$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa File: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: SMPg/3qiOryd428jAGKTXmMedIlqTpx2BfnFfzgQnCk= Subject key identifier: DB:AB:0D:39:02:C9:EF:84:1E:A2:1A:72:DB:2E:BE:59:91:5D:19:52 Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 51DBF9EBCCBF0DD3F9551384C181A9F2E863C3CB Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa Signing time: Tue 03 Feb 2026 06:02:36 +0000 ROA not before: Tue 03 Feb 2026 05:57:36 +0000 ROA not after: Tue 02 Feb 2027 06:02:36 +0000 asID: 136841 IP address blocks: 103.100.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 09:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:db:f9:eb:cc:bf:0d:d3:f9:55:13:84:c1:81:a9:f2:e8:63:c3:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Feb 3 05:57:36 2026 GMT Not After : Feb 2 06:02:36 2027 GMT Subject: CN=DBAB0D3902C9EF841EA21A72DB2EBE59915D1952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2d:d4:a8:7d:1a:36:5c:8f:a5:bf:c1:25:68: ea:6e:24:43:67:f2:98:d8:fe:ca:e7:5d:3f:6e:6b: 3d:6b:74:4e:5e:2f:00:14:01:99:95:f5:1d:69:6e: 14:69:fd:e9:bb:c7:64:2e:c6:ed:a5:7e:1f:fc:02: 94:05:cb:27:03:00:3d:21:50:82:68:3f:9b:96:1b: d4:20:a3:7b:8b:4b:86:48:91:aa:61:f5:4c:f1:b8: c6:34:53:b9:6f:a3:90:95:5d:ec:e9:87:4f:b4:04: f1:71:bf:a9:49:08:f0:2c:4d:67:c9:75:ff:69:91: e7:d4:38:dc:5b:40:8f:2f:fa:02:74:a7:2b:0e:1c: 15:93:9a:39:fd:43:f7:98:82:23:9f:c6:ba:bb:b7: d9:43:e0:51:98:48:ff:9f:1b:d0:0e:3c:79:5c:1a: 0c:de:85:68:09:e6:54:90:87:c0:f8:36:9f:f9:a6: 7c:44:87:88:4f:74:1e:2c:14:90:d9:7c:e0:21:38: aa:24:c5:3a:ee:55:2b:01:a8:72:e3:53:91:2a:2d: a5:dd:b2:30:d3:e9:b1:6c:fe:b3:28:86:cf:7a:82: e0:8c:51:24:5a:34:a3:1b:a6:70:5e:35:74:14:67: ed:ca:54:77:0b:e7:8a:a8:5e:0e:3e:b3:43:dd:0e: df:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AB:0D:39:02:C9:EF:84:1E:A2:1A:72:DB:2E:BE:59:91:5D:19:52 X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.172.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:63:61:9c:6f:a6:b2:db:7c:69:c4:08:b4:93:66:35:ec:e8: 31:bf:9e:6c:78:54:f8:65:ab:3b:3c:e5:1d:f6:13:4b:bc:25: 37:49:fe:87:4e:d4:94:16:c7:bc:67:c8:03:f9:fc:60:5f:46: 51:19:48:5d:73:da:b1:df:ce:02:40:c8:4e:b4:87:8b:ba:5f: ba:88:f5:a8:22:b3:74:63:40:4e:62:44:b5:93:37:c5:b9:ed: 82:72:9c:bc:e4:c1:ed:98:f8:fd:9a:dc:15:e7:e4:f8:c0:0c: 0b:96:a2:80:73:78:4d:09:98:28:59:77:d0:88:b8:11:83:17: d6:30:ed:24:ee:0c:70:18:ad:b7:0c:42:d8:43:b9:07:0b:e2: ab:79:c4:5a:7a:f9:de:d2:03:8b:95:bc:fd:97:31:df:d9:25: 1f:56:b8:6e:52:0c:3c:a5:d6:ab:bb:c7:27:8d:73:96:04:d2: 7d:cf:09:03:21:11:e2:84:f3:dc:a5:a3:66:32:f6:49:04:72: c7:d1:f3:f1:d2:a3:ef:6f:95:05:b3:a8:76:34:cf:14:b7:ed: 8d:07:aa:f2:8a:7d:64:d2:2f:9c:4b:c5:9d:99:68:8d:9c:95: b6:1f:e6:73:04:58:88:c4:20:a1:08:1f:26:06:9f:a5:ca:3a: e2:bc:3f:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUdv568y/DdP5VROEwYGp8uhjw8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNjAyMDMwNTU3MzZaFw0yNzAyMDIwNjAyMzZaMDMxMTAvBgNV BAMTKERCQUIwRDM5MDJDOUVGODQxRUEyMUE3MkRCMkVCRTU5OTE1RDE5NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxLdSofRo2XI+lv8ElaOpuJENn 8pjY/srnXT9uaz1rdE5eLwAUAZmV9R1pbhRp/em7x2Quxu2lfh/8ApQFyycDAD0h UIJoP5uWG9Qgo3uLS4ZIkaph9UzxuMY0U7lvo5CVXezph0+0BPFxv6lJCPAsTWfJ df9pkefUONxbQI8v+gJ0pysOHBWTmjn9Q/eYgiOfxrq7t9lD4FGYSP+fG9AOPHlc GgzehWgJ5lSQh8D4Np/5pnxEh4hPdB4sFJDZfOAhOKokxTruVSsBqHLjU5EqLaXd sjDT6bFs/rMohs96guCMUSRaNKMbpnBeNXQUZ+3KVHcL54qoXg4+s0PdDt8hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU26sNOQLJ74Qeohpy2y6+WZFdGVIwHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3MzA0YjgzLTMwYWEtNGJiZi05 ZmQ3LTJmY2VhZGJmMDAzMC8wLzMxMzAzMzJlMzEzMDMwMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZKwwDQYJ KoZIhvcNAQELBQADggEBADpjYZxvprLbfGnECLSTZjXs6DG/nmx4VPhlqzs85R32 E0u8JTdJ/odO1JQWx7xnyAP5/GBfRlEZSF1z2rHfzgJAyE60h4u6X7qI9agis3Rj QE5iRLWTN8W57YJynLzkwe2Y+P2a3BXn5PjADAuWooBzeE0JmChZd9CIuBGDF9Yw 7STuDHAYrbcMQthDuQcL4qt5xFp6+d7SA4uVvP2XMd/ZJR9WuG5SDDyl1qu7xyeN c5YE0n3PCQMhEeKE89ylo2Yy9kkEcsfR8/HSo+9vlQWzqHY0zxS37Y0HqvKKfWTS L5xLxZ2ZaI2clbYf5nMEWIjEIKEIHyYGn6XKOuK8P1U= -----END CERTIFICATE-----Generated at Mon Mar 2 09:29:34 2026 by rpki-client