$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa File: 3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: I16OAIVcV3yFbOc/TMvL7PaH1iG60q5zXTLP+nVnvjI= Subject key identifier: 37:DD:70:58:59:00:15:2F:C9:A5:20:CB:7A:FD:B5:9D:44:11:A2:E8 Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 4B01F660D166B73453F9FAB31BFA5BD6658081E4 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa Signing time: Mon 06 Apr 2026 10:00:00 +0000 ROA not before: Mon 06 Apr 2026 09:55:00 +0000 ROA not after: Mon 05 Apr 2027 10:00:00 +0000 asID: 45305 IP address blocks: 103.142.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:01:f6:60:d1:66:b7:34:53:f9:fa:b3:1b:fa:5b:d6:65:80:81:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Apr 6 09:55:00 2026 GMT Not After : Apr 5 10:00:00 2027 GMT Subject: CN=37DD70585900152FC9A520CB7AFDB59D4411A2E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:85:d5:23:af:e5:73:a7:c1:55:27:56:21: 7b:ea:a8:2c:66:03:11:62:b7:ca:1d:28:60:26:38: 88:8b:04:97:ac:48:43:fe:4e:7c:0e:fa:c3:e0:df: a2:1b:d4:87:d7:b4:9b:68:a9:4a:95:c4:35:81:45: 29:3b:b8:37:0a:a7:dd:74:88:bf:96:02:06:d4:f2: 7b:b0:57:f5:dc:8b:57:67:56:94:6a:31:af:00:24: 59:32:21:75:47:b8:ab:3a:78:2c:d6:62:f9:43:61: 6f:eb:e3:8f:dc:dc:f0:9a:b4:ef:24:16:64:2f:c8: da:9c:dc:bc:f4:a8:26:3b:e8:6d:4a:69:d0:7d:1c: 2d:67:bb:b4:7e:78:87:2b:10:71:72:ac:e4:cd:26: 8a:20:46:cd:45:fd:b6:67:17:01:3e:fd:f5:2c:b7: ce:a6:3b:e7:5c:39:b3:2f:33:58:f9:0b:ce:c2:dc: cf:f9:ac:bc:f1:ef:fe:74:fe:7b:ad:92:26:52:da: de:54:6a:78:7e:be:17:a8:2e:9e:30:c7:f6:cd:49: 60:55:d0:78:f3:7b:83:d5:e1:33:cf:7f:a6:eb:90: ae:e0:b8:bf:d5:f3:b3:5e:69:8a:1b:a2:7e:cb:c2: 16:dd:dc:5e:fc:59:f3:cd:94:40:f5:8a:4d:7b:56: 7f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DD:70:58:59:00:15:2F:C9:A5:20:CB:7A:FD:B5:9D:44:11:A2:E8 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.255.0/24 Signature Algorithm: sha256WithRSAEncryption 33:b4:d5:41:c6:85:bd:3c:c3:76:3f:0d:23:7d:89:9a:f2:de: 62:bf:fa:46:3a:17:e7:99:e3:11:58:10:c4:0e:ca:96:3c:6c: 99:29:68:e8:aa:d5:80:e4:c3:44:86:22:3c:88:67:8a:22:cd: 44:f1:0d:b6:7c:f9:80:af:e4:3d:49:97:04:a4:1f:e7:ae:7e: 4c:7a:d5:69:7b:a7:19:ae:3a:76:86:ab:7a:85:63:4a:97:44: 30:98:3e:27:b5:80:a3:65:a8:ca:02:5f:dc:69:eb:8a:b5:a5: bf:8d:cf:65:b0:2e:65:ed:0f:73:7a:5b:f4:5f:7b:dc:81:39: d9:8d:ec:6c:f4:67:c1:0d:96:2c:68:90:59:6b:46:0b:ce:61: 2f:ac:15:01:f4:01:e2:c6:80:39:47:09:33:e0:ac:c3:d9:6f: 5f:ea:79:8e:9f:19:3d:5c:91:bd:fb:1a:50:c7:28:c2:6c:8e: 66:e2:f9:3d:4f:14:f5:21:01:58:1c:f8:1b:a1:08:40:4b:29: c4:f9:5d:ec:a4:5e:04:18:5c:b7:fa:de:be:5f:38:37:a1:ea: bd:54:62:37:fd:2f:2d:8c:f1:ff:6d:36:df:64:7f:4b:e6:f5: e5:71:e4:a1:44:f7:57:86:7c:e6:4a:51:dd:a2:f9:4d:e9:ab: 72:9c:28:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSwH2YNFmtzRT+fqzG/pb1mWAgeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNjA0MDYwOTU1MDBaFw0yNzA0MDUxMDAwMDBaMDMxMTAvBgNV BAMTKDM3REQ3MDU4NTkwMDE1MkZDOUE1MjBDQjdBRkRCNTlENDQxMUEyRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmb4XVI6/lc6fBVSdWIXvqqCxm AxFit8odKGAmOIiLBJesSEP+TnwO+sPg36Ib1IfXtJtoqUqVxDWBRSk7uDcKp910 iL+WAgbU8nuwV/Xci1dnVpRqMa8AJFkyIXVHuKs6eCzWYvlDYW/r44/c3PCatO8k FmQvyNqc3Lz0qCY76G1KadB9HC1nu7R+eIcrEHFyrOTNJoogRs1F/bZnFwE+/fUs t86mO+dcObMvM1j5C87C3M/5rLzx7/50/nutkiZS2t5Uanh+vheoLp4wx/bNSWBV 0Hjze4PV4TPPf6brkK7guL/V87NeaYobon7Lwhbd3F78WfPNlED1ik17Vn9RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN91wWFkAFS/JpSDLev21nUQRougwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMxMzAzMzJlMzEzNDMyMmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ47/MA0GCSqG SIb3DQEBCwUAA4IBAQAztNVBxoW9PMN2Pw0jfYma8t5iv/pGOhfnmeMRWBDEDsqW PGyZKWjoqtWA5MNEhiI8iGeKIs1E8Q22fPmAr+Q9SZcEpB/nrn5MetVpe6cZrjp2 hqt6hWNKl0QwmD4ntYCjZajKAl/caeuKtaW/jc9lsC5l7Q9zelv0X3vcgTnZjexs 9GfBDZYsaJBZa0YLzmEvrBUB9AHixoA5Rwkz4KzD2W9f6nmOnxk9XJG9+xpQxyjC bI5m4vk9TxT1IQFYHPgboQhASynE+V3spF4EGFy3+t6+Xzg3oeq9VGI3/S8tjPH/ bTbfZH9L5vXlceShRPdXhnzmSlHdovlN6atynChW -----END CERTIFICATE-----Generated at Fri Apr 17 18:38:52 2026 by rpki-client