$ rpki-client -vvf repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa File: 3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa (raw, json) Hash identifier: nIy/VfCP7zSkMzr8OonFtu6YLocFepg02ssVATdkB1M= Subject key identifier: F2:59:C5:46:64:8D:F8:0E:E2:44:15:57:A4:1F:C0:98:03:59:93:2C Certificate issuer: /CN=038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4 Certificate serial: 2FA90818845BD3349EDFE85A1E30546B99C7A6DE Authority key identifier: 03:8F:C8:DB:9F:4F:38:1D:61:4C:3C:DA:94:4E:DB:CE:2C:EB:B6:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa Signing time: Mon 06 Apr 2026 06:02:50 +0000 ROA not before: Mon 06 Apr 2026 05:57:50 +0000 ROA not after: Mon 05 Apr 2027 06:02:50 +0000 asID: 150218 IP address blocks: 103.218.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.crl rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 22:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:a9:08:18:84:5b:d3:34:9e:df:e8:5a:1e:30:54:6b:99:c7:a6:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4 Validity Not Before: Apr 6 05:57:50 2026 GMT Not After : Apr 5 06:02:50 2027 GMT Subject: CN=F259C546648DF80EE2441557A41FC0980359932C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:83:9a:59:f5:07:e4:13:df:8c:6e:13:82:1f: ac:a9:cd:78:40:0c:f0:19:23:0c:e7:ef:75:68:0b: 2e:c9:b1:a4:65:d8:e8:5b:fd:35:bb:b9:54:8e:e4: 12:1a:ce:53:e7:54:16:79:bc:ea:e2:90:11:8f:11: e4:13:d1:df:cf:17:ab:0b:69:a2:84:e3:21:ea:44: b7:77:6e:0a:53:cc:d5:43:10:08:7b:ed:54:c9:49: f7:70:9d:a8:a8:c0:97:0b:9c:32:a7:53:fc:f4:a7: 87:f2:16:6b:5b:9c:b9:aa:54:62:e2:75:36:76:16: e5:c7:fc:14:73:b2:d9:73:cf:ae:31:28:76:c6:ea: a9:84:5e:52:64:7c:6f:a6:10:fe:19:5f:6b:77:5f: 64:25:25:3f:af:df:1e:9a:bd:77:12:2d:a7:e2:02: 37:ac:cf:a2:5c:41:43:44:47:50:76:bd:e2:d5:c1: 50:34:8a:5b:d5:42:59:7d:65:8d:a7:6e:a9:63:c4: da:e4:d6:c9:6f:f7:88:99:fc:67:23:c9:47:9b:9f: a2:14:04:e4:f3:f6:bc:20:21:4b:5d:da:a9:48:5d: 5f:3e:e4:fe:86:7a:6b:44:a9:50:cb:ba:ed:b5:8e: 90:5c:93:08:1c:be:38:f6:36:af:d0:0b:1b:c4:95: fc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:59:C5:46:64:8D:F8:0E:E2:44:15:57:A4:1F:C0:98:03:59:93:2C X509v3 Authority Key Identifier: keyid:03:8F:C8:DB:9F:4F:38:1D:61:4C:3C:DA:94:4E:DB:CE:2C:EB:B6:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.104.0/24 Signature Algorithm: sha256WithRSAEncryption bf:26:a0:7c:6c:cc:ea:75:b5:7c:4c:1f:71:0b:89:92:91:8e: 84:5f:d1:b3:ac:52:a2:d7:a9:f1:28:6b:12:b8:9c:50:a5:f1: bc:20:bd:40:61:7a:2f:05:b8:18:86:6f:1a:25:37:ad:3e:2f: 79:10:1e:9d:45:55:05:50:2e:13:82:aa:27:33:d9:0d:bb:84: 79:a3:f0:e1:67:01:9d:59:a5:9b:f0:dc:69:62:6e:62:a4:b5: b5:12:73:82:ce:75:47:64:70:76:57:cd:f4:43:d9:bd:42:68: 4a:3d:e6:bc:80:d9:aa:b9:16:c5:16:87:bf:62:fd:4c:b9:dc: a4:bc:b6:8f:ac:51:c2:05:9c:a7:55:96:64:70:41:e5:fa:67: 76:d9:06:8a:b8:5e:d6:37:e9:20:5d:3e:c2:1b:73:56:e5:a1: 84:18:4e:14:19:b2:ba:75:44:34:3b:5f:0c:2b:2e:58:17:22: e1:4e:1c:b7:6a:22:39:19:5d:0b:63:5b:e3:75:c4:8b:4a:14: a0:da:2f:22:53:0f:fe:19:9c:a2:94:50:ec:c0:46:f5:a5:b2: db:cf:56:57:28:77:58:e3:1f:67:20:ad:78:85:1b:8a:c7:79: a4:11:31:c0:52:51:a9:6f:36:2b:9c:f4:b5:f0:e1:f4:ce:dd: 37:8d:b5:05 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUL6kIGIRb0zSe3+haHjBUa5nHpt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM4RkM4REI5RjRGMzgxRDYxNEMzQ0RBOTQ0RURCQ0Uy Q0VCQjZGNDAeFw0yNjA0MDYwNTU3NTBaFw0yNzA0MDUwNjAyNTBaMDMxMTAvBgNV BAMTKEYyNTlDNTQ2NjQ4REY4MEVFMjQ0MTU1N0E0MUZDMDk4MDM1OTkzMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxg5pZ9QfkE9+MbhOCH6ypzXhA DPAZIwzn73VoCy7JsaRl2Ohb/TW7uVSO5BIazlPnVBZ5vOrikBGPEeQT0d/PF6sL aaKE4yHqRLd3bgpTzNVDEAh77VTJSfdwnaiowJcLnDKnU/z0p4fyFmtbnLmqVGLi dTZ2FuXH/BRzstlzz64xKHbG6qmEXlJkfG+mEP4ZX2t3X2QlJT+v3x6avXcSLafi Ajesz6JcQUNER1B2veLVwVA0ilvVQll9ZY2nbqljxNrk1slv94iZ/GcjyUebn6IU BOTz9rwgIUtd2qlIXV8+5P6GemtEqVDLuu21jpBckwgcvjj2Nq/QCxvElfw5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8lnFRmSN+A7iRBVXpB/AmANZkywwHwYDVR0j BBgwFoAUA4/I259POB1hTDzalE7bzizrtvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzQwZGYxMy1jNGU5LTQyMTgtYjExNC1kZWFkMTY0ODI4NWMvMC8wMzhGQzhEQjlG NEYzODFENjE0QzNDREE5NDRFREJDRTJDRUJCNkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM4RkM4REI5RjRGMzgxRDYxNEMzQ0RBOTQ0RURCQ0UyQ0VC QjZGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzNDBkZjEzLWM0ZTktNDIxOC1i MTE0LWRlYWQxNjQ4Mjg1Yy8wLzMxMzAzMzJlMzIzMTM4MmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMxMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2mgwDQYJ KoZIhvcNAQELBQADggEBAL8moHxszOp1tXxMH3ELiZKRjoRf0bOsUqLXqfEoaxK4 nFCl8bwgvUBhei8FuBiGbxolN60+L3kQHp1FVQVQLhOCqicz2Q27hHmj8OFnAZ1Z pZvw3GlibmKktbUSc4LOdUdkcHZXzfRD2b1CaEo95ryA2aq5FsUWh79i/Uy53KS8 to+sUcIFnKdVlmRwQeX6Z3bZBoq4XtY36SBdPsIbc1bloYQYThQZsrp1RDQ7Xwwr LlgXIuFOHLdqIjkZXQtjW+N1xItKFKDaLyJTD/4ZnKKUUOzARvWlstvPVlcod1jj H2cgrXiFG4rHeaQRMcBSUalvNiuc9LXw4fTO3TeNtQU= -----END CERTIFICATE-----Generated at Sat Apr 18 05:00:48 2026 by rpki-client