$ rpki-client -vvf repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa File: 3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa (raw, json) Hash identifier: NewfUB+lgmscpjQ8d8uHTPa+ibrc/cZ+CDOKTYvxIBA= Subject key identifier: F8:1E:85:F8:09:FE:01:F4:EA:3F:86:6A:3C:30:14:AE:9C:F1:17:54 Certificate issuer: /CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Certificate serial: 3C4921ED063EF6A6FAB443382910D14EAAEFF468 Authority key identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa Signing time: Tue 24 Feb 2026 10:00:00 +0000 ROA not before: Tue 24 Feb 2026 09:55:00 +0000 ROA not after: Tue 23 Feb 2027 10:00:00 +0000 asID: 150186 IP address blocks: 103.146.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 12:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:49:21:ed:06:3e:f6:a6:fa:b4:43:38:29:10:d1:4e:aa:ef:f4:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Validity Not Before: Feb 24 09:55:00 2026 GMT Not After : Feb 23 10:00:00 2027 GMT Subject: CN=F81E85F809FE01F4EA3F866A3C3014AE9CF11754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4d:04:3e:d0:da:a4:39:5b:46:62:f9:09:02: 4a:85:85:58:5f:d9:9d:3b:3a:c5:06:8f:49:32:bc: 8a:5b:b0:c6:8f:b1:0f:49:8a:97:7c:2d:fd:ba:14: ba:77:26:76:5a:db:da:fc:43:6f:83:f7:79:3e:39: 93:36:44:2d:5d:91:21:51:ee:8c:80:32:04:01:a8: 38:3c:44:30:1e:a6:51:67:44:98:6b:9b:82:cb:cf: 31:36:20:a5:9e:4c:7b:ee:28:96:56:a0:af:b1:a1: cf:14:74:25:41:35:7d:19:3b:d0:ca:aa:17:9c:78: 5d:c5:7d:54:bf:ee:06:b0:64:a0:a1:4a:e2:c0:fa: 5d:e7:15:07:4e:4e:33:db:44:8c:3f:b9:ab:ed:bc: 1f:af:07:36:a9:b3:37:e5:cc:4d:96:17:c7:8a:b7: 4f:6c:56:97:bb:5a:20:67:c6:f3:b0:1e:47:1c:f4: 62:2f:42:da:85:c5:ee:90:3d:1e:fb:59:50:3a:81: 10:f1:d1:9c:9d:e4:8f:0c:92:1a:6d:66:31:4a:6a: e3:71:9f:51:0c:45:37:8e:0a:66:9e:8d:2f:d9:13: 55:71:ca:c2:8d:c4:65:18:65:ba:5f:0d:70:91:ce: b9:f5:47:16:ca:6d:57:1f:f2:96:ee:67:89:ce:68: 24:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1E:85:F8:09:FE:01:F4:EA:3F:86:6A:3C:30:14:AE:9C:F1:17:54 X509v3 Authority Key Identifier: keyid:3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.144.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:11:25:5d:77:98:31:78:3c:77:2d:f0:5e:64:1f:dc:71:18: 6a:e7:8e:01:1f:99:72:2f:ad:c9:c6:99:a5:81:dc:8c:d1:cb: 08:38:14:6f:3b:ef:01:6b:b4:9b:1d:bc:bd:f2:46:6f:12:0d: e7:31:9d:10:dc:16:2f:1f:f8:5d:aa:9a:54:75:9b:8b:e1:cc: 0e:a1:ff:48:69:b6:04:4a:37:84:2b:34:18:dd:84:b6:ba:5b: 1f:f9:e4:f0:f2:23:d1:a0:7e:93:4b:44:ce:37:30:ed:3d:bd: 60:69:4f:dd:33:7d:1a:a5:f2:6a:75:01:01:80:04:b9:1b:b0: df:d9:c9:cb:4a:a4:47:5a:2c:fb:15:27:fa:08:8b:17:d7:4e: 35:13:ae:1f:51:5e:a7:bc:6a:68:83:29:80:f3:f0:4d:3d:f0: e4:7b:d9:b6:4d:2d:b6:f1:31:3e:b0:d6:7d:1e:a5:a2:9b:22: 8b:96:10:c5:be:2a:37:09:54:46:8f:06:92:70:46:ec:fa:ff: 16:99:04:55:4b:8c:f8:dd:28:0d:00:9b:13:08:6c:b2:95:92: 3f:1d:47:6e:52:78:16:0c:9a:83:11:48:3e:7f:f4:07:56:d4: 1d:d9:dd:21:aa:b5:55:88:b9:c1:fa:92:b1:00:f1:dd:71:a9: 8d:ba:7b:82 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPEkh7QY+9qb6tEM4KRDRTqrv9GgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0 MjNGMjMwMjAeFw0yNjAyMjQwOTU1MDBaFw0yNzAyMjMxMDAwMDBaMDMxMTAvBgNV BAMTKEY4MUU4NUY4MDlGRTAxRjRFQTNGODY2QTNDMzAxNEFFOUNGMTE3NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTTQQ+0NqkOVtGYvkJAkqFhVhf 2Z07OsUGj0kyvIpbsMaPsQ9Jipd8Lf26FLp3JnZa29r8Q2+D93k+OZM2RC1dkSFR 7oyAMgQBqDg8RDAeplFnRJhrm4LLzzE2IKWeTHvuKJZWoK+xoc8UdCVBNX0ZO9DK qheceF3FfVS/7gawZKChSuLA+l3nFQdOTjPbRIw/uavtvB+vBzapszflzE2WF8eK t09sVpe7WiBnxvOwHkcc9GIvQtqFxe6QPR77WVA6gRDx0Zyd5I8MkhptZjFKauNx n1EMRTeOCmaejS/ZE1VxysKNxGUYZbpfDXCRzrn1RxbKbVcf8pbuZ4nOaCTfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+B6F+An+AfTqP4ZqPDAUrpzxF1QwHwYDVR0j BBgwFoAUOllHRPG+ovBMdDetdxM91EI/IwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDYxNDE2My00Y2E0LTQ5MzYtYmY4Yi04NGQ4YzJkMWYwMmQvMC8zQTU5NDc0NEYx QkVBMkYwNEM3NDM3QUQ3NzEzM0RENDQyM0YyMzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0MjNG MjMwMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNjE0MTYzLTRjYTQtNDkzNi1i ZjhiLTg0ZDhjMmQxZjAyZC8wLzMxMzAzMzJlMzEzNDM2MmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkpAwDQYJ KoZIhvcNAQELBQADggEBAJoRJV13mDF4PHct8F5kH9xxGGrnjgEfmXIvrcnGmaWB 3IzRywg4FG877wFrtJsdvL3yRm8SDecxnRDcFi8f+F2qmlR1m4vhzA6h/0hptgRK N4QrNBjdhLa6Wx/55PDyI9GgfpNLRM43MO09vWBpT90zfRql8mp1AQGABLkbsN/Z yctKpEdaLPsVJ/oIixfXTjUTrh9RXqe8amiDKYDz8E098OR72bZNLbbxMT6w1n0e paKbIouWEMW+KjcJVEaPBpJwRuz6/xaZBFVLjPjdKA0AmxMIbLKVkj8dR25SeBYM moMRSD5/9AdW1B3Z3SGqtVWIucH6krEA8d1xqY26e4I= -----END CERTIFICATE-----Generated at Mon Mar 2 15:43:19 2026 by rpki-client