$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa File: 3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa (raw, json) Hash identifier: EZ3cUn//Lr+1T4x3R3lninQDcCuDNqb80eslIvKVzaE= Subject key identifier: 56:DA:22:8D:99:6F:10:D8:83:54:E0:52:D8:A7:BF:C0:20:FB:25:C5 Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 162BDFE4902CEF31AD3001C5AEBC3C5F86CECC62 Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa Signing time: Sun 29 Mar 2026 22:00:03 +0000 ROA not before: Sun 29 Mar 2026 21:55:03 +0000 ROA not after: Sun 28 Mar 2027 22:00:03 +0000 asID: 140482 IP address blocks: 103.231.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 10:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:2b:df:e4:90:2c:ef:31:ad:30:01:c5:ae:bc:3c:5f:86:ce:cc:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: Mar 29 21:55:03 2026 GMT Not After : Mar 28 22:00:03 2027 GMT Subject: CN=56DA228D996F10D88354E052D8A7BFC020FB25C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:57:a0:7e:4b:55:2d:c1:75:d7:50:73:49:af: 36:82:1e:c8:fd:02:c0:80:d5:dc:c6:f4:9d:91:d9: 03:b6:56:29:cc:17:9d:dc:62:8b:3e:c3:72:bb:76: 37:28:e8:05:98:3f:28:9f:21:9a:0f:71:01:4a:7f: db:1b:f8:17:7d:b0:6b:71:21:9c:e6:e5:7a:89:30: db:5c:e8:15:7e:cb:a1:14:3d:f4:17:c4:24:45:27: 41:07:84:ce:b4:25:66:06:d8:fd:17:11:cd:3e:ee: 9f:cc:2d:fd:0f:61:04:36:32:2d:61:6d:da:2c:cf: 1a:32:7f:fe:12:7e:4e:ed:99:30:e9:e2:4c:de:58: 3e:3c:76:96:42:f7:46:fa:8a:2f:da:f8:a6:aa:43: ca:89:a9:33:14:a2:63:74:1f:50:1d:7c:b3:46:14: 30:8a:69:ce:93:87:c4:d8:db:de:07:59:54:b5:40: 10:1a:fe:42:f9:07:1b:e6:53:33:e0:16:48:b4:a5: bd:84:74:06:69:82:26:68:d4:88:df:33:7f:13:9e: 46:d2:41:84:ab:a9:19:5b:de:2a:2d:6a:dd:c6:2a: c7:1f:a8:99:09:96:7a:41:45:aa:01:d9:8c:c1:42: 4e:fa:da:12:bd:68:e7:13:31:79:8c:90:4f:88:d6: e8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DA:22:8D:99:6F:10:D8:83:54:E0:52:D8:A7:BF:C0:20:FB:25:C5 X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.171.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:aa:a0:e4:06:29:12:24:80:da:9a:28:2f:74:a6:d9:1d:2b: fa:8f:f9:18:09:ab:2c:d2:e3:6e:05:b3:23:f4:95:c4:ea:c8: d4:4d:21:9e:03:d6:83:6a:8a:b2:1d:ed:14:0e:9f:4f:c7:d4: 7c:55:69:73:d7:17:68:09:1b:fc:63:b0:2c:f6:93:8f:ed:4b: 44:1b:0f:ae:fb:1a:e2:1a:c4:f0:f7:50:c8:69:82:3b:64:a8: 16:18:a2:d1:63:81:94:d8:e2:fc:e4:aa:cc:18:19:6e:7b:57: 4c:fb:54:54:10:64:29:dd:e8:b7:32:c1:af:b9:4b:24:23:e1: bb:52:ba:b7:51:10:06:64:0d:bd:18:89:d2:c2:b2:82:7f:1d: c5:6f:5b:23:99:de:bc:d6:7d:2a:d1:97:b9:af:91:e1:40:78: 18:7b:2f:f7:d8:fd:16:6a:bc:e7:f6:6b:10:09:2e:0b:94:f5: e2:d5:15:47:d5:17:83:98:f8:a2:79:02:28:89:34:57:3b:8a: 5d:e8:dc:17:52:16:21:8b:73:4a:56:32:dd:e9:6c:47:f4:35: 7c:32:53:8d:64:59:09:3b:8e:0e:2a:fc:45:31:c8:c6:3f:d8: 66:92:19:e8:d8:99:9e:2b:3e:d5:07:1a:70:85:b6:56:2e:53: 3c:6a:64:61 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFivf5JAs7zGtMAHFrrw8X4bOzGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yNjAzMjkyMTU1MDNaFw0yNzAzMjgyMjAwMDNaMDMxMTAvBgNV BAMTKDU2REEyMjhEOTk2RjEwRDg4MzU0RTA1MkQ4QTdCRkMwMjBGQjI1QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3V6B+S1UtwXXXUHNJrzaCHsj9 AsCA1dzG9J2R2QO2VinMF53cYos+w3K7djco6AWYPyifIZoPcQFKf9sb+Bd9sGtx IZzm5XqJMNtc6BV+y6EUPfQXxCRFJ0EHhM60JWYG2P0XEc0+7p/MLf0PYQQ2Mi1h bdoszxoyf/4Sfk7tmTDp4kzeWD48dpZC90b6ii/a+KaqQ8qJqTMUomN0H1AdfLNG FDCKac6Th8TY294HWVS1QBAa/kL5BxvmUzPgFki0pb2EdAZpgiZo1IjfM38TnkbS QYSrqRlb3iotat3GKscfqJkJlnpBRaoB2YzBQk762hK9aOcTMXmMkE+I1ui/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVtoijZlvENiDVOBS2Ke/wCD7JcUwHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMxMzAzMzJlMzIzMzMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn56swDQYJ KoZIhvcNAQELBQADggEBAF+qoOQGKRIkgNqaKC90ptkdK/qP+RgJqyzS424FsyP0 lcTqyNRNIZ4D1oNqirId7RQOn0/H1HxVaXPXF2gJG/xjsCz2k4/tS0QbD677GuIa xPD3UMhpgjtkqBYYotFjgZTY4vzkqswYGW57V0z7VFQQZCnd6Lcywa+5SyQj4btS urdREAZkDb0YidLCsoJ/HcVvWyOZ3rzWfSrRl7mvkeFAeBh7L/fY/RZqvOf2axAJ LguU9eLVFUfVF4OY+KJ5AiiJNFc7il3o3BdSFiGLc0pWMt3pbEf0NXwyU41kWQk7 jg4q/EUxyMY/2GaSGejYmZ4rPtUHGnCFtlYuUzxqZGE= -----END CERTIFICATE-----Generated at Fri Apr 17 17:49:49 2026 by rpki-client