$ rpki-client -vvf repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa File: 3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa (raw, json) Hash identifier: ztPHo3yVGw7HPwp5p47CJrgcand2ekTtKedou9z0ERo= Subject key identifier: A4:1F:2D:13:A4:1B:AC:61:A3:B4:BB:30:B2:19:BA:4D:19:B8:AB:20 Certificate issuer: /CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Certificate serial: 7C41A8D8E860EB9FEEC565BD05A7CEB79DE2E87E Authority key identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa Signing time: Wed 15 Apr 2026 15:26:44 +0000 ROA not before: Wed 15 Apr 2026 15:21:44 +0000 ROA not after: Wed 14 Apr 2027 15:26:44 +0000 asID: 147096 IP address blocks: 103.174.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 11:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:41:a8:d8:e8:60:eb:9f:ee:c5:65:bd:05:a7:ce:b7:9d:e2:e8:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Validity Not Before: Apr 15 15:21:44 2026 GMT Not After : Apr 14 15:26:44 2027 GMT Subject: CN=A41F2D13A41BAC61A3B4BB30B219BA4D19B8AB20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:11:20:57:5e:ce:58:8f:37:46:3d:c8:29:26: d7:94:16:95:d9:73:9a:21:1d:83:13:8e:95:8d:99: 13:a3:2b:fa:2d:81:ae:51:bf:62:b7:88:61:7a:65: f0:3f:28:33:fe:6c:05:d8:55:4b:28:f4:04:1d:ea: ee:28:e9:38:e6:83:1a:6b:13:b9:3b:b1:e9:39:d8: 8c:5f:37:b9:b0:6f:5f:16:c8:1f:dc:2b:28:de:eb: 62:38:9e:81:0b:ed:f3:89:3e:9c:0a:79:8e:5e:68: 46:c0:ad:b4:60:e2:ac:15:58:e2:c1:00:17:55:88: ca:71:c8:04:e0:83:af:c3:2b:27:e5:05:bd:59:65: 35:c8:83:a9:bf:b9:93:69:29:34:5d:cd:0b:bb:30: e7:78:94:ca:54:5f:1c:06:d7:63:1e:fc:47:7a:be: 6e:47:a4:0c:5d:cb:eb:a2:f5:fe:df:c1:26:21:60: fe:c8:97:8a:18:ab:bf:2a:3f:9d:51:81:b5:e6:d4: 53:8c:94:33:5a:e6:95:9d:a3:05:5f:f8:c1:14:5e: 8a:3f:de:f9:b0:41:07:47:d4:f2:2f:13:c7:a6:b1: ec:7f:8d:f5:81:f6:58:9b:2b:32:49:41:3b:bf:70: e1:8a:b6:d2:d7:63:d7:5c:19:35:c5:5a:de:02:b3: a5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1F:2D:13:A4:1B:AC:61:A3:B4:BB:30:B2:19:BA:4D:19:B8:AB:20 X509v3 Authority Key Identifier: keyid:25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32332d3233203d3e20313437303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.122.0/23 Signature Algorithm: sha256WithRSAEncryption a5:ff:ac:36:6a:53:fa:dd:12:e1:5b:07:04:9a:ca:1a:da:25: 7a:44:5d:34:25:89:9a:e2:07:4a:38:66:08:c7:30:8e:38:02: 87:68:1d:a5:7f:62:f7:87:cc:bb:b7:b8:54:30:2a:93:6f:97: f2:0d:3c:c4:6c:66:b7:55:63:b5:1c:69:51:2c:72:d4:b4:ca: ee:b5:0f:de:61:d8:88:0d:b3:6e:86:87:df:32:3d:36:a2:0e: 06:a0:93:8f:a5:e3:6f:16:7d:ed:09:49:2c:7d:fc:33:9d:83: 08:af:3c:34:27:57:25:76:ec:f7:90:17:f5:af:bd:98:23:c7: 0c:46:ca:7e:17:fa:e8:14:2e:0b:3d:56:0a:be:87:d0:1a:f7: 26:9c:46:22:71:20:af:8f:af:28:be:14:fa:c8:77:a0:4e:c2: f2:f9:e5:91:fa:13:2f:d4:18:f5:cd:a4:98:7d:b3:4f:3f:1d: 53:4e:16:99:3e:60:1e:9c:50:71:8f:0a:21:12:a6:48:cc:a5: 03:3d:2b:1c:f3:5f:39:2a:dc:52:12:f4:1a:50:71:02:14:16: 8a:eb:34:fe:44:7d:2c:2f:3d:45:60:0a:9f:9f:a0:88:21:c0: 87:d4:6b:de:0d:9c:71:49:11:d7:0d:d0:3b:d2:65:50:41:6e: 91:ec:2f:59 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfEGo2Ohg65/uxWW9BafOt53i6H4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDcz RUJCM0ZFMDAeFw0yNjA0MTUxNTIxNDRaFw0yNzA0MTQxNTI2NDRaMDMxMTAvBgNV BAMTKEE0MUYyRDEzQTQxQkFDNjFBM0I0QkIzMEIyMTlCQTREMTlCOEFCMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeESBXXs5YjzdGPcgpJteUFpXZ c5ohHYMTjpWNmROjK/otga5Rv2K3iGF6ZfA/KDP+bAXYVUso9AQd6u4o6Tjmgxpr E7k7sek52IxfN7mwb18WyB/cKyje62I4noEL7fOJPpwKeY5eaEbArbRg4qwVWOLB ABdViMpxyATgg6/DKyflBb1ZZTXIg6m/uZNpKTRdzQu7MOd4lMpUXxwG12Me/Ed6 vm5HpAxdy+ui9f7fwSYhYP7Il4oYq78qP51RgbXm1FOMlDNa5pWdowVf+MEUXoo/ 3vmwQQdH1PIvE8emsex/jfWB9libKzJJQTu/cOGKttLXY9dcGTXFWt4Cs6WxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpB8tE6QbrGGjtLswshm6TRm4qyAwHwYDVR0j BBgwFoAUJfKD8+7DnVQd81lokEXSBz67P+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjczMDI3YS0wOTZiLTRlOTUtYTY1Ni1kYWJlOThhYzZmNmQvMC8yNUYyODNGM0VF QzM5RDU0MURGMzU5Njg5MDQ1RDIwNzNFQkIzRkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDczRUJC M0ZFMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdhLTA5NmItNGU5NS1h NjU2LWRhYmU5OGFjNmY2ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrnowDQYJ KoZIhvcNAQELBQADggEBAKX/rDZqU/rdEuFbBwSayhraJXpEXTQliZriB0o4ZgjH MI44AodoHaV/YveHzLu3uFQwKpNvl/INPMRsZrdVY7UcaVEsctS0yu61D95h2IgN s26Gh98yPTaiDgagk4+l428Wfe0JSSx9/DOdgwivPDQnVyV27PeQF/WvvZgjxwxG yn4X+ugULgs9Vgq+h9Aa9yacRiJxIK+Pryi+FPrId6BOwvL55ZH6Ey/UGPXNpJh9 s08/HVNOFpk+YB6cUHGPCiESpkjMpQM9KxzzXzkq3FIS9BpQcQIUForrNP5EfSwv PUVgCp+foIghwIfUa94NnHFJEdcN0DvSZVBBbpHsL1k= -----END CERTIFICATE-----Generated at Sun Apr 19 12:36:19 2026 by rpki-client