$ rpki-client -vvf repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa File: 3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa (raw, json) Hash identifier: z0PwxjXvLO8UKJh7jLJS4r0272TUAL4PnoSzo0PobJE= Subject key identifier: 8E:BD:4D:1B:DB:40:83:F0:A5:C6:30:86:EB:9B:58:00:0A:54:58:29 Certificate issuer: /CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Certificate serial: 0AB488A3CDB6CAF4C8A0F43D74F0FD5B0A68D949 Authority key identifier: 21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa Signing time: Thu 02 Apr 2026 16:00:01 +0000 ROA not before: Thu 02 Apr 2026 15:55:01 +0000 ROA not after: Thu 01 Apr 2027 16:00:01 +0000 asID: 134655 IP address blocks: 103.247.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 11:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b4:88:a3:cd:b6:ca:f4:c8:a0:f4:3d:74:f0:fd:5b:0a:68:d9:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Validity Not Before: Apr 2 15:55:01 2026 GMT Not After : Apr 1 16:00:01 2027 GMT Subject: CN=8EBD4D1BDB4083F0A5C63086EB9B58000A545829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:00:c6:9d:c2:b9:ad:b4:d1:ec:ed:9a:e7:6a: 13:d5:25:63:c3:44:e4:e3:7c:df:cd:33:7e:ca:0c: e5:ba:0b:14:eb:48:cb:a1:04:63:34:82:c6:c6:94: e2:cb:94:b6:fd:0f:15:ad:4c:41:f6:b9:8e:04:65: 47:0c:6f:3c:03:3f:32:63:9b:c0:c3:0c:fc:b6:09: 2d:1e:09:8b:f4:2e:8c:40:74:4a:71:7a:3e:0f:8e: 60:3e:5e:83:71:be:ce:4c:a0:45:e9:23:ab:fc:19: 89:90:9f:e5:cb:e0:9f:69:5c:d3:6a:d5:69:f0:3f: ff:53:49:2d:03:f7:f6:e0:8c:23:b0:b7:cc:55:4d: 34:87:2f:28:86:79:d0:57:6e:df:7d:5f:6d:51:ef: bd:43:2c:84:ab:e3:da:1d:60:d8:7d:ed:82:1c:97: 79:d0:42:fb:d6:30:c8:bd:67:6d:b4:64:66:89:bf: eb:8b:9e:b7:60:a6:71:9f:74:6c:74:c2:81:55:4b: aa:a3:49:1f:ec:31:4b:1a:06:7f:d7:60:95:33:16: 67:91:5b:16:33:04:fa:62:a2:9c:17:73:21:f5:0d: cd:83:d3:51:d1:ce:03:cc:69:7b:b4:c9:69:a3:60: bd:a3:d0:cf:82:db:77:f0:94:b9:fb:4d:40:bd:a8: 27:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:BD:4D:1B:DB:40:83:F0:A5:C6:30:86:EB:9B:58:00:0A:54:58:29 X509v3 Authority Key Identifier: keyid:21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.211.0/24 Signature Algorithm: sha256WithRSAEncryption 40:3d:78:48:40:28:f5:3f:2a:e5:7f:b1:2e:5b:4a:1e:e9:65: 75:fa:58:fb:b5:6b:a5:44:33:4f:67:71:37:22:96:ab:5d:67: 81:3b:b5:a5:e5:07:a9:9e:74:b8:88:8a:1f:91:2e:e0:b7:59: 2c:a8:38:42:1f:1e:6a:d4:10:c7:a7:74:f7:43:7c:54:ea:06: 11:dd:5e:53:44:a7:14:61:0f:4c:fa:13:63:bc:e1:43:c1:b5: d4:6c:51:32:44:e3:39:22:d2:69:0e:48:b0:49:8d:ed:88:38: 4c:e3:cf:4e:93:a9:2f:3f:57:b0:89:2d:d2:46:95:04:51:ef: 84:72:ab:d2:c3:f3:36:0f:2d:00:ed:14:9b:af:c3:db:dc:18: 19:74:96:fd:8c:0d:8a:d1:01:1d:68:f8:d3:b9:8a:20:d6:c9: 9e:07:a8:87:54:b3:49:dd:73:b9:07:55:29:29:98:4f:f0:bb: 46:58:05:c3:80:fb:e2:ea:d0:29:c8:a5:3d:28:76:14:f0:50: 63:49:34:09:d0:fc:38:ed:1a:9d:c1:b2:fa:92:f4:3f:27:9d: 49:f6:f3:8d:c8:00:6c:6d:2b:2a:b3:2b:bb:e2:67:76:c1:6d: 09:6f:ed:ff:30:0b:df:06:a0:74:f1:7c:77:6b:46:04:b2:89: d0:b2:91:35 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCrSIo822yvTIoPQ9dPD9Wwpo2UkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4 QTNCNkU3OTAeFw0yNjA0MDIxNTU1MDFaFw0yNzA0MDExNjAwMDFaMDMxMTAvBgNV BAMTKDhFQkQ0RDFCREI0MDgzRjBBNUM2MzA4NkVCOUI1ODAwMEE1NDU4MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhAMadwrmttNHs7ZrnahPVJWPD ROTjfN/NM37KDOW6CxTrSMuhBGM0gsbGlOLLlLb9DxWtTEH2uY4EZUcMbzwDPzJj m8DDDPy2CS0eCYv0LoxAdEpxej4PjmA+XoNxvs5MoEXpI6v8GYmQn+XL4J9pXNNq 1WnwP/9TSS0D9/bgjCOwt8xVTTSHLyiGedBXbt99X21R771DLISr49odYNh97YIc l3nQQvvWMMi9Z220ZGaJv+uLnrdgpnGfdGx0woFVS6qjSR/sMUsaBn/XYJUzFmeR WxYzBPpiopwXcyH1Dc2D01HRzgPMaXu0yWmjYL2j0M+C23fwlLn7TUC9qCftAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjr1NG9tAg/ClxjCG65tYAApUWCkwHwYDVR0j BBgwFoAUIUbNzXo8ehkVt4xbLJ/Puoo7bnkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTM5ZGJmMS0zMDc1LTQ1MTktYmE5MC1jZWU4ZDM5NzlmY2QvMC8yMTQ2Q0RDRDdB M0M3QTE5MTVCNzhDNUIyQzlGQ0ZCQThBM0I2RTc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4QTNC NkU3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MzlkYmYxLTMwNzUtNDUxOS1i YTkwLWNlZThkMzk3OWZjZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn99MwDQYJ KoZIhvcNAQELBQADggEBAEA9eEhAKPU/KuV/sS5bSh7pZXX6WPu1a6VEM09ncTci lqtdZ4E7taXlB6medLiIih+RLuC3WSyoOEIfHmrUEMendPdDfFTqBhHdXlNEpxRh D0z6E2O84UPBtdRsUTJE4zki0mkOSLBJje2IOEzjz06TqS8/V7CJLdJGlQRR74Ry q9LD8zYPLQDtFJuvw9vcGBl0lv2MDYrRAR1o+NO5iiDWyZ4HqIdUs0ndc7kHVSkp mE/wu0ZYBcOA++Lq0CnIpT0odhTwUGNJNAnQ/DjtGp3BsvqS9D8nnUn2843IAGxt KyqzK7viZ3bBbQlv7f8wC98GoHTxfHdrRgSyidCykTU= -----END CERTIFICATE-----Generated at Fri Apr 17 19:12:11 2026 by rpki-client