$ rpki-client -vvf repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa File: 3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa (raw, json) Hash identifier: iPd5Vsp7SJIqCGaHzuts8q6s6srq4ptesMqUjdGpaik= Subject key identifier: EF:00:B1:C5:39:D2:5B:D2:BF:9F:6F:FD:1D:9D:0F:3A:37:85:27:89 Certificate issuer: /CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Certificate serial: 36ABA88EFE2D0BB8D3626E2920989E85E26D5972 Authority key identifier: A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa Signing time: Mon 09 Feb 2026 16:01:50 +0000 ROA not before: Mon 09 Feb 2026 15:56:50 +0000 ROA not after: Mon 08 Feb 2027 16:01:50 +0000 asID: 151994 IP address blocks: 103.255.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ab:a8:8e:fe:2d:0b:b8:d3:62:6e:29:20:98:9e:85:e2:6d:59:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Validity Not Before: Feb 9 15:56:50 2026 GMT Not After : Feb 8 16:01:50 2027 GMT Subject: CN=EF00B1C539D25BD2BF9F6FFD1D9D0F3A37852789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fe:e0:fd:0f:0e:1b:74:b9:78:46:ba:00:17: aa:26:a2:c7:88:97:cc:df:e1:a0:bf:32:7a:49:0f: e0:ed:a9:99:e7:1e:29:cb:23:43:72:30:48:42:09: fb:66:ad:b5:a0:6a:05:0b:6c:52:d2:39:50:9b:29: 5a:21:43:e3:19:bd:a6:44:23:22:8e:75:44:f4:3a: 8a:ac:3e:04:1d:d2:95:af:ac:ba:12:1d:57:8c:65: eb:79:9d:66:d8:52:e5:8f:d7:d0:54:4d:22:65:93: 76:30:96:e6:e7:31:40:42:13:a3:04:92:13:93:8b: 77:da:84:96:51:bd:e6:4a:96:5d:bc:14:56:93:64: d0:7d:d2:24:9a:0e:f4:d3:4f:8e:c1:4f:30:51:e1: 6d:3f:4f:78:92:2e:66:cf:b4:5a:ea:68:dc:d5:f2: 58:41:42:f7:2a:3b:f8:c3:5c:7c:ce:e8:0c:d6:20: b1:4a:d0:79:93:d7:92:ea:d8:e0:0b:61:08:a6:d5: bf:f1:69:29:1f:ae:ce:b2:9f:39:86:84:62:97:a2: 15:5e:13:e7:78:9e:ee:f6:6b:11:30:33:ce:1c:3b: f4:95:0e:58:67:b6:96:ec:9e:75:99:9c:96:e3:7b: f6:03:7f:fc:e6:f1:de:15:5b:2e:bb:e8:5d:26:5d: 0c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:00:B1:C5:39:D2:5B:D2:BF:9F:6F:FD:1D:9D:0F:3A:37:85:27:89 X509v3 Authority Key Identifier: keyid:A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.164.0/24 Signature Algorithm: sha256WithRSAEncryption 70:95:37:31:02:1b:1e:5e:7e:7a:eb:a2:bd:7c:1e:24:b9:3d: ae:e7:31:1d:94:7c:9a:61:ef:11:70:b6:e8:8c:54:dc:3f:0d: 60:3b:ec:ec:8a:dc:8b:e3:14:dd:dd:0e:e0:2b:ff:82:8b:3a: 38:69:19:bd:e6:62:f3:1a:ae:c3:2d:3a:11:15:ee:7d:05:04: 12:fa:26:bc:e0:09:3c:a8:c7:74:09:10:21:aa:c3:94:0f:a8: d4:4a:ab:ba:0c:88:3a:25:d4:7a:15:4e:9e:02:4a:1f:8a:8f: 48:28:06:63:dd:de:0d:50:26:94:a0:20:18:a0:c1:db:f4:63: 37:91:a0:cb:9c:27:33:2b:3d:a3:bc:e6:40:cb:11:a9:f2:95: 46:d3:6d:85:10:9d:d8:89:4e:e0:e6:32:c2:95:25:a5:20:92: df:14:bd:dd:8d:5e:ac:96:5b:bb:34:0a:a7:32:57:3c:bc:e5: 73:1e:d0:b6:58:cb:41:75:56:f6:61:41:0d:fe:f6:aa:f6:87: 69:ac:04:04:20:1a:6a:9e:dd:2c:31:af:6a:56:0f:f4:1c:78: a2:5e:57:19:ca:b0:3b:0e:71:89:f1:45:92:0b:64:2b:cf:63: d2:a7:fe:5e:b5:16:ac:4a:3c:8d:67:04:9c:c9:cd:c3:1f:c8: 7a:6c:27:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNquojv4tC7jTYm4pIJieheJtWXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYx MDVFRjg0ODAeFw0yNjAyMDkxNTU2NTBaFw0yNzAyMDgxNjAxNTBaMDMxMTAvBgNV BAMTKEVGMDBCMUM1MzlEMjVCRDJCRjlGNkZGRDFEOUQwRjNBMzc4NTI3ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/uD9Dw4bdLl4RroAF6omoseI l8zf4aC/MnpJD+DtqZnnHinLI0NyMEhCCftmrbWgagULbFLSOVCbKVohQ+MZvaZE IyKOdUT0OoqsPgQd0pWvrLoSHVeMZet5nWbYUuWP19BUTSJlk3YwlubnMUBCE6ME khOTi3fahJZRveZKll28FFaTZNB90iSaDvTTT47BTzBR4W0/T3iSLmbPtFrqaNzV 8lhBQvcqO/jDXHzO6AzWILFK0HmT15Lq2OALYQim1b/xaSkfrs6ynzmGhGKXohVe E+d4nu72axEwM84cO/SVDlhntpbsnnWZnJbje/YDf/zm8d4VWy676F0mXQyrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7wCxxTnSW9K/n2/9HZ0POjeFJ4kwHwYDVR0j BBgwFoAUpNkJnDZdi7n6lqKlH6TGHxBe+EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzQ3ZWY1Yy01YmJhLTRjZDEtOGRjOS0xNzNlMjc1MWY0ZjQvMC9BNEQ5MDk5QzM2 NUQ4QkI5RkE5NkEyQTUxRkE0QzYxRjEwNUVGODQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYxMDVF Rjg0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNDdlZjVjLTViYmEtNGNkMS04 ZGM5LTE3M2UyNzUxZjRmNC8wLzMxMzAzMzJlMzIzNTM1MmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzOTM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/6QwDQYJ KoZIhvcNAQELBQADggEBAHCVNzECGx5efnrror18HiS5Pa7nMR2UfJph7xFwtuiM VNw/DWA77OyK3IvjFN3dDuAr/4KLOjhpGb3mYvMarsMtOhEV7n0FBBL6JrzgCTyo x3QJECGqw5QPqNRKq7oMiDol1HoVTp4CSh+Kj0goBmPd3g1QJpSgIBigwdv0YzeR oMucJzMrPaO85kDLEanylUbTbYUQndiJTuDmMsKVJaUgkt8Uvd2NXqyWW7s0Cqcy Vzy85XMe0LZYy0F1VvZhQQ3+9qr2h2msBAQgGmqe3Swxr2pWD/QceKJeVxnKsDsO cYnxRZILZCvPY9Kn/l61FqxKPI1nBJzJzcMfyHpsJzk= -----END CERTIFICATE-----Generated at Mon Mar 2 15:42:49 2026 by rpki-client