$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3130332e39312e32342e302f32322d3234203d3e20313432333739.roa File: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (raw, json) Hash identifier: 7KmVFtPmF1PKTzL10ZTaJivGdGaijKq3y/u3fcta36Y= Subject key identifier: D9:C8:9D:C8:FA:79:87:13:D4:C0:B5:06:CB:11:7F:D6:57:38:CA:8D Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 0C8F36192703038B0A80CD3E8157D2F3FD1E9C78 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3130332e39312e32342e302f32322d3234203d3e20313432333739.roa Signing time: Wed 01 Apr 2026 05:01:21 +0000 ROA not before: Wed 01 Apr 2026 04:56:21 +0000 ROA not after: Wed 31 Mar 2027 05:01:21 +0000 asID: 142379 IP address blocks: 103.91.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8f:36:19:27:03:03:8b:0a:80:cd:3e:81:57:d2:f3:fd:1e:9c:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Apr 1 04:56:21 2026 GMT Not After : Mar 31 05:01:21 2027 GMT Subject: CN=D9C89DC8FA798713D4C0B506CB117FD65738CA8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:42:53:84:1f:7d:bd:a0:40:b8:c3:28:49:f4: a2:8c:55:b2:74:a0:2e:ff:df:e3:2a:04:4d:4a:5c: 22:98:25:f5:5c:bb:57:91:01:cd:62:48:2b:9d:e7: ab:2c:66:96:d8:de:50:c1:fa:76:a1:2b:82:f1:27: 5a:64:b1:0a:a3:7d:08:02:dd:75:6e:08:49:ed:5c: 87:b3:95:b1:24:55:6d:55:34:ba:37:a8:ce:9b:a4: 74:ba:07:d8:92:42:1f:0c:27:16:1a:d6:35:1f:f9: 6b:d4:29:73:b5:98:3e:03:b5:a6:43:0a:e4:d3:9f: 11:f7:d6:50:1b:24:69:ee:2e:1f:fe:87:b0:f6:55: a1:d2:f8:40:b0:40:35:18:d4:c8:60:a2:a5:18:d9: 13:38:bb:8a:9b:79:a8:02:18:6b:a1:c8:72:59:b5: d1:4e:a8:69:fb:7b:96:f4:f9:01:b3:f8:80:0a:e4: 08:6a:00:fd:b8:ec:39:af:88:16:cd:05:98:4f:da: 7a:47:55:00:09:2d:9c:5e:6f:5f:c2:cd:f9:38:20: aa:32:09:53:90:7b:da:60:48:cf:62:14:0d:15:24: d5:04:be:cf:a2:29:18:3c:fe:4b:b4:7e:b3:66:08: e0:35:8c:a8:62:c6:af:71:f5:76:d0:ad:4b:b9:98: c8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C8:9D:C8:FA:79:87:13:D4:C0:B5:06:CB:11:7F:D6:57:38:CA:8D X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3130332e39312e32342e302f32322d3234203d3e20313432333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.24.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:df:4b:c1:9b:41:22:da:4c:95:f1:e4:96:00:42:3c:02:c5: ba:af:1d:a9:44:b9:e1:65:f3:d2:56:aa:25:85:f5:5e:85:88: c9:d2:39:09:b5:d5:07:1c:6b:3f:09:99:00:f5:3d:58:43:8d: 2b:aa:b0:a3:30:8c:8a:19:c6:c0:82:3c:02:90:4d:e3:f3:a6: 0f:62:11:50:da:31:52:3e:c0:03:d6:cc:0d:ed:01:03:f9:d7: f8:de:6a:87:60:85:a3:67:92:e0:47:a8:5d:ad:c5:9a:9c:9a: 5b:a8:61:52:01:c4:dd:6c:a0:cd:b4:a1:89:31:3e:f6:a6:bb: e5:e2:83:7c:a3:19:74:53:5f:1c:bb:53:ef:6b:a8:26:a7:5b: 8d:7a:36:0c:82:c2:2b:d3:1b:3c:41:c5:10:c5:b1:9f:0c:4c: 00:e3:e3:8d:73:09:0f:eb:e5:66:ab:f8:87:d5:71:0e:bb:e1: f9:95:b3:36:2f:ce:da:7c:0b:20:c6:43:c1:32:0a:8b:37:22: 51:cb:07:68:b7:92:cf:10:e2:dd:77:97:a6:01:21:bc:13:03: f5:41:53:52:b6:d0:f3:1e:f0:a4:db:4f:72:40:c9:6b:3b:a3: 3e:33:f7:7c:54:e4:d7:9a:1e:fe:b3:41:b1:d4:4d:f9:14:fd: 1e:78:f1:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDI82GScDA4sKgM0+gVfS8/0enHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNjA0MDEwNDU2MjFaFw0yNzAzMzEwNTAxMjFaMDMxMTAvBgNV BAMTKEQ5Qzg5REM4RkE3OTg3MTNENEMwQjUwNkNCMTE3RkQ2NTczOENBOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlQlOEH329oEC4wyhJ9KKMVbJ0 oC7/3+MqBE1KXCKYJfVcu1eRAc1iSCud56ssZpbY3lDB+nahK4LxJ1pksQqjfQgC 3XVuCEntXIezlbEkVW1VNLo3qM6bpHS6B9iSQh8MJxYa1jUf+WvUKXO1mD4DtaZD CuTTnxH31lAbJGnuLh/+h7D2VaHS+ECwQDUY1MhgoqUY2RM4u4qbeagCGGuhyHJZ tdFOqGn7e5b0+QGz+IAK5AhqAP247DmviBbNBZhP2npHVQAJLZxeb1/Czfk4IKoy CVOQe9pgSM9iFA0VJNUEvs+iKRg8/ku0frNmCOA1jKhixq9x9XbQrUu5mMhBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2cidyPp5hxPUwLUGyxF/1lc4yo0wHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YTc2NjVhLWI1MGItNGE0NS1h OGY5LTBkNjliZDdkNzQzZC8wLzMxMzAzMzJlMzkzMTJlMzIzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzQzMjMzMzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdbGDANBgkqhkiG 9w0BAQsFAAOCAQEAet9LwZtBItpMlfHklgBCPALFuq8dqUS54WXz0laqJYX1XoWI ydI5CbXVBxxrPwmZAPU9WEONK6qwozCMihnGwII8ApBN4/OmD2IRUNoxUj7AA9bM De0BA/nX+N5qh2CFo2eS4EeoXa3FmpyaW6hhUgHE3WygzbShiTE+9qa75eKDfKMZ dFNfHLtT72uoJqdbjXo2DILCK9MbPEHFEMWxnwxMAOPjjXMJD+vlZqv4h9VxDrvh +ZWzNi/O2nwLIMZDwTIKizciUcsHaLeSzxDi3XeXpgEhvBMD9UFTUrbQ8x7wpNtP ckDJazujPjP3fFTk15oe/rNBsdRN+RT9Hnjxsw== -----END CERTIFICATE-----Generated at Sat Apr 18 01:08:03 2026 by rpki-client