$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc9096c-28dc-44e4-b4cf-96d631b73ac0/0/3130332e31332e3230342e302f32332d3233203d3e203634333030.roa File: 3130332e31332e3230342e302f32332d3233203d3e203634333030.roa (raw, json) Hash identifier: 1f/T8Rp4kDNe7xFNVY+aeyPqNEObhKmytjK3fag8EPM= Subject key identifier: 4D:39:05:D8:5E:58:DE:47:BE:BD:88:83:DD:E2:DA:E3:61:69:81:E2 Certificate issuer: /CN=F7D89AF4A6B49559B90BD1A11D2262692C406D9B Certificate serial: 3B270A48B2CCB2D13EBDD087DCD708F1B4D47AD3 Authority key identifier: F7:D8:9A:F4:A6:B4:95:59:B9:0B:D1:A1:1D:22:62:69:2C:40:6D:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7D89AF4A6B49559B90BD1A11D2262692C406D9B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc9096c-28dc-44e4-b4cf-96d631b73ac0/0/3130332e31332e3230342e302f32332d3233203d3e203634333030.roa Signing time: Fri 10 Apr 2026 16:00:02 +0000 ROA not before: Fri 10 Apr 2026 15:55:02 +0000 ROA not after: Fri 09 Apr 2027 16:00:02 +0000 asID: 64300 IP address blocks: 103.13.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc9096c-28dc-44e4-b4cf-96d631b73ac0/0/F7D89AF4A6B49559B90BD1A11D2262692C406D9B.crl rsync://repo-rpki.idnic.net/repo/6fc9096c-28dc-44e4-b4cf-96d631b73ac0/0/F7D89AF4A6B49559B90BD1A11D2262692C406D9B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7D89AF4A6B49559B90BD1A11D2262692C406D9B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 15:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:27:0a:48:b2:cc:b2:d1:3e:bd:d0:87:dc:d7:08:f1:b4:d4:7a:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7D89AF4A6B49559B90BD1A11D2262692C406D9B Validity Not Before: Apr 10 15:55:02 2026 GMT Not After : Apr 9 16:00:02 2027 GMT Subject: CN=4D3905D85E58DE47BEBD8883DDE2DAE3616981E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:74:3a:31:09:14:ff:3b:58:c1:4a:38:9c:ce: 9f:1b:17:ac:b6:69:4d:8d:f0:76:d4:8e:0e:ba:bd: d8:a9:fc:06:34:2e:e3:bf:ed:c1:39:0b:6c:63:d2: 2e:6f:fd:7b:36:ad:3f:21:0c:55:93:ac:05:33:3c: d6:29:7f:ee:56:c9:ca:c6:f4:01:9b:5e:28:33:35: 31:48:09:64:f8:b2:3c:67:a3:f7:39:0a:3c:32:13: 30:64:35:47:d8:f9:0b:4c:5e:5c:40:94:ab:79:e9: 57:12:92:54:d8:e2:f4:a3:2f:3e:ad:21:3d:86:ea: 2c:d0:79:22:ed:06:0a:06:f6:77:5d:70:29:09:8e: 7d:f0:0e:af:77:d5:0b:e1:4a:b5:bf:b7:d4:d6:54: 42:91:ff:fa:6a:96:bd:21:ec:ef:d4:35:15:e5:26: c8:61:fe:d9:73:cc:2e:3c:24:dc:6d:89:35:09:75: 78:87:4b:28:e5:09:41:26:20:ac:61:89:d7:aa:70: 39:9f:a4:2e:16:ad:65:8d:50:42:cc:ae:3a:88:2c: 50:8e:4b:c9:19:0c:e6:2b:49:d2:34:45:20:8a:f5: 73:f6:00:55:ae:2e:47:95:13:ee:1a:95:aa:eb:b3: bf:34:1d:9c:87:31:29:00:db:a2:b0:90:5f:45:e1: c0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:39:05:D8:5E:58:DE:47:BE:BD:88:83:DD:E2:DA:E3:61:69:81:E2 X509v3 Authority Key Identifier: keyid:F7:D8:9A:F4:A6:B4:95:59:B9:0B:D1:A1:1D:22:62:69:2C:40:6D:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc9096c-28dc-44e4-b4cf-96d631b73ac0/0/F7D89AF4A6B49559B90BD1A11D2262692C406D9B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7D89AF4A6B49559B90BD1A11D2262692C406D9B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc9096c-28dc-44e4-b4cf-96d631b73ac0/0/3130332e31332e3230342e302f32332d3233203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.204.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:d8:b8:98:06:f0:82:36:de:85:e9:76:91:2a:43:e2:d6:c8: 15:f7:3d:97:ff:b5:55:dd:c3:5f:07:89:41:b8:f0:1e:13:83: 44:5c:b1:d4:fc:72:f9:a9:93:1b:c0:37:bf:f4:21:47:f3:42: 2f:39:f5:d5:da:83:ad:b9:b3:f9:87:2f:da:64:4a:dc:0c:ad: 1f:f2:44:f1:d9:3c:d6:ec:33:d3:5f:fb:36:c7:58:a3:51:80: ea:40:08:30:71:8c:79:11:44:d6:3a:7e:c4:36:91:1d:f2:dc: bc:64:e7:8f:69:07:be:3b:6d:9c:44:41:25:f5:82:24:10:cf: 78:d6:24:73:f0:a7:87:95:85:1c:b1:c0:4b:19:3b:58:6b:93: 78:f4:1b:1b:18:9c:ee:31:7d:2f:d6:20:2f:a8:b4:03:d1:00: 1c:48:12:1d:d9:4b:b9:e7:83:89:65:6f:cd:d1:fa:4c:fe:a6: 55:dc:1e:fa:22:29:56:be:20:c9:c9:07:84:db:63:32:4d:18: a6:97:03:2c:7c:43:78:6b:c3:83:ba:db:e5:09:e5:04:19:d3: 5e:87:be:70:3c:bb:7d:03:92:df:1a:e1:8e:56:e2:03:23:e5: 15:47:ac:03:80:7f:35:81:0e:fe:af:07:25:d8:a4:04:3b:c8: 29:42:bf:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOycKSLLMstE+vdCH3NcI8bTUetMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdEODlBRjRBNkI0OTU1OUI5MEJEMUExMUQyMjYyNjky QzQwNkQ5QjAeFw0yNjA0MTAxNTU1MDJaFw0yNzA0MDkxNjAwMDJaMDMxMTAvBgNV BAMTKDREMzkwNUQ4NUU1OERFNDdCRUJEODg4M0RERTJEQUUzNjE2OTgxRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCodDoxCRT/O1jBSjiczp8bF6y2 aU2N8HbUjg66vdip/AY0LuO/7cE5C2xj0i5v/Xs2rT8hDFWTrAUzPNYpf+5WycrG 9AGbXigzNTFICWT4sjxno/c5CjwyEzBkNUfY+QtMXlxAlKt56VcSklTY4vSjLz6t IT2G6izQeSLtBgoG9nddcCkJjn3wDq931QvhSrW/t9TWVEKR//pqlr0h7O/UNRXl Jshh/tlzzC48JNxtiTUJdXiHSyjlCUEmIKxhideqcDmfpC4WrWWNUELMrjqILFCO S8kZDOYrSdI0RSCK9XP2AFWuLkeVE+4alarrs780HZyHMSkA26KwkF9F4cC5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTTkF2F5Y3ke+vYiD3eLa42FpgeIwHwYDVR0j BBgwFoAU99ia9Ka0lVm5C9GhHSJiaSxAbZswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmM5MDk2Yy0yOGRjLTQ0ZTQtYjRjZi05NmQ2MzFiNzNhYzAvMC9GN0Q4OUFGNEE2 QjQ5NTU5QjkwQkQxQTExRDIyNjI2OTJDNDA2RDlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjdEODlBRjRBNkI0OTU1OUI5MEJEMUExMUQyMjYyNjkyQzQw NkQ5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzkwOTZjLTI4ZGMtNDRlNC1i NGNmLTk2ZDYzMWI3M2FjMC8wLzMxMzAzMzJlMzEzMzJlMzIzMDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzYzNDMzMzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcNzDANBgkqhkiG 9w0BAQsFAAOCAQEAPNi4mAbwgjbehel2kSpD4tbIFfc9l/+1Vd3DXweJQbjwHhOD RFyx1Pxy+amTG8A3v/QhR/NCLzn11dqDrbmz+Ycv2mRK3AytH/JE8dk81uwz01/7 NsdYo1GA6kAIMHGMeRFE1jp+xDaRHfLcvGTnj2kHvjttnERBJfWCJBDPeNYkc/Cn h5WFHLHASxk7WGuTePQbGxic7jF9L9YgL6i0A9EAHEgSHdlLueeDiWVvzdH6TP6m Vdwe+iIpVr4gyckHhNtjMk0YppcDLHxDeGvDg7rb5QnlBBnTXoe+cDy7fQOS3xrh jlbiAyPlFUesA4B/NYEO/q8HJdikBDvIKUK/xA== -----END CERTIFICATE-----Generated at Fri Apr 17 16:21:11 2026 by rpki-client