$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa File: 3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa (raw, json) Hash identifier: a0ABHH4FA/16eVEENRsCxxiB+Q25IykBctpX8UoBvBQ= Subject key identifier: B1:D3:22:44:81:8E:FD:F4:72:1C:25:E7:8D:77:CD:9D:27:08:32:2D Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 5ADD9DE072FF9B9630828FB2A938347989C0BDF1 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa Signing time: Tue 07 Apr 2026 19:00:00 +0000 ROA not before: Tue 07 Apr 2026 18:55:00 +0000 ROA not after: Tue 06 Apr 2027 19:00:00 +0000 asID: 139949 IP address blocks: 103.147.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:dd:9d:e0:72:ff:9b:96:30:82:8f:b2:a9:38:34:79:89:c0:bd:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Apr 7 18:55:00 2026 GMT Not After : Apr 6 19:00:00 2027 GMT Subject: CN=B1D32244818EFDF4721C25E78D77CD9D2708322D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:76:02:91:d5:21:5c:50:31:0b:ea:ac:3c: 0e:0a:e8:5f:52:af:13:36:9a:a4:6b:42:1e:67:6f: 77:87:c2:ba:47:fc:b1:c8:7a:08:89:fe:25:2a:dc: 2f:0c:a4:69:be:fe:b3:13:19:9c:a8:d7:0c:0d:e1: 39:a5:e7:26:6b:0b:8d:07:47:fd:58:1d:78:9b:a9: f7:d6:1a:3a:c9:be:3d:48:8d:6e:ea:24:c7:a7:97: f7:18:fb:57:39:56:4d:a3:2d:07:52:d0:fc:a5:d2: 44:9b:2a:9e:47:ee:48:33:2f:80:ef:aa:7f:23:7e: e6:69:7e:d6:c9:d0:ba:11:5e:22:01:f0:fd:23:32: e3:15:6f:cc:97:aa:f6:10:df:fd:ce:80:22:70:79: f2:8d:6c:52:7a:37:7e:a0:c6:25:8b:e2:34:ed:f6: 6f:43:1e:48:c8:13:cb:60:d2:53:30:4d:dc:93:04: 9a:af:20:08:8b:50:64:20:ba:a5:5c:7e:f2:a5:76: 38:0a:b6:a3:38:1f:e5:3d:34:1c:b9:6a:d8:19:10: 2c:0c:51:d2:0b:37:28:b5:e1:83:ce:fe:3c:33:35: 67:4e:22:e3:8b:a3:94:d9:24:e9:4e:bc:ed:c4:70: 15:08:6b:e5:bb:2b:ec:03:11:b8:1e:94:02:a4:68: 6d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D3:22:44:81:8E:FD:F4:72:1C:25:E7:8D:77:CD:9D:27:08:32:2D X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.52.0/24 Signature Algorithm: sha256WithRSAEncryption 54:dc:2b:d8:d2:c3:25:95:a4:09:b3:67:8e:8f:1d:c2:84:96: f1:39:d2:8a:e8:c2:34:b7:92:ef:f3:8b:99:ad:99:af:9c:d1: 6e:80:c9:32:02:d7:f7:75:91:45:62:51:4b:6d:bd:b4:89:7a: d3:43:1e:c1:59:08:3a:7a:31:cb:c3:b3:98:bb:37:23:2e:85: 35:c7:a1:4f:a7:bf:f3:c9:0a:1a:79:6b:34:0e:13:34:5b:5d: f4:60:a4:9c:59:7b:b3:0b:39:cd:74:00:3f:50:9d:80:24:7b: 3f:70:f8:43:55:d4:7d:b2:76:28:ac:8e:a9:33:6f:1e:81:b4: a1:ce:90:d3:96:76:7a:a6:af:c9:78:3e:b3:ac:d2:03:10:31: 12:73:46:36:11:5e:cc:c4:81:d6:4b:84:31:8a:10:00:8f:8b: b9:b6:ff:4f:9f:2a:18:5e:12:78:d9:ff:06:02:17:60:af:b9: 70:f0:ed:b2:ac:b9:2c:31:6e:b4:dd:d2:78:b3:c6:70:26:af: 70:7d:a6:1a:73:24:9e:95:8f:0d:e5:50:57:92:9f:b9:c4:d3: 62:23:22:cc:94:d3:f7:1e:08:b6:72:ed:9b:51:39:0a:d1:2a: ea:5a:1f:2d:a8:92:60:cc:73:1f:61:b8:1a:85:76:8a:37:ae: ef:4d:ed:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWt2d4HL/m5Ywgo+yqTg0eYnAvfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNjA0MDcxODU1MDBaFw0yNzA0MDYxOTAwMDBaMDMxMTAvBgNV BAMTKEIxRDMyMjQ0ODE4RUZERjQ3MjFDMjVFNzhENzdDRDlEMjcwODMyMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDdnYCkdUhXFAxC+qsPA4K6F9S rxM2mqRrQh5nb3eHwrpH/LHIegiJ/iUq3C8MpGm+/rMTGZyo1wwN4Tml5yZrC40H R/1YHXibqffWGjrJvj1IjW7qJMenl/cY+1c5Vk2jLQdS0Pyl0kSbKp5H7kgzL4Dv qn8jfuZpftbJ0LoRXiIB8P0jMuMVb8yXqvYQ3/3OgCJwefKNbFJ6N36gxiWL4jTt 9m9DHkjIE8tg0lMwTdyTBJqvIAiLUGQguqVcfvKldjgKtqM4H+U9NBy5atgZECwM UdILNyi14YPO/jwzNWdOIuOLo5TZJOlOvO3EcBUIa+W7K+wDEbgelAKkaG1jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsdMiRIGO/fRyHCXnjXfNnScIMi0wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5M0MA0GCSqG SIb3DQEBCwUAA4IBAQBU3CvY0sMllaQJs2eOjx3ChJbxOdKK6MI0t5Lv84uZrZmv nNFugMkyAtf3dZFFYlFLbb20iXrTQx7BWQg6ejHLw7OYuzcjLoU1x6FPp7/zyQoa eWs0DhM0W130YKScWXuzCznNdAA/UJ2AJHs/cPhDVdR9snYorI6pM28egbShzpDT lnZ6pq/JeD6zrNIDEDESc0Y2EV7MxIHWS4QxihAAj4u5tv9PnyoYXhJ42f8GAhdg r7lw8O2yrLksMW603dJ4s8ZwJq9wfaYacySelY8N5VBXkp+5xNNiIyLMlNP3Hgi2 cu2bUTkK0SrqWh8tqJJgzHMfYbgahXaKN67vTe2K -----END CERTIFICATE-----Generated at Fri Apr 17 19:26:52 2026 by rpki-client