$ rpki-client -vvf repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa File: 3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa (raw, json) Hash identifier: r9GPxb9rGfsCw58HCbum20bPCbDd1B7IlSEYqfVNsaQ= Subject key identifier: F2:35:57:58:1A:9D:B8:5E:EE:AF:6A:CD:EA:02:AF:CD:E7:58:96:2E Certificate issuer: /CN=4412C369832E86CF255C7255EB1ECA7938910246 Certificate serial: 78944FD29A49863857B040AFBC4EE96E9C29C80D Authority key identifier: 44:12:C3:69:83:2E:86:CF:25:5C:72:55:EB:1E:CA:79:38:91:02:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa Signing time: Sat 28 Feb 2026 03:00:02 +0000 ROA not before: Sat 28 Feb 2026 02:55:02 +0000 ROA not after: Sat 27 Feb 2027 03:00:02 +0000 asID: 141127 IP address blocks: 103.158.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.crl rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:94:4f:d2:9a:49:86:38:57:b0:40:af:bc:4e:e9:6e:9c:29:c8:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4412C369832E86CF255C7255EB1ECA7938910246 Validity Not Before: Feb 28 02:55:02 2026 GMT Not After : Feb 27 03:00:02 2027 GMT Subject: CN=F23557581A9DB85EEEAF6ACDEA02AFCDE758962E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:86:62:eb:f0:58:9b:de:31:31:2d:86:04: dd:81:ee:59:fe:54:a4:21:5d:ad:11:80:dd:5f:47: 87:4e:42:87:d1:c6:2b:dd:7a:29:b3:6c:7a:2b:b3: c6:d0:e6:4e:d4:e4:a5:03:a0:88:fa:9c:cd:e7:10: 3c:d8:ed:92:00:71:fc:94:e7:7f:d4:c7:88:4e:ac: 93:d9:79:42:94:7e:0b:fe:78:f6:ef:ee:b5:fb:4e: 74:c8:8a:f4:0f:8c:44:87:52:57:09:bf:10:61:e2: a1:00:46:f4:3a:ec:6c:6e:32:6b:d1:4f:11:05:8f: ac:1e:6e:8e:ed:ef:90:95:ba:1e:5a:60:05:ff:35: ec:b5:55:b9:7c:07:30:85:0e:eb:77:1e:bc:fe:49: a6:ec:7f:72:4a:0f:04:e3:48:e8:0a:4e:04:10:19: e0:62:6b:1a:e5:a7:e0:a4:2c:69:bf:de:33:84:16: 10:77:45:c8:24:28:86:15:e8:f8:24:9e:a9:ab:d4: 9a:10:ef:be:21:69:0f:7c:f4:63:83:4c:3e:e9:18: 50:3b:1e:c3:7b:87:d1:89:b9:17:81:ce:9c:9b:58: a8:bc:57:9f:2c:e5:08:ca:dd:3c:8f:cb:81:6b:c4: b4:d0:06:b3:6d:78:19:76:b4:e2:a6:51:e0:79:7f: ae:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:35:57:58:1A:9D:B8:5E:EE:AF:6A:CD:EA:02:AF:CD:E7:58:96:2E X509v3 Authority Key Identifier: keyid:44:12:C3:69:83:2E:86:CF:25:5C:72:55:EB:1E:CA:79:38:91:02:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/4412C369832E86CF255C7255EB1ECA7938910246.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4412C369832E86CF255C7255EB1ECA7938910246.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12c511be-67a2-44c9-b182-a911ba95be00/0/3130332e3135382e3132312e302f32342d3234203d3e20313431313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.121.0/24 Signature Algorithm: sha256WithRSAEncryption 70:5a:55:70:8d:57:dd:be:ac:9b:79:5e:cd:db:3e:b0:41:de: 1d:3b:49:f9:bd:45:40:0b:7d:0b:f0:d2:94:42:07:39:90:1f: 41:79:7a:da:ed:64:77:39:63:16:12:a6:ed:15:6b:f2:1c:c5: c4:c4:b2:05:78:e9:3f:88:09:67:93:4c:15:b8:62:f5:23:8d: 95:65:22:3d:cc:f8:5e:44:ff:c5:7b:f0:4c:8a:2d:37:38:7e: b0:12:b7:0d:15:10:6e:75:ba:c2:90:58:a6:6a:43:75:13:69: 2e:19:5c:a9:dd:e9:e3:e8:aa:6c:59:62:f6:7e:3a:ce:a6:6b: b4:74:5d:d5:1c:38:fe:97:59:60:04:e3:0a:61:30:05:3e:cd: 55:e5:aa:1d:dc:0e:30:1b:98:2f:25:0b:ea:cf:8f:93:d4:18: 75:2b:a5:2f:73:90:89:55:5f:af:8c:2e:85:97:60:4d:fd:89: 9e:bf:05:7d:8d:05:10:1b:cd:61:32:c9:af:4f:e2:68:7b:7f: 7e:53:4a:49:a6:79:0b:e2:c4:e8:87:b3:5d:bd:0b:9c:c0:dd: 45:03:d6:c1:f5:64:6e:f1:4b:30:f1:9e:aa:05:5a:2d:e3:dd: ca:aa:bb:df:8a:a8:52:46:92:5b:b7:7c:2d:08:5a:88:39:9b: 61:33:7d:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeJRP0ppJhjhXsECvvE7pbpwpyA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQxMkMzNjk4MzJFODZDRjI1NUM3MjU1RUIxRUNBNzkz ODkxMDI0NjAeFw0yNjAyMjgwMjU1MDJaFw0yNzAyMjcwMzAwMDJaMDMxMTAvBgNV BAMTKEYyMzU1NzU4MUE5REI4NUVFRUFGNkFDREVBMDJBRkNERTc1ODk2MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtOYZi6/BYm94xMS2GBN2B7ln+ VKQhXa0RgN1fR4dOQofRxivdeimzbHors8bQ5k7U5KUDoIj6nM3nEDzY7ZIAcfyU 53/Ux4hOrJPZeUKUfgv+ePbv7rX7TnTIivQPjESHUlcJvxBh4qEARvQ67GxuMmvR TxEFj6webo7t75CVuh5aYAX/Ney1Vbl8BzCFDut3Hrz+Sabsf3JKDwTjSOgKTgQQ GeBiaxrlp+CkLGm/3jOEFhB3RcgkKIYV6Pgknqmr1JoQ774haQ989GODTD7pGFA7 HsN7h9GJuReBzpybWKi8V58s5QjK3TyPy4FrxLTQBrNteBl2tOKmUeB5f66jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8jVXWBqduF7ur2rN6gKvzedYli4wHwYDVR0j BBgwFoAURBLDaYMuhs8lXHJV6x7KeTiRAkYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmM1MTFiZS02N2EyLTQ0YzktYjE4Mi1hOTExYmE5NWJlMDAvMC80NDEyQzM2OTgz MkU4NkNGMjU1QzcyNTVFQjFFQ0E3OTM4OTEwMjQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQxMkMzNjk4MzJFODZDRjI1NUM3MjU1RUIxRUNBNzkzODkx MDI0Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyYzUxMWJlLTY3YTItNDRjOS1i MTgyLWE5MTFiYTk1YmUwMC8wLzMxMzAzMzJlMzEzNTM4MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnnkwDQYJ KoZIhvcNAQELBQADggEBAHBaVXCNV92+rJt5Xs3bPrBB3h07Sfm9RUALfQvw0pRC BzmQH0F5etrtZHc5YxYSpu0Va/IcxcTEsgV46T+ICWeTTBW4YvUjjZVlIj3M+F5E /8V78EyKLTc4frAStw0VEG51usKQWKZqQ3UTaS4ZXKnd6ePoqmxZYvZ+Os6ma7R0 XdUcOP6XWWAE4wphMAU+zVXlqh3cDjAbmC8lC+rPj5PUGHUrpS9zkIlVX6+MLoWX YE39iZ6/BX2NBRAbzWEyya9P4mh7f35TSkmmeQvixOiHs129C5zA3UUD1sH1ZG7x SzDxnqoFWi3j3cqqu9+KqFJGklu3fC0IWog5m2EzfX8= -----END CERTIFICATE-----Generated at Mon Mar 2 18:32:56 2026 by rpki-client