$ rpki-client -vvf repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa File: 3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa (raw, json) Hash identifier: E0irVGESu7KDeCq0jiZnRBIori5M3Ejegufg1mVhq5I= Subject key identifier: CA:39:80:93:F3:00:59:49:69:5B:B3:31:BA:70:8B:A7:CD:DB:07:EC Certificate issuer: /CN=67749A065BBCF1E57768F4207E1B2FE788604D47 Certificate serial: 3B46C6E7458792E83654E14AF1342FADD031F7F6 Authority key identifier: 67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa Signing time: Thu 02 Apr 2026 02:00:01 +0000 ROA not before: Thu 02 Apr 2026 01:55:01 +0000 ROA not after: Thu 01 Apr 2027 02:00:01 +0000 asID: 150986 IP address blocks: 103.193.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.crl rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:46:c6:e7:45:87:92:e8:36:54:e1:4a:f1:34:2f:ad:d0:31:f7:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67749A065BBCF1E57768F4207E1B2FE788604D47 Validity Not Before: Apr 2 01:55:01 2026 GMT Not After : Apr 1 02:00:01 2027 GMT Subject: CN=CA398093F3005949695BB331BA708BA7CDDB07EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ce:cc:cc:72:c8:b4:86:1a:29:65:9d:d2:4c: 23:05:a8:12:a4:ae:75:82:d9:06:a4:f0:d9:ec:51: dd:9a:75:bd:af:44:7e:ae:ab:d5:29:bf:65:b1:04: bd:0a:83:3e:67:ad:d2:b1:57:4c:5b:c2:4a:f3:08: 4f:f1:73:94:ab:85:c4:89:83:4e:20:6e:3d:87:81: f5:c5:c0:cd:b6:78:14:dd:f7:0e:21:e8:3c:23:e0: 72:11:37:5e:a4:fd:b0:37:d4:ab:10:a2:2f:76:58: e9:b1:c6:44:79:cb:1c:ae:b8:e4:80:f5:77:ef:bc: 37:fd:d2:87:ed:6e:7c:ab:e1:c5:f6:ef:11:7d:a7: 9c:db:6f:b2:29:f7:de:82:2d:ef:63:95:e3:17:65: 5d:0f:2f:c8:fd:6f:3e:ec:bd:3c:65:3c:99:ea:3c: d3:c7:40:b0:d7:7e:ee:d2:03:e7:be:c0:7c:26:f8: 3c:c8:9d:25:95:b3:09:86:80:03:83:17:98:4e:f0: be:48:d5:4f:64:c4:39:33:ef:2f:69:c5:1c:7d:f7: a0:ef:be:bc:c9:a6:70:85:ad:dd:cc:2b:3f:d2:15: 12:56:2a:79:11:8d:3d:fb:3b:5c:a7:f2:98:b4:63: 80:a0:e7:6c:48:c5:dd:55:6f:2b:0a:cb:7b:fc:3f: c1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:39:80:93:F3:00:59:49:69:5B:B3:31:BA:70:8B:A7:CD:DB:07:EC X509v3 Authority Key Identifier: keyid:67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.147.0/24 Signature Algorithm: sha256WithRSAEncryption 44:7d:a6:1a:9f:06:8e:7a:1a:2e:c5:17:13:ea:1e:9d:3e:cb: a8:48:20:e2:ea:5c:e9:35:62:f9:11:44:79:14:ef:1c:e9:cc: 82:2b:f5:59:91:33:55:33:8a:10:35:e8:7d:65:88:31:04:49: 72:c2:b5:f9:b6:c5:4a:46:09:f4:24:01:5d:f0:b3:70:b7:da: 0a:ce:bc:d9:9a:88:01:81:71:3c:55:ce:9d:09:97:65:12:6b: d1:ea:18:63:96:05:0c:10:7b:d5:99:be:99:98:94:51:99:59: 7c:f5:71:33:f4:c1:7f:3b:1d:44:28:f9:50:22:d3:70:50:b7: 6b:df:c3:b7:48:1f:ed:7e:5e:cb:85:d2:90:e8:8b:a1:b5:d5: 29:8e:33:35:96:8f:6d:48:76:e2:de:e1:8b:68:99:aa:c8:02: d6:22:0f:d9:5b:c6:00:00:8f:12:8b:c8:d1:2a:81:10:cc:99: 20:93:89:51:b0:9d:3e:37:f1:cb:36:d6:ac:49:f7:96:f5:a7: 37:77:15:95:01:70:d7:80:65:9b:42:df:f0:11:f0:af:d7:48: 87:f4:70:55:7f:36:0c:be:27:12:14:88:1b:d7:f2:90:41:72: bc:09:b7:1f:f0:e2:63:c1:40:c4:4e:fa:d0:b4:81:0d:4e:d7: 31:5d:35:24 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO0bG50WHkug2VOFK8TQvrdAx9/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc3NDlBMDY1QkJDRjFFNTc3NjhGNDIwN0UxQjJGRTc4 ODYwNEQ0NzAeFw0yNjA0MDIwMTU1MDFaFw0yNzA0MDEwMjAwMDFaMDMxMTAvBgNV BAMTKENBMzk4MDkzRjMwMDU5NDk2OTVCQjMzMUJBNzA4QkE3Q0REQjA3RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6zszMcsi0hhopZZ3STCMFqBKk rnWC2Qak8NnsUd2adb2vRH6uq9Upv2WxBL0Kgz5nrdKxV0xbwkrzCE/xc5SrhcSJ g04gbj2HgfXFwM22eBTd9w4h6Dwj4HIRN16k/bA31KsQoi92WOmxxkR5yxyuuOSA 9XfvvDf90oftbnyr4cX27xF9p5zbb7Ip996CLe9jleMXZV0PL8j9bz7svTxlPJnq PNPHQLDXfu7SA+e+wHwm+DzInSWVswmGgAODF5hO8L5I1U9kxDkz7y9pxRx996Dv vrzJpnCFrd3MKz/SFRJWKnkRjT37O1yn8pi0Y4Cg52xIxd1VbysKy3v8P8GFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyjmAk/MAWUlpW7MxunCLp83bB+wwHwYDVR0j BBgwFoAUZ3SaBlu88eV3aPQgfhsv54hgTUcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTE1N2NlZC1lODJjLTQzMzQtOTAzYS1jY2NiYmU5Y2ZlODkvMC82Nzc0OUEwNjVC QkNGMUU1Nzc2OEY0MjA3RTFCMkZFNzg4NjA0RDQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjc3NDlBMDY1QkJDRjFFNTc3NjhGNDIwN0UxQjJGRTc4ODYw NEQ0Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MTU3Y2VkLWU4MmMtNDMzNC05 MDNhLWNjY2JiZTljZmU4OS8wLzMxMzAzMzJlMzEzOTMzMmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnwZMwDQYJ KoZIhvcNAQELBQADggEBAER9phqfBo56Gi7FFxPqHp0+y6hIIOLqXOk1YvkRRHkU 7xzpzIIr9VmRM1UzihA16H1liDEESXLCtfm2xUpGCfQkAV3ws3C32grOvNmaiAGB cTxVzp0Jl2USa9HqGGOWBQwQe9WZvpmYlFGZWXz1cTP0wX87HUQo+VAi03BQt2vf w7dIH+1+XsuF0pDoi6G11SmOMzWWj21IduLe4YtomarIAtYiD9lbxgAAjxKLyNEq gRDMmSCTiVGwnT438cs21qxJ95b1pzd3FZUBcNeAZZtC3/AR8K/XSIf0cFV/Ngy+ JxIUiBvX8pBBcrwJtx/w4mPBQMRO+tC0gQ1O1zFdNSQ= -----END CERTIFICATE-----Generated at Fri Apr 17 15:41:13 2026 by rpki-client