$ rpki-client -vvf repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa File: 3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa (raw, json) Hash identifier: 3sn3cHR3pPdkg5yz9dRolP/N8qZbatQdrQrIM71l4Oo= Subject key identifier: 2D:A9:31:3D:34:3E:F3:47:D1:A2:D4:50:66:65:01:3E:44:DF:6E:F4 Certificate issuer: /CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Certificate serial: 2E258A8145E1B33F372D75F45D38E0AD13CF044E Authority key identifier: E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa Signing time: Tue 17 Feb 2026 10:00:03 +0000 ROA not before: Tue 17 Feb 2026 09:55:03 +0000 ROA not after: Tue 16 Feb 2027 10:00:03 +0000 asID: 141920 IP address blocks: 103.165.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 01:07:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:25:8a:81:45:e1:b3:3f:37:2d:75:f4:5d:38:e0:ad:13:cf:04:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Validity Not Before: Feb 17 09:55:03 2026 GMT Not After : Feb 16 10:00:03 2027 GMT Subject: CN=2DA9313D343EF347D1A2D4506665013E44DF6EF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:04:d1:59:a3:75:ae:2a:cd:18:55:7b:d1:54: b1:3a:46:76:69:97:0a:3c:d8:6a:23:c3:44:33:4b: 79:60:e5:f5:47:f2:dc:fc:67:f5:6b:12:0e:a4:43: fb:e8:8c:d4:7d:08:52:4e:7e:39:b9:ba:42:4c:54: ce:ae:e1:fd:59:10:6e:c2:a2:0f:98:17:5f:fa:5d: 86:11:c1:51:75:9a:05:f3:73:e5:ab:47:00:de:ce: 13:5e:80:3a:3a:51:b5:c4:b7:79:0a:fa:19:22:eb: cb:2c:a8:4a:2c:5e:b3:ed:c1:22:98:ba:94:07:7c: 65:ff:d8:d5:50:07:34:ab:6c:a7:b0:e3:d3:28:87: a3:01:4d:95:89:7c:5a:80:9b:56:2c:54:90:d8:8b: 48:90:5e:ba:ef:fb:c2:ba:ed:21:8a:f3:47:70:ac: 30:02:90:b6:f7:f5:4b:09:02:83:8d:13:bb:3a:10: 31:af:1a:db:ce:30:b5:0e:53:a0:18:de:fc:01:10: bd:b5:55:41:b7:09:e5:2b:b5:25:bc:37:61:bc:5d: 6d:18:cc:74:65:38:c9:4e:22:48:f7:11:54:e6:2c: c4:d7:37:fc:20:4a:2f:e7:1c:10:34:b6:d2:50:01: a1:86:4e:e1:9f:2b:4e:9f:a2:76:96:41:d0:35:d4: 6a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A9:31:3D:34:3E:F3:47:D1:A2:D4:50:66:65:01:3E:44:DF:6E:F4 X509v3 Authority Key Identifier: keyid:E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.149.0/24 Signature Algorithm: sha256WithRSAEncryption 42:a0:cc:33:e6:5c:36:09:9e:25:2b:65:bb:02:f3:2a:b7:a5: 6f:f7:e1:08:82:0b:d5:01:4b:2c:48:f9:c3:10:2e:25:72:7d: 86:53:b9:94:27:98:54:ab:a3:7f:d3:e8:11:77:67:e5:03:01: ba:00:f6:fc:24:99:0d:a3:be:6d:7d:89:fc:1f:e1:2c:42:9d: 19:fc:fa:c6:18:67:a9:9e:6c:e6:b4:84:ab:65:b4:30:8f:0c: 3d:fc:a0:5e:20:50:a2:cc:a1:34:80:6f:71:52:41:e7:e7:91: f8:9d:c7:a1:c5:69:65:b4:6e:69:f0:6e:1b:8f:59:28:f6:d9: 9d:43:d6:1b:fb:b4:ca:ff:1f:6c:3a:2f:44:ab:72:e9:46:46: 4c:14:05:5e:4a:34:fd:90:d5:35:a2:c2:4a:04:2d:6b:fd:38: 97:85:45:7b:d7:d9:5e:ff:cb:86:53:c7:99:fe:ed:8d:41:c0: 66:ad:01:e2:4c:89:8a:1b:84:b4:22:9f:27:14:d2:2f:59:75: b0:01:ea:7d:08:48:2a:05:60:c4:3d:c7:4a:6e:ef:cf:3f:b4: ea:3d:26:32:7f:c2:34:ba:a7:a1:f2:07:5b:6e:c4:c6:3f:f5: 05:5e:e5:5f:2b:5f:98:0d:94:f6:8f:a4:8c:af:c9:52:b4:ee: a8:a3:28:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULiWKgUXhsz83LXX0XTjgrRPPBE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0Iy REJCRUQwRjAeFw0yNjAyMTcwOTU1MDNaFw0yNzAyMTYxMDAwMDNaMDMxMTAvBgNV BAMTKDJEQTkzMTNEMzQzRUYzNDdEMUEyRDQ1MDY2NjUwMTNFNDRERjZFRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzBNFZo3WuKs0YVXvRVLE6RnZp lwo82Gojw0QzS3lg5fVH8tz8Z/VrEg6kQ/vojNR9CFJOfjm5ukJMVM6u4f1ZEG7C og+YF1/6XYYRwVF1mgXzc+WrRwDezhNegDo6UbXEt3kK+hki68ssqEosXrPtwSKY upQHfGX/2NVQBzSrbKew49Moh6MBTZWJfFqAm1YsVJDYi0iQXrrv+8K67SGK80dw rDACkLb39UsJAoONE7s6EDGvGtvOMLUOU6AY3vwBEL21VUG3CeUrtSW8N2G8XW0Y zHRlOMlOIkj3EVTmLMTXN/wgSi/nHBA0ttJQAaGGTuGfK06fonaWQdA11Gq1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULakxPTQ+80fRotRQZmUBPkTfbvQwHwYDVR0j BBgwFoAU5M7BHyRL8Nq+wTb4Of1Tey277Q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmYzZjVkOS1jZmI4LTQxMjMtYTJiMS1iMGI1Mjk5ZjljNmUvMC9FNENFQzExRjI0 NEJGMERBQkVDMTM2RjgzOUZENTM3QjJEQkJFRDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0IyREJC RUQwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyZjNmNWQ5LWNmYjgtNDEyMy1h MmIxLWIwYjUyOTlmOWM2ZS8wLzMxMzAzMzJlMzEzNjM1MmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpZUwDQYJ KoZIhvcNAQELBQADggEBAEKgzDPmXDYJniUrZbsC8yq3pW/34QiCC9UBSyxI+cMQ LiVyfYZTuZQnmFSro3/T6BF3Z+UDAboA9vwkmQ2jvm19ifwf4SxCnRn8+sYYZ6me bOa0hKtltDCPDD38oF4gUKLMoTSAb3FSQefnkfidx6HFaWW0bmnwbhuPWSj22Z1D 1hv7tMr/H2w6L0SrculGRkwUBV5KNP2Q1TWiwkoELWv9OJeFRXvX2V7/y4ZTx5n+ 7Y1BwGatAeJMiYobhLQinycU0i9ZdbAB6n0ISCoFYMQ9x0pu788/tOo9JjJ/wjS6 p6HyB1tuxMY/9QVe5V8rX5gNlPaPpIyvyVK07qijKIg= -----END CERTIFICATE-----Generated at Mon Mar 2 14:30:49 2026 by rpki-client