$ rpki-client -vvf repo-rpki.idnic.net/repo/6a071514-e4de-4ace-a0df-f7c4ab8074a5/0/3130332e31372e37362e302f32332d3233203d3e20313331373831.roa File: 3130332e31372e37362e302f32332d3233203d3e20313331373831.roa (raw, json) Hash identifier: 3Xgb+N3NB2TeJyMhydH37LrnvXNKcCYu+8Jn+LTb9Mk= Subject key identifier: 43:D3:94:21:AE:E2:FB:C3:2E:8B:DD:7E:DC:3C:96:A4:2A:F5:BC:02 Certificate issuer: /CN=5234A428BC63559E2511B3EFFB085B82B195A8ED Certificate serial: 2969528B8F679B8841F74ABF9D739475B3571026 Authority key identifier: 52:34:A4:28:BC:63:55:9E:25:11:B3:EF:FB:08:5B:82:B1:95:A8:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5234A428BC63559E2511B3EFFB085B82B195A8ED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a071514-e4de-4ace-a0df-f7c4ab8074a5/0/3130332e31372e37362e302f32332d3233203d3e20313331373831.roa Signing time: Thu 26 Feb 2026 17:00:01 +0000 ROA not before: Thu 26 Feb 2026 16:55:01 +0000 ROA not after: Thu 25 Feb 2027 17:00:01 +0000 asID: 131781 IP address blocks: 103.17.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a071514-e4de-4ace-a0df-f7c4ab8074a5/0/5234A428BC63559E2511B3EFFB085B82B195A8ED.crl rsync://repo-rpki.idnic.net/repo/6a071514-e4de-4ace-a0df-f7c4ab8074a5/0/5234A428BC63559E2511B3EFFB085B82B195A8ED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5234A428BC63559E2511B3EFFB085B82B195A8ED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 06:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:69:52:8b:8f:67:9b:88:41:f7:4a:bf:9d:73:94:75:b3:57:10:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5234A428BC63559E2511B3EFFB085B82B195A8ED Validity Not Before: Feb 26 16:55:01 2026 GMT Not After : Feb 25 17:00:01 2027 GMT Subject: CN=43D39421AEE2FBC32E8BDD7EDC3C96A42AF5BC02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e8:b2:b6:ee:9f:28:37:35:09:db:90:e6:5f: 89:7c:b7:a1:8a:f1:80:18:61:17:b5:7a:62:bc:51: 68:d4:f8:58:ab:4c:78:91:79:1f:5c:17:ba:98:e0: 47:ee:ff:8d:da:d8:00:d0:b7:ae:95:f5:56:fd:03: aa:b6:de:45:79:3a:b0:b6:05:8d:45:5f:33:8d:05: c4:d2:2d:b9:f1:af:33:71:b5:2d:2f:38:f9:65:43: 78:0b:6b:14:b0:50:7c:42:8c:1f:66:a7:cd:ec:b8: da:fa:2b:44:f9:de:8e:58:bf:16:8a:8d:53:22:3f: 1b:e3:94:b0:89:9a:28:2c:d9:24:ae:ff:db:90:10: f9:cc:c4:c4:98:f3:78:ad:ae:6f:47:32:74:79:db: 95:22:1a:48:99:11:7b:11:1d:07:b2:10:03:cd:6d: 9f:ef:08:1e:dc:7a:21:21:25:95:34:48:da:71:80: 06:43:92:12:89:e9:bc:84:f5:fc:c7:c3:92:8a:ef: 36:f1:c6:d1:8b:d9:76:bd:90:8c:5a:21:c0:03:f6: 0d:e1:e5:36:c8:b4:63:d7:4d:e8:dc:da:c9:a6:75: 87:b9:b3:29:6c:af:e9:1a:eb:0c:24:1c:11:9f:0e: c9:f8:56:70:0a:a0:3c:f7:36:a1:f8:54:f1:d3:ff: 4f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D3:94:21:AE:E2:FB:C3:2E:8B:DD:7E:DC:3C:96:A4:2A:F5:BC:02 X509v3 Authority Key Identifier: keyid:52:34:A4:28:BC:63:55:9E:25:11:B3:EF:FB:08:5B:82:B1:95:A8:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a071514-e4de-4ace-a0df-f7c4ab8074a5/0/5234A428BC63559E2511B3EFFB085B82B195A8ED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5234A428BC63559E2511B3EFFB085B82B195A8ED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a071514-e4de-4ace-a0df-f7c4ab8074a5/0/3130332e31372e37362e302f32332d3233203d3e20313331373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.76.0/23 Signature Algorithm: sha256WithRSAEncryption d9:40:56:7d:14:ff:f2:79:04:53:45:e4:27:b7:a8:44:dc:9a: d7:a2:7e:51:49:91:89:b2:25:50:95:f4:85:74:f6:3f:1f:bd: f2:a2:6b:a8:7b:7d:ab:61:0c:34:af:e3:4b:ec:94:a8:f7:b1: 6c:da:b5:b9:7b:26:91:a9:90:78:74:d0:7d:e0:68:33:82:29: 01:5d:56:ae:63:54:4e:d9:79:bd:ec:ab:9f:47:ef:74:9c:56: 18:e4:74:57:3a:63:42:01:d4:73:71:33:77:2f:44:51:44:aa: 42:20:bb:fb:20:28:b9:b4:91:75:12:30:1c:b2:47:d9:cd:25: 04:c7:19:92:e1:8e:ad:12:6e:6d:b0:66:80:ad:01:90:e5:e6: 7d:04:db:7f:51:5a:f4:75:58:5f:60:9b:ab:93:3f:39:57:97: 56:2a:ea:bd:38:52:4e:b1:50:2e:bb:96:87:61:8d:d6:c0:86: 38:4a:62:14:63:ab:67:ec:50:d0:0c:b2:04:34:6b:1e:13:76: 7d:a6:b8:6a:bf:63:fc:3f:f8:c1:f7:e3:b6:8b:53:ec:2d:af: 90:ef:e2:52:69:e0:9e:17:f9:b5:42:1e:22:11:0a:91:8d:63: e3:db:1c:52:71:6e:11:05:46:04:ff:19:74:4b:a6:48:a4:cb: e6:6d:9d:4c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKWlSi49nm4hB90q/nXOUdbNXECYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzNEE0MjhCQzYzNTU5RTI1MTFCM0VGRkIwODVCODJC MTk1QThFRDAeFw0yNjAyMjYxNjU1MDFaFw0yNzAyMjUxNzAwMDFaMDMxMTAvBgNV BAMTKDQzRDM5NDIxQUVFMkZCQzMyRThCREQ3RURDM0M5NkE0MkFGNUJDMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT6LK27p8oNzUJ25DmX4l8t6GK 8YAYYRe1emK8UWjU+FirTHiReR9cF7qY4Efu/43a2ADQt66V9Vb9A6q23kV5OrC2 BY1FXzONBcTSLbnxrzNxtS0vOPllQ3gLaxSwUHxCjB9mp83suNr6K0T53o5YvxaK jVMiPxvjlLCJmigs2SSu/9uQEPnMxMSY83itrm9HMnR525UiGkiZEXsRHQeyEAPN bZ/vCB7ceiEhJZU0SNpxgAZDkhKJ6byE9fzHw5KK7zbxxtGL2Xa9kIxaIcAD9g3h 5TbItGPXTejc2smmdYe5sylsr+ka6wwkHBGfDsn4VnAKoDz3NqH4VPHT/0/FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQ9OUIa7i+8Mui91+3DyWpCr1vAIwHwYDVR0j BBgwFoAUUjSkKLxjVZ4lEbPv+whbgrGVqO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTA3MTUxNC1lNGRlLTRhY2UtYTBkZi1mN2M0YWI4MDc0YTUvMC81MjM0QTQyOEJD NjM1NTlFMjUxMUIzRUZGQjA4NUI4MkIxOTVBOEVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzNEE0MjhCQzYzNTU5RTI1MTFCM0VGRkIwODVCODJCMTk1 QThFRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhMDcxNTE0LWU0ZGUtNGFjZS1h MGRmLWY3YzRhYjgwNzRhNS8wLzMxMzAzMzJlMzEzNzJlMzczNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzMTM3MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcRTDANBgkqhkiG 9w0BAQsFAAOCAQEA2UBWfRT/8nkEU0XkJ7eoRNya16J+UUmRibIlUJX0hXT2Px+9 8qJrqHt9q2EMNK/jS+yUqPexbNq1uXsmkamQeHTQfeBoM4IpAV1WrmNUTtl5veyr n0fvdJxWGOR0VzpjQgHUc3Ezdy9EUUSqQiC7+yAoubSRdRIwHLJH2c0lBMcZkuGO rRJubbBmgK0BkOXmfQTbf1Fa9HVYX2Cbq5M/OVeXVirqvThSTrFQLruWh2GN1sCG OEpiFGOrZ+xQ0AyyBDRrHhN2faa4ar9j/D/4wffjtotT7C2vkO/iUmngnhf5tUIe IhEKkY1j49scUnFuEQVGBP8ZdEumSKTL5m2dTA== -----END CERTIFICATE-----Generated at Mon Mar 2 19:09:46 2026 by rpki-client