$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32332e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: b0tZZmtH36HTqeaBkAZXbgB/S56o/yJRyQaRIiw9gxU= Subject key identifier: FF:B7:A4:4F:90:35:46:68:C7:C5:94:3F:8C:7E:10:77:C9:67:70:C7 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 0AABBD5540CD5419C74909BD07413495AE6694C7 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa Signing time: Sun 08 Feb 2026 06:00:00 +0000 ROA not before: Sun 08 Feb 2026 05:55:00 +0000 ROA not after: Sun 07 Feb 2027 06:00:00 +0000 asID: 58485 IP address blocks: 103.247.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 11:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ab:bd:55:40:cd:54:19:c7:49:09:bd:07:41:34:95:ae:66:94:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Feb 8 05:55:00 2026 GMT Not After : Feb 7 06:00:00 2027 GMT Subject: CN=FFB7A44F90354668C7C5943F8C7E1077C96770C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:31:eb:46:ef:57:e9:20:29:ea:e6:f0:34:dc: f6:6d:dc:e8:69:57:6b:fe:13:01:79:0a:7a:90:68: 1c:1e:0a:d4:0b:66:41:26:b2:63:ae:0c:6a:66:82: cb:06:3d:9c:40:f2:39:5b:e2:e9:44:1c:68:0c:27: 15:74:a0:b1:d6:4c:61:01:b8:bb:1a:e9:59:f6:cd: 71:df:17:01:32:42:a7:6a:6c:e3:bc:44:bb:f7:2f: 24:f0:4b:02:26:e8:d5:4d:59:b2:f0:6c:71:a0:5c: ed:ca:74:8e:49:b1:90:32:7a:1c:e4:01:1e:26:13: b3:21:8d:a0:33:fd:16:48:4c:ca:89:05:9f:f0:af: b4:c7:1c:df:7d:aa:db:0d:13:0f:0f:fa:5e:46:ed: 4c:a2:3c:74:78:a5:8c:d7:cc:ad:79:6d:6c:f7:7f: 7f:7c:d3:49:df:9c:df:45:53:6c:3f:0c:c5:87:31: af:e3:89:a3:8e:89:b5:14:66:45:69:21:88:10:18: a4:82:71:73:0b:56:91:e7:00:ce:bd:6c:1f:14:47: c8:6e:52:5a:ec:96:a5:28:da:4b:75:4c:48:bf:cd: 7c:b2:13:c0:2b:e6:e3:9c:25:b2:b7:14:04:78:a8: e0:48:7c:7c:5b:79:c8:4d:4b:6b:0f:40:83:4e:21: 03:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B7:A4:4F:90:35:46:68:C7:C5:94:3F:8C:7E:10:77:C9:67:70:C7 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.23.0/24 Signature Algorithm: sha256WithRSAEncryption a7:5f:bb:00:d0:bf:12:4a:75:86:16:4e:99:01:42:98:38:22: a0:f1:8c:8c:cf:fc:27:76:3d:51:64:2c:73:57:c4:74:23:97: 93:c2:70:9f:84:fa:59:50:04:f9:3d:c4:1a:7b:09:e1:4e:f7: 53:7d:be:dc:1c:e6:fa:83:b3:48:eb:65:60:f2:5b:3c:6e:d2: 8f:f0:98:e6:e5:30:a5:27:f4:1d:8e:fa:3e:ea:1a:cc:25:8d: 7f:86:d7:0b:79:dd:67:92:7f:ff:d0:95:cd:e3:3c:fb:7f:80: 53:dd:81:9f:d8:9d:4f:9f:22:18:03:fb:a5:22:95:b1:28:41: 2b:84:43:af:8b:9d:ef:90:34:70:fc:7f:79:b0:7c:bd:09:b7: e4:a5:2f:d9:59:2b:60:eb:09:28:7c:33:e6:cb:b5:9d:3f:03: 17:5a:76:ab:4a:2f:4b:4e:54:34:92:f5:4a:7f:1b:8a:61:cc: 01:40:f4:e2:39:3f:fa:a0:0c:b0:bc:59:f5:d3:b3:33:40:a9: 18:82:c5:3e:59:e3:87:ff:29:83:f0:0e:da:8f:87:f6:f9:33: 47:14:18:ff:4b:06:dd:94:ff:cf:8c:74:aa:b9:cf:a0:b6:da: aa:25:aa:3f:13:e4:93:9e:1d:2a:86:b0:a1:04:d3:1c:66:0e: 48:61:67:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCqu9VUDNVBnHSQm9B0E0la5mlMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNjAyMDgwNTU1MDBaFw0yNzAyMDcwNjAwMDBaMDMxMTAvBgNV BAMTKEZGQjdBNDRGOTAzNTQ2NjhDN0M1OTQzRjhDN0UxMDc3Qzk2NzcwQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbMetG71fpICnq5vA03PZt3Ohp V2v+EwF5CnqQaBweCtQLZkEmsmOuDGpmgssGPZxA8jlb4ulEHGgMJxV0oLHWTGEB uLsa6Vn2zXHfFwEyQqdqbOO8RLv3LyTwSwIm6NVNWbLwbHGgXO3KdI5JsZAyehzk AR4mE7MhjaAz/RZITMqJBZ/wr7THHN99qtsNEw8P+l5G7UyiPHR4pYzXzK15bWz3 f39800nfnN9FU2w/DMWHMa/jiaOOibUUZkVpIYgQGKSCcXMLVpHnAM69bB8UR8hu UlrslqUo2kt1TEi/zXyyE8Ar5uOcJbK3FAR4qOBIfHxbechNS2sPQINOIQNxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/7ekT5A1RmjHxZQ/jH4Qd8lncMcwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FzANBgkqhkiG 9w0BAQsFAAOCAQEAp1+7ANC/Ekp1hhZOmQFCmDgioPGMjM/8J3Y9UWQsc1fEdCOX k8Jwn4T6WVAE+T3EGnsJ4U73U32+3Bzm+oOzSOtlYPJbPG7Sj/CY5uUwpSf0HY76 PuoazCWNf4bXC3ndZ5J//9CVzeM8+3+AU92Bn9idT58iGAP7pSKVsShBK4RDr4ud 75A0cPx/ebB8vQm35KUv2VkrYOsJKHwz5su1nT8DF1p2q0ovS05UNJL1Sn8bimHM AUD04jk/+qAMsLxZ9dOzM0CpGILFPlnjh/8pg/AO2o+H9vkzRxQY/0sG3ZT/z4x0 qrnPoLbaqiWqPxPkk54dKoawoQTTHGYOSGFnPw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:44:55 2026 by rpki-client