$ rpki-client -vvf repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137312e302f32342d3234203d3e20313339393532.roa File: 3130332e3137382e3137312e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 3NX1nBGV/FMmtvaiqzRzW9XslyN0NpXTPsReHhO0GFQ= Subject key identifier: 6F:9B:22:D3:39:91:7C:8D:D7:05:94:5D:03:0A:5E:AE:68:2A:2C:02 Certificate issuer: /CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1 Certificate serial: 50EC6DC6A8F4ED9E0E66C9B61C5C9859CB22F4F7 Authority key identifier: E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137312e302f32342d3234203d3e20313339393532.roa Signing time: Fri 17 Apr 2026 02:00:00 +0000 ROA not before: Fri 17 Apr 2026 01:55:00 +0000 ROA not after: Fri 16 Apr 2027 02:00:00 +0000 asID: 139952 IP address blocks: 103.178.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.crl rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 06:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ec:6d:c6:a8:f4:ed:9e:0e:66:c9:b6:1c:5c:98:59:cb:22:f4:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1 Validity Not Before: Apr 17 01:55:00 2026 GMT Not After : Apr 16 02:00:00 2027 GMT Subject: CN=6F9B22D339917C8DD705945D030A5EAE682A2C02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:59:8e:01:0d:30:ad:dd:1d:92:5e:b7:ee:5f: 36:39:0e:ff:2d:a7:22:f4:ac:1b:32:19:ca:b5:9d: 45:57:ed:10:01:91:b2:20:23:95:b9:fd:ce:65:17: 25:70:4a:81:3f:00:3f:0d:a1:5b:84:57:d5:bd:a3: f3:61:10:4e:c3:e1:a0:68:e3:c0:e7:7a:d9:f7:ea: 22:62:cd:9a:23:a1:54:b1:18:59:c8:9d:c2:e2:a8: 90:72:a5:d3:2b:6a:a7:cb:ef:db:50:44:d6:92:d8: e9:19:a8:11:a1:7c:91:63:ba:df:86:57:2c:7f:cc: 56:87:99:65:be:0a:a9:5b:04:f1:bc:cd:0d:ab:b1: cc:66:5d:64:63:7a:ab:44:5d:ee:9d:32:f9:84:4c: 20:59:d1:c1:75:dd:57:33:4e:dc:4b:79:90:74:c8: dd:1d:e8:46:f9:4f:25:3b:2b:9c:3f:6c:e8:e2:c5: be:1e:67:92:80:17:ff:3d:ac:8a:3a:61:c4:71:31: 28:f9:b3:68:7d:2d:7f:d3:0d:8f:24:18:ef:c8:72: d9:75:0b:c0:29:40:49:58:f3:6b:d4:5e:46:44:50: 40:ae:a7:82:aa:04:8d:6f:f9:7b:11:9f:57:58:3e: 6e:36:b7:df:ce:19:0d:c6:eb:47:93:23:aa:91:d2: 49:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9B:22:D3:39:91:7C:8D:D7:05:94:5D:03:0A:5E:AE:68:2A:2C:02 X509v3 Authority Key Identifier: keyid:E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137312e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.171.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:bd:21:4f:d6:6a:4d:fa:f8:49:a6:54:8f:b1:a9:bb:d8:d0: 07:79:16:53:a2:cd:ca:0c:a0:b0:b0:cb:4e:45:cd:42:a7:59: 44:88:4e:06:94:13:e5:d6:a8:ca:4d:8f:8a:f9:44:9f:30:b7: f1:f6:91:12:74:ab:05:77:d8:c6:a0:9e:a4:ec:4a:4e:c1:ee: 48:eb:8c:17:22:67:f6:ff:ac:9f:ed:93:96:e9:c9:ed:06:a8: 13:95:59:0e:9c:1f:64:0a:56:df:71:c8:cf:22:f2:b0:01:57: 69:c3:5e:86:98:32:4c:5f:ea:43:8f:0d:38:38:e5:28:2f:c5: cc:27:18:82:9a:8b:ae:4a:96:14:1e:e3:f4:74:50:64:b9:af: 13:0d:7c:4b:b6:83:9b:c7:b2:01:84:32:bd:b5:93:25:3c:cb: ca:06:69:7d:ce:4f:20:eb:30:bf:6c:15:a9:b4:22:a6:9b:15: 25:09:74:fd:39:5a:4f:dd:19:95:11:e9:32:d9:89:b0:49:3c: 25:f1:e8:8c:b6:df:9a:8b:53:93:58:31:76:2c:b4:09:8c:99: c6:8a:40:80:c1:dc:2c:7e:d9:e8:f5:2d:63:75:09:08:16:f8: de:ce:e2:d3:fb:5a:70:3f:ab:74:34:d2:13:6a:39:8a:a7:9d: b4:96:fe:1b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUOxtxqj07Z4OZsm2HFyYWcsi9PcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTA5RDBFMUQyNjNEQkQ5MTREMEM0RTBDQUE3RTVFNTBE MDIyNDZGMTAeFw0yNjA0MTcwMTU1MDBaFw0yNzA0MTYwMjAwMDBaMDMxMTAvBgNV BAMTKDZGOUIyMkQzMzk5MTdDOERENzA1OTQ1RDAzMEE1RUFFNjgyQTJDMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtWY4BDTCt3R2SXrfuXzY5Dv8t pyL0rBsyGcq1nUVX7RABkbIgI5W5/c5lFyVwSoE/AD8NoVuEV9W9o/NhEE7D4aBo 48Dnetn36iJizZojoVSxGFnIncLiqJBypdMraqfL79tQRNaS2OkZqBGhfJFjut+G Vyx/zFaHmWW+CqlbBPG8zQ2rscxmXWRjeqtEXe6dMvmETCBZ0cF13VczTtxLeZB0 yN0d6Eb5TyU7K5w/bOjixb4eZ5KAF/89rIo6YcRxMSj5s2h9LX/TDY8kGO/Ictl1 C8ApQElY82vUXkZEUECup4KqBI1v+XsRn1dYPm42t9/OGQ3G60eTI6qR0km/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUb5si0zmRfI3XBZRdAwpermgqLAIwHwYDVR0j BBgwFoAU4J0OHSY9vZFNDE4Mqn5eUNAiRvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzAxZmQ0NC04Y2Q2LTRkOWYtOWJkMS04MzY3YWQ5Y2Q5ZWEvMC9FMDlEMEUxRDI2 M0RCRDkxNEQwQzRFMENBQTdFNUU1MEQwMjI0NkYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTA5RDBFMUQyNjNEQkQ5MTREMEM0RTBDQUE3RTVFNTBEMDIy NDZGMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMDFmZDQ0LThjZDYtNGQ5Zi05 YmQxLTgzNjdhZDljZDllYS8wLzMxMzAzMzJlMzEzNzM4MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsqswDQYJ KoZIhvcNAQELBQADggEBAC29IU/Wak36+EmmVI+xqbvY0Ad5FlOizcoMoLCwy05F zUKnWUSITgaUE+XWqMpNj4r5RJ8wt/H2kRJ0qwV32MagnqTsSk7B7kjrjBciZ/b/ rJ/tk5bpye0GqBOVWQ6cH2QKVt9xyM8i8rABV2nDXoaYMkxf6kOPDTg45Sgvxcwn GIKai65KlhQe4/R0UGS5rxMNfEu2g5vHsgGEMr21kyU8y8oGaX3OTyDrML9sFam0 IqabFSUJdP05Wk/dGZUR6TLZibBJPCXx6Iy235qLU5NYMXYstAmMmcaKQIDB3Cx+ 2ej1LWN1CQgW+N7O4tP7WnA/q3Q00hNqOYqnnbSW/hs= -----END CERTIFICATE-----Generated at Fri Apr 17 16:00:46 2026 by rpki-client