$ rpki-client -vvf repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/3130332e3130332e3134342e302f32342d3234203d3e20313336383631.roa File: 3130332e3130332e3134342e302f32342d3234203d3e20313336383631.roa (raw, json) Hash identifier: 58UUizSLpnG1trHCPIb9AqSu6ju6/9seEtfK+BC6GOc= Subject key identifier: 7B:8A:88:BC:BB:0A:59:D4:D3:F8:42:C6:DE:0D:A8:D2:22:B9:C9:78 Certificate issuer: /CN=74D4F2785CA261D018C909BA622D8244292BCB3E Certificate serial: 37E9926CFF6F78CB83990BD9BC2DDA9C4BAC45FB Authority key identifier: 74:D4:F2:78:5C:A2:61:D0:18:C9:09:BA:62:2D:82:44:29:2B:CB:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/3130332e3130332e3134342e302f32342d3234203d3e20313336383631.roa Signing time: Wed 08 Apr 2026 12:00:04 +0000 ROA not before: Wed 08 Apr 2026 11:55:04 +0000 ROA not after: Wed 07 Apr 2027 12:00:04 +0000 asID: 136861 IP address blocks: 103.103.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.crl rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 22:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e9:92:6c:ff:6f:78:cb:83:99:0b:d9:bc:2d:da:9c:4b:ac:45:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74D4F2785CA261D018C909BA622D8244292BCB3E Validity Not Before: Apr 8 11:55:04 2026 GMT Not After : Apr 7 12:00:04 2027 GMT Subject: CN=7B8A88BCBB0A59D4D3F842C6DE0DA8D222B9C978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:96:79:12:6a:1a:39:3a:ff:13:88:46:dd: 38:a4:d2:34:b0:17:05:0b:6e:e7:9c:01:5d:81:0f: 08:1c:33:9c:5d:5a:4f:9a:55:1b:8f:00:69:c4:58: 7c:37:1d:79:42:80:04:4d:38:11:f2:6a:9b:06:9e: c0:0c:ea:ee:3c:ff:99:98:5e:39:b4:85:fa:20:9e: 40:80:e5:13:5e:d5:71:a8:5f:32:9a:84:97:cd:73: f1:b6:71:e1:39:33:bb:20:2b:b5:03:33:28:ba:62: c0:1f:77:22:15:17:c8:c2:b6:9a:ab:f1:78:19:33: 1b:91:f7:2f:8d:3b:f7:7d:69:4c:14:84:38:28:85: d4:81:f2:6b:35:cb:41:c8:df:e5:7a:cc:6d:d8:c6: 97:ee:92:60:fe:dd:38:36:18:8d:69:71:f2:1e:79: 87:60:92:31:83:ee:76:70:de:6a:63:22:07:5b:cd: be:48:f2:80:86:81:08:18:33:6c:15:89:79:01:20: d4:67:aa:7c:9f:a8:ed:62:2b:a7:cc:ab:1e:bd:eb: 56:b3:1b:02:3d:f6:d9:74:9a:8b:7b:bb:6d:80:f6: 7a:8b:73:ab:85:d6:ed:69:54:7b:9a:e2:87:72:9c: 47:61:e7:0b:41:cc:b8:07:d2:ec:49:c1:7d:c2:bd: f4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8A:88:BC:BB:0A:59:D4:D3:F8:42:C6:DE:0D:A8:D2:22:B9:C9:78 X509v3 Authority Key Identifier: keyid:74:D4:F2:78:5C:A2:61:D0:18:C9:09:BA:62:2D:82:44:29:2B:CB:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/3130332e3130332e3134342e302f32342d3234203d3e20313336383631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.144.0/24 Signature Algorithm: sha256WithRSAEncryption a2:48:28:1b:b4:1e:08:78:49:05:bb:6d:e2:fd:bb:61:be:41: c3:7a:1a:01:21:ed:71:c6:d2:c7:81:7e:44:2c:cc:69:d5:1c: 9b:d5:b4:15:9e:d1:f8:15:2e:c2:c0:75:e0:86:95:26:67:1c: 18:0d:a6:ce:7d:8d:c2:00:5b:95:e8:26:5a:5e:c9:66:81:24: bc:15:25:f5:66:3b:20:e1:f7:ac:1c:5b:a0:40:10:14:4a:c4: 1f:da:46:7a:d5:12:be:ef:a2:bf:8e:7a:c4:02:84:3c:4c:b7: 41:31:d3:36:6b:3f:4a:a2:f2:c1:fe:f9:49:4d:4a:07:46:2e: 77:43:70:04:e6:de:c5:0b:df:f1:54:f4:dc:a0:7e:d2:89:11: d3:d3:c7:9f:93:3d:21:ad:39:af:5d:fe:e9:43:ca:e1:ca:03: 19:37:a5:63:03:72:ec:e3:cb:53:cf:a6:33:e0:21:d3:78:7e: 11:d3:ad:93:93:f9:59:3b:91:da:2f:f9:1f:c5:b1:90:9e:1b: 87:63:97:c9:cd:0f:a7:84:c2:fd:7b:fd:6e:39:76:28:c1:b4: ef:94:8c:42:37:18:79:53:21:64:f0:c4:3b:85:94:90:8f:98: e9:4f:e4:ba:21:30:bd:74:b8:50:17:62:5b:57:db:e8:17:d2: b1:b3:33:8b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUN+mSbP9veMuDmQvZvC3anEusRfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzRENEYyNzg1Q0EyNjFEMDE4QzkwOUJBNjIyRDgyNDQy OTJCQ0IzRTAeFw0yNjA0MDgxMTU1MDRaFw0yNzA0MDcxMjAwMDRaMDMxMTAvBgNV BAMTKDdCOEE4OEJDQkIwQTU5RDREM0Y4NDJDNkRFMERBOEQyMjJCOUM5NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGJpZ5EmoaOTr/E4hG3Tik0jSw FwULbuecAV2BDwgcM5xdWk+aVRuPAGnEWHw3HXlCgARNOBHyapsGnsAM6u48/5mY Xjm0hfognkCA5RNe1XGoXzKahJfNc/G2ceE5M7sgK7UDMyi6YsAfdyIVF8jCtpqr 8XgZMxuR9y+NO/d9aUwUhDgohdSB8ms1y0HI3+V6zG3YxpfukmD+3Tg2GI1pcfIe eYdgkjGD7nZw3mpjIgdbzb5I8oCGgQgYM2wViXkBINRnqnyfqO1iK6fMqx6961az GwI99tl0mot7u22A9nqLc6uF1u1pVHua4odynEdh5wtBzLgH0uxJwX3CvfShAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUe4qIvLsKWdTT+ELG3g2o0iK5yXgwHwYDVR0j BBgwFoAUdNTyeFyiYdAYyQm6Yi2CRCkryz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmVhNzdiNS04OGY3LTQwODUtYjMzMS05NzUwMjRjZDA0NmQvMC83NEQ0RjI3ODVD QTI2MUQwMThDOTA5QkE2MjJEODI0NDI5MkJDQjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzRENEYyNzg1Q0EyNjFEMDE4QzkwOUJBNjIyRDgyNDQyOTJC Q0IzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZWE3N2I1LTg4ZjctNDA4NS1i MzMxLTk3NTAyNGNkMDQ2ZC8wLzMxMzAzMzJlMzEzMDMzMmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZ5AwDQYJ KoZIhvcNAQELBQADggEBAKJIKBu0Hgh4SQW7beL9u2G+QcN6GgEh7XHG0seBfkQs zGnVHJvVtBWe0fgVLsLAdeCGlSZnHBgNps59jcIAW5XoJlpeyWaBJLwVJfVmOyDh 96wcW6BAEBRKxB/aRnrVEr7vor+OesQChDxMt0Ex0zZrP0qi8sH++UlNSgdGLndD cATm3sUL3/FU9NygftKJEdPTx5+TPSGtOa9d/ulDyuHKAxk3pWMDcuzjy1PPpjPg IdN4fhHTrZOT+Vk7kdov+R/FsZCeG4djl8nND6eEwv17/W45dijBtO+UjEI3GHlT IWTwxDuFlJCPmOlP5LohML10uFAXYltX2+gX0rGzM4s= -----END CERTIFICATE-----Generated at Sun Apr 19 11:54:58 2026 by rpki-client