:fd:3a:32:3e:7c: 78:9a:ce:b1:8c:da:62:65:47:d9:27:f0:33:0a:bb:3b:63:7e: 23:11:30:58:5e:a2:5f:69:25:f3:79:8d:74:4e:10:a7:e8:c1: c5:e8:5c:62:bf:a2:b1:67:65:b1:8b:93:56:60:34:6d:bc:d9: d6:8c:07:79:37:ca:7e:a7:58:55:07:23:18:84:28:47:1d:81: 58:bb:20:41:a9:64:aa:2b:9d:f2:7d:96:f6:ae:3b:f7:c9:d0: 72:35:86:81:ab:1f:5c:26:a2:f1:ac:64:9c:74:c4:23:01:0b: bd:1e:1b:87:3d:69:c4:07:87:df:f5:eb:b1:57:6b:55:ed:ab: bf:f8:08:d8:cb:fe:b7:11:a0:d5:25:13:0d:61:e7:2e:fd:4f: 02:91:dd:c7:fd:64:f1:cf:8a:d4:50:a2:29:5a:0b:a6:27:4f: 9c:53:a1:9a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUf1sUHk+gMzpxXkVMwaxp/sIQqOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ0QTc1NjJGMDk2RjNGNzUzRTM4OEMxNDU5NEJBNzVB RTA5RTdGMzAeFw0yNjAzMTAwMTU1MDJaFw0yNzAzMDkwMjAwMDJaMDMxMTAvBgNV BAMTKDZCQjdBQkNCODJCQTNDNkI3MDVFMTA2RDlERTExNTQ3ODg3RkZCQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3+msraTsAhJ63nDUriJkAxop1 1dMgGAZzgzdWivZDYCSVvZedAQTwCisFGGP5ZvwwXB7TAaowh0CLS5TQBDI+5yaY L1o2y907aqgwAqp/h/XvujzlUiNH7kaKHZWBawW8c62z1XUlced1SRFja2OREAx4 3W1kLtq16AKO/IYHsHnpfQMi/S5s4eVaSzYeCS5pnNZTnnRcCenBZeONGZhegT3z MqVIS9yrR2wZSFbw3itXlLBTBMbLxxBPcv7zHQXaUHRq75lYhOTgiUTAyYEBWNWS xuY1IqnhrW+cuNkfxcT1tWFxLUlJxnxFtdFZxsckQ+FuCMvxigirM25ZrzuhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa7ery4K6PGtwXhBtneEVR4h/+8wwHwYDVR0j BBgwFoAUHUp1YvCW8/dT44jBRZS6da4J5/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzZhYjA0ZC02OGM3LTQyNDktYjEwOS00NmIyOGNmODAzZjMvMC8xRDRBNzU2MkYw OTZGM0Y3NTNFMzg4QzE0NTk0QkE3NUFFMDlFN0YzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ0QTc1NjJGMDk2RjNGNzUzRTM4OEMxNDU5NEJBNzVBRTA5 RTdGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzNmFiMDRkLTY4YzctNDI0OS1i MTA5LTQ2YjI4Y2Y4MDNmMy8wLzMxMzAzMzJlMzEzMDM3MmUzMTM3MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna7AwDQYJ KoZIhvcNAQELBQADggEBAMcvkwKoJdpJ1ZFZsXQIcJK4wMibRuxOP7Vi67sJ3e7/ zjANZtAJ621gCU9uwPcGvSElEyEHXNgl61Zi3//gewlP9Zn4nv4z9NcnsR4Ilod/ zgFlBwL9OjI+fHiazrGM2mJlR9kn8DMKuztjfiMRMFheol9pJfN5jXROEKfowcXo XGK/orFnZbGLk1ZgNG282daMB3k3yn6nWFUHIxiEKEcdgVi7IEGpZKornfJ9lvau O/fJ0HI1hoGrH1wmovGsZJx0xCMBC70eG4c9acQHh9/167FXa1Xtq7/4CNjL/rcR oNUlEw1h5y79TwKR3cf9ZPHPitRQoilaC6YnT5xToZo= -----END CERTIFICATE-----Generated at Thu Mar 26 20:13:49 2026 by rpki-client