$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: N64FdjfsEbU2WD4SaXp6qetiDmoRcr1f6RqJuh8FUBk= Subject key identifier: 7A:DC:B5:B3:2D:5F:9E:65:85:DF:7B:48:4E:35:3B:17:E6:F8:A7:28 Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 54214E49DC94B06E0566C3C804C0108617A661CF Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa Signing time: Mon 09 Mar 2026 12:00:02 +0000 ROA not before: Mon 09 Mar 2026 11:55:02 +0000 ROA not after: Mon 08 Mar 2027 12:00:02 +0000 asID: 138070 IP address blocks: 103.123.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 07:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:21:4e:49:dc:94:b0:6e:05:66:c3:c8:04:c0:10:86:17:a6:61:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Mar 9 11:55:02 2026 GMT Not After : Mar 8 12:00:02 2027 GMT Subject: CN=7ADCB5B32D5F9E6585DF7B484E353B17E6F8A728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2a:9c:4c:89:f9:d4:fd:22:9c:ac:0f:99:51: da:21:3e:bf:84:8e:cc:c3:a7:a6:53:2f:92:da:35: 3f:09:8f:50:a1:89:5d:1e:2f:2e:ce:61:46:1a:ae: 11:4c:39:e9:4c:9e:a4:9c:a3:b8:7c:24:7e:51:b9: d5:40:5a:ef:98:73:20:f8:b7:07:08:5a:14:27:c8: e2:bb:f4:90:eb:7a:ed:01:e5:68:43:1a:99:5b:1f: 4b:8f:2a:6f:eb:b3:7a:7c:75:b9:5a:ff:7f:ff:9c: 88:ac:6d:38:eb:ef:eb:93:6d:ba:0f:d8:42:d0:88: 2b:44:5e:4a:8e:a3:37:d3:16:12:1b:bb:10:80:be: 41:77:03:75:e7:54:36:88:a5:99:90:da:81:7d:63: c7:9b:27:eb:92:b8:a0:e1:cf:72:58:b3:ea:d6:7d: 37:cc:1f:ac:19:8c:9a:19:4e:e9:8a:53:2e:a2:12: 42:de:8b:52:f4:44:47:20:8c:24:db:c2:48:49:c5: 8c:9c:35:38:19:91:20:e4:cf:f0:61:4a:a4:cb:f6: 61:01:9d:f4:6b:77:05:95:dd:53:5c:68:b8:f3:0c: 07:69:23:05:8a:56:76:12:5d:3e:eb:5e:9e:76:3e: ca:7b:f3:d0:64:a4:b7:bb:e6:36:90:28:4a:06:77: fa:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DC:B5:B3:2D:5F:9E:65:85:DF:7B:48:4E:35:3B:17:E6:F8:A7:28 X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.106.0/24 Signature Algorithm: sha256WithRSAEncryption 33:43:c6:a0:9b:66:b6:5f:4d:a1:26:b8:c3:f6:76:9d:df:2b: ac:d6:b1:7c:5e:b4:e7:f0:d4:68:51:65:f6:8b:58:16:d6:f5: a5:ee:5d:c7:c4:dd:96:90:68:1d:5c:9e:83:79:ee:74:89:57: b4:06:f7:a3:02:ca:d1:c3:37:87:b4:8c:00:c4:81:b6:98:c2: ab:ea:77:18:2f:9f:c5:d2:28:c9:f6:50:14:a4:d0:6f:88:e5: ac:94:a1:fb:df:b1:f9:e5:0b:fa:6e:4c:49:4a:02:47:2e:10: 04:60:2e:49:65:73:a3:fb:a5:c2:ba:6f:e7:51:03:45:ac:a0: 89:16:a0:47:dc:8f:43:93:12:d3:ed:2e:0a:f5:0e:11:a7:33: 19:24:c4:d0:6d:77:f7:bb:ff:46:a3:7e:31:23:2f:26:49:ae: 2c:78:c0:c1:24:5c:76:5c:db:cf:2f:86:04:69:e3:ec:95:3f: 61:c6:8b:8a:e7:1f:1d:ab:b8:d1:f1:34:fb:79:58:cc:52:ae: 67:69:24:b3:92:9b:6a:c0:35:59:1a:47:a2:42:2a:54:40:2d: ce:af:06:d1:93:73:20:73:7a:b3:62:23:b5:b6:d9:97:a9:75: 26:b2:01:29:ed:32:8b:03:b4:ef:cf:52:42:c0:59:4b:78:95: 2f:f4:eb:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVCFOSdyUsG4FZsPIBMAQhhemYc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNjAzMDkxMTU1MDJaFw0yNzAzMDgxMjAwMDJaMDMxMTAvBgNV BAMTKDdBRENCNUIzMkQ1RjlFNjU4NURGN0I0ODRFMzUzQjE3RTZGOEE3MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHKpxMifnU/SKcrA+ZUdohPr+E jszDp6ZTL5LaNT8Jj1ChiV0eLy7OYUYarhFMOelMnqSco7h8JH5RudVAWu+YcyD4 twcIWhQnyOK79JDreu0B5WhDGplbH0uPKm/rs3p8dbla/3//nIisbTjr7+uTbboP 2ELQiCtEXkqOozfTFhIbuxCAvkF3A3XnVDaIpZmQ2oF9Y8ebJ+uSuKDhz3JYs+rW fTfMH6wZjJoZTumKUy6iEkLei1L0REcgjCTbwkhJxYycNTgZkSDkz/BhSqTL9mEB nfRrdwWV3VNcaLjzDAdpIwWKVnYSXT7rXp52Psp789BkpLe75jaQKEoGd/rzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUety1sy1fnmWF33tITjU7F+b4pygwHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2owDQYJ KoZIhvcNAQELBQADggEBADNDxqCbZrZfTaEmuMP2dp3fK6zWsXxetOfw1GhRZfaL WBbW9aXuXcfE3ZaQaB1cnoN57nSJV7QG96MCytHDN4e0jADEgbaYwqvqdxgvn8XS KMn2UBSk0G+I5ayUofvfsfnlC/puTElKAkcuEARgLkllc6P7pcK6b+dRA0WsoIkW oEfcj0OTEtPtLgr1DhGnMxkkxNBtd/e7/0ajfjEjLyZJrix4wMEkXHZc288vhgRp 4+yVP2HGi4rnHx2ruNHxNPt5WMxSrmdpJLOSm2rANVkaR6JCKlRALc6vBtGTcyBz erNiI7W22ZepdSayASntMosDtO/PUkLAWUt4lS/065Q= -----END CERTIFICATE-----Generated at Thu Mar 26 19:47:34 2026 by rpki-client