$ rpki-client -vvf repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa File: 3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa (raw, json) Hash identifier: V7xwcl0k/wohTR9W8bA+ryS5bQrHzSDEtp81r7CMd0o= Subject key identifier: 6B:E2:01:C2:5B:E9:05:0D:C6:BB:EE:6E:AE:36:1B:9E:87:A1:3A:BF Certificate issuer: /CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Certificate serial: 2C99F8D6E56011A04C5A915FAE319B9E820DCF11 Authority key identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa Signing time: Tue 24 Feb 2026 09:00:00 +0000 ROA not before: Tue 24 Feb 2026 08:55:00 +0000 ROA not after: Tue 23 Feb 2027 09:00:00 +0000 asID: 150186 IP address blocks: 103.146.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 12:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:99:f8:d6:e5:60:11:a0:4c:5a:91:5f:ae:31:9b:9e:82:0d:cf:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Validity Not Before: Feb 24 08:55:00 2026 GMT Not After : Feb 23 09:00:00 2027 GMT Subject: CN=6BE201C25BE9050DC6BBEE6EAE361B9E87A13ABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:c4:59:77:aa:e4:f6:39:40:1a:68:f5:3d: fc:99:12:28:95:68:d0:b8:86:c6:6f:5d:48:10:69: 38:0b:16:61:aa:dd:7b:e5:e4:4e:61:1e:fc:24:3f: 7c:4e:32:21:07:ff:ff:a8:24:45:c7:61:6e:77:ce: 12:85:21:6d:65:d3:d1:13:17:65:fa:af:4b:77:b6: 5b:7f:fc:69:b4:97:df:21:ad:86:d2:53:8d:61:35: 58:f4:e0:d4:ae:e4:87:a7:8a:2b:04:57:66:f8:e3: d9:ed:c3:1f:2a:e6:ac:d5:dd:a9:e3:60:20:81:3f: dd:f3:bb:93:ad:4d:fe:82:ee:30:ee:b1:9d:d9:d0: 10:03:5b:09:bd:ef:f4:dd:d6:b8:cd:b2:bb:35:87: ef:fb:a5:1d:42:a8:27:e8:b2:80:5e:51:b6:91:04: 59:30:4a:54:86:1d:dc:d1:7d:26:7e:89:63:dc:97: 78:29:0d:d8:5d:34:82:ae:b0:35:1a:a5:6e:27:45: 56:f0:b3:8b:bf:11:87:51:67:e2:07:b5:e7:95:f5: 6e:d3:58:14:36:fe:1d:b0:dc:89:ed:bf:b2:88:3d: e4:6f:75:55:4f:3f:d9:52:3f:fe:06:73:47:19:be: be:5a:af:4b:5a:a0:3a:2d:3f:c2:c3:b6:8a:e8:b9: 9c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E2:01:C2:5B:E9:05:0D:C6:BB:EE:6E:AE:36:1B:9E:87:A1:3A:BF X509v3 Authority Key Identifier: keyid:3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.145.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:6c:03:94:9a:d2:dd:5f:e1:95:cb:c0:9f:19:dc:e3:9d:b4: 27:a0:32:8d:65:d1:5e:48:85:2f:9b:7a:e4:a9:76:c5:ce:1c: 46:a8:a8:f6:a9:29:a7:77:31:dd:40:b5:89:f5:f2:bb:24:2f: ca:0c:2d:a7:01:80:f3:25:88:46:39:af:38:18:0d:93:36:98: 2b:28:ac:8c:20:42:1e:e1:9c:13:ae:11:29:c2:c2:42:af:69: f7:a7:5f:d0:87:23:52:f0:a5:54:94:9e:7e:d1:46:2d:2c:e2: da:62:2a:39:04:be:cb:fc:c0:af:50:7e:ca:e5:d4:20:c0:ca: ce:62:db:eb:fd:23:25:da:ec:45:fb:15:90:19:31:d6:38:7f: 69:59:f8:42:f4:5b:1b:64:d1:10:15:b6:47:0b:00:5d:18:3f: 85:7e:49:6d:f8:aa:09:02:a2:24:cf:48:2a:7d:c0:1f:aa:6b: 17:a9:ec:e3:dc:a9:6b:54:ad:b8:02:7d:52:4b:3e:ef:e3:f0: 60:c5:e7:dc:e4:1a:0f:f1:aa:3a:86:9d:59:b4:8b:63:76:70: 3f:6b:72:48:42:9e:3d:46:e5:91:fc:fd:3f:a9:90:c5:cf:53: fc:93:7a:08:bc:4d:45:ea:b1:e1:e3:23:83:59:0f:74:b7:c5: 5d:b9:fd:2c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULJn41uVgEaBMWpFfrjGbnoINzxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0 MjNGMjMwMjAeFw0yNjAyMjQwODU1MDBaFw0yNzAyMjMwOTAwMDBaMDMxMTAvBgNV BAMTKDZCRTIwMUMyNUJFOTA1MERDNkJCRUU2RUFFMzYxQjlFODdBMTNBQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9jMRZd6rk9jlAGmj1PfyZEiiV aNC4hsZvXUgQaTgLFmGq3Xvl5E5hHvwkP3xOMiEH//+oJEXHYW53zhKFIW1l09ET F2X6r0t3tlt//Gm0l98hrYbSU41hNVj04NSu5IeniisEV2b449ntwx8q5qzV3anj YCCBP93zu5OtTf6C7jDusZ3Z0BADWwm97/Td1rjNsrs1h+/7pR1CqCfosoBeUbaR BFkwSlSGHdzRfSZ+iWPcl3gpDdhdNIKusDUapW4nRVbws4u/EYdRZ+IHteeV9W7T WBQ2/h2w3Intv7KIPeRvdVVPP9lSP/4Gc0cZvr5ar0taoDotP8LDtorouZxJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa+IBwlvpBQ3Gu+5urjYbnoehOr8wHwYDVR0j BBgwFoAUOllHRPG+ovBMdDetdxM91EI/IwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDYxNDE2My00Y2E0LTQ5MzYtYmY4Yi04NGQ4YzJkMWYwMmQvMC8zQTU5NDc0NEYx QkVBMkYwNEM3NDM3QUQ3NzEzM0RENDQyM0YyMzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0MjNG MjMwMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNjE0MTYzLTRjYTQtNDkzNi1i ZjhiLTg0ZDhjMmQxZjAyZC8wLzMxMzAzMzJlMzEzNDM2MmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkpEwDQYJ KoZIhvcNAQELBQADggEBAC9sA5Sa0t1f4ZXLwJ8Z3OOdtCegMo1l0V5IhS+beuSp dsXOHEaoqPapKad3Md1AtYn18rskL8oMLacBgPMliEY5rzgYDZM2mCsorIwgQh7h nBOuESnCwkKvafenX9CHI1LwpVSUnn7RRi0s4tpiKjkEvsv8wK9Qfsrl1CDAys5i 2+v9IyXa7EX7FZAZMdY4f2lZ+EL0Wxtk0RAVtkcLAF0YP4V+SW34qgkCoiTPSCp9 wB+qaxep7OPcqWtUrbgCfVJLPu/j8GDF59zkGg/xqjqGnVm0i2N2cD9rckhCnj1G 5ZH8/T+pkMXPU/yTegi8TUXqseHjI4NZD3S3xV25/Sw= -----END CERTIFICATE-----Generated at Mon Mar 2 15:43:43 2026 by rpki-client