$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa File: 3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa (raw, json) Hash identifier: T4qBC3nV0KGrxWLTj/GOpwyVvNHg76psJ9KD/BFtsE8= Subject key identifier: 79:C5:60:92:35:84:AB:F9:71:C7:F3:AD:B5:4E:F6:ED:8D:63:59:14 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 0AE49B8E1BED4EE5CBADED9B907F9E49EF6C2098 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa Signing time: Thu 09 Apr 2026 07:03:22 +0000 ROA not before: Thu 09 Apr 2026 06:58:22 +0000 ROA not after: Thu 08 Apr 2027 07:03:22 +0000 asID: 139970 IP address blocks: 103.147.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:e4:9b:8e:1b:ed:4e:e5:cb:ad:ed:9b:90:7f:9e:49:ef:6c:20:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Apr 9 06:58:22 2026 GMT Not After : Apr 8 07:03:22 2027 GMT Subject: CN=79C560923584ABF971C7F3ADB54EF6ED8D635914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:48:7d:68:d5:e5:83:44:0d:1d:2d:7a:78:d0: 64:34:fc:a3:1a:4b:06:37:f9:b6:4b:c5:b8:f9:d3: 67:fe:67:c5:f0:a3:2e:f3:01:5d:50:81:7b:24:d3: 35:25:2b:89:c0:07:81:a3:29:a4:c5:21:b9:66:3a: 76:be:0b:57:9a:00:c8:9e:4c:0c:41:4a:5c:95:96: aa:36:0d:15:78:a3:6b:10:62:66:80:f4:12:18:0b: 3d:da:d8:bd:d9:78:b2:ab:6d:60:17:bc:56:80:80: 09:b6:1d:16:12:26:f7:bd:44:ee:09:1d:0c:61:ee: 77:d4:7f:2b:79:7e:a5:27:32:1b:0a:80:3d:2b:cd: 1f:ee:05:06:48:a9:1e:83:bc:91:14:8f:33:f7:f7: c6:65:92:e9:e1:03:a4:c1:8f:83:4c:ac:eb:35:15: 37:40:dc:f9:28:6d:81:82:4c:f8:0e:fe:4a:e2:71: 48:24:0d:b0:21:1f:41:26:24:a7:aa:e2:ed:c5:42: d8:39:43:7f:0f:fb:7c:ac:55:2c:59:de:83:0c:f1: 28:e0:fa:72:3f:8d:2c:d3:16:3e:fa:f9:2f:fb:b4: 44:f0:a9:5b:f9:1f:8f:c8:6e:38:49:24:c4:8f:b5: f7:90:60:36:9b:be:23:b1:03:2f:b2:2a:91:1b:c9: 82:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C5:60:92:35:84:AB:F9:71:C7:F3:AD:B5:4E:F6:ED:8D:63:59:14 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.53.0/24 Signature Algorithm: sha256WithRSAEncryption 59:0e:52:8e:a9:39:a3:81:c6:a2:d5:84:d2:f2:9a:32:9d:6e: 0d:6e:67:e2:9a:f5:13:51:1d:fe:3e:c2:a2:96:0e:bb:33:3e: d8:98:c4:1a:a8:81:45:86:a8:5e:0c:47:3b:ee:13:68:c1:3e: 12:bf:46:98:5f:da:f2:69:6c:57:d7:fe:a4:b0:e2:05:a7:06: ee:93:b3:d1:c5:a1:38:51:7d:a7:d8:cb:bf:7c:f9:b2:03:b5: bb:3d:ba:fa:4d:1e:95:89:f1:a1:a7:87:a5:f0:6d:e1:3d:5a: 67:50:85:53:aa:17:d6:59:1f:f9:c7:d6:3f:47:65:95:91:1b: 09:eb:fd:68:ce:7d:cf:91:af:9d:fb:a4:9c:7e:13:68:92:36: a6:10:45:22:b5:7f:71:6b:72:67:59:86:74:18:23:8d:f8:36: 1f:e7:83:f9:3a:63:51:f3:0c:88:3b:8d:48:46:6a:19:9d:92: 98:d9:ee:8d:c7:4b:23:d6:e3:6d:33:a1:07:ea:eb:bb:8f:d5: a0:be:c6:c9:e8:a0:94:3d:71:03:11:da:b2:d4:1d:3c:7f:a3: eb:1f:16:31:cc:35:22:11:06:67:98:c2:22:6d:0f:80:9d:6b: 7f:3b:5a:a5:55:da:8f:06:f6:d0:2b:fe:48:8e:89:32:da:ba: ad:5c:59:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCuSbjhvtTuXLre2bkH+eSe9sIJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNjA0MDkwNjU4MjJaFw0yNzA0MDgwNzAzMjJaMDMxMTAvBgNV BAMTKDc5QzU2MDkyMzU4NEFCRjk3MUM3RjNBREI1NEVGNkVEOEQ2MzU5MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSH1o1eWDRA0dLXp40GQ0/KMa SwY3+bZLxbj502f+Z8Xwoy7zAV1QgXsk0zUlK4nAB4GjKaTFIblmOna+C1eaAMie TAxBSlyVlqo2DRV4o2sQYmaA9BIYCz3a2L3ZeLKrbWAXvFaAgAm2HRYSJve9RO4J HQxh7nfUfyt5fqUnMhsKgD0rzR/uBQZIqR6DvJEUjzP398ZlkunhA6TBj4NMrOs1 FTdA3PkobYGCTPgO/kricUgkDbAhH0EmJKeq4u3FQtg5Q38P+3ysVSxZ3oMM8Sjg +nI/jSzTFj76+S/7tETwqVv5H4/IbjhJJMSPtfeQYDabviOxAy+yKpEbyYIxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUecVgkjWEq/lxx/OttU727Y1jWRQwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5M1MA0GCSqG SIb3DQEBCwUAA4IBAQBZDlKOqTmjgcai1YTS8poynW4NbmfimvUTUR3+PsKilg67 Mz7YmMQaqIFFhqheDEc77hNowT4Sv0aYX9ryaWxX1/6ksOIFpwbuk7PRxaE4UX2n 2Mu/fPmyA7W7Pbr6TR6VifGhp4el8G3hPVpnUIVTqhfWWR/5x9Y/R2WVkRsJ6/1o zn3Pka+d+6ScfhNokjamEEUitX9xa3JnWYZ0GCON+DYf54P5OmNR8wyIO41IRmoZ nZKY2e6Nx0sj1uNtM6EH6uu7j9WgvsbJ6KCUPXEDEdqy1B08f6PrHxYxzDUiEQZn mMIibQ+AnWt/O1qlVdqPBvbQK/5Ijoky2rqtXFmD -----END CERTIFICATE-----Generated at Fri Apr 17 20:52:14 2026 by rpki-client