$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa File: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (raw, json) Hash identifier: 2BnWrJcTBV/RpDi3D22giZMTg6Gkl4p0EeXx+Wd/SUE= Subject key identifier: 84:8F:67:9B:18:E0:A1:77:60:DA:50:48:9C:16:72:4F:31:17:70:BF Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 54DBF244BF78F73BA9F8324113C228C9713AA4C7 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa Signing time: Sat 28 Mar 2026 21:00:01 +0000 ROA not before: Sat 28 Mar 2026 20:55:01 +0000 ROA not after: Sat 27 Mar 2027 21:00:01 +0000 asID: 141983 IP address blocks: 103.167.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 14:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:db:f2:44:bf:78:f7:3b:a9:f8:32:41:13:c2:28:c9:71:3a:a4:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Mar 28 20:55:01 2026 GMT Not After : Mar 27 21:00:01 2027 GMT Subject: CN=848F679B18E0A17760DA50489C16724F311770BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8b:ee:9a:44:0c:18:a6:2d:e3:01:04:8b:3c: bb:54:3d:f4:a6:55:1c:dc:d9:91:55:41:98:3e:e3: f1:ec:32:e5:ad:11:a3:8f:d0:ba:4c:6a:24:87:59: eb:70:15:cb:31:0c:6f:19:33:02:29:9a:a5:67:19: 18:02:dd:6f:3a:42:f3:18:86:7e:b1:21:fd:ed:f4: 98:f7:1f:3b:b2:80:ce:48:83:e6:56:3e:cc:ec:3c: 6a:25:38:7e:6e:1f:6c:e8:68:e9:8f:2f:72:e2:aa: 60:ca:0e:4c:85:4c:04:10:41:96:93:34:fa:d3:a5: ce:b3:da:9d:c6:7c:c0:d8:07:de:e4:c8:f5:55:02: 57:8e:da:5a:12:db:68:fb:5d:86:bb:0f:e1:d6:42: f6:bd:44:1e:36:f6:52:ef:6d:b3:9b:6a:49:b5:04: 45:aa:6f:23:3c:24:7d:1f:bc:37:b2:87:2d:e1:64: 0b:b1:88:23:b7:39:b2:d9:8a:84:1d:40:9f:83:07: b3:bf:ba:be:8d:d7:a0:02:a9:05:d8:22:12:a6:17: 07:8d:f0:17:1a:08:54:6a:ae:3d:52:da:87:ba:e7: f4:6f:58:c5:7e:d2:e9:2d:2d:f8:d5:17:4b:f5:45: 94:6c:4c:81:07:5d:ab:95:17:56:00:c3:62:4c:3d: e9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:8F:67:9B:18:E0:A1:77:60:DA:50:48:9C:16:72:4F:31:17:70:BF X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.170.0/24 Signature Algorithm: sha256WithRSAEncryption b0:21:88:60:20:31:a7:e5:99:9a:cf:81:35:e9:4d:47:da:79: 91:76:f3:00:05:29:9e:c2:f7:51:56:a4:cc:22:d8:b4:26:0e: 40:dc:dd:0e:ce:8c:14:dd:5a:e4:f7:0a:ea:2a:08:92:d8:1e: 71:e1:2c:f0:57:38:8d:72:51:21:be:f1:28:2e:dd:75:e8:d6: 43:a8:07:ef:10:b6:fc:c3:03:3d:80:25:bb:d3:37:76:c3:f5: a0:77:dd:83:39:de:cd:9d:14:6c:fc:e3:ed:c7:1f:6f:6d:0f: 6d:07:48:be:29:de:11:8c:74:eb:a3:41:57:7a:cb:d1:aa:3f: 77:65:c3:3c:5b:4d:0b:0e:33:07:77:f7:98:d7:e1:81:75:85: 50:04:66:82:f1:12:37:eb:21:ed:c3:52:ba:f6:8d:dc:5b:8d: f2:6c:bd:d9:47:c5:ab:f9:6d:99:24:d9:d1:43:9d:2d:b5:cd: 02:46:87:cb:8d:06:2e:e7:be:e0:17:bf:f2:96:73:14:d1:87: 5a:31:99:ec:58:af:28:72:13:b1:86:34:40:ab:2e:cb:d3:e1: 1a:e1:49:57:17:06:f8:82:c6:5a:b3:92:23:f0:99:4b:4f:17: 65:e0:90:8b:84:41:1b:14:78:6c:fd:2f:c0:f3:5f:14:f1:bf: 53:1d:2c:11 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVNvyRL949zup+DJBE8IoyXE6pMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNjAzMjgyMDU1MDFaFw0yNzAzMjcyMTAwMDFaMDMxMTAvBgNV BAMTKDg0OEY2NzlCMThFMEExNzc2MERBNTA0ODlDMTY3MjRGMzExNzcwQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdi+6aRAwYpi3jAQSLPLtUPfSm VRzc2ZFVQZg+4/HsMuWtEaOP0LpMaiSHWetwFcsxDG8ZMwIpmqVnGRgC3W86QvMY hn6xIf3t9Jj3HzuygM5Ig+ZWPszsPGolOH5uH2zoaOmPL3LiqmDKDkyFTAQQQZaT NPrTpc6z2p3GfMDYB97kyPVVAleO2loS22j7XYa7D+HWQva9RB429lLvbbObakm1 BEWqbyM8JH0fvDeyhy3hZAuxiCO3ObLZioQdQJ+DB7O/ur6N16ACqQXYIhKmFweN 8BcaCFRqrj1S2oe65/RvWMV+0uktLfjVF0v1RZRsTIEHXauVF1YAw2JMPelBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhI9nmxjgoXdg2lBInBZyTzEXcL8wHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMxMzAzMzJlMzEzNjM3MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6owDQYJ KoZIhvcNAQELBQADggEBALAhiGAgMaflmZrPgTXpTUfaeZF28wAFKZ7C91FWpMwi 2LQmDkDc3Q7OjBTdWuT3CuoqCJLYHnHhLPBXOI1yUSG+8Sgu3XXo1kOoB+8QtvzD Az2AJbvTN3bD9aB33YM53s2dFGz84+3HH29tD20HSL4p3hGMdOujQVd6y9GqP3dl wzxbTQsOMwd395jX4YF1hVAEZoLxEjfrIe3DUrr2jdxbjfJsvdlHxav5bZkk2dFD nS21zQJGh8uNBi7nvuAXv/KWcxTRh1oxmexYryhyE7GGNECrLsvT4RrhSVcXBviC xlqzkiPwmUtPF2XgkIuEQRsUeGz9L8DzXxTxv1MdLBE= -----END CERTIFICATE-----Generated at Fri Apr 17 20:02:52 2026 by rpki-client