$ rpki-client -vvf repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa File: 3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa (raw, json) Hash identifier: h9dnF3KOw12yt6fcsAbVmRkmtSJxVLoM69P1BMcAcZ8= Subject key identifier: 5F:35:E6:F0:62:BB:56:36:D2:1B:BE:C4:48:B3:E2:20:77:AB:A9:30 Certificate issuer: /CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Certificate serial: 435A96BF64B07559C1F356DB19E6E5E465C4743E Authority key identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa Signing time: Fri 20 Mar 2026 09:00:01 +0000 ROA not before: Fri 20 Mar 2026 08:55:01 +0000 ROA not after: Fri 19 Mar 2027 09:00:01 +0000 asID: 147138 IP address blocks: 103.177.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5a:96:bf:64:b0:75:59:c1:f3:56:db:19:e6:e5:e4:65:c4:74:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Validity Not Before: Mar 20 08:55:01 2026 GMT Not After : Mar 19 09:00:01 2027 GMT Subject: CN=5F35E6F062BB5636D21BBEC448B3E22077ABA930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4b:10:64:9c:e1:75:60:82:d8:fe:98:ba:a8: 01:88:33:35:35:03:80:82:13:58:f9:3f:54:20:19: ca:24:a4:49:82:ea:af:ac:24:75:e8:30:a7:b7:52: 4d:f8:31:d9:a4:b4:8e:b1:c9:a3:2a:16:0b:83:71: e9:b1:d7:05:8e:e5:10:5f:5d:e0:6a:a1:5d:df:0c: e9:1a:ea:15:6d:99:b2:fe:e4:cd:75:03:75:e1:1a: dd:d7:1f:26:56:b4:3f:d1:56:ff:04:d8:f5:7e:1f: 61:5a:7d:f7:8e:b7:d2:40:13:39:ee:92:d9:22:51: 91:13:51:59:10:ed:54:58:02:82:a9:46:06:c2:e3: dd:4e:6a:32:39:b5:50:87:45:74:9f:19:f9:b4:24: 51:df:56:3e:73:02:23:03:17:5f:86:11:cd:e6:31: fa:63:5d:e7:08:f5:f6:5d:8a:8b:3d:30:52:4d:e0: 9a:fa:a2:fb:a7:a0:be:20:3e:a3:0e:12:45:51:69: e3:c8:02:b9:34:2c:a4:d0:5c:7a:34:90:ff:d8:ab: b1:7e:9f:89:99:a8:9e:09:eb:66:ec:1d:d9:d7:ea: 93:51:25:a8:f7:0d:fd:2e:a7:89:6e:24:37:87:a1: bd:84:0b:a4:65:d5:72:fe:19:1c:d4:1e:5e:cf:1b: 68:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:35:E6:F0:62:BB:56:36:D2:1B:BE:C4:48:B3:E2:20:77:AB:A9:30 X509v3 Authority Key Identifier: keyid:FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.14.0/24 Signature Algorithm: sha256WithRSAEncryption 25:62:80:a1:ce:84:c2:71:3e:f8:9e:50:59:3c:1e:c8:7b:ba: ef:16:19:79:89:93:d2:39:59:e2:24:ae:27:62:6d:15:69:1d: 47:97:17:e4:01:e5:b8:f1:a4:79:1d:0b:60:fc:80:cf:fd:f3: 90:37:df:dd:a1:a7:18:0e:28:53:6b:a2:4b:9e:d1:47:ce:20: 92:d8:49:b0:5f:a6:63:13:27:02:99:49:f8:a4:0c:db:e7:cc: 5f:73:43:5e:7e:9d:5b:82:23:4b:d5:33:eb:fe:8d:dc:17:1e: 3a:bb:f7:16:31:e8:ad:9c:09:be:0f:08:34:e8:36:52:55:b1: e0:f8:27:fc:0b:7f:a5:f6:41:69:e2:44:fb:80:cc:d5:7b:e2: ab:0e:3f:a8:b5:6b:fc:c5:a9:db:d5:f6:43:e8:5d:43:7e:8d: c4:fc:89:05:4e:0f:c6:ed:ba:4d:d6:59:48:9c:1c:fb:83:f6: 8b:11:a2:89:02:e0:d6:25:5a:fd:50:a4:de:20:00:d6:03:2e: e8:1e:a7:59:d4:14:5e:7d:47:1f:1a:92:91:f1:2c:3f:e0:e5: e5:b1:f7:8c:82:f8:76:ab:2d:0f:30:d2:f1:1d:84:f0:2b:c3: b0:9f:a2:43:1e:a5:47:01:ee:bf:06:33:99:6d:45:76:2f:36: 59:e9:46:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ1qWv2SwdVnB81bbGebl5GXEdD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYx QzFGNkRENDAeFw0yNjAzMjAwODU1MDFaFw0yNzAzMTkwOTAwMDFaMDMxMTAvBgNV BAMTKDVGMzVFNkYwNjJCQjU2MzZEMjFCQkVDNDQ4QjNFMjIwNzdBQkE5MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDESxBknOF1YILY/pi6qAGIMzU1 A4CCE1j5P1QgGcokpEmC6q+sJHXoMKe3Uk34MdmktI6xyaMqFguDcemx1wWO5RBf XeBqoV3fDOka6hVtmbL+5M11A3XhGt3XHyZWtD/RVv8E2PV+H2FaffeOt9JAEznu ktkiUZETUVkQ7VRYAoKpRgbC491OajI5tVCHRXSfGfm0JFHfVj5zAiMDF1+GEc3m MfpjXecI9fZdios9MFJN4Jr6ovunoL4gPqMOEkVRaePIArk0LKTQXHo0kP/Yq7F+ n4mZqJ4J62bsHdnX6pNRJaj3Df0up4luJDeHob2EC6Rl1XL+GRzUHl7PG2h3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXzXm8GK7VjbSG77ESLPiIHerqTAwHwYDVR0j BBgwFoAU/3dQfm0fDgtusBEunPvRrxwfbdQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmUwNDAzOC1hMWI2LTQzMmMtODU0Yi1jYzZlOGNmMzJlMDYvMC9GRjc3NTA3RTZE MUYwRTBCNkVCMDExMkU5Q0ZCRDFBRjFDMUY2REQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYxQzFG NkRENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiZTA0MDM4LWExYjYtNDMyYy04 NTRiLWNjNmU4Y2YzMmUwNi8wLzMxMzAzMzJlMzEzNzM3MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7EOMA0GCSqG SIb3DQEBCwUAA4IBAQAlYoChzoTCcT74nlBZPB7Ie7rvFhl5iZPSOVniJK4nYm0V aR1HlxfkAeW48aR5HQtg/IDP/fOQN9/doacYDihTa6JLntFHziCS2EmwX6ZjEycC mUn4pAzb58xfc0Nefp1bgiNL1TPr/o3cFx46u/cWMeitnAm+Dwg06DZSVbHg+Cf8 C3+l9kFp4kT7gMzVe+KrDj+otWv8xanb1fZD6F1Dfo3E/IkFTg/G7bpN1llInBz7 g/aLEaKJAuDWJVr9UKTeIADWAy7oHqdZ1BRefUcfGpKR8Sw/4OXlsfeMgvh2qy0P MNLxHYTwK8Own6JDHqVHAe6/BjOZbUV2LzZZ6UYm -----END CERTIFICATE-----Generated at Fri Mar 27 00:55:06 2026 by rpki-client