$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130372e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130372e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: tIqxyyUJXh1h7pLShHxvnCr+I+7KzlD3abcUHgx/fqg= Subject key identifier: 68:96:98:15:58:0A:26:B8:9D:EA:D5:F2:A7:76:1F:78:90:A2:0A:91 Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 6DFFD650E006EFADBD1A5020E6FA273F472259AA Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130372e302f32342d3234203d3e20313338303730.roa Signing time: Mon 09 Mar 2026 12:00:02 +0000 ROA not before: Mon 09 Mar 2026 11:55:02 +0000 ROA not after: Mon 08 Mar 2027 12:00:02 +0000 asID: 138070 IP address blocks: 103.123.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 07:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ff:d6:50:e0:06:ef:ad:bd:1a:50:20:e6:fa:27:3f:47:22:59:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Mar 9 11:55:02 2026 GMT Not After : Mar 8 12:00:02 2027 GMT Subject: CN=68969815580A26B89DEAD5F2A7761F7890A20A91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b0:1c:38:e6:29:6f:27:28:d5:7b:bc:78:a7: ad:ae:15:bb:a2:48:1f:6b:bd:ab:6b:8b:57:2b:6f: a7:73:10:41:bd:a2:84:f3:e5:c3:51:b5:60:80:f4: 17:36:6e:6f:ec:71:28:4c:18:33:5b:29:bb:d4:d3: eb:56:15:8b:35:82:87:42:0c:7a:21:a9:46:f7:cd: 9d:87:9a:82:01:10:6d:6d:1c:6c:23:24:7c:7b:f8: 37:4d:e1:74:04:ce:c8:d4:1a:bd:de:a7:35:12:cf: 41:44:5e:62:0e:27:f1:a0:cc:7b:3c:ff:7e:c5:a4: 86:76:7c:76:09:9d:6c:67:30:aa:ef:89:43:96:f0: a8:d6:42:9c:eb:cc:56:41:ec:05:62:2d:98:fb:a5: 09:2d:e0:2f:3f:c3:c9:98:64:7e:64:33:a6:a6:b4: 0a:25:ad:e4:41:92:12:2a:19:1e:ac:af:7a:a8:85: ea:17:f2:c7:c2:a5:cf:1d:55:0b:27:d0:86:55:22: b3:7f:fc:ba:0d:f9:5d:fc:8a:af:72:51:ce:dd:3f: 15:4f:5d:ab:34:d0:c6:97:d3:5e:ca:a1:78:62:a2: a9:70:d2:0c:f1:0f:3f:9c:47:cb:71:8c:0f:64:25: ec:6d:e3:5c:fb:34:71:c3:11:7a:4e:5d:2b:87:b1: 65:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:96:98:15:58:0A:26:B8:9D:EA:D5:F2:A7:76:1F:78:90:A2:0A:91 X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130372e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.107.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:11:f1:e6:f3:53:f5:7b:43:18:62:b3:af:7b:b2:44:ad:da: 18:7f:37:26:75:ce:75:c5:16:60:50:44:89:72:c3:0f:61:c9: 0b:59:af:02:89:58:75:42:96:45:7d:17:54:72:6b:72:84:ee: 9a:96:fc:f6:df:c0:3f:15:bf:9d:da:1a:3b:07:9a:a6:2d:42: 26:2c:36:67:13:eb:c0:84:20:3d:21:a5:51:b5:70:ff:2c:ae: 58:35:9d:f5:57:b8:0c:c3:3c:c3:ff:e9:93:60:12:9c:81:00: 09:78:96:8a:3c:57:15:ce:7f:7a:66:13:2a:8a:ad:f4:5b:f9: 13:04:6e:ed:27:e9:30:53:bf:dd:28:7c:35:9e:ae:a8:82:a1: 37:ec:c6:8d:da:94:60:cb:5d:2c:e5:cd:e3:7c:5b:38:53:11: 59:35:8c:24:4d:6b:f5:ad:2f:ca:67:fb:15:d1:17:09:d4:7c: 36:3e:f3:76:df:1e:e3:97:9a:c8:5d:19:1f:da:8c:74:94:95: 4f:7c:80:bd:da:9f:47:e3:02:71:6c:d1:36:7a:e6:ac:40:8e: 7c:0d:d2:d9:d3:56:d0:43:54:f9:6d:a6:c5:8d:5d:ed:b0:14: 82:c2:d7:dd:7e:49:b6:f7:05:c4:a8:c1:23:d9:04:c2:c5:78: 72:f2:3b:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbf/WUOAG7629GlAg5vonP0ciWaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNjAzMDkxMTU1MDJaFw0yNzAzMDgxMjAwMDJaMDMxMTAvBgNV BAMTKDY4OTY5ODE1NTgwQTI2Qjg5REVBRDVGMkE3NzYxRjc4OTBBMjBBOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQsBw45ilvJyjVe7x4p62uFbui SB9rvatri1crb6dzEEG9ooTz5cNRtWCA9Bc2bm/scShMGDNbKbvU0+tWFYs1godC DHohqUb3zZ2HmoIBEG1tHGwjJHx7+DdN4XQEzsjUGr3epzUSz0FEXmIOJ/GgzHs8 /37FpIZ2fHYJnWxnMKrviUOW8KjWQpzrzFZB7AViLZj7pQkt4C8/w8mYZH5kM6am tAolreRBkhIqGR6sr3qoheoX8sfCpc8dVQsn0IZVIrN//LoN+V38iq9yUc7dPxVP Xas00MaX017KoXhioqlw0gzxDz+cR8txjA9kJext41z7NHHDEXpOXSuHsWX5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaJaYFVgKJrid6tXyp3YfeJCiCpEwHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2swDQYJ KoZIhvcNAQELBQADggEBAE0R8ebzU/V7Qxhis697skSt2hh/NyZ1znXFFmBQRIly ww9hyQtZrwKJWHVClkV9F1Rya3KE7pqW/PbfwD8Vv53aGjsHmqYtQiYsNmcT68CE ID0hpVG1cP8srlg1nfVXuAzDPMP/6ZNgEpyBAAl4loo8VxXOf3pmEyqKrfRb+RME bu0n6TBTv90ofDWerqiCoTfsxo3alGDLXSzlzeN8WzhTEVk1jCRNa/WtL8pn+xXR FwnUfDY+83bfHuOXmshdGR/ajHSUlU98gL3an0fjAnFs0TZ65qxAjnwN0tnTVtBD VPltpsWNXe2wFILC191+Sbb3BcSowSPZBMLFeHLyO54= -----END CERTIFICATE-----Generated at Thu Mar 26 19:17:28 2026 by rpki-client