$ rpki-client -vvf repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32342d3234203d3e20313339343233.roa File: 3130332e3134342e32302e302f32342d3234203d3e20313339343233.roa (raw, json) Hash identifier: dfvTwA9g0PoiQuic92FFcarIIGy4IM2yPjpH4fTFWWk= Subject key identifier: A5:1F:13:02:E2:45:8C:E4:CF:15:79:8E:43:0B:A9:7B:39:72:CB:5B Certificate issuer: /CN=064A8F9FBD487AB04370A31B7D603B27E6674937 Certificate serial: 2F2614223816243B7561CDBFBDAD9AB624BC8E5C Authority key identifier: 06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer Subject info access: rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32342d3234203d3e20313339343233.roa Signing time: Fri 20 Feb 2026 08:01:14 +0000 ROA not before: Fri 20 Feb 2026 07:56:14 +0000 ROA not after: Fri 19 Feb 2027 08:01:14 +0000 asID: 139423 IP address blocks: 103.144.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.crl rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 21:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:26:14:22:38:16:24:3b:75:61:cd:bf:bd:ad:9a:b6:24:bc:8e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=064A8F9FBD487AB04370A31B7D603B27E6674937 Validity Not Before: Feb 20 07:56:14 2026 GMT Not After : Feb 19 08:01:14 2027 GMT Subject: CN=A51F1302E2458CE4CF15798E430BA97B3972CB5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ef:8e:81:b7:23:fe:a7:e3:e3:89:a6:49:6a: 6e:19:74:72:56:92:76:bd:20:c5:30:85:b4:b9:8e: 4f:51:42:21:b3:c1:10:c8:cc:95:52:6e:a3:bb:d6: 6b:77:f2:d3:b4:e5:0e:28:d3:44:79:60:06:a7:05: 63:2d:9a:52:ac:5c:d8:cf:40:e6:01:7d:d6:52:7d: fb:6c:01:22:ec:80:f7:00:07:8a:56:13:82:a7:85: f9:9c:22:6b:7d:bb:3e:96:e0:8e:fc:8d:3e:76:ec: a6:73:a2:e3:1e:e2:a4:43:70:4b:57:dd:d1:1b:06: d2:01:ef:12:8d:b7:00:71:50:8e:30:b5:f7:94:80: b6:6e:ff:ed:55:48:e1:5a:f7:00:bd:e2:79:d2:e4: d8:2d:36:e9:90:19:b6:c6:55:97:eb:97:eb:b1:35: fe:51:94:3a:e1:3e:7d:ae:fe:a4:f8:f9:8c:f1:5b: 27:a5:91:91:31:02:c1:01:d7:27:bd:fc:c3:3d:a4: 2a:0b:0d:f9:b2:87:5a:3c:23:01:15:e5:37:9b:02: 86:84:b2:86:fa:ca:7d:b5:5c:69:f8:63:db:f6:56: f4:b8:13:ad:ca:a1:f1:3f:80:c9:d0:9d:70:a8:8b: 78:f6:9e:ca:32:1e:66:ad:92:01:bc:1f:06:87:df: b3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:1F:13:02:E2:45:8C:E4:CF:15:79:8E:43:0B:A9:7B:39:72:CB:5B X509v3 Authority Key Identifier: keyid:06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32342d3234203d3e20313339343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.20.0/24 Signature Algorithm: sha256WithRSAEncryption 92:c3:7a:c4:39:e9:57:94:e3:5b:b1:09:5b:a1:10:51:a6:38: f9:52:c9:b4:51:f4:ca:c3:c6:60:66:db:f6:5c:20:c5:e6:4b: 50:15:13:77:a2:49:e7:97:a7:9c:74:a7:c7:9e:72:99:c2:0e: 06:70:b2:bb:a3:3d:11:b7:a5:26:c5:ac:0d:13:67:db:a6:36: e0:47:dc:be:fb:15:8b:7f:30:29:05:de:9e:07:a5:98:57:67: fe:92:a0:e6:8c:e3:76:4f:7d:fc:12:2f:a2:ad:f4:54:f2:bd: 21:8f:a1:d3:4a:4b:0c:4a:83:b4:c1:d8:d9:42:73:28:c7:b4: ed:39:aa:c9:ee:cd:ef:2a:7f:08:2a:cf:20:81:f0:7b:8a:81: b1:3b:e2:7a:33:f8:86:18:61:72:41:e5:e3:11:cd:4c:58:cf: da:e0:77:a1:5d:a8:2d:b1:c0:b9:77:1a:e6:2c:d4:68:54:3e: 0f:18:d0:af:05:ff:db:51:36:54:60:43:60:c4:36:a3:73:48: 23:52:0f:9c:df:bd:1a:30:15:f8:43:25:5a:ee:14:d9:bd:96: 8f:80:24:2e:af:93:7b:d1:6e:83:45:b1:5f:a0:97:4e:04:38: f7:1b:ff:39:1d:42:cb:5a:ff:53:70:1b:12:0a:fa:e0:89:60: c7:92:42:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULyYUIjgWJDt1Yc2/va2atiS8jlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDY0QThGOUZCRDQ4N0FCMDQzNzBBMzFCN0Q2MDNCMjdF NjY3NDkzNzAeFw0yNjAyMjAwNzU2MTRaFw0yNzAyMTkwODAxMTRaMDMxMTAvBgNV BAMTKEE1MUYxMzAyRTI0NThDRTRDRjE1Nzk4RTQzMEJBOTdCMzk3MkNCNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU746BtyP+p+PjiaZJam4ZdHJW kna9IMUwhbS5jk9RQiGzwRDIzJVSbqO71mt38tO05Q4o00R5YAanBWMtmlKsXNjP QOYBfdZSfftsASLsgPcAB4pWE4KnhfmcImt9uz6W4I78jT527KZzouMe4qRDcEtX 3dEbBtIB7xKNtwBxUI4wtfeUgLZu/+1VSOFa9wC94nnS5NgtNumQGbbGVZfrl+ux Nf5RlDrhPn2u/qT4+YzxWyelkZExAsEB1ye9/MM9pCoLDfmyh1o8IwEV5TebAoaE sob6yn21XGn4Y9v2VvS4E63KofE/gMnQnXCoi3j2nsoyHmatkgG8HwaH37MnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpR8TAuJFjOTPFXmOQwupezlyy1swHwYDVR0j BBgwFoAUBkqPn71IerBDcKMbfWA7J+ZnSTcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDFmZjNlMi03NmI2LTQ4MzMtODZiNS04MmYzZmE0ZWJjYjcvMC8wNjRBOEY5RkJE NDg3QUIwNDM3MEEzMUI3RDYwM0IyN0U2Njc0OTM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDY0QThGOUZCRDQ4N0FCMDQzNzBBMzFCN0Q2MDNCMjdFNjY3 NDkzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0MWZmM2UyLTc2YjYtNDgzMy04 NmI1LTgyZjNmYTRlYmNiNy8wLzMxMzAzMzJlMzEzNDM0MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AUMA0GCSqG SIb3DQEBCwUAA4IBAQCSw3rEOelXlONbsQlboRBRpjj5Usm0UfTKw8ZgZtv2XCDF 5ktQFRN3oknnl6ecdKfHnnKZwg4GcLK7oz0Rt6UmxawNE2fbpjbgR9y++xWLfzAp Bd6eB6WYV2f+kqDmjON2T338Ei+irfRU8r0hj6HTSksMSoO0wdjZQnMox7TtOarJ 7s3vKn8IKs8ggfB7ioGxO+J6M/iGGGFyQeXjEc1MWM/a4HehXagtscC5dxrmLNRo VD4PGNCvBf/bUTZUYENgxDajc0gjUg+c370aMBX4QyVa7hTZvZaPgCQur5N70W6D RbFfoJdOBDj3G/85HULLWv9TcBsSCvrgiWDHkkIX -----END CERTIFICATE-----Generated at Mon Mar 2 10:16:55 2026 by rpki-client