$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32322e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: hoYxuGi8Dbg0+tKgNZ2iCXdlBeXd35+Q9Oyp2SGgsUw= Subject key identifier: 79:1D:D3:E0:6E:A1:B8:E1:96:30:DD:51:D9:F3:67:05:0B:3F:91:F3 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 08C605765603A987524A971A52031E25AE72CDEB Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa Signing time: Sun 08 Feb 2026 06:00:01 +0000 ROA not before: Sun 08 Feb 2026 05:55:01 +0000 ROA not after: Sun 07 Feb 2027 06:00:01 +0000 asID: 58485 IP address blocks: 103.247.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 11:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c6:05:76:56:03:a9:87:52:4a:97:1a:52:03:1e:25:ae:72:cd:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Feb 8 05:55:01 2026 GMT Not After : Feb 7 06:00:01 2027 GMT Subject: CN=791DD3E06EA1B8E19630DD51D9F367050B3F91F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:e0:e5:57:06:3e:e8:0d:cd:0f:81:42:b1: 34:db:d1:95:c1:18:ad:c9:51:b5:a4:a2:11:6f:c4: c5:93:7d:77:0c:7e:8e:ea:69:73:7c:4f:67:89:01: da:ae:b3:55:c6:c8:53:ec:60:46:12:7e:3a:f1:1a: 35:d1:e1:80:dc:b6:c1:61:13:db:ed:d5:e7:fc:32: fd:59:bc:70:ed:80:ca:2d:ab:f6:e8:1e:a3:2d:89: 9c:fe:74:51:2d:fc:7e:d9:ac:b1:83:77:93:d1:42: e8:98:e2:7d:54:0c:37:39:50:2c:4f:7d:fb:b5:fe: 8d:5d:25:f1:be:fb:e9:19:f6:69:4e:7f:44:3b:68: 3f:0a:3a:7c:e6:ea:91:ed:10:93:28:1c:17:f6:51: ae:75:fa:38:22:42:90:89:09:d7:1a:90:7d:51:2e: 04:36:3f:26:fe:85:d3:8e:47:85:c8:e2:f2:7a:b3: c4:a2:85:4e:a6:f9:d7:27:16:d0:7f:60:22:a2:cb: b0:26:e1:a5:22:64:69:43:14:d7:39:29:73:12:fd: 1e:6f:f5:12:1a:03:6e:6c:ec:ee:b8:cb:de:80:44: 54:9f:0d:9c:a1:2e:00:35:17:6d:fb:d9:33:5a:b5: a1:7c:68:1a:d5:e4:21:f0:55:2a:e5:2c:8f:e6:69: d1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:1D:D3:E0:6E:A1:B8:E1:96:30:DD:51:D9:F3:67:05:0B:3F:91:F3 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.22.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:f7:5b:a4:63:f7:a8:f9:63:8c:e6:d6:e5:b8:85:63:0c:ac: 5b:0c:4a:a9:45:25:20:92:23:10:3f:f6:a0:f7:c3:a1:46:9a: 1a:a4:b0:b4:15:e9:cd:16:4d:50:a5:27:3f:be:3b:46:ad:fa: 96:b4:7d:0b:50:8c:63:68:78:77:a3:93:0d:bb:8c:bd:55:a7: 02:40:4d:fd:cc:0a:3c:a9:a5:9f:9b:35:57:5e:17:f3:93:c2: bb:d1:14:94:72:79:27:9f:39:55:3f:62:21:40:88:5b:23:ec: 5d:68:cd:41:94:c3:ec:16:c6:71:ff:44:db:a6:08:f0:f3:4b: 9e:1e:ba:f9:c9:62:f1:2d:ea:89:b3:b3:07:79:3a:8a:af:3b: 23:7b:c6:5d:e8:58:a5:fe:f7:1a:db:1c:bf:c3:64:94:47:24: 1b:7b:82:82:67:62:88:2b:39:2d:97:c9:2d:68:08:1d:6c:df: 75:83:1c:fd:d0:e4:97:3d:5b:14:88:8e:73:1c:a3:b8:69:40: 39:80:ca:60:bf:08:70:ce:ca:b2:1a:79:26:02:40:af:02:33: ee:2e:14:87:a1:da:75:af:b5:6f:fa:33:d1:27:ea:60:71:c0: 15:38:2b:45:53:4b:dd:3c:b0:17:53:67:cb:2f:0a:42:df:ce: 95:98:7e:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCMYFdlYDqYdSSpcaUgMeJa5yzeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNjAyMDgwNTU1MDFaFw0yNzAyMDcwNjAwMDFaMDMxMTAvBgNV BAMTKDc5MUREM0UwNkVBMUI4RTE5NjMwREQ1MUQ5RjM2NzA1MEIzRjkxRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7LuDlVwY+6A3ND4FCsTTb0ZXB GK3JUbWkohFvxMWTfXcMfo7qaXN8T2eJAdqus1XGyFPsYEYSfjrxGjXR4YDctsFh E9vt1ef8Mv1ZvHDtgMotq/boHqMtiZz+dFEt/H7ZrLGDd5PRQuiY4n1UDDc5UCxP ffu1/o1dJfG+++kZ9mlOf0Q7aD8KOnzm6pHtEJMoHBf2Ua51+jgiQpCJCdcakH1R LgQ2Pyb+hdOOR4XI4vJ6s8SihU6m+dcnFtB/YCKiy7Am4aUiZGlDFNc5KXMS/R5v 9RIaA25s7O64y96ARFSfDZyhLgA1F2372TNataF8aBrV5CHwVSrlLI/madHHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeR3T4G6huOGWMN1R2fNnBQs/kfMwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FjANBgkqhkiG 9w0BAQsFAAOCAQEAX/dbpGP3qPljjObW5biFYwysWwxKqUUlIJIjED/2oPfDoUaa GqSwtBXpzRZNUKUnP747Rq36lrR9C1CMY2h4d6OTDbuMvVWnAkBN/cwKPKmln5s1 V14X85PCu9EUlHJ5J585VT9iIUCIWyPsXWjNQZTD7BbGcf9E26YI8PNLnh66+cli 8S3qibOzB3k6iq87I3vGXehYpf73Gtscv8NklEckG3uCgmdiiCs5LZfJLWgIHWzf dYMc/dDklz1bFIiOcxyjuGlAOYDKYL8IcM7Kshp5JgJArwIz7i4Uh6Hada+1b/oz 0SfqYHHAFTgrRVNL3TywF1Nnyy8KQt/OlZh+hw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:01:33 2026 by rpki-client