$ rpki-client -vvf repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa File: 3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa (raw, json) Hash identifier: i7fFsmSBkeSKbyW/TTm9TcNtd1h8Ec2ngRNSViv1V60= Subject key identifier: 3A:48:22:2B:96:59:07:D2:53:E6:4A:4A:FA:32:0C:69:71:14:F9:AF Certificate issuer: /CN=08632F1EBF41728D3E177234FCD8C0B9A988898B Certificate serial: 5AB9922A42F9EB3576504905427E8488F23459ED Authority key identifier: 08:63:2F:1E:BF:41:72:8D:3E:17:72:34:FC:D8:C0:B9:A9:88:89:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa Signing time: Thu 12 Feb 2026 05:00:00 +0000 ROA not before: Thu 12 Feb 2026 04:55:00 +0000 ROA not after: Thu 11 Feb 2027 05:00:00 +0000 asID: 138133 IP address blocks: 103.133.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/08632F1EBF41728D3E177234FCD8C0B9A988898B.crl rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/08632F1EBF41728D3E177234FCD8C0B9A988898B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 03:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b9:92:2a:42:f9:eb:35:76:50:49:05:42:7e:84:88:f2:34:59:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08632F1EBF41728D3E177234FCD8C0B9A988898B Validity Not Before: Feb 12 04:55:00 2026 GMT Not After : Feb 11 05:00:00 2027 GMT Subject: CN=3A48222B965907D253E64A4AFA320C697114F9AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:50:b7:92:c3:c6:57:cc:de:bd:c2:34:47:f3: 34:c9:d2:2d:1a:16:ee:98:db:93:91:af:fe:96:88: e4:58:2f:31:51:87:27:d4:8e:17:8a:e3:09:c9:c6: 51:f4:f5:66:aa:e9:7c:8b:d7:82:b1:91:00:49:6a: 73:ea:88:fd:b5:aa:c3:65:79:c4:e5:60:70:80:b4: d5:17:1b:98:10:c2:e2:ff:5d:75:f0:a4:d3:aa:e4: 62:a4:f6:fe:54:ba:67:b2:ec:e1:a0:f1:c2:db:e1: 5a:c3:fc:f4:1e:d6:0d:4a:a9:5f:7b:27:e6:09:25: e6:d6:3e:ec:9b:a3:1a:62:30:29:f7:33:ff:46:b3: 73:c7:f7:da:4d:07:13:05:1e:12:8f:5e:2f:ba:a5: 8e:92:74:54:d2:83:e4:16:43:88:a0:9a:b8:90:e2: ce:79:98:24:c6:b7:ec:42:d6:de:44:20:11:0a:1e: b5:64:10:84:b3:3c:b3:7e:d2:f7:f0:55:f0:2c:c8: f4:df:7c:18:48:1e:12:ef:11:8c:25:2f:e9:15:49: a7:d7:c7:97:66:e9:61:e1:68:91:5a:8a:2a:40:3a: cf:48:e2:e4:b3:91:b6:af:75:8e:f6:70:f5:2d:de: f2:6b:76:de:e5:fd:c8:e9:0f:73:3f:83:c9:73:e0: b8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:48:22:2B:96:59:07:D2:53:E6:4A:4A:FA:32:0C:69:71:14:F9:AF X509v3 Authority Key Identifier: keyid:08:63:2F:1E:BF:41:72:8D:3E:17:72:34:FC:D8:C0:B9:A9:88:89:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/08632F1EBF41728D3E177234FCD8C0B9A988898B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.36.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:bc:56:82:c6:d2:9a:4e:1a:28:09:83:03:5f:8b:f9:b8:16: d8:14:e9:69:09:48:58:49:4a:da:ba:f0:bd:56:e0:08:ad:6c: 37:32:1f:f1:01:89:db:10:1a:71:01:ea:52:4c:f4:23:0c:a7: 39:de:c2:f6:cc:9f:ee:00:0b:73:ff:55:0c:59:1c:3f:3a:a6: c9:bc:22:07:d4:73:26:f2:74:6b:14:ac:7a:36:4f:2f:a8:0b: 13:9b:59:23:a4:64:fa:9d:eb:24:15:4a:33:5d:a3:2f:1d:9e: 46:7e:4a:c1:eb:24:2a:f0:4a:96:2a:54:28:ed:54:33:61:e7: 5b:09:f6:44:9f:fe:a2:fd:d0:f6:4e:9f:42:8b:08:d8:26:f0: 67:c4:74:85:58:93:b5:63:d4:42:b4:e6:6b:8d:97:65:d6:ca: cc:00:39:85:2f:f4:2d:c0:77:81:18:9f:c2:87:2b:28:4f:61: 75:25:0f:28:3d:e4:78:02:89:55:3e:b9:6e:f0:67:0e:c3:d8: 83:76:7f:bc:23:e8:c6:35:ba:e8:4d:94:f0:cc:0d:1b:a6:88: 5d:bd:0b:21:43:9a:50:73:6f:47:36:1f:24:67:fd:74:2f:26: da:4c:e5:52:d6:58:c4:d3:b5:ba:96:18:fc:45:25:cc:fd:47: 6d:96:f7:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWrmSKkL56zV2UEkFQn6EiPI0We0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg2MzJGMUVCRjQxNzI4RDNFMTc3MjM0RkNEOEMwQjlB OTg4ODk4QjAeFw0yNjAyMTIwNDU1MDBaFw0yNzAyMTEwNTAwMDBaMDMxMTAvBgNV BAMTKDNBNDgyMjJCOTY1OTA3RDI1M0U2NEE0QUZBMzIwQzY5NzExNEY5QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRULeSw8ZXzN69wjRH8zTJ0i0a Fu6Y25ORr/6WiORYLzFRhyfUjheK4wnJxlH09Waq6XyL14KxkQBJanPqiP21qsNl ecTlYHCAtNUXG5gQwuL/XXXwpNOq5GKk9v5Uumey7OGg8cLb4VrD/PQe1g1KqV97 J+YJJebWPuyboxpiMCn3M/9Gs3PH99pNBxMFHhKPXi+6pY6SdFTSg+QWQ4igmriQ 4s55mCTGt+xC1t5EIBEKHrVkEISzPLN+0vfwVfAsyPTffBhIHhLvEYwlL+kVSafX x5dm6WHhaJFaiipAOs9I4uSzkbavdY72cPUt3vJrdt7l/cjpD3M/g8lz4Lj9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOkgiK5ZZB9JT5kpK+jIMaXEU+a8wHwYDVR0j BBgwFoAUCGMvHr9Bco0+F3I0/NjAuamIiYswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjZiZjM3Yy1kOGFkLTRlMDMtYTA2YS00NDA4MTU3Y2Y1N2UvMC8wODYzMkYxRUJG NDE3MjhEM0UxNzcyMzRGQ0Q4QzBCOUE5ODg4OThCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg2MzJGMUVCRjQxNzI4RDNFMTc3MjM0RkNEOEMwQjlBOTg4 ODk4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNmJmMzdjLWQ4YWQtNGUwMy1h MDZhLTQ0MDgxNTdjZjU3ZS8wLzMxMzAzMzJlMzEzMzMzMmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4UkMA0GCSqG SIb3DQEBCwUAA4IBAQBOvFaCxtKaThooCYMDX4v5uBbYFOlpCUhYSUrauvC9VuAI rWw3Mh/xAYnbEBpxAepSTPQjDKc53sL2zJ/uAAtz/1UMWRw/OqbJvCIH1HMm8nRr FKx6Nk8vqAsTm1kjpGT6neskFUozXaMvHZ5GfkrB6yQq8EqWKlQo7VQzYedbCfZE n/6i/dD2Tp9CiwjYJvBnxHSFWJO1Y9RCtOZrjZdl1srMADmFL/QtwHeBGJ/Chyso T2F1JQ8oPeR4AolVPrlu8GcOw9iDdn+8I+jGNbroTZTwzA0bpohdvQshQ5pQc29H Nh8kZ/10LybaTOVS1ljE07W6lhj8RSXM/UdtlvfP -----END CERTIFICATE-----Generated at Mon Mar 2 14:10:58 2026 by rpki-client