$ rpki-client -vvf repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3130332e3131352e39392e302f32342d3234203d3e20313337333536.roa File: 3130332e3131352e39392e302f32342d3234203d3e20313337333536.roa (raw, json) Hash identifier: qF7ZyvBLQXU0z6sQinAxqtICo9LN6FDZ9IqqCQLq5zI= Subject key identifier: 28:21:96:1B:E7:D7:D4:1C:50:52:C0:C0:81:A0:91:4D:04:25:E7:F6 Certificate issuer: /CN=3B6C011787F4528DAFAEE19B8408D9405F030E61 Certificate serial: 3B5F3E196D1995B29E7C156513141B51C1EFEAC4 Authority key identifier: 3B:6C:01:17:87:F4:52:8D:AF:AE:E1:9B:84:08:D9:40:5F:03:0E:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B6C011787F4528DAFAEE19B8408D9405F030E61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3130332e3131352e39392e302f32342d3234203d3e20313337333536.roa Signing time: Sat 14 Feb 2026 03:13:50 +0000 ROA not before: Sat 14 Feb 2026 03:08:50 +0000 ROA not after: Sat 13 Feb 2027 03:13:50 +0000 asID: 137356 IP address blocks: 103.115.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3B6C011787F4528DAFAEE19B8408D9405F030E61.crl rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3B6C011787F4528DAFAEE19B8408D9405F030E61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B6C011787F4528DAFAEE19B8408D9405F030E61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:5f:3e:19:6d:19:95:b2:9e:7c:15:65:13:14:1b:51:c1:ef:ea:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B6C011787F4528DAFAEE19B8408D9405F030E61 Validity Not Before: Feb 14 03:08:50 2026 GMT Not After : Feb 13 03:13:50 2027 GMT Subject: CN=2821961BE7D7D41C5052C0C081A0914D0425E7F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3f:67:37:97:93:8a:60:ff:d8:cd:5a:b5:55: 3c:84:bd:90:71:bd:d0:33:2e:c5:0a:0d:92:44:12: a3:80:61:52:8d:cb:0a:fd:17:84:b5:3b:0b:bd:5b: 6a:a4:c4:5e:5b:0e:d1:ee:b5:9a:a1:c5:9f:68:e5: e4:79:bd:fd:e5:10:a9:dc:74:71:bb:36:9f:00:65: f5:f0:0e:7e:4e:b3:93:4e:e5:e6:b3:1c:9e:37:fc: 20:c7:25:01:d9:a9:f2:58:e3:08:51:4a:e0:8d:27: 09:83:b3:b5:80:26:8d:78:4f:6f:1a:eb:5b:39:2e: b7:fd:c9:8b:18:2c:20:ed:03:79:d4:fc:82:19:fd: b4:5a:52:6b:65:b7:d1:f0:81:30:ed:51:98:71:a9: d9:e9:47:df:f2:2e:e3:e6:32:94:2e:26:8d:ab:23: c0:3e:91:6c:34:5a:2e:46:dd:5d:6a:3d:da:d8:e6: 66:fe:ff:81:f2:19:72:82:24:45:fe:4d:c8:74:67: 76:d3:e3:78:09:c9:ee:32:09:6b:f0:5b:7d:c5:a3: 25:c6:1d:ec:77:5c:f7:a5:c7:6f:45:28:54:49:dc: bb:d8:07:5e:83:58:66:b8:d7:88:6e:15:60:a4:b5: a0:9f:d8:35:55:12:b9:2d:73:78:b0:59:e6:d9:d4: 3c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:21:96:1B:E7:D7:D4:1C:50:52:C0:C0:81:A0:91:4D:04:25:E7:F6 X509v3 Authority Key Identifier: keyid:3B:6C:01:17:87:F4:52:8D:AF:AE:E1:9B:84:08:D9:40:5F:03:0E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3B6C011787F4528DAFAEE19B8408D9405F030E61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B6C011787F4528DAFAEE19B8408D9405F030E61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3130332e3131352e39392e302f32342d3234203d3e20313337333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.115.99.0/24 Signature Algorithm: sha256WithRSAEncryption 87:ea:a3:ae:01:0c:e8:22:9f:6e:9e:59:64:19:3d:fb:ef:22: 1c:53:fd:56:47:a8:0c:cc:d5:52:09:50:8a:95:44:a1:61:03: f2:9b:6d:d2:5b:55:a4:74:bb:22:e3:2d:db:a9:c0:99:bc:d2: 5b:0b:df:fe:ae:03:cf:c2:2d:d3:42:06:4f:87:5c:d0:2d:4e: aa:30:2f:45:b0:01:37:37:c3:f5:84:54:2f:30:0f:70:48:2d: f1:23:d0:99:1e:7d:63:0a:69:3d:9e:51:6b:8c:55:5b:e3:3a: a6:6c:39:11:f7:4a:47:f9:4f:9e:55:8f:cc:b3:33:b9:9c:05: 85:a2:90:d0:ed:e5:9f:bd:c3:15:c8:3c:4d:77:4e:11:36:83: 9f:e9:5d:13:2b:2c:59:16:bd:fb:97:8e:2f:2e:99:88:38:bc: 60:a6:60:4b:05:24:d7:eb:5e:5c:a6:e8:23:72:bd:4d:57:a9: ce:4f:55:16:46:59:d3:3b:df:ae:0d:8a:0f:e5:aa:d9:e8:88: 1a:e7:49:7d:c2:28:85:f7:19:52:32:c5:f8:98:97:da:de:b1: 34:a8:6b:7b:e0:b2:53:ab:ed:5c:31:aa:87:f4:f0:01:93:83: 96:42:2f:b6:9c:a1:7a:45:13:9e:b0:94:ce:cc:cd:ff:d8:ae: f1:10:80:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO18+GW0ZlbKefBVlExQbUcHv6sQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I2QzAxMTc4N0Y0NTI4REFGQUVFMTlCODQwOEQ5NDA1 RjAzMEU2MTAeFw0yNjAyMTQwMzA4NTBaFw0yNzAyMTMwMzEzNTBaMDMxMTAvBgNV BAMTKDI4MjE5NjFCRTdEN0Q0MUM1MDUyQzBDMDgxQTA5MTREMDQyNUU3RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUP2c3l5OKYP/YzVq1VTyEvZBx vdAzLsUKDZJEEqOAYVKNywr9F4S1Owu9W2qkxF5bDtHutZqhxZ9o5eR5vf3lEKnc dHG7Np8AZfXwDn5Os5NO5eazHJ43/CDHJQHZqfJY4whRSuCNJwmDs7WAJo14T28a 61s5Lrf9yYsYLCDtA3nU/IIZ/bRaUmtlt9HwgTDtUZhxqdnpR9/yLuPmMpQuJo2r I8A+kWw0Wi5G3V1qPdrY5mb+/4HyGXKCJEX+Tch0Z3bT43gJye4yCWvwW33FoyXG Hex3XPelx29FKFRJ3LvYB16DWGa414huFWCktaCf2DVVErktc3iwWebZ1DzfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKCGWG+fX1BxQUsDAgaCRTQQl5/YwHwYDVR0j BBgwFoAUO2wBF4f0Uo2vruGbhAjZQF8DDmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzRjMmY2Mi1mNzM1LTRkNjAtOTIzNy05MjdlZmFkOWRhZDAvMC8zQjZDMDExNzg3 RjQ1MjhEQUZBRUUxOUI4NDA4RDk0MDVGMDMwRTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0I2QzAxMTc4N0Y0NTI4REFGQUVFMTlCODQwOEQ5NDA1RjAz MEU2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjNGMyZjYyLWY3MzUtNGQ2MC05 MjM3LTkyN2VmYWQ5ZGFkMC8wLzMxMzAzMzJlMzEzMTM1MmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3NjMA0GCSqG SIb3DQEBCwUAA4IBAQCH6qOuAQzoIp9unllkGT377yIcU/1WR6gMzNVSCVCKlUSh YQPym23SW1WkdLsi4y3bqcCZvNJbC9/+rgPPwi3TQgZPh1zQLU6qMC9FsAE3N8P1 hFQvMA9wSC3xI9CZHn1jCmk9nlFrjFVb4zqmbDkR90pH+U+eVY/MszO5nAWFopDQ 7eWfvcMVyDxNd04RNoOf6V0TKyxZFr37l44vLpmIOLxgpmBLBSTX615cpugjcr1N V6nOT1UWRlnTO9+uDYoP5arZ6Iga50l9wiiF9xlSMsX4mJfa3rE0qGt74LJTq+1c MaqH9PABk4OWQi+2nKF6RROesJTOzM3/2K7xEIDO -----END CERTIFICATE-----Generated at Mon Mar 2 16:40:48 2026 by rpki-client