$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa File: 3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa (raw, json) Hash identifier: BlDzQ+VOfSg4Ds5wrcVX87blBlMVazqS5YABBTvvpRQ= Subject key identifier: 40:30:19:50:A0:F5:DD:55:23:C3:56:2C:FE:A3:92:AD:2E:84:B0:A8 Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Certificate serial: 7B95CFD5E73BB2C7E271E9A4ADCF96CD8B2807EB Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa Signing time: Fri 17 Apr 2026 11:01:48 +0000 ROA not before: Fri 17 Apr 2026 10:56:48 +0000 ROA not after: Fri 16 Apr 2027 11:01:48 +0000 asID: 17440 IP address blocks: 103.209.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 23:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:95:cf:d5:e7:3b:b2:c7:e2:71:e9:a4:ad:cf:96:cd:8b:28:07:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Validity Not Before: Apr 17 10:56:48 2026 GMT Not After : Apr 16 11:01:48 2027 GMT Subject: CN=40301950A0F5DD5523C3562CFEA392AD2E84B0A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:e6:d7:2f:03:42:74:f4:a6:8e:21:4d:11: 0f:a3:d1:23:ca:2d:f6:89:75:42:7b:6a:e0:f7:1c: aa:81:7c:99:e0:f9:78:96:35:56:ae:82:00:05:a0: e5:18:fa:31:d7:28:af:1f:b3:5a:4b:20:6d:80:11: d4:12:12:4c:50:0b:72:f3:6c:fa:ce:24:ba:d2:fc: f5:3a:95:c9:72:ba:ee:cc:75:de:ce:20:30:f9:e3: 7c:9c:06:fc:2e:e6:87:65:be:70:aa:da:1d:65:3d: 32:06:8b:ac:91:8e:a2:0f:cd:7c:f5:0c:11:78:05: fc:6d:b3:45:88:3e:27:fd:50:81:ec:0b:92:2c:8b: 90:79:c7:b7:94:20:93:0e:2b:6b:19:0f:73:31:bd: d3:35:cc:b8:69:64:4b:97:62:6c:7a:7a:1b:e9:11: 05:2e:cf:71:72:eb:ce:c0:77:4f:2b:70:ff:d5:c0: 38:88:17:c3:0a:f9:b7:1f:55:95:35:62:ee:3a:86: 9f:88:1f:fa:57:f7:0a:c2:8a:8b:aa:b1:a6:4c:80: 46:c6:3c:63:58:a8:23:44:19:25:d4:79:82:a4:48: a0:b3:18:14:af:5d:fe:7e:43:21:ef:60:3e:43:b5: 43:68:b3:0b:e3:f1:91:1c:09:16:40:6b:f3:86:bc: c9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:30:19:50:A0:F5:DD:55:23:C3:56:2C:FE:A3:92:AD:2E:84:B0:A8 X509v3 Authority Key Identifier: keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.248.0/23 Signature Algorithm: sha256WithRSAEncryption 65:08:03:46:f3:81:43:2e:8a:b9:31:44:95:62:c5:dc:c5:ae: 36:57:53:fa:c4:62:1b:26:4e:06:74:48:ed:c1:59:38:f9:d8: 46:09:d6:23:9f:79:fd:1e:7c:43:40:66:4b:95:bf:e2:cc:13: 43:5f:c0:d4:be:62:51:32:74:82:38:49:e1:5f:89:ea:43:6b: a2:bd:2f:64:8a:87:64:9d:1f:2e:53:03:c4:58:ff:ca:27:e6: 1d:6a:cd:c2:9c:31:04:e8:2b:93:8e:9f:df:c1:a2:ac:43:3f: 27:b3:e6:a5:bf:6f:ee:a6:a4:46:8b:68:2e:6f:8b:57:44:36: 34:99:ac:03:bf:3a:d2:f2:c2:06:04:ca:e4:02:22:07:33:31: 21:ae:5d:86:59:75:f6:cb:61:5c:ec:b7:5d:89:e6:e7:07:47: 86:2d:54:1b:9a:e9:b5:31:d2:58:d5:11:f3:db:1e:b6:a7:1d: f1:da:fa:a6:af:b4:e9:f7:dd:06:1b:a8:28:bf:e6:59:f1:58: 07:74:d8:d0:c4:46:26:ea:34:44:e1:aa:e1:ff:38:29:9b:d3: 28:99:8b:5b:d7:bc:9c:99:fd:96:59:20:27:6e:dc:bd:82:5a: ea:79:fb:a7:5f:27:a3:52:5b:a3:bb:26:d0:32:64:34:d6:ca: 88:e5:68:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUe5XP1ec7ssficemkrc+WzYsoB+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5 QkU1NzBFNzAeFw0yNjA0MTcxMDU2NDhaFw0yNzA0MTYxMTAxNDhaMDMxMTAvBgNV BAMTKDQwMzAxOTUwQTBGNURENTUyM0MzNTYyQ0ZFQTM5MkFEMkU4NEIwQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQu+bXLwNCdPSmjiFNEQ+j0SPK LfaJdUJ7auD3HKqBfJng+XiWNVauggAFoOUY+jHXKK8fs1pLIG2AEdQSEkxQC3Lz bPrOJLrS/PU6lclyuu7Mdd7OIDD543ycBvwu5odlvnCq2h1lPTIGi6yRjqIPzXz1 DBF4Bfxts0WIPif9UIHsC5Isi5B5x7eUIJMOK2sZD3MxvdM1zLhpZEuXYmx6ehvp EQUuz3Fy687Ad08rcP/VwDiIF8MK+bcfVZU1Yu46hp+IH/pX9wrCiouqsaZMgEbG PGNYqCNEGSXUeYKkSKCzGBSvXf5+QyHvYD5DtUNoswvj8ZEcCRZAa/OGvMmDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQDAZUKD13VUjw1Ys/qOSrS6EsKgwHwYDVR0j BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1 NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9H4MA0GCSqG SIb3DQEBCwUAA4IBAQBlCANG84FDLoq5MUSVYsXcxa42V1P6xGIbJk4GdEjtwVk4 +dhGCdYjn3n9HnxDQGZLlb/izBNDX8DUvmJRMnSCOEnhX4nqQ2uivS9kiodknR8u UwPEWP/KJ+Ydas3CnDEE6CuTjp/fwaKsQz8ns+alv2/upqRGi2gub4tXRDY0mawD vzrS8sIGBMrkAiIHMzEhrl2GWXX2y2Fc7LddiebnB0eGLVQbmum1MdJY1RHz2x62 px3x2vqmr7Tp990GG6gov+ZZ8VgHdNjQxEYm6jRE4arh/zgpm9MomYtb17ycmf2W WSAnbty9glrqefunXyejUlujuybQMmQ01sqI5Wgp -----END CERTIFICATE-----Generated at Sun Apr 19 13:02:32 2026 by rpki-client