$ rpki-client -vvf repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa File: 3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa (raw, json) Hash identifier: fHqvbSw+kBSfkBDzTpDrPMpXwZgb+p5OG9oIzvIH1tQ= Subject key identifier: 7C:07:EA:4B:D2:48:0E:9A:29:EC:86:F6:6B:34:08:78:0B:F5:E4:71 Certificate issuer: /CN=A0021383E40D55B69009CDEA313E654C3CE463B0 Certificate serial: 05965342C430CECEBC83B9B83B0D4303A01A7C3E Authority key identifier: A0:02:13:83:E4:0D:55:B6:90:09:CD:EA:31:3E:65:4C:3C:E4:63:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0021383E40D55B69009CDEA313E654C3CE463B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa Signing time: Sat 11 Apr 2026 12:00:01 +0000 ROA not before: Sat 11 Apr 2026 11:55:01 +0000 ROA not after: Sat 10 Apr 2027 12:00:01 +0000 asID: 149705 IP address blocks: 103.158.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/A0021383E40D55B69009CDEA313E654C3CE463B0.crl rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/A0021383E40D55B69009CDEA313E654C3CE463B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0021383E40D55B69009CDEA313E654C3CE463B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 14:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:96:53:42:c4:30:ce:ce:bc:83:b9:b8:3b:0d:43:03:a0:1a:7c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0021383E40D55B69009CDEA313E654C3CE463B0 Validity Not Before: Apr 11 11:55:01 2026 GMT Not After : Apr 10 12:00:01 2027 GMT Subject: CN=7C07EA4BD2480E9A29EC86F66B3408780BF5E471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:47:fa:b9:a4:20:47:36:4a:18:ed:e7:94:cd: 99:fe:79:ce:b8:35:50:34:c8:ad:04:39:21:1f:e9: 83:6f:80:23:5e:e6:c1:64:03:a5:ff:5e:43:ae:44: d4:95:c9:81:6f:c7:4e:fe:c0:4c:35:e8:1d:4e:dc: 2d:27:e0:a5:28:e3:e8:74:6a:39:9b:a9:36:d8:10: 41:ef:d3:bf:ec:93:e0:21:e3:93:4c:0c:22:89:d7: 22:61:5e:5e:09:ac:e0:8d:b9:88:c3:e0:e4:23:12: 78:c3:62:80:fa:02:c6:e0:b9:fa:7d:9f:1e:16:ed: cd:95:26:e5:da:48:24:e1:f2:c5:71:f1:15:5f:b1: 36:0a:db:91:75:82:c2:b3:f7:e8:e0:81:45:41:f6: 71:11:f9:64:8f:0d:d1:67:b3:38:ab:d8:18:64:05: 29:30:0b:1a:95:17:dc:7d:d6:89:dd:64:97:a6:c0: 02:bd:eb:54:a9:12:66:27:d4:cb:bf:f1:b4:48:73: 5c:68:d1:92:a2:c6:96:82:98:b5:c8:be:3a:fd:02: cc:ae:db:00:02:5e:35:f1:e9:5e:b9:6a:ac:e8:3b: d7:7e:8d:ca:84:ba:7e:b5:ff:a7:d0:bd:d9:aa:f2: 32:18:64:20:38:56:9b:7d:45:f7:4f:ce:f2:81:be: 1e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:07:EA:4B:D2:48:0E:9A:29:EC:86:F6:6B:34:08:78:0B:F5:E4:71 X509v3 Authority Key Identifier: keyid:A0:02:13:83:E4:0D:55:B6:90:09:CD:EA:31:3E:65:4C:3C:E4:63:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/A0021383E40D55B69009CDEA313E654C3CE463B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0021383E40D55B69009CDEA313E654C3CE463B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.192.0/24 Signature Algorithm: sha256WithRSAEncryption bc:1c:8e:5c:80:04:86:8a:db:c6:57:b6:67:6a:0d:15:9a:12: 63:79:bd:54:53:8a:bd:93:55:22:04:3f:8e:32:5a:78:5f:1b: 33:08:6c:6f:01:86:c4:7a:80:0b:fc:89:c8:b0:42:a5:9d:c5: 5a:d2:94:64:49:27:07:64:07:e8:a0:3c:17:d0:f4:8b:cd:b1: 4c:9e:bc:6c:63:86:06:1b:0f:1c:89:26:2e:ad:02:89:a9:ce: 40:94:de:f4:07:85:9d:8c:87:e9:4a:1f:60:07:23:0f:8c:11: 81:c5:97:a6:4d:0c:fa:18:ce:d4:25:87:e5:dd:83:81:73:13: 73:9e:71:77:68:1f:92:44:94:c1:cd:04:22:0e:ee:98:70:41: 85:f1:ba:2e:62:ba:56:67:59:03:1e:78:64:2a:74:3e:65:fc: 75:8a:6a:7b:f3:0a:a5:df:36:90:80:4b:1d:f9:ee:3d:e1:5b: b4:ab:3e:07:2c:a2:6d:60:7f:2c:cf:b5:75:15:ce:a9:8f:0f: 69:f4:03:51:30:b5:5b:14:b4:03:e8:37:8e:15:79:d4:fa:02: 73:5b:d6:40:4b:b5:ea:6d:c3:0a:53:6b:a6:d1:45:29:37:fe: 0b:df:e9:6e:8c:7c:0a:60:cd:2f:98:d6:f3:32:04:55:be:40: b0:15:81:b3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBZZTQsQwzs68g7m4Ow1DA6AafD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwMjEzODNFNDBENTVCNjkwMDlDREVBMzEzRTY1NEMz Q0U0NjNCMDAeFw0yNjA0MTExMTU1MDFaFw0yNzA0MTAxMjAwMDFaMDMxMTAvBgNV BAMTKDdDMDdFQTRCRDI0ODBFOUEyOUVDODZGNjZCMzQwODc4MEJGNUU0NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYR/q5pCBHNkoY7eeUzZn+ec64 NVA0yK0EOSEf6YNvgCNe5sFkA6X/XkOuRNSVyYFvx07+wEw16B1O3C0n4KUo4+h0 ajmbqTbYEEHv07/sk+Ah45NMDCKJ1yJhXl4JrOCNuYjD4OQjEnjDYoD6Asbgufp9 nx4W7c2VJuXaSCTh8sVx8RVfsTYK25F1gsKz9+jggUVB9nER+WSPDdFnszir2Bhk BSkwCxqVF9x91ondZJemwAK961SpEmYn1Mu/8bRIc1xo0ZKixpaCmLXIvjr9Asyu 2wACXjXx6V65aqzoO9d+jcqEun61/6fQvdmq8jIYZCA4Vpt9RfdPzvKBvh77AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfAfqS9JIDpop7Ib2azQIeAv15HEwHwYDVR0j BBgwFoAUoAITg+QNVbaQCc3qMT5lTDzkY7AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjZjNjE0Zi1kMGZmLTQxYTktOTJkMC0zYTIxMzU4MTUzN2IvMC9BMDAyMTM4M0U0 MEQ1NUI2OTAwOUNERUEzMTNFNjU0QzNDRTQ2M0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwMjEzODNFNDBENTVCNjkwMDlDREVBMzEzRTY1NEMzQ0U0 NjNCMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNmM2MTRmLWQwZmYtNDFhOS05 MmQwLTNhMjEzNTgxNTM3Yi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsAwDQYJ KoZIhvcNAQELBQADggEBALwcjlyABIaK28ZXtmdqDRWaEmN5vVRTir2TVSIEP44y WnhfGzMIbG8BhsR6gAv8iciwQqWdxVrSlGRJJwdkB+igPBfQ9IvNsUyevGxjhgYb DxyJJi6tAompzkCU3vQHhZ2Mh+lKH2AHIw+MEYHFl6ZNDPoYztQlh+Xdg4FzE3Oe cXdoH5JElMHNBCIO7phwQYXxui5iulZnWQMeeGQqdD5l/HWKanvzCqXfNpCASx35 7j3hW7SrPgcsom1gfyzPtXUVzqmPD2n0A1EwtVsUtAPoN44VedT6AnNb1kBLtept wwpTa6bRRSk3/gvf6W6MfApgzS+Y1vMyBFW+QLAVgbM= -----END CERTIFICATE-----Generated at Fri Apr 17 22:06:52 2026 by rpki-client