$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa File: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (raw, json) Hash identifier: tGsxHZhGe4/2/ACl9hPF5viO7gvqxQq2KBfcz/uB7FU= Subject key identifier: BC:FA:DE:7D:75:30:11:BF:49:BB:A6:6C:89:A8:25:1C:CF:A5:D8:05 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 5422D2C8963DF9DB84A23036F47ABE9575F01508 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa Signing time: Sat 28 Mar 2026 21:00:00 +0000 ROA not before: Sat 28 Mar 2026 20:55:00 +0000 ROA not after: Sat 27 Mar 2027 21:00:00 +0000 asID: 141983 IP address blocks: 103.167.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 14:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:22:d2:c8:96:3d:f9:db:84:a2:30:36:f4:7a:be:95:75:f0:15:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Mar 28 20:55:00 2026 GMT Not After : Mar 27 21:00:00 2027 GMT Subject: CN=BCFADE7D753011BF49BBA66C89A8251CCFA5D805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6a:fc:94:9e:de:da:3d:39:a3:ac:d5:d3:b1: d6:ab:26:98:99:97:86:43:8c:6d:90:eb:c2:5a:a8: 18:e7:6f:a3:c2:43:48:66:fb:33:49:80:2f:52:63: 86:80:8c:5e:7a:8c:7d:e5:0a:43:93:af:b0:fa:78: c5:3e:5d:cf:cb:a7:47:0a:ca:31:5b:ae:70:cb:71: 6e:73:33:ac:0f:18:bc:cb:cb:ba:cd:17:6a:6a:e9: 71:74:8e:43:a5:d8:6f:9e:48:21:86:e4:e9:c1:8c: 06:8e:8e:6c:b6:e9:e6:87:69:c0:7d:05:e9:32:4f: 42:db:f0:e4:b8:dd:3c:9a:46:02:91:e8:7e:e0:1b: a1:48:75:52:1c:38:6a:0e:cd:91:55:22:88:20:81: da:6a:ef:e5:d5:37:43:60:96:0b:33:7e:4f:33:d9: 18:66:a8:f5:72:d1:ff:e9:a2:c3:9e:0e:d1:93:b4: 1b:a6:ed:f6:66:b0:42:d3:f1:7d:92:18:70:a7:fb: 26:82:b1:5c:bd:b2:d3:b7:7b:c1:ab:68:83:cd:84: 02:56:7f:00:0d:6a:a2:3c:90:45:ea:a9:39:1c:21: 50:5f:79:45:f0:12:17:0b:46:a6:e1:16:0d:7f:4a: a9:45:df:25:05:1c:f4:58:55:06:6d:b4:ea:9c:42: 00:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FA:DE:7D:75:30:11:BF:49:BB:A6:6C:89:A8:25:1C:CF:A5:D8:05 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.171.0/24 Signature Algorithm: sha256WithRSAEncryption 05:66:e2:5e:9b:b7:da:4c:96:b1:26:d2:e2:8f:23:c5:f3:15: fe:63:a6:74:93:a8:c4:fb:41:04:cc:b2:f8:fe:69:c2:93:ab: 62:b1:32:01:75:b7:5a:73:cc:93:99:76:cf:c5:e8:07:6d:f1: 83:f7:5a:2e:bc:f8:ea:dd:03:50:1f:b3:6c:e0:12:7a:9d:c4: f7:a3:19:d7:21:bb:fd:00:3f:d1:23:a2:50:d4:f4:43:e7:4a: e7:f0:77:e5:8c:9f:61:e4:7b:64:e1:64:66:3d:ca:29:23:5f: bf:42:f4:4f:51:45:90:4f:dc:dd:fa:dd:f5:ed:19:b8:b7:d0: d8:67:9d:3f:21:ab:25:e6:75:f8:12:fc:5d:43:ea:6f:10:31: 1a:62:0d:d0:67:a9:cc:e9:cb:a2:4c:59:ba:28:39:38:cf:9a: 81:62:c0:f2:2b:65:4c:44:aa:5d:24:fe:3a:3d:9d:64:76:33: 21:21:ca:0f:8a:8a:4c:61:fd:e9:c7:f8:c5:2c:36:43:b7:90: 54:9f:4b:8e:82:c2:e9:b4:73:3a:2b:7d:7a:2a:32:a2:09:90: 08:08:cf:b6:ea:cf:96:60:5a:a6:a4:05:fc:3e:53:37:02:9c: 26:7b:13:41:89:27:e2:70:35:dc:c9:ff:6b:e0:03:69:e3:31: 6f:f5:5a:7b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVCLSyJY9+duEojA29Hq+lXXwFQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNjAzMjgyMDU1MDBaFw0yNzAzMjcyMTAwMDBaMDMxMTAvBgNV BAMTKEJDRkFERTdENzUzMDExQkY0OUJCQTY2Qzg5QTgyNTFDQ0ZBNUQ4MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMavyUnt7aPTmjrNXTsdarJpiZ l4ZDjG2Q68JaqBjnb6PCQ0hm+zNJgC9SY4aAjF56jH3lCkOTr7D6eMU+Xc/Lp0cK yjFbrnDLcW5zM6wPGLzLy7rNF2pq6XF0jkOl2G+eSCGG5OnBjAaOjmy26eaHacB9 BekyT0Lb8OS43TyaRgKR6H7gG6FIdVIcOGoOzZFVIogggdpq7+XVN0Nglgszfk8z 2RhmqPVy0f/posOeDtGTtBum7fZmsELT8X2SGHCn+yaCsVy9stO3e8GraIPNhAJW fwANaqI8kEXqqTkcIVBfeUXwEhcLRqbhFg1/SqlF3yUFHPRYVQZttOqcQgBdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvPrefXUwEb9Ju6ZsiaglHM+l2AUwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMxMzAzMzJlMzEzNjM3MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6swDQYJ KoZIhvcNAQELBQADggEBAAVm4l6bt9pMlrEm0uKPI8XzFf5jpnSTqMT7QQTMsvj+ acKTq2KxMgF1t1pzzJOZds/F6Adt8YP3Wi68+OrdA1Afs2zgEnqdxPejGdchu/0A P9EjolDU9EPnSufwd+WMn2Hke2ThZGY9yikjX79C9E9RRZBP3N363fXtGbi30Nhn nT8hqyXmdfgS/F1D6m8QMRpiDdBnqczpy6JMWbooOTjPmoFiwPIrZUxEql0k/jo9 nWR2MyEhyg+Kikxh/enH+MUsNkO3kFSfS46Cwum0czorfXoqMqIJkAgIz7bqz5Zg WqakBfw+UzcCnCZ7E0GJJ+JwNdzJ/2vgA2njMW/1Wns= -----END CERTIFICATE-----Generated at Fri Apr 17 22:18:00 2026 by rpki-client