$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa File: 3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa (raw, json) Hash identifier: JI5Cob5/Wd+Ox2AoKFPv1XzpKlPdEGS/So6Se6GPuco= Subject key identifier: B2:63:F8:08:AF:E7:47:9A:4C:C8:C7:DB:22:2C:D1:D1:A8:A9:46:C7 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 5C52DAFC4EE9759DBE5A0FFA7FE86A86BD75F398 Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa Signing time: Sun 05 Apr 2026 04:00:02 +0000 ROA not before: Sun 05 Apr 2026 03:55:02 +0000 ROA not after: Sun 04 Apr 2027 04:00:02 +0000 asID: 18004 IP address blocks: 103.234.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 18:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:52:da:fc:4e:e9:75:9d:be:5a:0f:fa:7f:e8:6a:86:bd:75:f3:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: Apr 5 03:55:02 2026 GMT Not After : Apr 4 04:00:02 2027 GMT Subject: CN=B263F808AFE7479A4CC8C7DB222CD1D1A8A946C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:a9:5f:08:c7:2c:d7:b3:89:3a:59:2c:49:39: 88:2e:2e:1d:77:40:60:3d:e9:68:68:5d:d6:4e:5e: 25:a8:ad:e0:8c:23:70:df:16:ff:45:6f:5a:3b:7e: 54:1c:b2:42:35:e4:98:00:97:ec:c1:0b:13:77:d5: cb:f7:48:17:67:61:ed:d4:7a:b4:62:9a:64:f6:e1: 0d:97:9f:62:40:4f:36:90:51:05:92:1c:bb:9d:cd: 16:76:56:3e:38:8e:88:02:dd:b6:21:3e:91:19:58: c7:d9:e2:72:eb:e6:fb:16:4c:7f:a2:d1:b8:77:b9: a7:a4:ab:9a:f6:55:77:7b:06:5d:c8:36:c6:90:0a: 52:e6:4a:4a:eb:4a:05:06:56:a7:8a:42:c7:10:4b: 56:1d:7c:81:73:b9:90:59:bf:66:73:bb:55:64:01: e7:39:e2:9b:43:03:b5:c6:28:e3:ba:02:21:54:bc: ef:f2:73:e2:09:50:d7:e2:b1:e1:49:5b:a7:ee:5f: 04:1e:f2:70:c8:cb:62:15:9b:88:b0:41:da:04:4f: 26:c1:e6:c5:72:3e:0b:9c:e6:97:0d:17:03:4b:0c: e9:73:91:63:ee:fc:dd:18:a2:68:88:3d:28:3c:6a: b4:f3:7c:20:c4:e0:a4:d0:19:1b:2a:63:65:f0:c1: ef:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:63:F8:08:AF:E7:47:9A:4C:C8:C7:DB:22:2C:D1:D1:A8:A9:46:C7 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.120.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:fe:fc:b0:35:c8:f4:4d:33:8b:3b:44:1b:db:bb:f8:4d:3f: d5:f6:97:63:11:12:99:25:f8:2c:7d:58:b0:ad:09:03:22:ad: 15:c1:db:8e:ee:56:02:90:04:56:70:b0:66:f3:52:7b:a1:17: fc:ba:1a:04:54:98:ae:29:0f:1d:9a:00:97:32:c5:9a:98:33: cb:2b:e4:a4:02:78:46:15:52:09:a1:2d:a6:8e:50:cc:48:2e: 7e:48:72:df:db:63:8d:93:ca:b4:8d:97:43:85:25:a9:ec:d5: d1:12:1c:9c:40:3f:4d:62:c6:32:ad:06:f9:79:13:14:38:90: a7:d8:ea:17:60:c6:db:c4:95:93:a7:b3:97:4a:cc:27:60:11: 90:46:ba:c4:3a:d7:fd:81:6c:21:ca:2d:11:e9:fb:77:85:4e: 24:81:90:b8:0b:6b:ea:f1:93:6e:86:50:25:b4:e6:a4:4a:ac: 1e:5b:d2:d2:ff:33:5b:bf:3a:b9:7b:80:ce:62:04:4d:8e:2a: 2d:61:40:fa:5a:63:2d:03:9b:ce:5e:42:d3:c5:c2:cf:a1:2d: 41:1a:45:13:9d:1d:69:f2:a6:6c:f5:70:04:0e:f2:c7:5f:e6: ad:a0:58:c4:62:da:c0:4b:21:0e:88:dc:d6:f1:71:3b:63:32: 1e:68:f3:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXFLa/E7pdZ2+Wg/6f+hqhr1185gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNjA0MDUwMzU1MDJaFw0yNzA0MDQwNDAwMDJaMDMxMTAvBgNV BAMTKEIyNjNGODA4QUZFNzQ3OUE0Q0M4QzdEQjIyMkNEMUQxQThBOTQ2QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9qV8IxyzXs4k6WSxJOYguLh13 QGA96WhoXdZOXiWoreCMI3DfFv9Fb1o7flQcskI15JgAl+zBCxN31cv3SBdnYe3U erRimmT24Q2Xn2JATzaQUQWSHLudzRZ2Vj44jogC3bYhPpEZWMfZ4nLr5vsWTH+i 0bh3uaekq5r2VXd7Bl3INsaQClLmSkrrSgUGVqeKQscQS1YdfIFzuZBZv2Zzu1Vk Aec54ptDA7XGKOO6AiFUvO/yc+IJUNfiseFJW6fuXwQe8nDIy2IVm4iwQdoETybB 5sVyPguc5pcNFwNLDOlzkWPu/N0YomiIPSg8arTzfCDE4KTQGRsqY2Xwwe//AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsmP4CK/nR5pMyMfbIizR0aipRscwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMxMzAzMzJlMzIzMzM0MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM4MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+p4MA0GCSqG SIb3DQEBCwUAA4IBAQCP/vywNcj0TTOLO0Qb27v4TT/V9pdjERKZJfgsfViwrQkD Iq0VwduO7lYCkARWcLBm81J7oRf8uhoEVJiuKQ8dmgCXMsWamDPLK+SkAnhGFVIJ oS2mjlDMSC5+SHLf22ONk8q0jZdDhSWp7NXREhycQD9NYsYyrQb5eRMUOJCn2OoX YMbbxJWTp7OXSswnYBGQRrrEOtf9gWwhyi0R6ft3hU4kgZC4C2vq8ZNuhlAltOak SqweW9LS/zNbvzq5e4DOYgRNjiotYUD6WmMtA5vOXkLTxcLPoS1BGkUTnR1p8qZs 9XAEDvLHX+atoFjEYtrASyEOiNzW8XE7YzIeaPPA -----END CERTIFICATE-----Generated at Fri Apr 17 17:55:43 2026 by rpki-client