$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa File: 3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: 1aJAOXKRJ694UHfaAsvFogthvgMgRfzYXcUNhM5Gctg= Subject key identifier: 0A:ED:80:2F:C8:BB:16:A4:60:40:14:7F:52:93:92:3B:46:36:E4:D0 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 0285BBFC5BF09A0438F5A449F4146245BC0F9F66 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa Signing time: Fri 06 Feb 2026 08:00:02 +0000 ROA not before: Fri 06 Feb 2026 07:55:02 +0000 ROA not after: Fri 05 Feb 2027 08:00:02 +0000 asID: 133823 IP address blocks: 103.104.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:85:bb:fc:5b:f0:9a:04:38:f5:a4:49:f4:14:62:45:bc:0f:9f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Feb 6 07:55:02 2026 GMT Not After : Feb 5 08:00:02 2027 GMT Subject: CN=0AED802FC8BB16A46040147F5293923B4636E4D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1c:94:c2:77:74:94:12:36:c0:13:a3:38:cd: 96:50:d0:4f:db:d2:bd:05:e8:c1:28:8e:02:fd:f3: 4c:30:29:0f:96:8e:23:a7:76:ef:3a:55:69:74:cf: 09:ad:19:11:f1:97:45:b8:e8:b3:4e:9b:cb:53:20: 2f:73:d9:e7:b4:8d:a9:2c:b6:f3:41:0f:28:d9:2a: d7:1e:1b:dc:63:82:7b:de:24:10:7a:4f:03:bb:19: dd:56:47:48:a2:7f:ad:92:9b:41:51:0a:8d:7b:62: c1:37:a1:00:bf:eb:f9:ea:c5:d8:e0:79:79:ad:42: ba:09:aa:77:14:13:7f:2b:78:d9:19:1f:b8:ea:c1: 10:2d:01:97:95:c1:c1:2c:db:03:d7:57:92:72:99: 0c:1a:6f:3a:d5:70:1e:c2:a3:45:5f:2a:cb:c0:20: 2e:1c:19:f6:44:69:33:cf:a7:e0:cd:4e:7d:d1:0e: 77:66:5b:ab:44:29:3e:de:23:f4:b0:0b:65:65:23: 03:08:a0:bf:2f:0f:d0:a2:96:51:ea:30:b2:dd:ec: 1d:82:44:f5:58:3b:d7:c8:4d:04:b4:fe:3f:39:be: fe:3f:08:97:e7:90:37:3b:c0:ab:24:88:fa:f4:70: 24:66:01:c6:a8:3f:0e:25:cc:35:94:65:81:e5:23: 60:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:ED:80:2F:C8:BB:16:A4:60:40:14:7F:52:93:92:3B:46:36:E4:D0 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133342e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.134.0/24 Signature Algorithm: sha256WithRSAEncryption 61:36:cc:7f:35:5c:75:35:61:ad:d2:bf:f9:38:6d:e6:4e:a7: 6f:7d:0a:0e:24:1b:0d:bd:45:12:bb:1f:96:21:0a:d6:49:01: f7:d4:7c:79:36:34:45:8f:5c:d3:00:44:97:f4:0c:8d:16:af: 9a:74:52:ec:7a:7b:ca:16:b2:4d:4b:9f:e0:af:3c:d1:11:60: 69:e9:f9:8a:a2:d8:c6:b4:ed:96:4a:37:be:5e:c4:67:a4:a9: d4:cd:2d:7d:5a:cc:95:19:d3:91:ea:22:e6:de:6a:b6:f3:62: d9:fc:9b:e9:ca:2b:53:a9:6c:0c:27:5a:88:7e:78:f1:62:70: 5d:7f:80:ed:56:15:7d:fa:a2:56:95:13:3d:c1:7d:c8:d7:5d: cb:ae:94:f6:a3:9a:64:c8:6b:d2:48:ba:1d:68:39:d4:e1:94: 17:1d:72:ab:50:f2:17:57:e4:4d:92:04:61:7d:85:dd:1a:87: e2:0a:8c:3f:a9:b6:37:20:d1:91:5b:dc:a0:eb:f4:a1:eb:13: d3:5a:7b:31:93:75:ba:a0:e4:70:22:38:32:f7:58:32:79:78: cb:ba:75:3d:af:00:97:0f:3c:b8:12:7d:ff:21:b5:79:88:bd: bb:73:d4:ed:28:15:8a:9a:62:3e:55:63:84:05:7c:07:34:d4: 7c:59:d3:95 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAoW7/FvwmgQ49aRJ9BRiRbwPn2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNjAyMDYwNzU1MDJaFw0yNzAyMDUwODAwMDJaMDMxMTAvBgNV BAMTKDBBRUQ4MDJGQzhCQjE2QTQ2MDQwMTQ3RjUyOTM5MjNCNDYzNkU0RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiHJTCd3SUEjbAE6M4zZZQ0E/b 0r0F6MEojgL980wwKQ+WjiOndu86VWl0zwmtGRHxl0W46LNOm8tTIC9z2ee0jaks tvNBDyjZKtceG9xjgnveJBB6TwO7Gd1WR0iif62Sm0FRCo17YsE3oQC/6/nqxdjg eXmtQroJqncUE38reNkZH7jqwRAtAZeVwcEs2wPXV5JymQwabzrVcB7Co0VfKsvA IC4cGfZEaTPPp+DNTn3RDndmW6tEKT7eI/SwC2VlIwMIoL8vD9CillHqMLLd7B2C RPVYO9fITQS0/j85vv4/CJfnkDc7wKskiPr0cCRmAcaoPw4lzDWUZYHlI2BDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCu2AL8i7FqRgQBR/UpOSO0Y25NAwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaIYwDQYJ KoZIhvcNAQELBQADggEBAGE2zH81XHU1Ya3Sv/k4beZOp299Cg4kGw29RRK7H5Yh CtZJAffUfHk2NEWPXNMARJf0DI0Wr5p0Uux6e8oWsk1Ln+CvPNERYGnp+Yqi2Ma0 7ZZKN75exGekqdTNLX1azJUZ05HqIubearbzYtn8m+nKK1OpbAwnWoh+ePFicF1/ gO1WFX36olaVEz3BfcjXXcuulPajmmTIa9JIuh1oOdThlBcdcqtQ8hdX5E2SBGF9 hd0ah+IKjD+ptjcg0ZFb3KDr9KHrE9NaezGTdbqg5HAiODL3WDJ5eMu6dT2vAJcP PLgSff8htXmIvbtz1O0oFYqaYj5VY4QFfAc01HxZ05U= -----END CERTIFICATE-----Generated at Mon Mar 2 11:44:53 2026 by rpki-client