$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa File: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (raw, json) Hash identifier: ZMfXiy/JpcZ5/R5r/67ApqG37uunQGLZSSD7RK2meHg= Subject key identifier: 46:60:58:A0:09:36:46:CD:4D:50:BD:03:29:C9:A4:E3:84:47:14:83 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 4C29CF9287E0FFD59FB7F6EB7DC765C33C47A765 Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa Signing time: Fri 17 Apr 2026 15:02:00 +0000 ROA not before: Fri 17 Apr 2026 14:57:00 +0000 ROA not after: Fri 16 Apr 2027 15:02:00 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:29:cf:92:87:e0:ff:d5:9f:b7:f6:eb:7d:c7:65:c3:3c:47:a7:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Apr 17 14:57:00 2026 GMT Not After : Apr 16 15:02:00 2027 GMT Subject: CN=466058A0093646CD4D50BD0329C9A4E384471483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:83:03:1e:6a:cb:83:7c:82:6c:e2:78:78:c5: 83:80:52:8e:ab:12:3e:a7:ed:e1:cc:9d:1b:81:e9: ce:a2:cb:96:b1:d0:e2:7b:7b:81:1a:81:26:f6:74: ca:04:d7:d9:a6:09:c9:65:52:61:74:22:f0:6f:78: 48:6f:ac:d8:67:07:69:76:8b:24:87:c0:d3:59:73: 0c:cf:00:3b:f6:c4:0e:ed:bc:23:58:61:df:1c:63: 8e:1f:2e:cf:cd:e0:e0:7e:2c:28:e4:ad:f7:b8:15: 23:41:b6:49:c0:e6:f0:b3:53:39:86:2a:89:76:b4: 8d:a1:68:b1:60:b9:4e:2d:3c:f9:aa:91:a7:6b:17: 03:1d:de:cc:af:b4:1e:9b:3d:2e:00:e8:7a:75:fc: 7b:49:bf:31:ed:9b:0b:74:1a:f1:be:bb:eb:5d:ad: 0c:64:49:d1:15:e2:67:3e:6f:d7:09:81:3f:08:a4: 94:9c:2c:9a:f9:9e:8c:00:f3:3d:04:3c:85:c8:d2: ae:05:a3:cc:1c:1b:22:2a:44:7a:06:e2:1b:d3:0c: 7d:dc:52:e5:bc:00:cb:c2:4f:52:5b:b2:b9:a1:31: ce:61:13:d9:c7:06:75:77:bb:82:42:2a:e6:d9:89: b9:58:ac:92:a6:da:07:e6:34:b2:2a:f6:a8:71:9f: 32:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:60:58:A0:09:36:46:CD:4D:50:BD:03:29:C9:A4:E3:84:47:14:83 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 Signature Algorithm: sha256WithRSAEncryption 07:89:3b:c5:a8:2c:ce:d9:9b:a4:35:1a:c5:40:dd:8a:3e:1c: 32:77:99:91:1f:06:f0:00:17:97:63:1a:b8:f9:e6:a8:21:78: d5:c5:91:c2:fa:33:46:5c:74:81:08:83:eb:f7:be:54:6a:1c: 16:5e:da:b8:cc:41:30:86:62:08:e6:19:2f:50:e9:bd:15:24: 13:18:0b:09:5e:3a:43:56:f7:60:2b:3a:af:1d:a4:bd:0b:b9: 2d:81:f2:fc:56:d9:68:11:6c:a8:59:c8:ab:20:c3:86:61:df: 30:65:87:5b:89:9f:54:9a:a3:93:ac:ff:e4:75:14:fc:fa:17: 8f:fb:4a:86:88:0c:05:6a:c5:9e:41:2f:ed:a2:a8:05:cb:dd: 85:4b:8f:7f:b9:0c:dc:53:b4:26:37:9d:c8:ac:c0:1d:2f:56: e9:2d:3f:e3:5a:a2:62:75:ab:92:bb:cf:2a:21:f9:03:48:a7: 1c:53:32:54:52:3e:0d:c3:62:27:eb:16:3a:fa:5f:dd:c5:85: 37:d6:64:6b:51:bf:21:b0:33:68:ef:01:a1:f7:05:01:e9:76: 4a:f6:de:29:a6:4c:b1:ac:34:63:4a:80:9e:50:83:75:93:78: aa:14:f7:d0:7e:ec:43:a1:7d:ab:48:0c:14:98:cb:d0:bc:e8: f3:35:dd:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTCnPkofg/9Wft/brfcdlwzxHp2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNjA0MTcxNDU3MDBaFw0yNzA0MTYxNTAyMDBaMDMxMTAvBgNV BAMTKDQ2NjA1OEEwMDkzNjQ2Q0Q0RDUwQkQwMzI5QzlBNEUzODQ0NzE0ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmgwMeasuDfIJs4nh4xYOAUo6r Ej6n7eHMnRuB6c6iy5ax0OJ7e4EagSb2dMoE19mmCcllUmF0IvBveEhvrNhnB2l2 iySHwNNZcwzPADv2xA7tvCNYYd8cY44fLs/N4OB+LCjkrfe4FSNBtknA5vCzUzmG Kol2tI2haLFguU4tPPmqkadrFwMd3syvtB6bPS4A6Hp1/HtJvzHtmwt0GvG+u+td rQxkSdEV4mc+b9cJgT8IpJScLJr5nowA8z0EPIXI0q4Fo8wcGyIqRHoG4hvTDH3c UuW8AMvCT1JbsrmhMc5hE9nHBnV3u4JCKubZiblYrJKm2gfmNLIq9qhxnzKpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURmBYoAk2Rs1NUL0DKcmk44RHFIMwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYzE3MWY0LWJkMTEtNDhlZC04 N2YwLTI3ZWExMjA5MDY0Zi8wLzMxMzAzMzJlMzEzNTM5MmUzNjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ58+MA0GCSqG SIb3DQEBCwUAA4IBAQAHiTvFqCzO2ZukNRrFQN2KPhwyd5mRHwbwABeXYxq4+eao IXjVxZHC+jNGXHSBCIPr975UahwWXtq4zEEwhmII5hkvUOm9FSQTGAsJXjpDVvdg KzqvHaS9C7ktgfL8VtloEWyoWcirIMOGYd8wZYdbiZ9UmqOTrP/kdRT8+heP+0qG iAwFasWeQS/toqgFy92FS49/uQzcU7QmN53IrMAdL1bpLT/jWqJidauSu88qIfkD SKccUzJUUj4Nw2In6xY6+l/dxYU31mRrUb8hsDNo7wGh9wUB6XZK9t4ppkyxrDRj SoCeUIN1k3iqFPfQfuxDoX2rSAwUmMvQvOjzNd2O -----END CERTIFICATE-----Generated at Fri Apr 17 21:32:16 2026 by rpki-client