$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e203536323334.roa File: 3130332e3234332e31302e302f32342d3234203d3e203536323334.roa (raw, json) Hash identifier: UZS/K3lY0FFZm4LS2S6mtzUsW+Cq3AJRnk6Nt1K8LBo= Subject key identifier: FE:B6:9C:A2:E5:E1:E9:42:40:64:AB:6F:6C:47:B2:AA:DD:B5:D1:71 Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 409A2E69E8B7419F09072CF59C4188F8DEE3A92C Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e203536323334.roa Signing time: Thu 02 Apr 2026 08:43:02 +0000 ROA not before: Thu 02 Apr 2026 08:38:02 +0000 ROA not after: Thu 01 Apr 2027 08:43:02 +0000 asID: 56234 IP address blocks: 103.243.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:9a:2e:69:e8:b7:41:9f:09:07:2c:f5:9c:41:88:f8:de:e3:a9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Apr 2 08:38:02 2026 GMT Not After : Apr 1 08:43:02 2027 GMT Subject: CN=FEB69CA2E5E1E9424064AB6F6C47B2AADDB5D171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:89:ee:76:d4:a3:2c:de:bc:d2:11:7f:ef:2c: 1c:ba:4d:4d:fe:81:7f:51:0c:e1:e3:6f:41:36:e0: 99:75:c6:2e:35:93:9b:84:5d:c7:0d:7e:69:6b:e9: 00:b8:15:90:d9:10:22:f6:f7:68:15:4e:eb:40:01: 4b:55:8d:08:10:f7:15:aa:3a:1a:b8:05:cc:44:73: fb:e3:0d:03:33:96:6e:77:15:e4:36:fe:d3:3b:eb: 39:bf:92:71:89:1d:60:42:f6:31:9a:68:6d:74:78: 84:ca:f0:58:9d:aa:00:ad:8a:46:8b:21:1d:c5:71: e4:b3:2b:d4:73:0f:34:ea:84:70:b0:e8:7b:8f:60: 2c:81:d0:83:97:94:4a:68:d3:bf:4c:4e:bc:6a:48: da:7a:ba:f4:ba:65:25:75:9f:cc:ad:0e:65:b6:13: 6c:4f:c5:cd:f5:33:51:e5:91:06:cf:dc:f0:f4:29: 25:11:8e:eb:a0:02:f1:e0:e3:de:5d:ae:91:8c:88: 81:cf:c5:ae:85:1c:4f:3f:cf:34:e5:f8:b7:c5:f2: e3:3d:41:c0:18:1c:f7:21:3e:e0:61:99:1e:d3:8a: 69:57:24:33:a7:ec:32:74:e8:c7:72:d8:f7:ec:8b: ad:6f:7a:7c:e4:b2:9e:ef:a7:b3:8c:9f:dc:78:05: b1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B6:9C:A2:E5:E1:E9:42:40:64:AB:6F:6C:47:B2:AA:DD:B5:D1:71 X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e203536323334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.243.10.0/24 Signature Algorithm: sha256WithRSAEncryption a3:b7:fd:6a:69:08:40:c6:1c:16:6c:f5:22:31:11:68:26:1a: a9:7a:a1:15:04:72:24:d7:03:f1:bb:33:be:91:00:6e:12:8c: 3b:00:2d:3a:74:ac:a2:56:30:ae:59:05:71:80:b0:01:7d:f5: 5c:4a:bb:bb:14:b1:2a:71:4e:c0:0e:a8:71:dd:a4:d1:f9:01: 94:51:e2:cf:15:9f:eb:b7:30:4a:a8:cf:c8:6f:a8:70:9b:38: 6d:10:e9:b4:e1:c7:46:00:b0:f8:0e:35:9e:a0:30:43:11:97: 56:3c:02:87:49:49:ba:a5:05:1c:45:07:eb:f6:e6:f2:f3:db: dd:0f:15:0e:06:37:0e:c3:aa:9e:24:0f:00:7c:a9:b8:40:00: 93:15:82:3d:72:ae:08:25:08:8b:50:8d:26:05:fe:a2:5c:4b: 06:90:6f:76:7a:ab:92:e9:16:8f:dc:38:df:86:65:20:0d:6e: 3e:ea:e2:29:72:a6:d4:e5:99:c5:d4:6f:44:25:95:08:44:9d: 98:b1:03:37:37:89:9b:16:19:be:05:d7:f6:87:e9:e7:23:7c: 73:d1:95:af:aa:d4:29:e7:21:f8:4a:58:fb:f2:99:95:6b:45: 23:3b:f2:57:4d:8d:68:9f:39:43:fd:e2:65:7d:56:5d:60:09: 6c:e2:d8:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQJouaei3QZ8JByz1nEGI+N7jqSwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNjA0MDIwODM4MDJaFw0yNzA0MDEwODQzMDJaMDMxMTAvBgNV BAMTKEZFQjY5Q0EyRTVFMUU5NDI0MDY0QUI2RjZDNDdCMkFBRERCNUQxNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeie521KMs3rzSEX/vLBy6TU3+ gX9RDOHjb0E24Jl1xi41k5uEXccNfmlr6QC4FZDZECL292gVTutAAUtVjQgQ9xWq Ohq4BcxEc/vjDQMzlm53FeQ2/tM76zm/knGJHWBC9jGaaG10eITK8FidqgCtikaL IR3FceSzK9RzDzTqhHCw6HuPYCyB0IOXlEpo079MTrxqSNp6uvS6ZSV1n8ytDmW2 E2xPxc31M1HlkQbP3PD0KSURjuugAvHg495drpGMiIHPxa6FHE8/zzTl+LfF8uM9 QcAYHPchPuBhmR7TimlXJDOn7DJ06Mdy2Pfsi61venzksp7vp7OMn9x4BbHZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/racouXh6UJAZKtvbEeyqt210XEwHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzAzMzJlMzIzNDMzMmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfzCjANBgkqhkiG 9w0BAQsFAAOCAQEAo7f9amkIQMYcFmz1IjERaCYaqXqhFQRyJNcD8bszvpEAbhKM OwAtOnSsolYwrlkFcYCwAX31XEq7uxSxKnFOwA6ocd2k0fkBlFHizxWf67cwSqjP yG+ocJs4bRDptOHHRgCw+A41nqAwQxGXVjwCh0lJuqUFHEUH6/bm8vPb3Q8VDgY3 DsOqniQPAHypuEAAkxWCPXKuCCUIi1CNJgX+olxLBpBvdnqrkukWj9w434ZlIA1u PuriKXKm1OWZxdRvRCWVCESdmLEDNzeJmxYZvgXX9ofp5yN8c9GVr6rUKech+EpY +/KZlWtFIzvyV02NaJ85Q/3iZX1WXWAJbOLYKA== -----END CERTIFICATE-----Generated at Sun Apr 19 14:22:10 2026 by rpki-client