$ rpki-client -vvf repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32332d3233203d3e20313531393934.roa File: 3130332e3235352e3136342e302f32332d3233203d3e20313531393934.roa (raw, json) Hash identifier: /Pah/oIgxRUN6pNGWVw40iRqNCV4jcOrtmfTg1sD+qo= Subject key identifier: 05:08:DC:33:65:12:34:BB:79:3C:1D:74:9B:3D:AB:86:38:BF:52:55 Certificate issuer: /CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Certificate serial: 7907F967FD20A338D1F6FC79FA4E15FE1130F5D7 Authority key identifier: A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32332d3233203d3e20313531393934.roa Signing time: Mon 09 Feb 2026 16:01:50 +0000 ROA not before: Mon 09 Feb 2026 15:56:50 +0000 ROA not after: Mon 08 Feb 2027 16:01:50 +0000 asID: 151994 IP address blocks: 103.255.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:07:f9:67:fd:20:a3:38:d1:f6:fc:79:fa:4e:15:fe:11:30:f5:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Validity Not Before: Feb 9 15:56:50 2026 GMT Not After : Feb 8 16:01:50 2027 GMT Subject: CN=0508DC33651234BB793C1D749B3DAB8638BF5255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dd:b8:17:07:fa:5f:85:70:8b:2f:7a:c2:1f: a3:8f:50:82:a1:8f:b2:52:0b:97:74:d9:9e:19:a4: 3e:86:fd:4e:e9:59:23:2e:fa:be:cf:4e:73:ec:45: 46:81:fd:87:73:28:73:fd:c6:75:34:96:dd:1e:c4: 28:4c:a3:82:92:da:4b:c1:ee:e5:0e:3b:c2:19:f9: a0:ec:fd:ef:1d:93:e8:b4:8a:db:51:6b:0b:83:30: 03:b8:27:27:44:e4:7f:8f:c9:02:7e:ca:dc:ca:2c: 40:b9:b6:75:e6:c2:b9:0a:84:20:7e:43:a2:a9:ce: 68:82:6d:19:34:de:26:d8:5c:96:bc:94:11:2d:8c: 10:b7:11:45:65:27:95:a4:35:bd:1d:7d:41:5b:3b: e0:f9:54:fd:8f:c4:60:ab:bc:56:5c:cc:fb:98:b4: 90:3d:98:36:ce:3c:d6:d2:2c:d1:1e:f5:a2:2e:b1: 27:3b:56:97:88:43:32:ee:05:8c:3d:a0:2a:4a:47: 90:73:8e:7b:9d:12:bb:1d:0f:fd:eb:b3:bd:5d:ab: f0:38:1e:50:67:03:cc:46:4d:53:c5:b4:cf:93:04: a4:8f:9a:a5:b5:aa:ae:7f:03:45:65:07:1f:e8:e1: 78:88:ed:9b:b1:78:cb:89:83:67:c4:4d:f9:af:01: 28:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:08:DC:33:65:12:34:BB:79:3C:1D:74:9B:3D:AB:86:38:BF:52:55 X509v3 Authority Key Identifier: keyid:A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32332d3233203d3e20313531393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.164.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:0f:69:16:37:47:a5:b7:08:7e:c2:d4:b3:bd:8f:5b:7c:ff: a5:e5:40:89:e1:ce:e9:27:7a:36:89:46:82:bc:11:1e:1e:4c: 7b:58:4a:70:70:19:fa:1f:a8:86:63:ad:a6:43:e7:7d:57:10: da:a1:a2:bb:1c:f7:e2:02:15:20:24:20:fd:dc:95:b0:8f:72: 50:e7:7b:b6:e2:7e:8b:fa:0b:d4:67:b0:2c:76:bf:f6:e2:8d: 87:1a:4c:fe:64:98:dd:13:78:d5:c1:91:00:df:26:1b:43:3b: a9:df:b5:4d:d3:ee:5f:47:3c:73:7c:9e:46:73:89:03:30:86: 86:a0:7b:9c:69:85:25:64:a7:fb:9f:46:53:11:8f:43:19:e5: 44:fd:f7:5a:4d:cc:ee:8d:47:af:fd:41:ce:a1:15:40:a1:9d: 51:35:67:e1:4e:83:bc:90:bd:bd:15:4c:a5:e1:9a:6c:18:e0: 5c:ca:9d:ac:ab:04:cf:26:df:9d:ca:0c:15:b8:58:01:7e:bc: b2:3f:41:d4:06:45:95:b4:4b:9f:cf:26:a7:10:50:7b:08:96: 03:9a:c4:b2:74:fb:e9:2f:4c:35:af:ea:9d:44:72:4a:bc:40: c8:79:20:ee:60:59:db:72:11:6b:a8:91:50:cf:b2:7e:b2:79: 86:69:41:bc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeQf5Z/0gozjR9vx5+k4V/hEw9dcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYx MDVFRjg0ODAeFw0yNjAyMDkxNTU2NTBaFw0yNzAyMDgxNjAxNTBaMDMxMTAvBgNV BAMTKDA1MDhEQzMzNjUxMjM0QkI3OTNDMUQ3NDlCM0RBQjg2MzhCRjUyNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/3bgXB/pfhXCLL3rCH6OPUIKh j7JSC5d02Z4ZpD6G/U7pWSMu+r7PTnPsRUaB/YdzKHP9xnU0lt0exChMo4KS2kvB 7uUOO8IZ+aDs/e8dk+i0ittRawuDMAO4JydE5H+PyQJ+ytzKLEC5tnXmwrkKhCB+ Q6KpzmiCbRk03ibYXJa8lBEtjBC3EUVlJ5WkNb0dfUFbO+D5VP2PxGCrvFZczPuY tJA9mDbOPNbSLNEe9aIusSc7VpeIQzLuBYw9oCpKR5BzjnudErsdD/3rs71dq/A4 HlBnA8xGTVPFtM+TBKSPmqW1qq5/A0VlBx/o4XiI7ZuxeMuJg2fETfmvASjPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBQjcM2USNLt5PB10mz2rhji/UlUwHwYDVR0j BBgwFoAUpNkJnDZdi7n6lqKlH6TGHxBe+EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzQ3ZWY1Yy01YmJhLTRjZDEtOGRjOS0xNzNlMjc1MWY0ZjQvMC9BNEQ5MDk5QzM2 NUQ4QkI5RkE5NkEyQTUxRkE0QzYxRjEwNUVGODQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYxMDVF Rjg0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNDdlZjVjLTViYmEtNGNkMS04 ZGM5LTE3M2UyNzUxZjRmNC8wLzMxMzAzMzJlMzIzNTM1MmUzMTM2MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzEzOTM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn/6QwDQYJ KoZIhvcNAQELBQADggEBAH4PaRY3R6W3CH7C1LO9j1t8/6XlQInhzuknejaJRoK8 ER4eTHtYSnBwGfofqIZjraZD531XENqhorsc9+ICFSAkIP3clbCPclDne7bifov6 C9RnsCx2v/bijYcaTP5kmN0TeNXBkQDfJhtDO6nftU3T7l9HPHN8nkZziQMwhoag e5xphSVkp/ufRlMRj0MZ5UT991pNzO6NR6/9Qc6hFUChnVE1Z+FOg7yQvb0VTKXh mmwY4FzKnayrBM8m353KDBW4WAF+vLI/QdQGRZW0S5/PJqcQUHsIlgOaxLJ0++kv TDWv6p1Eckq8QMh5IO5gWdtyEWuokVDPsn6yeYZpQbw= -----END CERTIFICATE-----Generated at Mon Mar 2 15:36:41 2026 by rpki-client