$ rpki-client -vvf repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134362e302f32342d3234203d3e20313530393836.roa File: 3130332e3139332e3134362e302f32342d3234203d3e20313530393836.roa (raw, json) Hash identifier: cUEVfE37WxdT4kHnIzexzxRMipeP3G60x6uiLR24DxM= Subject key identifier: E3:03:B2:89:20:25:6D:F4:38:3F:EC:78:1B:F2:5F:7C:CA:7A:97:26 Certificate issuer: /CN=67749A065BBCF1E57768F4207E1B2FE788604D47 Certificate serial: 1BDB78AB65683C00A19AF0259612018C629EDBE8 Authority key identifier: 67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134362e302f32342d3234203d3e20313530393836.roa Signing time: Thu 02 Apr 2026 02:00:01 +0000 ROA not before: Thu 02 Apr 2026 01:55:01 +0000 ROA not after: Thu 01 Apr 2027 02:00:01 +0000 asID: 150986 IP address blocks: 103.193.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.crl rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:db:78:ab:65:68:3c:00:a1:9a:f0:25:96:12:01:8c:62:9e:db:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67749A065BBCF1E57768F4207E1B2FE788604D47 Validity Not Before: Apr 2 01:55:01 2026 GMT Not After : Apr 1 02:00:01 2027 GMT Subject: CN=E303B28920256DF4383FEC781BF25F7CCA7A9726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:ec:62:0f:d6:a8:71:c1:63:94:e1:aa:a9: 21:dc:f6:9d:70:b4:b0:58:7d:37:57:db:12:e5:25: a0:6e:a7:ec:da:c2:1c:46:a4:6d:fc:b9:93:0e:3e: cd:3b:f9:33:a5:b1:20:0b:66:31:93:84:32:16:09: a3:30:cc:74:e1:85:63:44:29:40:85:14:88:d8:05: 2c:79:b3:ae:cc:8c:f0:bd:6e:fd:4c:f6:a5:b2:ea: bd:3a:bb:99:86:53:90:f1:1b:e3:56:d5:39:59:05: 1e:66:81:42:4a:89:ae:be:d6:99:1d:cc:32:d6:ba: 2e:e9:81:35:6c:5e:eb:40:94:11:e8:2f:5e:a9:bb: 29:55:62:f5:c4:42:77:05:1a:5a:fc:79:b1:07:40: 07:03:5e:86:3c:ef:f3:81:3a:c0:83:6e:6a:8c:92: a5:40:e6:c2:f7:7b:18:c7:7d:29:09:23:7e:47:e6: d5:bb:1a:9b:ad:c6:05:8d:b0:40:c7:d9:1f:47:cc: a3:bb:fa:90:f2:f2:26:16:f3:9d:34:ca:fe:83:39: 88:82:49:78:3f:1c:5d:b4:78:9b:03:fc:71:26:89: 2a:8d:c9:9d:95:81:51:67:20:f8:75:e5:6c:1e:8f: 6b:96:51:77:bb:cb:9d:31:a1:27:f9:55:bc:c1:22: 36:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:03:B2:89:20:25:6D:F4:38:3F:EC:78:1B:F2:5F:7C:CA:7A:97:26 X509v3 Authority Key Identifier: keyid:67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134362e302f32342d3234203d3e20313530393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.146.0/24 Signature Algorithm: sha256WithRSAEncryption 76:be:e7:28:c6:65:4f:bf:9f:9a:a7:a1:cd:2a:f7:53:21:d1: cc:c5:d0:5b:a5:69:fb:60:48:2e:d2:c7:34:5c:0b:2d:69:a9: e4:bc:f5:38:17:18:60:38:2e:25:77:b8:19:7d:2b:4c:98:d0: d2:d6:6f:14:d8:f5:0a:51:cc:f4:bd:f4:eb:6a:e9:03:4e:cf: 84:ed:a4:13:7e:41:5e:0a:c6:6a:70:d6:86:ff:b4:75:09:b3: 61:c5:44:07:75:04:5b:1f:57:06:df:b7:72:88:35:67:ff:c7: 9c:47:99:f6:7f:d3:28:ee:1c:b6:7d:8c:e7:63:fe:8a:17:be: 3c:0e:6c:40:61:c9:be:b4:e7:29:f7:46:2e:b6:d9:74:67:f1: f2:11:67:47:86:57:02:ff:c0:2b:ec:28:04:f8:cd:5d:51:94: 63:f2:f1:45:83:55:90:26:e1:b2:f5:f0:e6:8b:75:c3:a0:d8: c1:cd:cb:47:0d:d2:b7:79:d9:82:d2:7e:aa:a8:53:27:34:6a: bb:db:01:05:6c:28:22:59:7f:c0:06:86:97:66:0c:6e:7d:e9: a7:e2:87:6b:de:d2:67:65:46:24:e6:46:ba:6d:82:da:c1:7b: 85:f5:1d:33:3a:70:73:dc:29:be:eb:eb:27:ea:c7:98:96:c3: c8:bf:df:bc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG9t4q2VoPAChmvAllhIBjGKe2+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc3NDlBMDY1QkJDRjFFNTc3NjhGNDIwN0UxQjJGRTc4 ODYwNEQ0NzAeFw0yNjA0MDIwMTU1MDFaFw0yNzA0MDEwMjAwMDFaMDMxMTAvBgNV BAMTKEUzMDNCMjg5MjAyNTZERjQzODNGRUM3ODFCRjI1RjdDQ0E3QTk3MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnOuxiD9aoccFjlOGqqSHc9p1w tLBYfTdX2xLlJaBup+zawhxGpG38uZMOPs07+TOlsSALZjGThDIWCaMwzHThhWNE KUCFFIjYBSx5s67MjPC9bv1M9qWy6r06u5mGU5DxG+NW1TlZBR5mgUJKia6+1pkd zDLWui7pgTVsXutAlBHoL16puylVYvXEQncFGlr8ebEHQAcDXoY87/OBOsCDbmqM kqVA5sL3exjHfSkJI35H5tW7GputxgWNsEDH2R9HzKO7+pDy8iYW8500yv6DOYiC SXg/HF20eJsD/HEmiSqNyZ2VgVFnIPh15Wwej2uWUXe7y50xoSf5VbzBIjajAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4wOyiSAlbfQ4P+x4G/JffMp6lyYwHwYDVR0j BBgwFoAUZ3SaBlu88eV3aPQgfhsv54hgTUcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTE1N2NlZC1lODJjLTQzMzQtOTAzYS1jY2NiYmU5Y2ZlODkvMC82Nzc0OUEwNjVC QkNGMUU1Nzc2OEY0MjA3RTFCMkZFNzg4NjA0RDQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjc3NDlBMDY1QkJDRjFFNTc3NjhGNDIwN0UxQjJGRTc4ODYw NEQ0Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MTU3Y2VkLWU4MmMtNDMzNC05 MDNhLWNjY2JiZTljZmU4OS8wLzMxMzAzMzJlMzEzOTMzMmUzMTM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnwZIwDQYJ KoZIhvcNAQELBQADggEBAHa+5yjGZU+/n5qnoc0q91Mh0czF0FulaftgSC7SxzRc Cy1pqeS89TgXGGA4LiV3uBl9K0yY0NLWbxTY9QpRzPS99Otq6QNOz4TtpBN+QV4K xmpw1ob/tHUJs2HFRAd1BFsfVwbft3KINWf/x5xHmfZ/0yjuHLZ9jOdj/ooXvjwO bEBhyb605yn3Ri622XRn8fIRZ0eGVwL/wCvsKAT4zV1RlGPy8UWDVZAm4bL18OaL dcOg2MHNy0cN0rd52YLSfqqoUyc0arvbAQVsKCJZf8AGhpdmDG596afih2ve0mdl RiTmRrptgtrBe4X1HTM6cHPcKb7r6yfqx5iWw8i/37w= -----END CERTIFICATE-----Generated at Fri Apr 17 16:26:08 2026 by rpki-client