$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa File: 3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa (raw, json) Hash identifier: DA/n2B5BD31L2iky4qlBwpU9wDYSyS4sXSJH6JyxfG0= Subject key identifier: F5:23:99:A8:C5:4F:64:C3:C4:5F:37:23:99:A7:1E:D5:84:A2:9F:A2 Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Certificate serial: 0439EF802A388DB441B916F8076E65ABC4C5FFDC Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa Signing time: Fri 10 Apr 2026 09:01:14 +0000 ROA not before: Fri 10 Apr 2026 08:56:14 +0000 ROA not after: Fri 09 Apr 2027 09:01:14 +0000 asID: 142389 IP address blocks: 103.172.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 00:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:39:ef:80:2a:38:8d:b4:41:b9:16:f8:07:6e:65:ab:c4:c5:ff:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Validity Not Before: Apr 10 08:56:14 2026 GMT Not After : Apr 9 09:01:14 2027 GMT Subject: CN=F52399A8C54F64C3C45F372399A71ED584A29FA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a1:18:79:73:27:8e:f1:16:cf:5b:f8:e5:01: 08:1b:63:f3:3c:ce:37:30:c8:e3:64:7b:4c:07:45: cf:f0:09:02:f4:f3:05:2b:80:be:b7:89:65:5c:b2: 1e:bc:2e:21:50:d4:a2:12:72:35:bb:f1:70:aa:21: 21:7c:a6:d9:8e:4f:2e:e8:1e:22:a5:fd:ef:d5:43: 1b:1f:80:21:2f:31:96:63:03:7b:04:1f:35:a1:98: ff:df:0e:f8:f4:e3:85:f5:72:30:79:ae:c5:e7:7c: 44:df:55:5c:51:44:77:8e:be:c0:7d:42:7b:90:9a: 3d:58:c7:ab:8c:eb:e0:f4:ed:0f:8b:cb:d6:95:a5: bc:8f:da:8b:39:1b:91:c9:b4:e2:38:55:2f:a0:c6: 0d:49:1e:8c:60:e9:0d:8d:60:64:8b:5d:4e:29:28: ed:3a:29:74:2f:43:23:59:4e:9b:8c:19:65:7a:9b: 6d:28:7c:9a:3d:ba:da:b5:8b:3d:5b:84:95:71:d6: b2:51:cc:bc:4d:71:e2:2c:79:a3:89:e2:31:bb:e2: 13:16:b2:ee:f4:83:5f:b0:64:d2:e1:de:3f:7f:31: b6:1c:bb:57:f7:4f:86:b0:39:57:8b:b7:ef:72:8c: 6f:e1:c1:1a:20:36:0e:b3:9e:94:15:31:d9:10:4d: 5a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:23:99:A8:C5:4F:64:C3:C4:5F:37:23:99:A7:1E:D5:84:A2:9F:A2 X509v3 Authority Key Identifier: keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.144.0/24 Signature Algorithm: sha256WithRSAEncryption 31:1b:6d:f5:c6:fe:0b:b4:eb:81:2e:8f:11:f1:b3:d5:c5:da: b4:c5:69:db:25:ce:46:5c:ef:e7:72:e2:ed:67:64:a7:99:bb: fe:61:fe:bc:82:ca:83:01:98:95:74:78:20:1f:4d:b3:6d:74: 5d:42:1d:5d:2d:29:ec:f9:d4:3a:6c:af:e9:d6:79:f6:96:6c: 4e:e4:3a:e2:17:52:00:92:4d:d8:69:7f:fa:5d:63:cc:b1:1e: dc:ad:76:b8:4a:8f:ba:9a:71:b6:bd:4f:66:83:1d:00:26:d2: 8d:5c:ce:d9:8f:a8:0b:40:9d:cc:06:55:7a:7c:33:0d:c9:58: 2b:e9:e0:66:88:14:eb:bc:30:de:57:1c:35:34:12:b8:71:4d: 59:ba:4e:76:1f:f1:44:e4:0e:cf:f8:c9:37:97:f6:0a:b3:50: 69:2c:35:54:a6:d4:42:67:d8:ee:e9:45:42:f3:f3:a9:3a:12: c9:f5:ca:28:d8:21:7f:a0:c4:ec:97:18:6a:ff:5b:f8:d8:d1: cb:23:ea:db:7f:e3:23:11:09:83:cc:9f:36:03:35:c5:3e:37: c7:d4:db:c2:b9:1e:1e:60:95:36:1a:0e:ef:14:7c:41:1b:87: 0f:e3:8c:5a:f2:5a:6c:71:bb:9b:e2:4e:93:68:30:1d:1e:88: d3:5a:b0:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBDnvgCo4jbRBuRb4B25lq8TF/9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE QjU2QUNBQzAeFw0yNjA0MTAwODU2MTRaFw0yNzA0MDkwOTAxMTRaMDMxMTAvBgNV BAMTKEY1MjM5OUE4QzU0RjY0QzNDNDVGMzcyMzk5QTcxRUQ1ODRBMjlGQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjoRh5cyeO8RbPW/jlAQgbY/M8 zjcwyONke0wHRc/wCQL08wUrgL63iWVcsh68LiFQ1KIScjW78XCqISF8ptmOTy7o HiKl/e/VQxsfgCEvMZZjA3sEHzWhmP/fDvj044X1cjB5rsXnfETfVVxRRHeOvsB9 QnuQmj1Yx6uM6+D07Q+Ly9aVpbyP2os5G5HJtOI4VS+gxg1JHoxg6Q2NYGSLXU4p KO06KXQvQyNZTpuMGWV6m20ofJo9utq1iz1bhJVx1rJRzLxNceIseaOJ4jG74hMW su70g1+wZNLh3j9/MbYcu1f3T4awOVeLt+9yjG/hwRogNg6znpQVMdkQTVqPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9SOZqMVPZMPEXzcjmace1YSin6IwHwYDVR0j BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2 QUNBQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i YWMzLThmN2M2N2FlMGEwNC8wLzMxMzAzMzJlMzEzNzMyMmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrJAwDQYJ KoZIhvcNAQELBQADggEBADEbbfXG/gu064EujxHxs9XF2rTFadslzkZc7+dy4u1n ZKeZu/5h/ryCyoMBmJV0eCAfTbNtdF1CHV0tKez51Dpsr+nWefaWbE7kOuIXUgCS Tdhpf/pdY8yxHtytdrhKj7qacba9T2aDHQAm0o1cztmPqAtAncwGVXp8Mw3JWCvp 4GaIFOu8MN5XHDU0ErhxTVm6TnYf8UTkDs/4yTeX9gqzUGksNVSm1EJn2O7pRULz 86k6Esn1yijYIX+gxOyXGGr/W/jY0csj6tt/4yMRCYPMnzYDNcU+N8fU28K5Hh5g lTYaDu8UfEEbhw/jjFryWmxxu5viTpNoMB0eiNNasJE= -----END CERTIFICATE-----Generated at Fri Apr 17 15:59:06 2026 by rpki-client