$ rpki-client -vvf repo-rpki.idnic.net/repo/510be353-4ab8-4b77-988d-739f82b9f641/0/3130332e39382e3132302e302f32342d3234203d3e20313336383238.roa File: 3130332e39382e3132302e302f32342d3234203d3e20313336383238.roa (raw, json) Hash identifier: a65T79RY4jJs29DyytiX30Ecbo3aziPjQjbF3KwFaiw= Subject key identifier: FB:56:FE:AB:1C:A5:39:FC:28:C5:6B:7B:F1:E0:58:CD:80:9D:62:15 Certificate issuer: /CN=D9DFDED2F525C1E82251BA90ED838157F0B6FB19 Certificate serial: 09F12180AC692856DB52D69A632BA6D28785DC74 Authority key identifier: D9:DF:DE:D2:F5:25:C1:E8:22:51:BA:90:ED:83:81:57:F0:B6:FB:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9DFDED2F525C1E82251BA90ED838157F0B6FB19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/510be353-4ab8-4b77-988d-739f82b9f641/0/3130332e39382e3132302e302f32342d3234203d3e20313336383238.roa Signing time: Fri 10 Apr 2026 12:00:02 +0000 ROA not before: Fri 10 Apr 2026 11:55:02 +0000 ROA not after: Fri 09 Apr 2027 12:00:02 +0000 asID: 136828 IP address blocks: 103.98.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/510be353-4ab8-4b77-988d-739f82b9f641/0/D9DFDED2F525C1E82251BA90ED838157F0B6FB19.crl rsync://repo-rpki.idnic.net/repo/510be353-4ab8-4b77-988d-739f82b9f641/0/D9DFDED2F525C1E82251BA90ED838157F0B6FB19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9DFDED2F525C1E82251BA90ED838157F0B6FB19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 14:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f1:21:80:ac:69:28:56:db:52:d6:9a:63:2b:a6:d2:87:85:dc:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9DFDED2F525C1E82251BA90ED838157F0B6FB19 Validity Not Before: Apr 10 11:55:02 2026 GMT Not After : Apr 9 12:00:02 2027 GMT Subject: CN=FB56FEAB1CA539FC28C56B7BF1E058CD809D6215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ed:a3:c9:5e:8d:56:5f:f8:42:54:ec:7e:55: cf:c5:98:04:8b:23:83:f0:50:2f:14:10:89:06:02: c2:4b:20:c1:9a:65:f3:59:c9:43:ea:ef:af:0b:88: f6:3a:9e:09:e2:1c:e5:c1:7e:1e:b9:ea:19:6b:93: f4:bd:f8:67:ad:52:d6:14:f0:de:7f:b5:2a:ec:eb: 9b:0c:29:c5:9d:f6:f3:c0:7a:a1:03:c8:b8:2f:79: ad:16:ad:a2:b6:97:20:1c:58:8d:1d:cf:41:31:29: 74:c5:f4:ba:3a:54:10:b2:7a:b0:a9:3a:9c:bc:36: 9e:c0:95:63:a9:54:8d:e0:b0:c1:50:ba:41:3c:fb: 40:ed:e2:67:e4:87:4d:a3:4c:93:a6:5f:e0:3b:13: 26:e3:68:c8:91:12:02:d0:a5:5a:26:7f:81:5f:8a: c4:dd:e3:7e:ba:f1:11:52:8d:52:7f:3a:be:ea:0b: a4:a8:f1:e9:fd:c3:54:fa:06:ed:83:c1:dc:77:af: da:33:67:75:0f:69:af:3c:44:2b:ce:22:39:cf:ac: 73:47:5f:66:1f:90:ac:07:a0:77:9d:53:96:82:4b: ea:05:57:31:4b:87:a4:1e:39:e0:d8:9e:b5:ba:7a: 82:cb:c5:26:cd:60:4a:99:98:5a:f5:ad:94:21:27: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:56:FE:AB:1C:A5:39:FC:28:C5:6B:7B:F1:E0:58:CD:80:9D:62:15 X509v3 Authority Key Identifier: keyid:D9:DF:DE:D2:F5:25:C1:E8:22:51:BA:90:ED:83:81:57:F0:B6:FB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/510be353-4ab8-4b77-988d-739f82b9f641/0/D9DFDED2F525C1E82251BA90ED838157F0B6FB19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9DFDED2F525C1E82251BA90ED838157F0B6FB19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/510be353-4ab8-4b77-988d-739f82b9f641/0/3130332e39382e3132302e302f32342d3234203d3e20313336383238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.120.0/24 Signature Algorithm: sha256WithRSAEncryption 53:87:bb:49:16:11:73:dd:ae:51:a7:d8:cc:80:2e:9c:72:df: bb:bf:f8:2d:0e:ba:e8:44:d6:ab:65:3e:5d:f9:24:24:20:45: 7c:76:90:74:9d:55:3a:c9:9f:5a:80:c5:f0:d9:1c:93:48:b6: f7:13:4d:df:0f:7f:e2:8d:63:da:50:74:45:ac:cc:d1:04:7a: cb:9d:46:3c:8e:8a:59:00:c7:e3:bc:c4:e5:bc:b5:46:4d:e4: 8d:a8:34:2e:9c:12:a5:7c:c6:ed:d9:f0:a8:ff:b7:ec:14:70: 74:f0:58:84:33:7b:ae:c6:e3:08:cb:9e:8b:20:68:c1:61:95: 82:51:bb:e2:d2:db:5a:f8:3e:ca:bd:2f:05:c4:a3:15:5c:59: 0d:16:0c:b2:7a:dc:19:63:67:aa:21:97:f9:5f:93:7b:79:cd: d6:78:b5:be:ad:8b:1c:21:27:7e:e9:d3:0f:73:b8:db:fa:41: 4c:9a:4c:7a:d7:62:73:b6:c8:da:af:5b:42:af:64:f6:f5:c7: 5c:b6:9b:85:3a:46:d4:42:b2:45:b1:c2:be:56:45:e9:06:7d: 5a:79:75:e2:cf:dc:d6:0d:c9:36:6a:0f:dc:ba:68:63:d1:d3: 64:33:64:1a:86:21:a4:1d:93:34:0a:cd:73:8d:84:9c:16:9a: 6c:4b:5b:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCfEhgKxpKFbbUtaaYyum0oeF3HQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlERkRFRDJGNTI1QzFFODIyNTFCQTkwRUQ4MzgxNTdG MEI2RkIxOTAeFw0yNjA0MTAxMTU1MDJaFw0yNzA0MDkxMjAwMDJaMDMxMTAvBgNV BAMTKEZCNTZGRUFCMUNBNTM5RkMyOEM1NkI3QkYxRTA1OENEODA5RDYyMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ7aPJXo1WX/hCVOx+Vc/FmASL I4PwUC8UEIkGAsJLIMGaZfNZyUPq768LiPY6ngniHOXBfh656hlrk/S9+GetUtYU 8N5/tSrs65sMKcWd9vPAeqEDyLgvea0WraK2lyAcWI0dz0ExKXTF9Lo6VBCyerCp Opy8Np7AlWOpVI3gsMFQukE8+0Dt4mfkh02jTJOmX+A7EybjaMiREgLQpVomf4Ff isTd43668RFSjVJ/Or7qC6So8en9w1T6Bu2Dwdx3r9ozZ3UPaa88RCvOIjnPrHNH X2YfkKwHoHedU5aCS+oFVzFLh6QeOeDYnrW6eoLLxSbNYEqZmFr1rZQhJyWBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+1b+qxylOfwoxWt78eBYzYCdYhUwHwYDVR0j BBgwFoAU2d/e0vUlwegiUbqQ7YOBV/C2+xkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTBiZTM1My00YWI4LTRiNzctOTg4ZC03MzlmODJiOWY2NDEvMC9EOURGREVEMkY1 MjVDMUU4MjI1MUJBOTBFRDgzODE1N0YwQjZGQjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlERkRFRDJGNTI1QzFFODIyNTFCQTkwRUQ4MzgxNTdGMEI2 RkIxOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMGJlMzUzLTRhYjgtNGI3Ny05 ODhkLTczOWY4MmI5ZjY0MS8wLzMxMzAzMzJlMzkzODJlMzEzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J4MA0GCSqG SIb3DQEBCwUAA4IBAQBTh7tJFhFz3a5Rp9jMgC6cct+7v/gtDrroRNarZT5d+SQk IEV8dpB0nVU6yZ9agMXw2RyTSLb3E03fD3/ijWPaUHRFrMzRBHrLnUY8jopZAMfj vMTlvLVGTeSNqDQunBKlfMbt2fCo/7fsFHB08FiEM3uuxuMIy56LIGjBYZWCUbvi 0tta+D7KvS8FxKMVXFkNFgyyetwZY2eqIZf5X5N7ec3WeLW+rYscISd+6dMPc7jb +kFMmkx612Jztsjar1tCr2T29cdctpuFOkbUQrJFscK+VkXpBn1aeXXiz9zWDck2 ag/cumhj0dNkM2QahiGkHZM0Cs1zjYScFppsS1vy -----END CERTIFICATE-----Generated at Sun Apr 19 15:51:08 2026 by rpki-client