$ rpki-client -vvf repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa File: 3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa (raw, json) Hash identifier: LodYo+xhWo2MryFA7ZSUUkuhiXXJ+8nfpLxepFnM3ls= Subject key identifier: B8:97:F9:D4:DE:78:28:FB:1A:B6:A2:53:32:FB:C6:70:73:80:74:95 Certificate issuer: /CN=1887AEA5A2D9DB479E618167B2FE47250ACFE79B Certificate serial: 2B044342CEEA50C4B8757B43B11300ABCA92AA20 Authority key identifier: 18:87:AE:A5:A2:D9:DB:47:9E:61:81:67:B2:FE:47:25:0A:CF:E7:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa Signing time: Mon 30 Mar 2026 08:00:00 +0000 ROA not before: Mon 30 Mar 2026 07:55:00 +0000 ROA not after: Mon 29 Mar 2027 08:00:00 +0000 asID: 138855 IP address blocks: 103.171.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.crl rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 19:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:04:43:42:ce:ea:50:c4:b8:75:7b:43:b1:13:00:ab:ca:92:aa:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1887AEA5A2D9DB479E618167B2FE47250ACFE79B Validity Not Before: Mar 30 07:55:00 2026 GMT Not After : Mar 29 08:00:00 2027 GMT Subject: CN=B897F9D4DE7828FB1AB6A25332FBC67073807495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:13:83:e5:1e:76:28:4b:df:b2:26:72:33:d1: 1a:55:89:f4:f6:b8:68:5c:89:35:d0:a1:81:53:34: a0:b7:e2:5c:60:96:8d:8a:29:0b:a6:d3:1a:b0:f5: 97:9f:10:0a:6a:5a:9a:e4:20:1a:b8:60:7a:17:40: 08:9d:30:24:bd:37:d8:d2:8e:e2:9c:26:84:3e:55: 89:13:cb:8d:c3:5b:13:9b:c5:ac:28:0f:d6:29:41: 90:a2:43:f2:86:8d:f6:e8:91:87:6d:6e:a1:e4:6c: f8:5e:99:74:47:00:63:7d:08:e3:45:7d:ae:b8:77: c3:8c:1f:8c:21:35:b9:7d:bf:40:cd:c3:6e:e1:2c: 57:d3:cd:bf:94:a1:10:67:fc:ad:36:8b:4c:b8:64: ec:99:97:c3:94:02:bf:ff:b5:6a:bb:a6:4b:76:85: 43:50:08:9d:04:c2:f7:59:2d:a5:d1:8e:d2:44:de: 3d:cb:fa:93:71:09:bc:c9:af:05:17:b6:fd:ca:ce: 56:6a:99:06:a9:9a:88:51:d2:20:81:b4:0e:b5:9e: fd:60:7a:bb:37:74:51:a9:3b:c0:0e:dc:b2:24:f6: bb:e7:a3:ad:f8:e0:30:cf:16:75:ad:97:80:98:67: e6:1d:b2:09:02:ef:4c:f7:31:c6:18:87:4e:93:db: 74:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:97:F9:D4:DE:78:28:FB:1A:B6:A2:53:32:FB:C6:70:73:80:74:95 X509v3 Authority Key Identifier: keyid:18:87:AE:A5:A2:D9:DB:47:9E:61:81:67:B2:FE:47:25:0A:CF:E7:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.22.0/23 Signature Algorithm: sha256WithRSAEncryption 74:20:56:25:bd:14:01:d1:0b:71:92:60:e2:d0:ba:88:ff:9f: d8:b2:6d:96:98:ea:ba:a7:7a:e5:7a:a7:5e:a3:d8:99:3d:03: 88:27:86:fa:74:f7:4b:45:dc:fa:10:53:b0:b3:3f:e1:9d:9c: e9:60:ea:6a:8a:96:7f:5a:7a:89:53:f9:73:c8:94:4d:b4:e7: 70:59:27:c4:83:90:fe:ed:4c:89:f6:5d:54:8f:b7:05:ae:5a: 91:01:bf:bc:63:2b:2b:64:63:77:f0:98:9d:0b:5b:0e:43:f2: f1:16:44:62:a5:cb:4a:db:d0:cd:8a:89:70:12:43:85:9c:bf: 03:fe:de:6b:57:b9:16:92:89:89:8a:4a:16:20:3a:0f:3e:17: cb:9b:08:ef:4e:1c:e8:15:62:ac:5d:a4:b6:d2:96:6b:b3:15: 74:8b:ce:1b:ab:0c:61:6d:11:b6:ad:5f:43:9c:e7:e9:00:cb: 6f:38:32:38:c6:40:bd:69:c8:15:a1:0a:5e:dc:0f:cd:98:68: 01:dd:32:ee:aa:2b:01:5c:9c:8a:a2:d3:34:f2:a6:c4:e5:6d: ef:c3:46:d5:b9:83:c7:d1:4d:3e:29:a5:3f:af:85:c5:cb:bb: 21:92:42:cb:dd:16:54:a2:19:d1:0c:2c:ca:c4:f2:96:a1:ae: e2:80:e3:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKwRDQs7qUMS4dXtDsRMAq8qSqiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4N0FFQTVBMkQ5REI0NzlFNjE4MTY3QjJGRTQ3MjUw QUNGRTc5QjAeFw0yNjAzMzAwNzU1MDBaFw0yNzAzMjkwODAwMDBaMDMxMTAvBgNV BAMTKEI4OTdGOUQ0REU3ODI4RkIxQUI2QTI1MzMyRkJDNjcwNzM4MDc0OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpE4PlHnYoS9+yJnIz0RpVifT2 uGhciTXQoYFTNKC34lxglo2KKQum0xqw9ZefEApqWprkIBq4YHoXQAidMCS9N9jS juKcJoQ+VYkTy43DWxObxawoD9YpQZCiQ/KGjfbokYdtbqHkbPhemXRHAGN9CONF fa64d8OMH4whNbl9v0DNw27hLFfTzb+UoRBn/K02i0y4ZOyZl8OUAr//tWq7pkt2 hUNQCJ0EwvdZLaXRjtJE3j3L+pNxCbzJrwUXtv3KzlZqmQapmohR0iCBtA61nv1g ers3dFGpO8AO3LIk9rvno6344DDPFnWtl4CYZ+YdsgkC70z3McYYh06T23QBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuJf51N54KPsatqJTMvvGcHOAdJUwHwYDVR0j BBgwFoAUGIeupaLZ20eeYYFnsv5HJQrP55swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWI5M2UxYy01ZjJhLTQzYTktOTlmMS1mZGQwNDAyZjk0NmUvMC8xODg3QUVBNUEy RDlEQjQ3OUU2MTgxNjdCMkZFNDcyNTBBQ0ZFNzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTg4N0FFQTVBMkQ5REI0NzlFNjE4MTY3QjJGRTQ3MjUwQUNG RTc5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YjkzZTFjLTVmMmEtNDNhOS05 OWYxLWZkZDA0MDJmOTQ2ZS8wLzMxMzAzMzJlMzEzNzMxMmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6sWMA0GCSqG SIb3DQEBCwUAA4IBAQB0IFYlvRQB0QtxkmDi0LqI/5/Ysm2WmOq6p3rleqdeo9iZ PQOIJ4b6dPdLRdz6EFOwsz/hnZzpYOpqipZ/WnqJU/lzyJRNtOdwWSfEg5D+7UyJ 9l1Uj7cFrlqRAb+8YysrZGN38JidC1sOQ/LxFkRipctK29DNiolwEkOFnL8D/t5r V7kWkomJikoWIDoPPhfLmwjvThzoFWKsXaS20pZrsxV0i84bqwxhbRG2rV9DnOfp AMtvODI4xkC9acgVoQpe3A/NmGgB3TLuqisBXJyKotM08qbE5W3vw0bVuYPH0U0+ KaU/r4XFy7shkkLL3RZUohnRDCzKxPKWoa7igOMa -----END CERTIFICATE-----Generated at Sun Apr 19 11:45:21 2026 by rpki-client