$ rpki-client -vvf repo-rpki.idnic.net/repo/e71bf980-24da-4865-a989-2d4489e3a505/0/3130332e3134322e36302e302f32332d3234203d3e20313339333639.roa File: 3130332e3134322e36302e302f32332d3234203d3e20313339333639.roa (raw, json) Hash identifier: Ub1gaXrsr3jYwznRfiJ7hcJdmUDiG8zu3ELlFNODX3w= Subject key identifier: 52:45:33:C8:CE:77:E3:60:14:B0:BA:44:64:3E:DD:5F:93:FD:C1:38 Certificate issuer: /CN=7A1D192D65B7EEADC46AB445208CC224DCE974B6 Certificate serial: 30249841B36F4377D915FDCC1743AA0DD4F276F4 Authority key identifier: 7A:1D:19:2D:65:B7:EE:AD:C4:6A:B4:45:20:8C:C2:24:DC:E9:74:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A1D192D65B7EEADC46AB445208CC224DCE974B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e71bf980-24da-4865-a989-2d4489e3a505/0/3130332e3134322e36302e302f32332d3234203d3e20313339333639.roa Signing time: Mon 23 Mar 2026 02:00:00 +0000 ROA not before: Mon 23 Mar 2026 01:55:00 +0000 ROA not after: Mon 22 Mar 2027 02:00:00 +0000 asID: 139369 IP address blocks: 103.142.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e71bf980-24da-4865-a989-2d4489e3a505/0/7A1D192D65B7EEADC46AB445208CC224DCE974B6.crl rsync://repo-rpki.idnic.net/repo/e71bf980-24da-4865-a989-2d4489e3a505/0/7A1D192D65B7EEADC46AB445208CC224DCE974B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A1D192D65B7EEADC46AB445208CC224DCE974B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 14:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:24:98:41:b3:6f:43:77:d9:15:fd:cc:17:43:aa:0d:d4:f2:76:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A1D192D65B7EEADC46AB445208CC224DCE974B6 Validity Not Before: Mar 23 01:55:00 2026 GMT Not After : Mar 22 02:00:00 2027 GMT Subject: CN=524533C8CE77E36014B0BA44643EDD5F93FDC138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9c:5e:07:ee:7d:67:24:19:e7:5e:dd:d2:32: 9c:8c:71:05:b1:2d:77:98:5f:17:89:e7:13:80:91: c2:ef:81:28:0d:dd:6c:ca:b9:cc:49:17:68:e0:86: 6f:07:3a:18:c8:0d:91:94:0b:1c:ab:62:a1:fd:9f: fd:49:89:a1:e2:72:a1:c8:e0:1f:56:02:92:5f:ca: 08:74:f2:65:30:df:e1:03:c3:21:22:f6:3c:67:cd: b8:31:a2:0a:b5:50:54:2e:97:9a:ee:c0:34:20:0a: 5c:d7:84:1a:a9:fd:0c:0e:ad:57:fe:1d:77:b4:38: fa:69:85:15:61:a2:4e:15:33:e4:c2:44:2c:66:55: 1f:16:e7:2d:72:a1:ba:37:78:5b:a5:ee:8f:9d:d8: 39:0f:08:42:83:08:cf:15:04:37:e4:eb:fa:f4:83: 7f:99:a6:31:2a:f0:3c:6e:5a:9f:5f:75:3f:29:6f: 26:6e:9d:71:2a:e2:92:02:8d:ee:e4:e9:94:66:fc: 1a:fd:94:79:d2:9e:35:10:6b:35:c5:32:eb:31:75: 42:2f:6a:60:a4:63:df:cc:f5:75:49:e7:77:d0:a8: fa:69:a5:83:54:c0:2a:95:17:4e:0a:ac:b6:1d:e0: 54:fa:60:a0:7b:bd:07:97:2c:4f:2e:1e:bc:ff:28: c0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:45:33:C8:CE:77:E3:60:14:B0:BA:44:64:3E:DD:5F:93:FD:C1:38 X509v3 Authority Key Identifier: keyid:7A:1D:19:2D:65:B7:EE:AD:C4:6A:B4:45:20:8C:C2:24:DC:E9:74:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e71bf980-24da-4865-a989-2d4489e3a505/0/7A1D192D65B7EEADC46AB445208CC224DCE974B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A1D192D65B7EEADC46AB445208CC224DCE974B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e71bf980-24da-4865-a989-2d4489e3a505/0/3130332e3134322e36302e302f32332d3234203d3e20313339333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.60.0/23 Signature Algorithm: sha256WithRSAEncryption 39:bd:5b:90:99:37:6b:f4:e5:fc:a5:0e:73:02:fc:db:b6:bf: 70:3d:cc:97:47:8c:3e:7f:78:09:9d:c6:65:83:22:a2:f1:06: a9:a3:2d:d8:40:59:b7:48:2c:4d:e5:d3:4b:25:86:8d:e7:38: 0f:bb:12:7a:01:84:b9:3b:47:45:8d:64:98:cf:8d:ca:8d:85: 79:8e:c0:83:3d:cb:ff:ff:f9:6b:c1:47:ef:fa:40:46:bd:2c: 3e:3b:fd:a9:fa:cd:fc:60:ce:cf:f0:3a:2f:d8:c7:1b:e7:ff: a3:d0:cb:ce:50:ff:f8:04:ae:36:96:0b:24:05:21:af:15:7d: 0a:35:d5:65:39:0e:f8:f1:b1:e9:32:92:1d:93:81:52:f9:3a: ca:0e:9f:b6:87:0d:e7:01:7f:2f:05:5d:00:b0:de:3d:f1:5f: 86:d4:a2:ca:b0:58:07:29:3b:9d:0d:9c:f9:0a:5c:0b:2f:77: d4:ae:2b:43:e8:7b:20:c4:b4:66:83:ad:c4:a4:ea:64:c4:41: 7c:22:cc:ab:c4:49:2b:17:89:a9:2a:31:83:26:3d:25:51:7f: f8:78:c9:84:77:af:57:cb:d9:c0:c6:42:65:d6:51:e6:f4:af: cc:00:15:7d:8a:09:35:ee:d2:2e:27:a7:e0:ab:68:6e:ac:cf: f4:bd:90:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMCSYQbNvQ3fZFf3MF0OqDdTydvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ExRDE5MkQ2NUI3RUVBREM0NkFCNDQ1MjA4Q0MyMjRE Q0U5NzRCNjAeFw0yNjAzMjMwMTU1MDBaFw0yNzAzMjIwMjAwMDBaMDMxMTAvBgNV BAMTKDUyNDUzM0M4Q0U3N0UzNjAxNEIwQkE0NDY0M0VERDVGOTNGREMxMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCnF4H7n1nJBnnXt3SMpyMcQWx LXeYXxeJ5xOAkcLvgSgN3WzKucxJF2jghm8HOhjIDZGUCxyrYqH9n/1JiaHicqHI 4B9WApJfygh08mUw3+EDwyEi9jxnzbgxogq1UFQul5ruwDQgClzXhBqp/QwOrVf+ HXe0OPpphRVhok4VM+TCRCxmVR8W5y1yobo3eFul7o+d2DkPCEKDCM8VBDfk6/r0 g3+ZpjEq8DxuWp9fdT8pbyZunXEq4pICje7k6ZRm/Br9lHnSnjUQazXFMusxdUIv amCkY9/M9XVJ53fQqPpppYNUwCqVF04KrLYd4FT6YKB7vQeXLE8uHrz/KMBNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUkUzyM5342AUsLpEZD7dX5P9wTgwHwYDVR0j BBgwFoAUeh0ZLWW37q3EarRFIIzCJNzpdLYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NzFiZjk4MC0yNGRhLTQ4NjUtYTk4OS0yZDQ0ODllM2E1MDUvMC83QTFEMTkyRDY1 QjdFRUFEQzQ2QUI0NDUyMDhDQzIyNERDRTk3NEI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0ExRDE5MkQ2NUI3RUVBREM0NkFCNDQ1MjA4Q0MyMjREQ0U5 NzRCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3MWJmOTgwLTI0ZGEtNDg2NS1h OTg5LTJkNDQ4OWUzYTUwNS8wLzMxMzAzMzJlMzEzNDMyMmUzNjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ448MA0GCSqG SIb3DQEBCwUAA4IBAQA5vVuQmTdr9OX8pQ5zAvzbtr9wPcyXR4w+f3gJncZlgyKi 8Qapoy3YQFm3SCxN5dNLJYaN5zgPuxJ6AYS5O0dFjWSYz43KjYV5jsCDPcv///lr wUfv+kBGvSw+O/2p+s38YM7P8Dov2Mcb5/+j0MvOUP/4BK42lgskBSGvFX0KNdVl OQ748bHpMpIdk4FS+TrKDp+2hw3nAX8vBV0AsN498V+G1KLKsFgHKTudDZz5ClwL L3fUritD6HsgxLRmg63EpOpkxEF8IsyrxEkrF4mpKjGDJj0lUX/4eMmEd69Xy9nA xkJl1lHm9K/MABV9igk17tIuJ6fgq2hurM/0vZC3 -----END CERTIFICATE-----Generated at Thu Mar 26 19:53:48 2026 by rpki-client