$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa File: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (raw, json) Hash identifier: WPB0w9n7mCdc21HVfo06mm6RPH3lHaCHs4qLmynGO70= Subject key identifier: 58:24:ED:CE:1B:F4:E5:F9:37:E7:B0:06:E9:6C:74:D9:3B:8D:B4:47 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 254A4D1CB2FF96D35EF39C50C647480FC699B94E Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa Signing time: Wed 25 Feb 2026 22:00:00 +0000 ROA not before: Wed 25 Feb 2026 21:55:00 +0000 ROA not after: Wed 24 Feb 2027 22:00:00 +0000 asID: 147087 IP address blocks: 103.69.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 19:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4a:4d:1c:b2:ff:96:d3:5e:f3:9c:50:c6:47:48:0f:c6:99:b9:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Feb 25 21:55:00 2026 GMT Not After : Feb 24 22:00:00 2027 GMT Subject: CN=5824EDCE1BF4E5F937E7B006E96C74D93B8DB447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cf:44:de:07:08:36:36:ea:39:72:b0:bb:f9: b5:bb:84:bd:4a:da:c2:16:42:7c:cb:11:51:cc:1c: 85:ea:8c:58:f3:d5:fb:4b:ef:4b:a5:da:2c:04:30: 35:df:40:9e:23:49:b6:d3:00:2e:bf:07:64:18:7e: fc:2f:e4:29:cd:00:e7:6a:06:97:2b:fe:ff:24:9e: 75:0b:08:9b:b9:a9:a4:fa:cc:91:bc:ba:d2:cb:0a: 57:81:67:06:0e:64:04:9c:e7:7b:a4:63:c1:a8:77: ab:46:0a:f7:c5:fe:e3:c3:08:cd:9d:de:38:6d:4c: 56:45:88:17:a1:5c:55:c7:6a:b2:9d:5e:49:89:a5: 13:d2:0d:66:d6:2f:84:66:1d:9a:e5:29:bc:c5:92: e2:60:5d:00:7f:90:d0:8f:e0:9e:c8:e1:da:c1:06: af:01:3c:18:4b:b3:42:8b:1b:92:70:f3:ba:3c:76: 8c:07:41:26:92:a7:31:ff:fc:68:26:ae:cd:b9:f7: ec:b5:ba:a1:36:7f:80:30:eb:86:a1:68:a5:91:b7: 6c:96:e7:86:73:f7:2b:d3:b9:2c:03:44:cc:fb:27: 85:62:f0:3a:8a:95:c5:c5:eb:9a:bf:54:5e:45:b1: 11:d4:ca:18:43:b4:15:cc:d3:6e:2f:f2:4e:32:30: a9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:24:ED:CE:1B:F4:E5:F9:37:E7:B0:06:E9:6C:74:D9:3B:8D:B4:47 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.107.0/24 Signature Algorithm: sha256WithRSAEncryption 38:4d:a1:a1:cd:69:ae:5a:28:81:ef:46:bb:93:2a:55:85:2c: c9:7a:3d:b3:13:30:1f:cd:72:3f:b9:96:8a:07:6d:b8:a9:fe: bb:7d:c1:69:e0:a3:57:4a:bb:ba:29:0b:01:16:5a:39:35:bd: 9d:c0:c0:3b:0e:a9:e9:29:60:32:b6:e6:08:a0:71:df:43:50: 79:e4:15:1f:82:57:14:32:cc:7b:1a:82:c2:dd:cd:ce:25:92: 5e:ad:5a:b0:29:88:67:a5:26:a3:5e:ad:5e:ab:8d:6e:49:b2: 9f:fa:6e:fd:e4:7f:eb:17:7d:ca:94:28:95:28:94:8f:1a:5f: 90:48:33:bd:48:a5:12:9c:8b:12:05:42:a9:be:76:18:fa:38: 2b:fd:20:53:ce:5c:4d:4a:3c:a5:80:fa:ea:03:80:5c:1d:26: 57:b7:62:eb:0a:04:48:8c:85:42:0a:4f:bf:f3:fd:4b:54:73: bb:06:b9:d5:d3:8f:7b:5b:f5:3e:c4:5a:e9:a5:3f:57:a3:67: ad:57:3e:4e:00:16:69:8e:69:ea:5c:6f:9f:c2:f9:d4:ae:ea: 81:37:6a:47:74:1c:7e:65:1b:b8:61:fe:b2:24:d6:d6:af:f1: 54:9e:49:23:b2:93:60:d8:be:59:2d:eb:d8:e9:d8:11:42:85: e6:9b:95:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJUpNHLL/ltNe85xQxkdID8aZuU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNjAyMjUyMTU1MDBaFw0yNzAyMjQyMjAwMDBaMDMxMTAvBgNV BAMTKDU4MjRFRENFMUJGNEU1RjkzN0U3QjAwNkU5NkM3NEQ5M0I4REI0NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDez0TeBwg2Nuo5crC7+bW7hL1K 2sIWQnzLEVHMHIXqjFjz1ftL70ul2iwEMDXfQJ4jSbbTAC6/B2QYfvwv5CnNAOdq Bpcr/v8knnULCJu5qaT6zJG8utLLCleBZwYOZASc53ukY8God6tGCvfF/uPDCM2d 3jhtTFZFiBehXFXHarKdXkmJpRPSDWbWL4RmHZrlKbzFkuJgXQB/kNCP4J7I4drB Bq8BPBhLs0KLG5Jw87o8dowHQSaSpzH//Ggmrs259+y1uqE2f4Aw64ahaKWRt2yW 54Zz9yvTuSwDRMz7J4Vi8DqKlcXF65q/VF5FsRHUyhhDtBXM024v8k4yMKnTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWCTtzhv05fk357AG6Wx02TuNtEcwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZTJlYmRlLTYzMTEtNDg4YS04 MmI3LTlkNGMwNTUzMDk4Ny8wLzMxMzAzMzJlMzYzOTJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0VrMA0GCSqG SIb3DQEBCwUAA4IBAQA4TaGhzWmuWiiB70a7kypVhSzJej2zEzAfzXI/uZaKB224 qf67fcFp4KNXSru6KQsBFlo5Nb2dwMA7DqnpKWAytuYIoHHfQ1B55BUfglcUMsx7 GoLC3c3OJZJerVqwKYhnpSajXq1eq41uSbKf+m795H/rF33KlCiVKJSPGl+QSDO9 SKUSnIsSBUKpvnYY+jgr/SBTzlxNSjylgPrqA4BcHSZXt2LrCgRIjIVCCk+/8/1L VHO7BrnV0497W/U+xFrppT9Xo2etVz5OABZpjmnqXG+fwvnUruqBN2pHdBx+ZRu4 Yf6yJNbWr/FUnkkjspNg2L5ZLevY6dgRQoXmm5V8 -----END CERTIFICATE-----Generated at Tue Mar 3 00:06:33 2026 by rpki-client