$ rpki-client -vvf repo-rpki.idnic.net/repo/214bb4c8-6fcf-4fff-bdcc-fe1fccee1045/0/3130332e3138372e3136342e302f32332d3233203d3e20313439383937.roa File: 3130332e3138372e3136342e302f32332d3233203d3e20313439383937.roa (raw, json) Hash identifier: iL8rvBK+hzjGPDwkpvIjXa95JmT3/R0Q6+gYKnnEURc= Subject key identifier: 30:65:DD:4E:C5:A8:5F:C4:BE:A5:FF:3E:11:8C:8C:22:78:04:62:1B Certificate issuer: /CN=AB2FF74AE26C6B3D3C718834D700985B9160087D Certificate serial: 2ACBF322B31E372D2C075CD9AAC5B31E5EFB64E5 Authority key identifier: AB:2F:F7:4A:E2:6C:6B:3D:3C:71:88:34:D7:00:98:5B:91:60:08:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB2FF74AE26C6B3D3C718834D700985B9160087D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/214bb4c8-6fcf-4fff-bdcc-fe1fccee1045/0/3130332e3138372e3136342e302f32332d3233203d3e20313439383937.roa Signing time: Thu 02 Apr 2026 06:00:00 +0000 ROA not before: Thu 02 Apr 2026 05:55:00 +0000 ROA not after: Thu 01 Apr 2027 06:00:00 +0000 asID: 149897 IP address blocks: 103.187.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/214bb4c8-6fcf-4fff-bdcc-fe1fccee1045/0/AB2FF74AE26C6B3D3C718834D700985B9160087D.crl rsync://repo-rpki.idnic.net/repo/214bb4c8-6fcf-4fff-bdcc-fe1fccee1045/0/AB2FF74AE26C6B3D3C718834D700985B9160087D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB2FF74AE26C6B3D3C718834D700985B9160087D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 05:57:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:cb:f3:22:b3:1e:37:2d:2c:07:5c:d9:aa:c5:b3:1e:5e:fb:64:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB2FF74AE26C6B3D3C718834D700985B9160087D Validity Not Before: Apr 2 05:55:00 2026 GMT Not After : Apr 1 06:00:00 2027 GMT Subject: CN=3065DD4EC5A85FC4BEA5FF3E118C8C227804621B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2c:d4:7e:21:06:47:c3:8c:46:37:ec:86:89: e3:ef:85:1a:ae:25:44:d5:6a:00:43:8a:63:c3:d7: d7:a6:30:77:08:d1:98:a5:8e:90:cd:b1:28:14:a5: e9:cd:5d:62:5b:4f:d2:70:23:1a:9b:9d:b0:93:13: ca:be:c3:77:f7:0b:d0:c4:15:68:4b:d5:c9:e9:2d: d0:07:4d:90:d0:ff:3a:4f:c2:93:42:b3:f8:5e:f0: f4:c9:cf:4c:bc:6b:34:d9:13:c3:86:b3:6b:6c:be: a4:8f:b7:bf:9e:e6:04:77:b0:10:e6:af:e3:ea:97: 74:59:be:f7:cb:17:a0:76:03:c9:75:12:31:9c:d6: b6:91:1b:0c:e1:5d:22:3e:b6:b2:dc:98:84:71:14: 1a:a6:86:eb:79:e0:4a:a3:4a:3e:21:42:6a:30:b9: 5c:4e:a8:d6:d5:e2:83:63:4a:dd:8e:a5:ea:27:6b: dd:62:9a:cf:da:37:3a:6a:25:aa:86:f2:38:72:07: 53:a5:41:27:b9:a0:9f:63:91:eb:e3:a0:76:ac:76: 81:c0:70:b2:82:24:89:54:31:3d:09:86:1c:de:8c: b5:2f:9d:30:f9:63:b8:e2:92:68:c3:eb:07:a0:4a: ee:83:d8:10:fe:07:94:01:82:77:5d:ff:5e:79:b6: 7c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:65:DD:4E:C5:A8:5F:C4:BE:A5:FF:3E:11:8C:8C:22:78:04:62:1B X509v3 Authority Key Identifier: keyid:AB:2F:F7:4A:E2:6C:6B:3D:3C:71:88:34:D7:00:98:5B:91:60:08:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/214bb4c8-6fcf-4fff-bdcc-fe1fccee1045/0/AB2FF74AE26C6B3D3C718834D700985B9160087D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB2FF74AE26C6B3D3C718834D700985B9160087D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/214bb4c8-6fcf-4fff-bdcc-fe1fccee1045/0/3130332e3138372e3136342e302f32332d3233203d3e20313439383937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.164.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:2a:af:57:b1:5f:b2:a4:9b:14:c4:b5:d3:32:ad:fd:c5:d6: 0c:59:d9:08:f0:f6:4a:75:b8:a0:b9:5b:da:9f:06:f9:4e:54: 4d:81:d0:bb:55:24:47:ef:ef:b6:3d:63:47:d1:ae:d4:52:b7: 7c:b5:5f:6a:db:75:84:51:31:d0:6a:ac:e3:a5:ea:c2:7a:91: 74:55:46:cf:69:fa:89:6c:c2:fa:42:2a:51:55:33:0e:5b:e0: bd:b3:45:b0:9f:7e:9e:55:5e:da:4b:a7:1c:3d:42:b5:35:5b: 9d:49:29:0f:0c:46:28:5e:c0:ea:1b:fc:fd:9c:76:e0:32:41: 4d:7a:54:0d:97:6f:b7:2a:5d:54:03:a2:b4:a8:60:a0:27:9a: 2b:53:b6:8f:49:73:87:03:9f:08:1e:95:1a:3f:ba:a1:90:3a: 7b:d5:15:2e:c2:0b:3c:3b:8c:13:c7:18:b2:9f:56:2c:a0:ae: 15:20:ed:7e:f7:84:d2:7a:f2:54:c2:44:f4:c5:7a:2c:c1:34: 2d:b3:25:8d:86:78:7f:ec:de:71:66:90:17:57:c6:0d:ba:87: db:29:27:9c:57:5d:fa:d6:bb:b1:e5:8f:63:7b:12:5e:73:f0: 43:9d:3f:06:2f:dc:03:ff:e8:6c:80:d1:a8:bb:18:16:4b:39: b4:85:d7:fc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKsvzIrMeNy0sB1zZqsWzHl77ZOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUIyRkY3NEFFMjZDNkIzRDNDNzE4ODM0RDcwMDk4NUI5 MTYwMDg3RDAeFw0yNjA0MDIwNTU1MDBaFw0yNzA0MDEwNjAwMDBaMDMxMTAvBgNV BAMTKDMwNjVERDRFQzVBODVGQzRCRUE1RkYzRTExOEM4QzIyNzgwNDYyMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4LNR+IQZHw4xGN+yGiePvhRqu JUTVagBDimPD19emMHcI0ZiljpDNsSgUpenNXWJbT9JwIxqbnbCTE8q+w3f3C9DE FWhL1cnpLdAHTZDQ/zpPwpNCs/he8PTJz0y8azTZE8OGs2tsvqSPt7+e5gR3sBDm r+Pql3RZvvfLF6B2A8l1EjGc1raRGwzhXSI+trLcmIRxFBqmhut54EqjSj4hQmow uVxOqNbV4oNjSt2Opeona91ims/aNzpqJaqG8jhyB1OlQSe5oJ9jkevjoHasdoHA cLKCJIlUMT0JhhzejLUvnTD5Y7jikmjD6wegSu6D2BD+B5QBgndd/155tnwJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMGXdTsWoX8S+pf8+EYyMIngEYhswHwYDVR0j BBgwFoAUqy/3SuJsaz08cYg01wCYW5FgCH0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MTRiYjRjOC02ZmNmLTRmZmYtYmRjYy1mZTFmY2NlZTEwNDUvMC9BQjJGRjc0QUUy NkM2QjNEM0M3MTg4MzRENzAwOTg1QjkxNjAwODdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUIyRkY3NEFFMjZDNkIzRDNDNzE4ODM0RDcwMDk4NUI5MTYw MDg3RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxNGJiNGM4LTZmY2YtNGZmZi1i ZGNjLWZlMWZjY2VlMTA0NS8wLzMxMzAzMzJlMzEzODM3MmUzMTM2MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzODM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnu6QwDQYJ KoZIhvcNAQELBQADggEBACwqr1exX7KkmxTEtdMyrf3F1gxZ2Qjw9kp1uKC5W9qf BvlOVE2B0LtVJEfv77Y9Y0fRrtRSt3y1X2rbdYRRMdBqrOOl6sJ6kXRVRs9p+ols wvpCKlFVMw5b4L2zRbCffp5VXtpLpxw9QrU1W51JKQ8MRihewOob/P2cduAyQU16 VA2Xb7cqXVQDorSoYKAnmitTto9Jc4cDnwgelRo/uqGQOnvVFS7CCzw7jBPHGLKf ViygrhUg7X73hNJ68lTCRPTFeizBNC2zJY2GeH/s3nFmkBdXxg26h9spJ5xXXfrW u7Hlj2N7El5z8EOdPwYv3AP/6GyA0ai7GBZLObSF1/w= -----END CERTIFICATE-----Generated at Fri Apr 17 17:53:31 2026 by rpki-client