$ rpki-client -vvf repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234372e302f32342d3234203d3e20313331373733.roa File: 3130332e3133342e3234372e302f32342d3234203d3e20313331373733.roa (raw, json) Hash identifier: 6Du7YSTsPoNmwsS5ivsTmUWMLaQgevGKBTkeY7AtcXE= Subject key identifier: FA:EC:94:45:34:C3:71:10:15:43:55:0F:43:B3:79:D7:5C:15:D5:26 Certificate issuer: /CN=37EECBD045CA279ED50372AC86831099D2FD896F Certificate serial: 5FC37A3DF04F135ACAA7D34D6C479D115F7DED7D Authority key identifier: 37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234372e302f32342d3234203d3e20313331373733.roa Signing time: Thu 05 Feb 2026 09:02:04 +0000 ROA not before: Thu 05 Feb 2026 08:57:04 +0000 ROA not after: Thu 04 Feb 2027 09:02:04 +0000 asID: 131773 IP address blocks: 103.134.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c3:7a:3d:f0:4f:13:5a:ca:a7:d3:4d:6c:47:9d:11:5f:7d:ed:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37EECBD045CA279ED50372AC86831099D2FD896F Validity Not Before: Feb 5 08:57:04 2026 GMT Not After : Feb 4 09:02:04 2027 GMT Subject: CN=FAEC944534C371101543550F43B379D75C15D526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4c:7c:13:5c:cb:17:9a:f1:e0:42:f8:3b:2b: db:a8:df:9b:05:00:10:ff:9f:8c:cb:f2:f4:dc:de: 72:b2:f8:e5:72:0b:15:45:9e:bb:f4:87:27:e8:7d: 4e:d8:56:cb:d9:f5:5f:03:c2:53:61:90:f3:1c:27: cd:e1:63:3f:6a:5a:80:2a:e5:0d:14:59:63:43:a6: 71:6f:11:d6:67:52:80:fb:9c:3f:fd:b0:fb:05:40: ce:53:40:01:cf:33:b9:18:c4:ae:89:da:dd:55:ae: f6:16:19:77:f1:a8:4a:7b:c3:c7:20:50:81:94:8f: 8e:73:e8:db:2e:07:7d:71:0f:19:fc:c7:33:fe:e3: 66:8f:32:9e:f7:c2:99:a1:e8:21:d3:8d:7e:f2:32: 0e:9f:f3:b3:1d:a6:3d:a7:c7:3d:b7:1f:33:cb:53: 80:3d:c5:da:cf:b7:ee:61:ca:3e:d4:44:29:91:0b: 37:98:d5:8a:2a:86:a3:e6:f9:44:07:fc:08:57:b9: f6:27:23:80:48:6e:7c:9c:b1:56:3a:f9:5b:e6:0d: 16:d3:92:58:b0:1f:4b:63:70:7a:d1:74:9a:6c:c8: 75:ac:94:cf:f5:c6:8c:64:96:0c:b7:b6:ef:f5:9f: 0f:18:c1:fc:e7:5f:dc:b3:e5:10:3f:42:69:77:6c: d0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:EC:94:45:34:C3:71:10:15:43:55:0F:43:B3:79:D7:5C:15:D5:26 X509v3 Authority Key Identifier: keyid:37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234372e302f32342d3234203d3e20313331373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.247.0/24 Signature Algorithm: sha256WithRSAEncryption 25:47:b7:61:57:86:b0:b1:6c:3d:6c:00:94:40:1c:ed:ae:26: fe:1f:7d:2a:a5:62:11:d5:d3:fc:39:21:46:07:2e:4c:26:f4: 68:32:bb:b8:b2:89:12:9e:f7:a5:ba:b4:80:bb:be:7d:2b:2e: 84:4b:62:92:3a:ca:30:27:b3:8b:c6:a9:ef:54:04:28:1d:54: 79:b4:db:9a:96:09:95:d7:95:68:55:ff:2c:f7:e6:de:aa:5c: ad:d6:be:43:08:17:b9:1c:c8:22:06:19:e7:b3:d2:3e:a0:d6: 22:67:d7:4e:a0:f8:cd:c9:a7:06:2f:7c:22:34:fb:f0:56:00: ae:a8:ad:06:30:a7:57:e0:62:40:0f:05:a1:c7:98:2f:14:1d: 1b:79:6b:bd:5b:f2:10:91:d3:1c:44:01:d5:8d:71:c2:17:c5: 14:a4:9f:51:f6:db:67:4c:b8:5b:e6:38:e4:68:0f:06:95:05: ea:ea:70:53:be:40:b5:d4:26:27:1a:65:2e:10:64:07:70:d9: d0:7b:31:3e:67:21:28:33:1b:89:c5:40:01:76:00:ae:06:ac: 94:b3:4b:a8:f3:99:db:6e:b1:b1:31:ab:b2:71:d6:ff:4a:cc: ae:d1:fd:e9:ce:f1:94:0c:9e:ae:ab:5e:15:b2:e8:b1:14:cb: ea:1d:b0:b1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX8N6PfBPE1rKp9NNbEedEV997X0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlE MkZEODk2RjAeFw0yNjAyMDUwODU3MDRaFw0yNzAyMDQwOTAyMDRaMDMxMTAvBgNV BAMTKEZBRUM5NDQ1MzRDMzcxMTAxNTQzNTUwRjQzQjM3OUQ3NUMxNUQ1MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSTHwTXMsXmvHgQvg7K9uo35sF ABD/n4zL8vTc3nKy+OVyCxVFnrv0hyfofU7YVsvZ9V8DwlNhkPMcJ83hYz9qWoAq 5Q0UWWNDpnFvEdZnUoD7nD/9sPsFQM5TQAHPM7kYxK6J2t1VrvYWGXfxqEp7w8cg UIGUj45z6NsuB31xDxn8xzP+42aPMp73wpmh6CHTjX7yMg6f87Mdpj2nxz23HzPL U4A9xdrPt+5hyj7URCmRCzeY1YoqhqPm+UQH/AhXufYnI4BIbnycsVY6+VvmDRbT kliwH0tjcHrRdJpsyHWslM/1xoxklgy3tu/1nw8YwfznX9yz5RA/Qml3bNCJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+uyURTTDcRAVQ1UPQ7N511wV1SYwHwYDVR0j BBgwFoAUN+7L0EXKJ57VA3KshoMQmdL9iW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjdkZTA3MS0zYWFhLTRlMmUtOTc0ZS1hNzhjODE3MjlmMDYvMC8zN0VFQ0JEMDQ1 Q0EyNzlFRDUwMzcyQUM4NjgzMTA5OUQyRkQ4OTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlEMkZE ODk2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyN2RlMDcxLTNhYWEtNGUyZS05 NzRlLWE3OGM4MTcyOWYwNi8wLzMxMzAzMzJlMzEzMzM0MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhvcwDQYJ KoZIhvcNAQELBQADggEBACVHt2FXhrCxbD1sAJRAHO2uJv4ffSqlYhHV0/w5IUYH Lkwm9Ggyu7iyiRKe96W6tIC7vn0rLoRLYpI6yjAns4vGqe9UBCgdVHm025qWCZXX lWhV/yz35t6qXK3WvkMIF7kcyCIGGeez0j6g1iJn106g+M3JpwYvfCI0+/BWAK6o rQYwp1fgYkAPBaHHmC8UHRt5a71b8hCR0xxEAdWNccIXxRSkn1H222dMuFvmOORo DwaVBerqcFO+QLXUJicaZS4QZAdw2dB7MT5nISgzG4nFQAF2AK4GrJSzS6jzmdtu sbExq7Jx1v9KzK7R/enO8ZQMnq6rXhWy6LEUy+odsLE= -----END CERTIFICATE-----Generated at Mon Mar 2 07:28:02 2026 by rpki-client