$ rpki-client -vvf repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34342e302f32342d3234203d3e20313431393335.roa File: 3130332e3136362e34342e302f32342d3234203d3e20313431393335.roa (raw, json) Hash identifier: ZYG1EXg2CjFh3omINnANd4iNip5/TbDleRfU4F6+kIo= Subject key identifier: EA:FC:8C:E3:8C:47:E4:AC:79:11:43:DA:D4:09:A1:F9:49:E1:F9:1E Certificate issuer: /CN=BD9D1FA2782F66A5D2247CCF76F98733944DDB1E Certificate serial: 7B0A84E6B4388EDB8831E5E2D067136865D80FF8 Authority key identifier: BD:9D:1F:A2:78:2F:66:A5:D2:24:7C:CF:76:F9:87:33:94:4D:DB:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34342e302f32342d3234203d3e20313431393335.roa Signing time: Tue 31 Mar 2026 03:02:46 +0000 ROA not before: Tue 31 Mar 2026 02:57:46 +0000 ROA not after: Tue 30 Mar 2027 03:02:46 +0000 asID: 141935 IP address blocks: 103.166.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.crl rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 13:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0a:84:e6:b4:38:8e:db:88:31:e5:e2:d0:67:13:68:65:d8:0f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9D1FA2782F66A5D2247CCF76F98733944DDB1E Validity Not Before: Mar 31 02:57:46 2026 GMT Not After : Mar 30 03:02:46 2027 GMT Subject: CN=EAFC8CE38C47E4AC791143DAD409A1F949E1F91E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:46:2e:a9:ee:33:79:44:39:c3:27:c6:27: f8:77:7a:a2:d5:f5:e3:1a:87:d9:30:b4:54:d7:cf: 71:cb:50:af:cd:34:dd:38:69:6b:3c:cc:61:38:8a: 34:27:ca:f2:4c:80:e5:9b:52:67:92:8d:67:d4:70: 57:cf:08:e8:24:67:6b:b6:31:07:33:a5:a7:1c:24: 2c:43:cc:4e:c7:06:25:08:66:fb:ac:45:90:61:43: 89:0d:eb:36:a5:78:d4:77:54:19:3c:d9:40:bd:50: f5:87:df:8f:a2:98:3e:18:45:d5:4d:5b:d5:77:73: 62:fd:b3:58:02:2b:9e:49:6b:34:33:b7:0f:64:d9: 87:01:92:3d:9f:48:e3:5b:08:1f:98:53:0b:4a:f0: 44:37:33:77:ce:b6:96:df:43:0e:6f:60:1a:cd:da: 1b:80:df:81:85:08:57:5b:64:39:fa:61:9b:50:f9: 6b:e4:60:16:53:07:db:00:4b:57:a8:8b:d8:da:31: cc:62:c7:e2:d6:a8:6d:f3:75:e6:19:8c:e5:08:b4: 7a:d5:55:de:6f:a1:74:39:5f:43:33:4c:e5:f7:f5: 0d:cc:36:2a:5b:e5:75:24:6c:52:4b:40:9b:59:1c: 96:e2:77:9b:ba:42:0e:65:84:45:c5:4f:7e:ec:45: 2b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FC:8C:E3:8C:47:E4:AC:79:11:43:DA:D4:09:A1:F9:49:E1:F9:1E X509v3 Authority Key Identifier: keyid:BD:9D:1F:A2:78:2F:66:A5:D2:24:7C:CF:76:F9:87:33:94:4D:DB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34342e302f32342d3234203d3e20313431393335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.44.0/24 Signature Algorithm: sha256WithRSAEncryption a5:99:9c:28:0d:0d:c5:8f:29:3a:b8:31:d6:d3:e0:53:bf:7d: db:f9:2c:71:e4:24:03:2e:b7:da:61:8f:03:67:dd:da:b4:98: 60:e3:9c:da:e7:10:11:b9:14:e6:7b:ff:42:f7:dd:28:f7:d5: 5c:51:1a:20:d2:c4:69:f7:af:c6:1c:b5:10:c8:1c:3a:93:27: 43:a6:d1:12:e5:1b:f9:d2:94:9b:2e:8a:e0:e6:04:bd:18:12: 22:5e:6e:42:7b:d4:8c:e9:65:9a:20:ee:04:66:22:d4:b8:75: c3:13:05:7e:e0:04:76:63:43:4b:01:1c:94:af:6b:47:19:63: fb:e3:35:86:9f:cd:39:9d:61:94:26:09:2b:c2:14:17:1b:48: 00:4d:0e:a5:df:a1:a0:04:9b:af:84:44:34:2f:fd:2e:40:c5: 15:a0:61:71:01:ac:17:3a:72:b4:4a:cd:b5:82:1c:d2:9a:36: c1:76:dc:f0:ff:b3:82:f3:cd:9f:75:35:21:d2:54:99:6c:c1: 7a:b5:f9:7b:18:39:fd:3b:ff:4e:00:3a:2f:81:56:33:49:1f: 62:35:18:8d:ee:99:f4:65:51:91:0e:3b:c4:d0:79:f8:3d:d0: cb:79:f0:05:41:51:c0:68:1d:ff:14:af:4a:e8:f3:6d:86:b5: 2a:4b:44:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUewqE5rQ4jtuIMeXi0GcTaGXYD/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5RDFGQTI3ODJGNjZBNUQyMjQ3Q0NGNzZGOTg3MzM5 NDREREIxRTAeFw0yNjAzMzEwMjU3NDZaFw0yNzAzMzAwMzAyNDZaMDMxMTAvBgNV BAMTKEVBRkM4Q0UzOEM0N0U0QUM3OTExNDNEQUQ0MDlBMUY5NDlFMUY5MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AkYuqe4zeUQ5wyfGJ/h3eqLV 9eMah9kwtFTXz3HLUK/NNN04aWs8zGE4ijQnyvJMgOWbUmeSjWfUcFfPCOgkZ2u2 MQczpaccJCxDzE7HBiUIZvusRZBhQ4kN6zaleNR3VBk82UC9UPWH34+imD4YRdVN W9V3c2L9s1gCK55JazQztw9k2YcBkj2fSONbCB+YUwtK8EQ3M3fOtpbfQw5vYBrN 2huA34GFCFdbZDn6YZtQ+WvkYBZTB9sAS1eoi9jaMcxix+LWqG3zdeYZjOUItHrV Vd5voXQ5X0MzTOX39Q3MNipb5XUkbFJLQJtZHJbid5u6Qg5lhEXFT37sRSvFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6vyM44xH5Kx5EUPa1Amh+Unh+R4wHwYDVR0j BBgwFoAUvZ0fongvZqXSJHzPdvmHM5RN2x4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDlkYzVlYi0zMjYwLTQyOGEtYTZjMC1kYzBmNjM2YjMzMDcvMC9CRDlEMUZBMjc4 MkY2NkE1RDIyNDdDQ0Y3NkY5ODczMzk0NEREQjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ5RDFGQTI3ODJGNjZBNUQyMjQ3Q0NGNzZGOTg3MzM5NDRE REIxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0OWRjNWViLTMyNjAtNDI4YS1h NmMwLWRjMGY2MzZiMzMwNy8wLzMxMzAzMzJlMzEzNjM2MmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6YsMA0GCSqG SIb3DQEBCwUAA4IBAQClmZwoDQ3Fjyk6uDHW0+BTv33b+Sxx5CQDLrfaYY8DZ93a tJhg45za5xARuRTme/9C990o99VcURog0sRp96/GHLUQyBw6kydDptES5Rv50pSb Lorg5gS9GBIiXm5Ce9SM6WWaIO4EZiLUuHXDEwV+4AR2Y0NLARyUr2tHGWP74zWG n805nWGUJgkrwhQXG0gATQ6l36GgBJuvhEQ0L/0uQMUVoGFxAawXOnK0Ss21ghzS mjbBdtzw/7OC882fdTUh0lSZbMF6tfl7GDn9O/9OADovgVYzSR9iNRiN7pn0ZVGR DjvE0Hn4PdDLefAFQVHAaB3/FK9K6PNthrUqS0Rj -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:37 2026 by rpki-client