$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa File: 3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa (raw, json) Hash identifier: I5sys3HqbV6gZsJAIhT6BI1qVn1G1xdkgRHKWl0Cuxk= Subject key identifier: 4A:7F:C6:B8:79:40:76:E5:90:01:08:DA:75:4D:03:D2:5D:00:73:CE Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Certificate serial: 6CCD1DF96E27C2E9F1DBAFCECF5A994871B0134B Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa Signing time: Fri 17 Apr 2026 12:00:01 +0000 ROA not before: Fri 17 Apr 2026 11:55:01 +0000 ROA not after: Fri 16 Apr 2027 12:00:01 +0000 asID: 17440 IP address blocks: 103.209.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 23:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:cd:1d:f9:6e:27:c2:e9:f1:db:af:ce:cf:5a:99:48:71:b0:13:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Validity Not Before: Apr 17 11:55:01 2026 GMT Not After : Apr 16 12:00:01 2027 GMT Subject: CN=4A7FC6B8794076E5900108DA754D03D25D0073CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:1d:1c:47:aa:c7:72:53:61:6c:22:b1:6f:28: 3c:3e:1f:14:fa:56:6f:60:72:f0:8d:df:d9:13:3a: ff:84:a3:f0:59:cc:62:72:0a:c6:69:07:75:e0:41: 4a:62:cb:48:6f:de:ef:db:85:b7:ab:b3:38:11:76: 44:0c:5f:ac:0f:ec:a9:bd:9c:1d:83:b0:83:1d:c1: 91:26:02:fa:e8:6f:c9:ba:ce:ec:1b:b8:fa:04:d6: c3:2b:22:9c:69:e8:8b:71:0a:7d:1f:36:f0:1b:0f: 13:60:d8:9a:8d:70:4b:7c:1f:6c:d0:7d:39:48:55: 64:a1:9e:8f:b1:1b:c0:af:84:73:30:54:8f:43:3a: 59:0f:1e:eb:2e:32:9c:21:19:73:0d:eb:4a:a3:ef: 35:f7:7b:63:a4:ec:7c:87:4d:2f:6a:35:e6:ca:93: d4:d0:1a:d2:20:3c:7a:d4:19:44:e6:37:29:b3:51: 31:be:2f:8e:10:07:a3:a2:7c:95:1f:fa:91:c2:9a: 67:4b:e1:13:bd:1a:22:56:91:29:fb:dd:93:8b:54: 5e:1b:08:9c:7a:f3:51:d8:92:15:19:20:3e:2b:3c: 1c:0f:f8:db:82:62:3d:f0:52:03:a3:9f:f0:d4:a6: d0:ed:cb:28:d1:ff:b8:5e:79:dc:5c:da:aa:90:f1: 8a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:7F:C6:B8:79:40:76:E5:90:01:08:DA:75:4D:03:D2:5D:00:73:CE X509v3 Authority Key Identifier: keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.251.0/24 Signature Algorithm: sha256WithRSAEncryption 73:f7:3a:8f:e6:50:70:60:cf:a9:0f:c9:bc:51:ec:db:2f:12: c6:75:be:ca:5b:cd:fe:f6:74:1a:8a:97:70:2a:74:5d:1c:6f: 23:2a:93:74:dd:84:db:8b:fe:ed:ad:a2:62:8a:6b:d8:d2:17: 0e:94:1c:af:71:55:ec:d6:cb:aa:52:27:30:82:ec:8f:e3:fc: 38:1e:c8:40:c0:74:d5:4a:cc:b1:e6:17:a1:87:a2:d1:27:fe: ad:6b:76:b8:6c:38:6c:43:3a:6c:d1:b5:ad:5a:81:dc:83:0c: 5c:ea:77:34:50:6d:f1:ae:b1:85:e7:81:4c:8c:27:38:91:e4: ea:bf:fd:a9:a1:71:54:a3:89:dc:0c:17:47:ac:ba:0f:ef:5b: 2b:87:62:a8:16:77:af:f3:bb:f1:97:4d:0c:16:99:f3:09:e2: eb:c0:d3:fb:c5:2d:89:ec:0a:c9:47:6c:47:c8:a8:f2:75:23: bb:cd:a4:80:9f:24:be:37:38:f6:07:0f:b4:32:59:5f:99:e7: df:a3:52:32:aa:79:76:e2:6a:12:6f:6a:6a:97:60:44:2c:9c: 26:25:a4:6b:49:df:c7:88:72:eb:f8:e8:bb:67:88:c0:4f:58: 07:6a:39:21:b0:e3:cf:4e:db:e8:62:fc:df:bd:7f:b8:2a:45: e6:5d:59:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbM0d+W4nwunx26/Oz1qZSHGwE0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5 QkU1NzBFNzAeFw0yNjA0MTcxMTU1MDFaFw0yNzA0MTYxMjAwMDFaMDMxMTAvBgNV BAMTKDRBN0ZDNkI4Nzk0MDc2RTU5MDAxMDhEQTc1NEQwM0QyNUQwMDczQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwHRxHqsdyU2FsIrFvKDw+HxT6 Vm9gcvCN39kTOv+Eo/BZzGJyCsZpB3XgQUpiy0hv3u/bhberszgRdkQMX6wP7Km9 nB2DsIMdwZEmAvrob8m6zuwbuPoE1sMrIpxp6ItxCn0fNvAbDxNg2JqNcEt8H2zQ fTlIVWShno+xG8CvhHMwVI9DOlkPHusuMpwhGXMN60qj7zX3e2Ok7HyHTS9qNebK k9TQGtIgPHrUGUTmNymzUTG+L44QB6OifJUf+pHCmmdL4RO9GiJWkSn73ZOLVF4b CJx681HYkhUZID4rPBwP+NuCYj3wUgOjn/DUptDtyyjR/7heedxc2qqQ8Yo3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSn/GuHlAduWQAQjadU0D0l0Ac84wHwYDVR0j BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1 NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H7MA0GCSqG SIb3DQEBCwUAA4IBAQBz9zqP5lBwYM+pD8m8UezbLxLGdb7KW83+9nQaipdwKnRd HG8jKpN03YTbi/7traJiimvY0hcOlByvcVXs1suqUicwguyP4/w4HshAwHTVSsyx 5hehh6LRJ/6ta3a4bDhsQzps0bWtWoHcgwxc6nc0UG3xrrGF54FMjCc4keTqv/2p oXFUo4ncDBdHrLoP71srh2KoFnev87vxl00MFpnzCeLrwNP7xS2J7ArJR2xHyKjy dSO7zaSAnyS+Nzj2Bw+0Mllfmeffo1Iyqnl24moSb2pql2BELJwmJaRrSd/HiHLr +Oi7Z4jAT1gHajkhsOPPTtvoYvzfvX+4KkXmXVkc -----END CERTIFICATE-----Generated at Sun Apr 19 13:02:25 2026 by rpki-client