$ rpki-client -vvf repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: TLNtaAgAbC3C6y0F7/m5UW2AOQ5UMY/y6MgD2RO+FQQ= Subject key identifier: 35:46:94:2E:4A:AF:2E:53:C8:77:F2:D6:7D:B6:96:07:04:6C:B7:E9 Certificate issuer: /CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Certificate serial: 4C2781F0977BC0806556091051C0FF9431F87153 Authority key identifier: 29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa Signing time: Tue 31 Mar 2026 07:00:00 +0000 ROA not before: Tue 31 Mar 2026 06:55:00 +0000 ROA not after: Tue 30 Mar 2027 07:00:00 +0000 asID: 4800 IP address blocks: 103.191.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:27:81:f0:97:7b:c0:80:65:56:09:10:51:c0:ff:94:31:f8:71:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Validity Not Before: Mar 31 06:55:00 2026 GMT Not After : Mar 30 07:00:00 2027 GMT Subject: CN=3546942E4AAF2E53C877F2D67DB69607046CB7E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:01:fe:40:98:89:61:68:8d:23:e8:06:66:55: 37:87:b0:f3:ef:5b:e7:67:89:62:85:92:92:17:fc: 7e:46:f3:a0:7a:84:43:44:99:e6:6b:78:2d:1e:68: 13:21:1d:3a:10:34:d2:c0:fe:ea:b6:d1:87:52:29: 61:f4:d6:fb:87:9d:dc:d3:05:0e:54:d6:c1:9e:59: 27:34:74:f2:a9:d4:49:92:52:1c:77:73:e6:37:67: 43:de:c9:44:4f:25:a6:fe:27:c7:21:4a:07:95:18: 59:e7:9c:84:3e:4b:31:eb:53:e1:d8:84:73:38:1c: 42:6f:60:95:41:88:aa:29:f3:05:54:f6:ce:25:1e: f8:f9:07:b2:38:c2:18:32:ec:78:8f:2f:05:65:3e: 44:f8:d1:0d:97:f4:9b:70:d9:a6:00:3a:68:ba:96: 25:cb:79:8f:ef:1b:8e:fb:ea:cc:13:d1:32:5f:c9: cb:8c:5b:2b:14:9b:22:da:dd:aa:dc:8e:ce:d8:d8: 60:f6:ff:78:3f:65:5b:74:7a:97:22:c4:e7:34:c8: 7c:a7:31:86:85:97:49:fe:33:02:fd:f4:1d:e1:2b: a8:5b:8a:1c:0e:eb:0b:cc:06:86:59:c6:8b:27:f7: 36:16:d0:fb:fa:84:6c:01:b8:b0:c1:80:36:5f:5c: a6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:46:94:2E:4A:AF:2E:53:C8:77:F2:D6:7D:B6:96:07:04:6C:B7:E9 X509v3 Authority Key Identifier: keyid:29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.176.0/23 Signature Algorithm: sha256WithRSAEncryption 29:ad:31:26:d0:c3:25:53:2e:63:85:fb:cb:aa:03:f0:15:2b: f6:60:de:0d:3b:5a:35:ce:d4:67:d2:a7:54:c8:77:32:62:d7: c0:2d:76:78:8f:19:6e:ad:f7:c2:a0:51:d4:25:5b:54:df:8d: d1:f6:aa:33:f5:86:e6:82:e7:bb:f5:9c:24:01:6f:30:9d:45: 5f:e6:b8:5f:d6:25:7d:c1:71:98:c1:31:fa:b5:7c:e4:7b:6a: a9:33:ad:04:88:c4:9e:df:db:da:9b:3e:4d:b3:c2:98:8f:c3: 3e:45:1f:e2:9a:b4:a8:bb:ae:19:fa:71:e3:63:88:7f:4a:cf: 88:4c:29:1d:4e:01:10:77:91:39:3f:94:3b:d4:17:f3:c2:51: ea:54:24:1e:34:e7:fa:f6:c0:7d:86:8d:d1:33:02:83:26:78: 7e:f7:39:5d:6d:50:4d:b7:11:ac:02:35:84:4c:d9:98:a0:78: 11:20:e5:14:45:53:09:39:fc:86:8a:d3:bd:f1:3f:03:89:36: ec:aa:8f:bd:83:81:7f:3c:2d:2f:73:05:c3:60:87:a7:92:56: db:fc:11:9c:ae:14:32:11:37:42:7e:8a:73:51:e5:fe:b4:ff: 48:b4:8d:ac:a0:03:95:23:4e:c4:fd:fa:a3:ee:48:52:6d:a4: 1c:26:0b:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTCeB8Jd7wIBlVgkQUcD/lDH4cVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3 QzVCRDJBNDAeFw0yNjAzMzEwNjU1MDBaFw0yNzAzMzAwNzAwMDBaMDMxMTAvBgNV BAMTKDM1NDY5NDJFNEFBRjJFNTNDODc3RjJENjdEQjY5NjA3MDQ2Q0I3RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRAf5AmIlhaI0j6AZmVTeHsPPv W+dniWKFkpIX/H5G86B6hENEmeZreC0eaBMhHToQNNLA/uq20YdSKWH01vuHndzT BQ5U1sGeWSc0dPKp1EmSUhx3c+Y3Z0PeyURPJab+J8chSgeVGFnnnIQ+SzHrU+HY hHM4HEJvYJVBiKop8wVU9s4lHvj5B7I4whgy7HiPLwVlPkT40Q2X9Jtw2aYAOmi6 liXLeY/vG4776swT0TJfycuMWysUmyLa3arcjs7Y2GD2/3g/ZVt0epcixOc0yHyn MYaFl0n+MwL99B3hK6hbihwO6wvMBoZZxosn9zYW0Pv6hGwBuLDBgDZfXKavAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNUaULkqvLlPId/LWfbaWBwRst+kwHwYDVR0j BBgwFoAUKc8A21whCcS1CQk1NoyaxXxb0qQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTIyYjRlMi0yNmY2LTQxZTgtODkxMC0yMDZiZWE3ODNkYjkvMC8yOUNGMDBEQjVD MjEwOUM0QjUwOTA5MzUzNjhDOUFDNTdDNUJEMkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3QzVC RDJBNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMjJiNGUyLTI2ZjYtNDFlOC04 OTEwLTIwNmJlYTc4M2RiOS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM3MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe/sDANBgkqhkiG 9w0BAQsFAAOCAQEAKa0xJtDDJVMuY4X7y6oD8BUr9mDeDTtaNc7UZ9KnVMh3MmLX wC12eI8Zbq33wqBR1CVbVN+N0faqM/WG5oLnu/WcJAFvMJ1FX+a4X9YlfcFxmMEx +rV85HtqqTOtBIjEnt/b2ps+TbPCmI/DPkUf4pq0qLuuGfpx42OIf0rPiEwpHU4B EHeROT+UO9QX88JR6lQkHjTn+vbAfYaN0TMCgyZ4fvc5XW1QTbcRrAI1hEzZmKB4 ESDlFEVTCTn8horTvfE/A4k27KqPvYOBfzwtL3MFw2CHp5JW2/wRnK4UMhE3Qn6K c1Hl/rT/SLSNrKADlSNOxP36o+5IUm2kHCYLvw== -----END CERTIFICATE-----Generated at Fri Apr 17 14:41:48 2026 by rpki-client