$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa File: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: aVK08q/Q9AxWffjEF7bmBxP9Ha+sRCVHe7bN4b7LZBc= Subject key identifier: 96:F0:B4:9E:4C:75:FB:88:3B:3F:25:71:73:D7:C9:EA:69:CA:B1:5E Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 5D6C7438FC506B79FCFCEF329538402FD377BB31 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa Signing time: Mon 30 Mar 2026 02:00:00 +0000 ROA not before: Mon 30 Mar 2026 01:55:00 +0000 ROA not after: Mon 29 Mar 2027 02:00:00 +0000 asID: 140443 IP address blocks: 103.149.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 00:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6c:74:38:fc:50:6b:79:fc:fc:ef:32:95:38:40:2f:d3:77:bb:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Mar 30 01:55:00 2026 GMT Not After : Mar 29 02:00:00 2027 GMT Subject: CN=96F0B49E4C75FB883B3F257173D7C9EA69CAB15E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:dd:d8:64:f1:77:ca:b5:8e:9e:fa:08:e7: 82:d9:cc:99:72:09:d7:3e:cd:f1:6e:78:ce:55:62: 8a:55:07:5e:5a:6d:77:ff:50:6f:08:65:72:6c:77: dd:47:7a:7d:3d:fa:64:e4:3f:74:7b:e9:85:cf:46: 37:81:b3:9c:7f:53:ae:e9:93:fe:43:cf:dd:f8:d4: 6f:90:9e:6f:3f:94:74:24:0d:8c:66:63:5f:4f:06: a1:8e:d2:cd:00:a3:be:09:aa:49:3b:d6:a9:e9:ca: 58:7e:1e:0c:07:c4:ed:40:6c:ef:5b:98:97:3f:f0: 96:59:ad:4e:bf:6b:95:8b:81:ca:6a:6b:c7:10:1a: c8:ad:c0:cb:90:50:96:c7:13:42:0c:5e:b5:c5:22: 8b:8d:3d:fd:c0:89:7f:8a:20:75:1d:93:9f:a6:cd: b8:18:71:e8:36:dd:04:ca:26:32:c9:59:45:86:93: 77:69:56:e5:74:c7:46:98:c1:52:b1:b1:77:63:b8: d5:53:87:0e:64:b2:34:18:f4:e8:cd:00:98:cd:4e: fc:20:a4:43:04:f8:dd:63:8f:02:99:53:c0:6b:60: 48:f8:82:23:8a:e9:83:26:c6:ce:9c:6c:d5:79:06: 12:af:2b:dc:d7:7a:e6:e4:31:46:bd:6d:1c:bd:20: 26:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F0:B4:9E:4C:75:FB:88:3B:3F:25:71:73:D7:C9:EA:69:CA:B1:5E X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.176.0/23 Signature Algorithm: sha256WithRSAEncryption b6:6a:ab:71:6f:4c:f6:09:e0:13:f8:ee:1a:56:fb:f0:fb:92: fe:03:d2:96:1b:1b:71:0b:af:94:60:c3:57:6e:96:10:8f:e2: ca:57:63:de:8e:a9:7b:e4:23:09:86:46:6a:9b:4a:05:3e:80: 1c:0e:37:0f:0e:ae:80:4d:f0:6e:11:ca:2b:8d:0f:3f:8b:0f: 0a:1b:13:dc:5a:3c:3a:29:98:22:08:80:41:e4:b7:a0:10:de: 47:7f:42:c6:31:66:6c:d8:b1:dc:04:d6:f9:63:1b:34:51:a7: 87:92:26:7a:67:d1:cf:fd:9c:d8:c9:af:c1:a7:7d:da:8e:11: 1b:4e:f2:fb:19:46:c4:4b:44:6c:20:0f:4d:ef:7b:26:c1:13: 57:3d:3d:9f:d6:04:6e:50:e5:62:00:e5:5b:d8:aa:8f:84:e8: 64:b5:86:19:0f:68:20:7f:5c:90:97:d5:28:16:a2:6a:15:7a: 01:78:f7:f5:28:6d:27:07:41:f2:4a:f3:16:2d:3a:32:1f:8b: be:77:04:8a:6d:df:04:f7:7c:0e:8a:48:29:74:87:45:be:b9: 92:73:9f:51:0e:e3:10:cd:13:44:6b:52:79:72:89:b7:5e:10: e9:db:5a:cc:d8:f6:ac:c2:03:b1:35:9b:e6:7c:de:d4:a4:10: ae:e5:20:8e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXWx0OPxQa3n8/O8ylThAL9N3uzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNjAzMzAwMTU1MDBaFw0yNzAzMjkwMjAwMDBaMDMxMTAvBgNV BAMTKDk2RjBCNDlFNEM3NUZCODgzQjNGMjU3MTczRDdDOUVBNjlDQUIxNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAZ93YZPF3yrWOnvoI54LZzJly Cdc+zfFueM5VYopVB15abXf/UG8IZXJsd91Hen09+mTkP3R76YXPRjeBs5x/U67p k/5Dz9341G+Qnm8/lHQkDYxmY19PBqGO0s0Ao74Jqkk71qnpylh+HgwHxO1AbO9b mJc/8JZZrU6/a5WLgcpqa8cQGsitwMuQUJbHE0IMXrXFIouNPf3AiX+KIHUdk5+m zbgYceg23QTKJjLJWUWGk3dpVuV0x0aYwVKxsXdjuNVThw5ksjQY9OjNAJjNTvwg pEME+N1jjwKZU8BrYEj4giOK6YMmxs6cbNV5BhKvK9zXeubkMUa9bRy9ICbZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlvC0nkx1+4g7PyVxc9fJ6mnKsV4wHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlbAwDQYJ KoZIhvcNAQELBQADggEBALZqq3FvTPYJ4BP47hpW+/D7kv4D0pYbG3ELr5Rgw1du lhCP4spXY96OqXvkIwmGRmqbSgU+gBwONw8OroBN8G4RyiuNDz+LDwobE9xaPDop mCIIgEHkt6AQ3kd/QsYxZmzYsdwE1vljGzRRp4eSJnpn0c/9nNjJr8GnfdqOERtO 8vsZRsRLRGwgD03veybBE1c9PZ/WBG5Q5WIA5VvYqo+E6GS1hhkPaCB/XJCX1SgW omoVegF49/UobScHQfJK8xYtOjIfi753BIpt3wT3fA6KSCl0h0W+uZJzn1EO4xDN E0RrUnlyibdeEOnbWszY9qzCA7E1m+Z83tSkEK7lII4= -----END CERTIFICATE-----Generated at Sat Apr 18 01:13:06 2026 by rpki-client