$ rpki-client -vvf repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa File: 3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa (raw, json) Hash identifier: MSRYn7i1rX73d9U2LJmtSA3qcfr4Ipq2h6IBGH+C68I= Subject key identifier: C9:E7:34:4F:08:22:53:1D:18:01:22:40:ED:AD:26:FA:96:DE:17:96 Certificate issuer: /CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Certificate serial: 18E8A52B27714BB50D1D707CF170AD7B3D148FF7 Authority key identifier: 21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa Signing time: Thu 05 Mar 2026 11:00:01 +0000 ROA not before: Thu 05 Mar 2026 10:55:01 +0000 ROA not after: Thu 04 Mar 2027 11:00:01 +0000 asID: 135473 IP address blocks: 103.73.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 05:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e8:a5:2b:27:71:4b:b5:0d:1d:70:7c:f1:70:ad:7b:3d:14:8f:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Validity Not Before: Mar 5 10:55:01 2026 GMT Not After : Mar 4 11:00:01 2027 GMT Subject: CN=C9E7344F0822531D18012240EDAD26FA96DE1796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:85:32:f9:5a:20:e2:9c:d8:96:00:87:52:42: 81:13:89:34:02:62:5a:68:31:3b:a4:4a:c4:f2:10: 49:30:1a:01:9b:95:63:1a:9a:be:2b:24:a5:bc:fd: a5:a5:09:ad:1c:54:76:e8:3a:5b:25:87:0c:06:9c: cf:a9:20:59:55:b1:6e:d9:1f:93:fc:ad:6d:fc:05: b2:0b:d2:a9:d1:f1:51:a4:3a:50:1b:de:ab:90:fb: 0d:c0:2e:e3:b5:14:4c:74:ce:90:5a:aa:ee:e6:96: 7f:3f:30:e9:3f:e4:3c:28:28:0a:63:09:f0:80:1c: a5:9f:b0:f7:5f:be:b6:3a:f3:e3:79:e2:79:36:fa: 74:c5:00:7e:ac:91:16:b4:15:c2:d8:e6:2e:6f:56: 05:6d:02:ac:5a:a5:df:d0:5f:f3:49:53:a0:f2:3f: 3b:77:15:a8:94:3e:bd:e1:38:c5:81:02:95:fb:b3: 2a:ab:5e:27:7a:14:3b:70:83:14:f9:49:5c:36:86: 43:7c:f8:b9:89:81:01:d7:df:54:ef:b7:3a:7f:8c: c1:27:02:40:e1:49:da:61:82:36:c3:6e:a6:0e:c6: 96:64:3d:7a:18:12:6a:58:bb:92:58:6a:c4:5b:cb: a6:35:6e:53:00:89:82:9f:23:73:99:9a:30:83:5c: 81:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E7:34:4F:08:22:53:1D:18:01:22:40:ED:AD:26:FA:96:DE:17:96 X509v3 Authority Key Identifier: keyid:21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.235.0/24 Signature Algorithm: sha256WithRSAEncryption 50:0b:02:79:6b:c5:26:33:44:0f:ee:9e:e9:65:a7:46:30:10: aa:29:cf:4e:0b:63:f6:ee:14:dc:30:0a:a1:0a:8d:e1:c9:9f: c9:e6:08:a7:77:f0:8e:0b:1b:5a:ee:79:f3:5d:06:b3:90:de: 00:e6:29:a6:06:83:9a:cb:46:08:d1:26:c6:fe:7d:ba:49:60: 29:5b:64:7f:0f:3a:89:5d:13:30:c0:9f:e5:2f:0d:b0:bb:04: 37:85:d1:b0:44:b1:72:79:84:9d:a6:f0:a1:1f:93:d4:c4:bb: a1:75:8e:8e:5f:ff:76:ab:f7:4a:f5:43:40:bc:97:5f:a4:b0: 64:77:cd:30:5d:25:4c:69:e2:d6:a9:b2:75:f9:51:6f:31:64: 7a:4c:63:b5:68:6a:e4:62:c6:3b:f5:10:88:bc:76:25:b2:7c: 3e:ae:fd:a3:01:b5:9c:e6:9f:e7:09:30:6c:ac:e6:59:fd:39: 6b:b9:f1:90:75:77:98:b5:fe:a5:cb:89:3e:70:2a:94:7b:f9: ba:28:4c:60:93:c5:d4:e3:8c:c0:4c:43:91:10:a2:7a:14:bf: 6e:29:3d:8c:03:6e:57:3b:22:23:71:b8:89:b4:b9:fd:bd:69: 7b:8c:b6:b8:81:1e:ff:03:37:c6:c3:31:f8:6b:84:09:b0:b0: e6:78:32:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGOilKydxS7UNHXB88XCtez0Uj/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZC ODhBMzJBOTAeFw0yNjAzMDUxMDU1MDFaFw0yNzAzMDQxMTAwMDFaMDMxMTAvBgNV BAMTKEM5RTczNDRGMDgyMjUzMUQxODAxMjI0MEVEQUQyNkZBOTZERTE3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0hTL5WiDinNiWAIdSQoETiTQC YlpoMTukSsTyEEkwGgGblWMamr4rJKW8/aWlCa0cVHboOlslhwwGnM+pIFlVsW7Z H5P8rW38BbIL0qnR8VGkOlAb3quQ+w3ALuO1FEx0zpBaqu7mln8/MOk/5DwoKApj CfCAHKWfsPdfvrY68+N54nk2+nTFAH6skRa0FcLY5i5vVgVtAqxapd/QX/NJU6Dy Pzt3FaiUPr3hOMWBApX7syqrXid6FDtwgxT5SVw2hkN8+LmJgQHX31Tvtzp/jMEn AkDhSdphgjbDbqYOxpZkPXoYEmpYu5JYasRby6Y1blMAiYKfI3OZmjCDXIFvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyec0TwgiUx0YASJA7a0m+pbeF5YwHwYDVR0j BBgwFoAUIQ/ZjrTZpNjQ/Lmy87u8f7iKMqkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mjc4OGM4OC1jYTJjLTRmYTAtYTM1Zi0zZTdhMTA4ODcyMjgvMC8yMTBGRDk4RUI0 RDlBNEQ4RDBGQ0I5QjJGM0JCQkM3RkI4OEEzMkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZCODhB MzJBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNzg4Yzg4LWNhMmMtNGZhMC1h MzVmLTNlN2ExMDg4NzIyOC8wLzMxMzAzMzJlMzczMzJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0nrMA0GCSqG SIb3DQEBCwUAA4IBAQBQCwJ5a8UmM0QP7p7pZadGMBCqKc9OC2P27hTcMAqhCo3h yZ/J5gind/COCxta7nnzXQazkN4A5immBoOay0YI0SbG/n26SWApW2R/DzqJXRMw wJ/lLw2wuwQ3hdGwRLFyeYSdpvChH5PUxLuhdY6OX/92q/dK9UNAvJdfpLBkd80w XSVMaeLWqbJ1+VFvMWR6TGO1aGrkYsY79RCIvHYlsnw+rv2jAbWc5p/nCTBsrOZZ /TlrufGQdXeYtf6ly4k+cCqUe/m6KExgk8XU44zATEOREKJ6FL9uKT2MA25XOyIj cbiJtLn9vWl7jLa4gR7/AzfGwzH4a4QJsLDmeDLd -----END CERTIFICATE-----Generated at Thu Mar 26 16:44:28 2026 by rpki-client