$ rpki-client -vvf repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa File: 3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa (raw, json) Hash identifier: Kfl/9sWBuFPrWTyEyf/VdVj14rEjs9zTdYMKN2Ca1VQ= Subject key identifier: D7:69:68:31:6C:15:C2:FF:EF:3A:0E:BA:9F:35:41:7E:CD:38:6C:6A Certificate issuer: /CN=8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2 Certificate serial: 4FAFF984FE50DC4179FCFC08ED54F40D7AF852E1 Authority key identifier: 8B:0D:E1:41:AC:B8:11:E0:FE:65:08:5C:F2:33:9E:E4:C7:EE:05:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa Signing time: Tue 10 Mar 2026 09:03:17 +0000 ROA not before: Tue 10 Mar 2026 08:58:17 +0000 ROA not after: Tue 09 Mar 2027 09:03:17 +0000 asID: 149667 IP address blocks: 103.184.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.crl rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:af:f9:84:fe:50:dc:41:79:fc:fc:08:ed:54:f4:0d:7a:f8:52:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2 Validity Not Before: Mar 10 08:58:17 2026 GMT Not After : Mar 9 09:03:17 2027 GMT Subject: CN=D76968316C15C2FFEF3A0EBA9F35417ECD386C6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5d:1c:82:16:af:2c:7d:ae:af:ad:c1:12:f3: b9:cd:cc:b6:6f:86:bd:93:63:26:53:b5:8d:01:ce: c0:3d:ff:7c:bd:39:2a:f5:5a:fa:1d:e7:f0:96:19: d5:4d:ed:4e:ad:51:58:18:7e:6d:f8:04:f6:c4:60: b2:c2:48:6f:57:b3:ba:43:3c:d1:46:a0:39:e8:ae: 33:0e:08:a8:b3:c8:8a:27:95:42:ea:1f:1c:0e:73: 97:0e:3b:36:1f:eb:ed:a7:96:c7:dc:db:b9:4d:ea: 95:b5:82:fb:64:2f:e4:8b:42:ea:31:62:bf:47:50: 94:55:bd:ea:54:06:bf:99:03:6e:1e:f8:33:af:d5: 84:39:3a:71:58:6c:89:a6:cd:7a:9a:0f:bd:6e:0c: 96:ec:f6:45:62:be:1a:28:06:f5:1a:7c:ed:eb:76: d9:cc:b1:14:ab:90:93:9e:b3:bb:ff:ca:d6:a1:01: 87:32:4b:89:5d:7b:b2:8f:bb:95:8e:aa:fe:f0:04: c1:9c:43:b3:c9:95:70:a1:ad:23:f3:ce:6e:c7:3b: e0:de:b1:35:b7:3c:13:bb:fb:38:0b:9c:19:18:30: 39:12:4b:5f:06:cb:1c:b0:e3:0c:60:88:85:d2:1f: bc:11:bd:6f:fb:df:5a:d4:b5:d4:bd:bf:c3:7e:01: 69:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:69:68:31:6C:15:C2:FF:EF:3A:0E:BA:9F:35:41:7E:CD:38:6C:6A X509v3 Authority Key Identifier: keyid:8B:0D:E1:41:AC:B8:11:E0:FE:65:08:5C:F2:33:9E:E4:C7:EE:05:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.56.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:4a:f6:7f:5c:cd:a2:f7:b3:c2:6f:a3:49:04:ac:bd:69:ca: 7e:10:98:22:df:17:06:34:07:69:06:44:a4:4a:63:65:0d:27: 95:da:0f:9e:dc:dc:12:f5:c8:be:7d:9a:cb:73:ea:fe:27:92: d2:5f:50:1d:81:02:6f:75:40:1a:00:de:f7:ec:ef:00:94:28: dd:01:45:3a:18:8b:ea:85:31:58:d1:41:de:c6:e4:88:4d:db: 9e:98:b4:94:7c:81:55:48:0c:95:9f:25:31:c9:f5:5d:87:4c: bc:47:88:13:5e:f3:60:17:2d:ea:4a:a9:37:b9:e9:5c:5f:e1: 2a:76:d5:c7:f2:21:6f:c1:46:9c:bd:1a:87:2c:23:54:d3:f1: 06:a0:9c:31:7d:8a:56:c0:82:56:77:38:11:49:75:96:dd:0b: 9e:02:d4:58:05:a2:d3:84:ff:ec:dd:7c:13:e3:d7:2c:76:d8: 50:52:9e:6b:e4:8d:c5:33:10:f3:36:f8:e3:91:9c:a8:2a:3c: 97:86:98:0a:68:7e:d9:f6:81:c4:c6:d6:3b:cf:07:64:77:f0: 04:82:5f:27:30:90:f2:b9:96:35:b5:2a:eb:cb:44:cb:64:7c: 7a:42:f9:27:20:df:89:6a:93:eb:ac:79:89:a4:da:a0:92:bc: b8:cd:5d:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT6/5hP5Q3EF5/PwI7VT0DXr4UuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIwREUxNDFBQ0I4MTFFMEZFNjUwODVDRjIzMzlFRTRD N0VFMDVBMjAeFw0yNjAzMTAwODU4MTdaFw0yNzAzMDkwOTAzMTdaMDMxMTAvBgNV BAMTKEQ3Njk2ODMxNkMxNUMyRkZFRjNBMEVCQTlGMzU0MTdFQ0QzODZDNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3XRyCFq8sfa6vrcES87nNzLZv hr2TYyZTtY0BzsA9/3y9OSr1Wvod5/CWGdVN7U6tUVgYfm34BPbEYLLCSG9Xs7pD PNFGoDnorjMOCKizyIonlULqHxwOc5cOOzYf6+2nlsfc27lN6pW1gvtkL+SLQuox Yr9HUJRVvepUBr+ZA24e+DOv1YQ5OnFYbImmzXqaD71uDJbs9kVivhooBvUafO3r dtnMsRSrkJOes7v/ytahAYcyS4lde7KPu5WOqv7wBMGcQ7PJlXChrSPzzm7HO+De sTW3PBO7+zgLnBkYMDkSS18Gyxyw4wxgiIXSH7wRvW/731rUtdS9v8N+AWlVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU12loMWwVwv/vOg66nzVBfs04bGowHwYDVR0j BBgwFoAUiw3hQay4EeD+ZQhc8jOe5MfuBaIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTZhNTdjNS1kZjczLTQzZjUtODY1ZC02YmQyNDhjMjJmYmEvMC84QjBERTE0MUFD QjgxMUUwRkU2NTA4NUNGMjMzOUVFNEM3RUUwNUEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEIwREUxNDFBQ0I4MTFFMEZFNjUwODVDRjIzMzlFRTRDN0VF MDVBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNmE1N2M1LWRmNzMtNDNmNS04 NjVkLTZiZDI0OGMyMmZiYS8wLzMxMzAzMzJlMzEzODM0MmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7g4MA0GCSqG SIb3DQEBCwUAA4IBAQBKSvZ/XM2i97PCb6NJBKy9acp+EJgi3xcGNAdpBkSkSmNl DSeV2g+e3NwS9ci+fZrLc+r+J5LSX1AdgQJvdUAaAN737O8AlCjdAUU6GIvqhTFY 0UHexuSITduemLSUfIFVSAyVnyUxyfVdh0y8R4gTXvNgFy3qSqk3uelcX+EqdtXH 8iFvwUacvRqHLCNU0/EGoJwxfYpWwIJWdzgRSXWW3QueAtRYBaLThP/s3XwT49cs dthQUp5r5I3FMxDzNvjjkZyoKjyXhpgKaH7Z9oHExtY7zwdkd/AEgl8nMJDyuZY1 tSrry0TLZHx6QvknIN+JapPrrHmJpNqgkry4zV2Y -----END CERTIFICATE-----Generated at Thu Mar 26 21:13:13 2026 by rpki-client