$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32302e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: T4xUG1sVCettSeNfm1lLu+SD/AVIak+nLjsNK3b7EIM= Subject key identifier: 35:5C:8C:B8:0A:10:1A:54:14:A2:7A:EE:47:CD:47:DD:52:44:15:A0 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 69D4F474F6AF2A08F98C38FD5BF3C80CBBC6A3B2 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa Signing time: Wed 08 Apr 2026 04:00:00 +0000 ROA not before: Wed 08 Apr 2026 03:55:00 +0000 ROA not after: Wed 07 Apr 2027 04:00:00 +0000 asID: 58485 IP address blocks: 103.247.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 06:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d4:f4:74:f6:af:2a:08:f9:8c:38:fd:5b:f3:c8:0c:bb:c6:a3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Apr 8 03:55:00 2026 GMT Not After : Apr 7 04:00:00 2027 GMT Subject: CN=355C8CB80A101A5414A27AEE47CD47DD524415A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:25:f0:3d:86:b4:6a:b1:df:99:2a:3b:0f:bf: 31:4d:54:38:97:4c:fa:a0:c1:8b:f5:1f:d4:6b:c0: 6c:20:e8:ec:8c:f1:30:a9:6a:57:0d:b3:1c:b7:46: f3:9f:dc:2a:98:13:26:6d:7e:79:bd:d7:e1:6f:78: dc:6f:52:2a:8b:f8:b0:f9:d9:33:b8:b5:35:69:07: 6b:0f:2b:be:08:d8:fb:ad:fe:6a:ea:04:00:c8:89: 4f:21:90:6e:8f:b6:a4:60:9a:76:90:64:f8:f2:31: 99:da:f4:7d:c4:ef:4e:95:76:77:8b:4c:4e:05:dd: 0e:5c:50:40:4d:cd:c7:84:dc:e9:07:6d:a0:03:46: 84:9a:20:59:bd:64:de:79:9a:b7:fd:0c:0a:91:da: 12:b2:d5:1e:0c:1c:f2:78:6a:2a:4d:ec:04:ac:f2: c3:70:32:6b:8d:6a:46:21:24:e5:9e:37:3d:cf:78: 37:69:fa:b6:4f:d6:bd:ad:e9:2c:5c:fe:15:db:ef: 4e:29:3c:1d:b1:84:21:ef:8c:ce:f8:bd:8a:5e:e6: 3d:d1:7b:a5:ad:cf:78:ee:8e:34:bb:ea:ff:d4:38: 62:76:41:ed:a4:41:59:17:f5:49:94:b7:7d:84:b2: dd:4a:5b:85:e6:b3:8f:e1:7f:59:55:32:2e:62:1f: 69:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5C:8C:B8:0A:10:1A:54:14:A2:7A:EE:47:CD:47:DD:52:44:15:A0 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.20.0/24 Signature Algorithm: sha256WithRSAEncryption 11:0f:43:01:89:6b:77:97:06:4a:54:71:db:e5:4f:18:f9:99: cd:fb:b4:1f:74:04:d8:9a:d8:b4:50:d7:d2:2b:04:fc:71:94: 9b:29:0f:64:26:56:63:59:af:d3:ee:46:37:9f:4a:53:81:65: 8e:43:e0:8a:06:98:dc:1d:f9:9e:77:26:94:66:58:61:71:af: 41:50:6c:f0:c3:98:79:42:1b:f6:cd:a9:7f:17:74:a9:3d:23: b7:88:f7:c7:ab:bc:29:cd:1b:47:81:dd:2b:ff:b1:6f:41:8d: 4f:54:f7:90:c5:c3:89:ca:e7:b0:aa:d5:71:1a:65:50:94:4f: 40:f5:a8:7e:8c:57:e4:58:17:c7:69:a3:01:f6:7f:cb:97:af: 7e:b3:2a:ac:43:0e:f1:db:89:83:c2:16:db:28:7a:ed:75:2c: 15:14:54:b9:6f:55:f0:e9:4f:93:9b:36:5e:3c:ee:68:5e:fe: 3e:e9:73:c1:07:a9:63:76:17:dc:77:20:5f:4b:b3:9e:3a:3b: 48:c0:bd:01:43:b5:64:57:67:5e:e3:49:ec:34:5c:4f:6e:04: 61:78:0b:3d:f3:87:03:9c:68:7e:b9:ac:f2:18:a9:39:ba:3c: 33:c4:9e:33:e1:71:4f:a4:95:ae:13:28:4e:60:11:7a:68:c5: b4:0b:7d:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUadT0dPavKgj5jDj9W/PIDLvGo7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNjA0MDgwMzU1MDBaFw0yNzA0MDcwNDAwMDBaMDMxMTAvBgNV BAMTKDM1NUM4Q0I4MEExMDFBNTQxNEEyN0FFRTQ3Q0Q0N0RENTI0NDE1QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+JfA9hrRqsd+ZKjsPvzFNVDiX TPqgwYv1H9RrwGwg6OyM8TCpalcNsxy3RvOf3CqYEyZtfnm91+FveNxvUiqL+LD5 2TO4tTVpB2sPK74I2Put/mrqBADIiU8hkG6PtqRgmnaQZPjyMZna9H3E706VdneL TE4F3Q5cUEBNzceE3OkHbaADRoSaIFm9ZN55mrf9DAqR2hKy1R4MHPJ4aipN7ASs 8sNwMmuNakYhJOWeNz3PeDdp+rZP1r2t6Sxc/hXb704pPB2xhCHvjM74vYpe5j3R e6Wtz3jujjS76v/UOGJ2Qe2kQVkX9UmUt32Est1KW4Xms4/hf1lVMi5iH2mHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNVyMuAoQGlQUonruR81H3VJEFaAwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FDANBgkqhkiG 9w0BAQsFAAOCAQEAEQ9DAYlrd5cGSlRx2+VPGPmZzfu0H3QE2JrYtFDX0isE/HGU mykPZCZWY1mv0+5GN59KU4FljkPgigaY3B35nncmlGZYYXGvQVBs8MOYeUIb9s2p fxd0qT0jt4j3x6u8Kc0bR4HdK/+xb0GNT1T3kMXDicrnsKrVcRplUJRPQPWofoxX 5FgXx2mjAfZ/y5evfrMqrEMO8duJg8IW2yh67XUsFRRUuW9V8OlPk5s2XjzuaF7+ PulzwQepY3YX3HcgX0uznjo7SMC9AUO1ZFdnXuNJ7DRcT24EYXgLPfOHA5xofrms 8hipObo8M8SeM+FxT6SVrhMoTmARemjFtAt94A== -----END CERTIFICATE-----Generated at Fri Apr 17 18:59:10 2026 by rpki-client