$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa File: 3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa (raw, json) Hash identifier: ecHhrbZmg4e2LGAXb1athWjLi3ckLPNV/WtpLFe/T6g= Subject key identifier: 4F:55:71:CC:10:16:78:E2:B6:ED:86:8D:5E:C8:50:F4:F8:4E:CD:4B Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 5BF5DFAE77F3B3E4AD9AE4F54412350A3DDC8359 Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa Signing time: Mon 09 Mar 2026 12:00:02 +0000 ROA not before: Mon 09 Mar 2026 11:55:02 +0000 ROA not after: Mon 08 Mar 2027 12:00:02 +0000 asID: 138070 IP address blocks: 103.123.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 07:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f5:df:ae:77:f3:b3:e4:ad:9a:e4:f5:44:12:35:0a:3d:dc:83:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Mar 9 11:55:02 2026 GMT Not After : Mar 8 12:00:02 2027 GMT Subject: CN=4F5571CC101678E2B6ED868D5EC850F4F84ECD4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:86:45:11:c4:94:44:ae:0f:ab:e4:b6:18:30: 1f:46:25:bf:f4:25:89:59:71:ea:f7:66:1f:63:18: 8c:9a:19:e7:c9:5c:35:b8:8b:3f:9e:b6:b7:82:67: be:44:da:80:96:f2:84:f3:13:4a:94:c5:53:4a:c9: 9c:46:ef:2d:8d:95:35:15:e5:de:20:7f:53:ec:d0: 30:21:5c:8e:0a:12:59:f0:87:d3:8f:30:2d:a6:f7: 3e:a5:8d:8d:09:8a:0c:92:7d:ab:a8:4b:fc:9c:e5: 23:7c:24:08:e9:63:d7:2f:e7:7b:27:0f:4a:cc:b5: 78:01:fa:b1:ea:17:36:49:aa:c6:b1:75:b1:f4:7c: 2b:1b:5b:43:09:53:69:21:43:81:70:df:5b:5f:ad: 43:05:9e:68:2a:1f:59:de:3c:18:da:99:a2:0d:ab: 3a:2f:e0:29:47:35:9f:3c:ed:e7:a4:48:99:ba:da: 94:4d:81:f9:ac:01:41:e5:2f:09:c6:0a:38:99:ad: 79:c4:ea:07:95:a1:ec:f9:aa:73:70:87:2e:75:37: 3d:8f:f8:1e:cd:06:18:59:12:d3:2d:9d:84:2e:ad: 99:20:8f:a4:df:93:7a:50:11:bc:1a:93:32:d1:fa: 04:79:6d:be:dd:16:10:76:4d:50:d1:4b:50:67:d4: 2c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:55:71:CC:10:16:78:E2:B6:ED:86:8D:5E:C8:50:F4:F8:4E:CD:4B X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/22 Signature Algorithm: sha256WithRSAEncryption 08:a0:06:28:54:01:e9:6c:a1:0c:d4:93:11:29:82:d6:91:cc: 7a:ff:c6:9e:db:4c:b0:5e:57:42:9d:2b:29:ab:b3:77:8f:38: 0d:ed:48:df:1f:d8:5b:83:5b:95:f3:d6:dd:e2:28:f2:10:92: 8c:23:bf:5d:fc:5f:50:fa:04:c0:6c:8c:8a:ad:4b:59:61:2a: ae:4c:62:44:c2:b9:93:1c:2c:ae:42:18:d8:d2:f9:a4:2e:40: ae:f7:76:87:90:b1:31:c3:7e:8c:9c:d8:ce:58:a7:15:50:46: db:f9:de:f3:e6:e5:f5:3c:4b:58:75:be:17:52:53:14:af:d8: 72:0b:bb:85:ed:7d:c5:6d:62:c7:1a:66:75:1c:a9:03:2a:50: bc:52:1a:8f:18:b2:26:90:63:5d:2f:06:3b:83:2d:c7:8c:74: 11:91:f1:41:fd:1c:93:d6:e5:64:3d:ea:30:f3:95:0e:58:06: 01:2b:55:37:dd:ad:fe:dd:fb:43:36:0c:1d:e6:5d:1b:5b:10: 08:9b:b9:7e:7f:00:20:34:d3:16:7b:43:0e:d8:d1:8d:d3:40: 79:69:47:54:8a:98:ff:07:13:3d:f1:d1:c0:ba:6f:cc:5a:82: ea:94:e3:ba:21:07:0c:a6:ca:c7:44:4a:be:73:6f:9f:0b:1d: da:df:2c:e1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW/Xfrnfzs+StmuT1RBI1Cj3cg1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNjAzMDkxMTU1MDJaFw0yNzAzMDgxMjAwMDJaMDMxMTAvBgNV BAMTKDRGNTU3MUNDMTAxNjc4RTJCNkVEODY4RDVFQzg1MEY0Rjg0RUNENEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDthkURxJRErg+r5LYYMB9GJb/0 JYlZcer3Zh9jGIyaGefJXDW4iz+etreCZ75E2oCW8oTzE0qUxVNKyZxG7y2NlTUV 5d4gf1Ps0DAhXI4KElnwh9OPMC2m9z6ljY0JigySfauoS/yc5SN8JAjpY9cv53sn D0rMtXgB+rHqFzZJqsaxdbH0fCsbW0MJU2khQ4Fw31tfrUMFnmgqH1nePBjamaIN qzov4ClHNZ887eekSJm62pRNgfmsAUHlLwnGCjiZrXnE6geVoez5qnNwhy51Nz2P +B7NBhhZEtMtnYQurZkgj6Tfk3pQEbwakzLR+gR5bb7dFhB2TVDRS1Bn1Cx3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUT1VxzBAWeOK27YaNXshQ9PhOzUswHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJne2gwDQYJ KoZIhvcNAQELBQADggEBAAigBihUAelsoQzUkxEpgtaRzHr/xp7bTLBeV0KdKymr s3ePOA3tSN8f2FuDW5Xz1t3iKPIQkowjv138X1D6BMBsjIqtS1lhKq5MYkTCuZMc LK5CGNjS+aQuQK73doeQsTHDfoyc2M5YpxVQRtv53vPm5fU8S1h1vhdSUxSv2HIL u4XtfcVtYscaZnUcqQMqULxSGo8YsiaQY10vBjuDLceMdBGR8UH9HJPW5WQ96jDz lQ5YBgErVTfdrf7d+0M2DB3mXRtbEAibuX5/ACA00xZ7Qw7Y0Y3TQHlpR1SKmP8H Ez3x0cC6b8xaguqU47ohBwymysdESr5zb58LHdrfLOE= -----END CERTIFICATE-----Generated at Thu Mar 26 22:14:38 2026 by rpki-client