$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa File: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: bgUQl2KKDVdxSEkmrD5bo1yuFXhp8F+vNio9ZlmO2Lc= Subject key identifier: 73:C8:19:4D:3F:68:4C:46:27:E1:CC:E4:8F:4D:5D:92:AC:41:D9:76 Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 5F884B72D6A9A125263699F741DBCE785C6BA3DE Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa Signing time: Tue 03 Feb 2026 06:02:36 +0000 ROA not before: Tue 03 Feb 2026 05:57:36 +0000 ROA not after: Tue 02 Feb 2027 06:02:36 +0000 asID: 136841 IP address blocks: 103.100.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:88:4b:72:d6:a9:a1:25:26:36:99:f7:41:db:ce:78:5c:6b:a3:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Feb 3 05:57:36 2026 GMT Not After : Feb 2 06:02:36 2027 GMT Subject: CN=73C8194D3F684C4627E1CCE48F4D5D92AC41D976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:72:68:e1:25:a1:b8:7a:30:1e:c7:40:2b:56: 67:a0:dc:05:15:be:fb:ba:78:21:7b:8b:aa:f8:b4: b3:3f:77:43:33:0b:ed:26:5a:52:3d:1a:f6:59:8d: 03:51:1f:1b:f9:31:82:4d:3b:77:bb:d9:69:d3:f4: b2:07:ce:c2:53:7f:09:2d:2f:9c:63:c1:dc:9f:4e: 7c:4b:88:18:f3:56:88:cc:32:f0:ae:45:22:75:c0: f4:a7:72:82:7e:02:2f:4b:2b:f7:01:8b:5f:02:70: 14:9c:40:53:55:12:c7:d2:a1:ff:ea:ed:53:e4:8f: d7:01:9d:72:90:f4:77:f6:62:fb:8b:a2:47:3e:fc: 80:93:c4:35:ce:f7:be:85:4e:a2:7a:8f:be:42:8c: 13:51:14:f1:d4:16:5a:d8:2d:74:3d:e5:41:a6:cc: c1:5e:33:ab:c3:c4:01:7b:0f:6e:aa:72:f7:20:e6: 53:09:4e:74:07:3f:f4:98:dd:d9:8b:c6:f0:1c:9f: 5d:de:6c:a9:fa:3c:62:7b:16:96:af:43:ff:09:36: 31:ce:fe:f5:bb:2e:56:9e:f7:27:4c:dd:e9:df:c7: 8f:45:eb:7c:b3:cc:37:3b:fa:75:a7:12:11:6a:5f: 24:9d:66:e4:fb:59:e1:36:25:76:a1:06:72:ec:ae: a7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C8:19:4D:3F:68:4C:46:27:E1:CC:E4:8F:4D:5D:92:AC:41:D9:76 X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.173.0/24 Signature Algorithm: sha256WithRSAEncryption 62:8e:4f:17:17:44:78:26:8a:7f:a3:55:e2:fd:5d:bd:5d:06: d1:33:d7:6d:1f:a9:d9:fe:6a:75:97:d7:2e:fc:b2:b7:b1:32: a2:0b:c0:a7:17:3a:33:c7:0a:11:e3:9c:dc:98:4d:44:53:34: 28:0c:fc:40:53:55:ac:b4:bc:ea:23:04:40:1f:ee:0b:c3:fd: 3d:d5:27:dd:6f:ee:41:98:19:ce:26:b2:c1:6e:19:ed:90:0f: 20:15:3a:80:36:a1:87:e1:09:c9:3b:c9:06:93:f4:1e:26:65: 94:b7:39:1a:42:4d:08:c6:72:2b:7a:dd:3a:8c:d8:1a:9e:47: 37:89:4c:42:22:7b:31:67:a7:4e:d7:e4:22:a1:a7:1c:71:7b: cd:a3:92:c6:c5:f5:3d:83:55:64:53:fb:45:a6:51:ab:a0:40: 59:69:7d:d7:3a:9c:f0:2e:88:0e:74:ff:6c:51:69:76:dd:35: 05:31:be:d5:36:a8:0d:79:c1:9a:b6:34:46:47:41:fb:8a:24: 0a:a9:14:a6:58:f1:61:f3:10:d6:2a:7b:b0:8b:54:8a:63:b6: 0f:8a:3f:ec:18:a6:25:7e:1d:92:45:3b:f7:3e:ba:43:d4:f8: e1:bd:a4:4f:e8:fe:9b:c6:47:c8:d7:10:82:fa:32:f1:e2:3d: af:fb:0e:c2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX4hLctapoSUmNpn3QdvOeFxro94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNjAyMDMwNTU3MzZaFw0yNzAyMDIwNjAyMzZaMDMxMTAvBgNV BAMTKDczQzgxOTREM0Y2ODRDNDYyN0UxQ0NFNDhGNEQ1RDkyQUM0MUQ5NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqcmjhJaG4ejAex0ArVmeg3AUV vvu6eCF7i6r4tLM/d0MzC+0mWlI9GvZZjQNRHxv5MYJNO3e72WnT9LIHzsJTfwkt L5xjwdyfTnxLiBjzVojMMvCuRSJ1wPSncoJ+Ai9LK/cBi18CcBScQFNVEsfSof/q 7VPkj9cBnXKQ9Hf2YvuLokc+/ICTxDXO976FTqJ6j75CjBNRFPHUFlrYLXQ95UGm zMFeM6vDxAF7D26qcvcg5lMJTnQHP/SY3dmLxvAcn13ebKn6PGJ7FpavQ/8JNjHO /vW7Llae9ydM3enfx49F63yzzDc7+nWnEhFqXySdZuT7WeE2JXahBnLsrqcdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc8gZTT9oTEYn4czkj01dkqxB2XYwHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3MzA0YjgzLTMwYWEtNGJiZi05 ZmQ3LTJmY2VhZGJmMDAzMC8wLzMxMzAzMzJlMzEzMDMwMmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZK0wDQYJ KoZIhvcNAQELBQADggEBAGKOTxcXRHgmin+jVeL9Xb1dBtEz120fqdn+anWX1y78 srexMqILwKcXOjPHChHjnNyYTURTNCgM/EBTVay0vOojBEAf7gvD/T3VJ91v7kGY Gc4mssFuGe2QDyAVOoA2oYfhCck7yQaT9B4mZZS3ORpCTQjGcit63TqM2BqeRzeJ TEIiezFnp07X5CKhpxxxe82jksbF9T2DVWRT+0WmUaugQFlpfdc6nPAuiA50/2xR aXbdNQUxvtU2qA15wZq2NEZHQfuKJAqpFKZY8WHzENYqe7CLVIpjtg+KP+wYpiV+ HZJFO/c+ukPU+OG9pE/o/pvGR8jXEIL6MvHiPa/7DsI= -----END CERTIFICATE-----Generated at Mon Mar 2 16:48:04 2026 by rpki-client