$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa File: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (raw, json) Hash identifier: rH6v5NksQAZ7i1x7vYF4pP0Dlbp5vcZTM15lBp2e+jM= Subject key identifier: B2:00:5C:F4:95:C7:0C:AC:BE:F3:8A:72:37:D2:36:85:4D:DE:24:43 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 2A2506B10515011E5D27DE014215FF479C73E1C8 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa Signing time: Sat 31 Jan 2026 10:00:01 +0000 ROA not before: Sat 31 Jan 2026 09:55:01 +0000 ROA not after: Sat 30 Jan 2027 10:00:01 +0000 asID: 150966 IP address blocks: 103.130.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 15:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:25:06:b1:05:15:01:1e:5d:27:de:01:42:15:ff:47:9c:73:e1:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Jan 31 09:55:01 2026 GMT Not After : Jan 30 10:00:01 2027 GMT Subject: CN=B2005CF495C70CACBEF38A7237D236854DDE2443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c8:76:90:a4:5c:a3:5d:9a:39:69:a7:4b:dc: 1d:32:d6:4b:f4:bf:a3:64:62:f5:82:ba:c1:a1:25: 26:ac:5a:25:2f:b1:37:df:34:30:c5:28:a6:10:6a: f5:ea:c2:53:37:96:96:5c:e1:21:77:64:4c:e5:1c: 26:27:87:11:ce:ed:35:ab:cc:ab:c3:18:cb:c8:10: 32:bf:5d:c9:96:ae:ed:a2:06:df:94:89:87:d2:52: 05:b6:51:7e:9d:05:d6:42:29:92:30:46:e1:ed:cf: c9:b2:2e:c6:0e:46:09:62:9a:78:8d:8d:25:df:0d: 8e:e2:4d:2e:c9:da:89:65:a9:84:db:c0:22:c7:27: dc:53:b8:a9:bd:45:d3:69:18:e2:16:4c:90:0a:a8: c3:c0:27:bb:14:11:ee:fa:8e:6d:53:2d:54:2f:66: 54:b0:7c:2d:93:21:03:e3:ba:71:fe:93:be:9c:08: 3a:6e:5b:95:ce:8f:f8:a3:a4:b5:e2:1d:d4:bd:e9: 2d:ed:5f:fa:dd:0a:28:62:bd:fc:fc:33:55:48:bb: 27:eb:ad:95:62:5f:40:fc:6d:47:28:f6:80:e7:05: 0a:06:51:1c:ba:3a:dd:19:de:66:f8:4d:85:04:39: 85:f1:cb:38:18:7b:4b:24:7b:a1:12:c9:b0:2e:ad: 06:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:00:5C:F4:95:C7:0C:AC:BE:F3:8A:72:37:D2:36:85:4D:DE:24:43 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.83.0/24 Signature Algorithm: sha256WithRSAEncryption 34:4f:68:75:d0:54:c8:46:a6:55:13:24:9f:24:1c:e8:5c:fa: 93:aa:b9:84:c0:1c:f3:bd:e3:53:c4:f6:2a:91:a8:6b:55:60: 89:47:66:69:15:21:93:79:b5:33:01:83:f6:31:05:c3:a1:c2: 22:37:8c:c2:50:52:b4:4c:3c:1d:f0:db:97:ff:c5:04:ff:1e: b1:a8:0b:38:97:bb:40:25:dc:33:12:95:ba:37:72:20:a6:ad: 64:4e:35:ba:c3:4a:ce:0e:6b:dc:33:39:4c:1e:58:dc:70:9a: 1b:08:23:dd:5b:50:8b:35:54:ca:b0:c0:d5:b8:ff:14:c2:f6: 5b:0d:f0:96:e9:f6:fb:8e:19:0a:a0:52:27:6d:18:ca:66:67: cd:54:06:9a:10:ec:29:26:f5:47:39:50:03:cd:5f:4d:6a:fa: 74:dc:0c:9b:64:16:b2:db:af:49:68:4e:21:fb:c7:49:9f:48: b4:09:ec:9c:95:34:fd:4d:99:43:f8:8e:af:0f:ee:99:58:46: 1f:61:dd:59:22:01:b9:30:cd:0d:fc:0a:cb:1f:f3:9e:d5:1d: 7d:99:99:b1:7b:74:10:be:79:2a:6a:93:65:ce:53:32:eb:97: 65:69:81:b0:5c:e9:85:f0:19:76:4b:71:bd:80:23:60:4b:21: 92:67:78:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKiUGsQUVAR5dJ94BQhX/R5xz4cgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNjAxMzEwOTU1MDFaFw0yNzAxMzAxMDAwMDFaMDMxMTAvBgNV BAMTKEIyMDA1Q0Y0OTVDNzBDQUNCRUYzOEE3MjM3RDIzNjg1NERERTI0NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUyHaQpFyjXZo5aadL3B0y1kv0 v6NkYvWCusGhJSasWiUvsTffNDDFKKYQavXqwlM3lpZc4SF3ZEzlHCYnhxHO7TWr zKvDGMvIEDK/XcmWru2iBt+UiYfSUgW2UX6dBdZCKZIwRuHtz8myLsYORglimniN jSXfDY7iTS7J2ollqYTbwCLHJ9xTuKm9RdNpGOIWTJAKqMPAJ7sUEe76jm1TLVQv ZlSwfC2TIQPjunH+k76cCDpuW5XOj/ijpLXiHdS96S3tX/rdCihivfz8M1VIuyfr rZViX0D8bUco9oDnBQoGURy6Ot0Z3mb4TYUEOYXxyzgYe0ske6ESybAurQZRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsgBc9JXHDKy+84pyN9I2hU3eJEMwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05 MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4JTMA0GCSqG SIb3DQEBCwUAA4IBAQA0T2h10FTIRqZVEySfJBzoXPqTqrmEwBzzveNTxPYqkahr VWCJR2ZpFSGTebUzAYP2MQXDocIiN4zCUFK0TDwd8NuX/8UE/x6xqAs4l7tAJdwz EpW6N3Igpq1kTjW6w0rODmvcMzlMHljccJobCCPdW1CLNVTKsMDVuP8UwvZbDfCW 6fb7jhkKoFInbRjKZmfNVAaaEOwpJvVHOVADzV9Navp03AybZBay269JaE4h+8dJ n0i0CeyclTT9TZlD+I6vD+6ZWEYfYd1ZIgG5MM0N/ArLH/Oe1R19mZmxe3QQvnkq apNlzlMy65dlaYGwXOmF8Bl2S3G9gCNgSyGSZ3i6 -----END CERTIFICATE-----Generated at Mon Mar 2 17:57:03 2026 by rpki-client