$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31332e302f32342d3234203d3e20313331373036.roa File: 3130332e3234372e31332e302f32342d3234203d3e20313331373036.roa (raw, json) Hash identifier: 9T03XiS2C6Ixb+0gY6hBiP7ITeOtcYnJd0bPsi6ffrI= Subject key identifier: E9:B5:6B:7A:3C:8A:E5:69:A6:A0:91:75:62:69:F0:8F:6A:32:51:C0 Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Certificate serial: 2F1EE240F16B7389395195671C3DED087AA1F974 Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31332e302f32342d3234203d3e20313331373036.roa Signing time: Mon 23 Feb 2026 23:53:56 +0000 ROA not before: Mon 23 Feb 2026 23:48:56 +0000 ROA not after: Mon 22 Feb 2027 23:53:56 +0000 asID: 131706 IP address blocks: 103.247.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 12:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:1e:e2:40:f1:6b:73:89:39:51:95:67:1c:3d:ed:08:7a:a1:f9:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Validity Not Before: Feb 23 23:48:56 2026 GMT Not After : Feb 22 23:53:56 2027 GMT Subject: CN=E9B56B7A3C8AE569A6A091756269F08F6A3251C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ea:5d:0a:24:b5:d2:59:bc:ec:2f:ee:63:1e: 08:2e:4c:48:bd:19:05:f4:0e:95:4e:e2:63:eb:f4: 0e:d4:f9:af:52:48:20:ca:e5:c5:e3:99:a3:ab:a5: 74:1a:c6:de:57:9d:f3:c0:b2:85:90:9e:55:2e:c8: 1b:6f:bd:2c:ee:56:d2:0c:ef:10:d7:2f:62:96:1f: 9d:03:21:a7:77:53:63:de:b1:96:4b:81:eb:f9:ee: 4a:d2:09:b9:b3:0a:2a:a6:45:ca:81:83:0f:9c:67: 2e:17:94:02:0e:94:f9:a7:59:a1:c9:97:ac:fa:50: 59:5d:47:a0:69:0a:a4:e9:05:3a:02:b7:87:f3:91: 47:cb:ac:0f:5d:d3:2a:b6:fb:ea:e8:20:b8:73:bd: a1:3e:c5:24:d9:6a:ce:3b:27:94:67:61:cc:79:be: 3c:89:70:b0:b4:8e:ff:d5:17:5f:12:f8:4a:99:a3: e2:fc:04:1c:a2:4a:ba:50:42:40:f4:81:9f:6a:9e: d3:61:90:58:9c:40:5d:91:20:06:fa:1a:6c:88:aa: 71:ed:ce:1b:b4:c4:5f:f2:d5:74:26:87:b9:7e:96: 38:0a:a9:cb:85:20:8b:f2:9d:61:ec:5c:8b:23:13: 54:a4:c5:1b:66:3a:ad:9a:e0:19:d3:ef:88:d0:cf: 73:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B5:6B:7A:3C:8A:E5:69:A6:A0:91:75:62:69:F0:8F:6A:32:51:C0 X509v3 Authority Key Identifier: keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31332e302f32342d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.13.0/24 Signature Algorithm: sha256WithRSAEncryption aa:ad:58:78:1e:a8:d8:4a:70:6a:29:cc:55:0e:76:65:14:4b: 15:23:13:bf:5f:71:8e:a7:6e:f4:ea:b0:86:b1:64:e9:01:a8: 57:73:03:c2:27:05:4a:b1:54:13:90:ad:fe:25:cb:6e:77:26: a7:75:e3:a2:6d:b1:b3:7e:01:f4:c2:36:9f:3e:d2:3a:39:d4: 7a:d6:a6:a3:b9:f7:9e:fb:2a:4c:51:8e:45:f5:b1:5d:56:93: 6e:17:7e:e9:d0:d8:6b:bb:0c:28:81:b2:b2:4d:b5:c0:30:07: c7:fa:79:76:23:04:b5:f8:39:4a:73:ef:6a:90:79:a5:44:ce: df:83:f9:4a:2c:51:ba:2a:9b:83:6c:85:d9:e1:8f:63:c8:c1: 56:21:ee:3a:bb:a3:c5:f1:cd:1c:17:a9:48:1f:71:88:7b:c4: 4a:4f:b1:b2:f2:90:d1:f2:51:af:ca:1f:5c:2a:27:ba:70:66: 68:78:92:be:43:95:20:44:6f:4c:76:73:32:b8:ad:d9:46:22: f6:0a:ae:13:6b:c5:93:46:07:f5:41:48:0f:dc:86:93:af:46: 96:8e:04:8b:c5:eb:fc:87:4f:54:18:4e:7a:af:cf:2a:22:fb: 91:0d:ef:6e:b0:a6:f3:4c:6a:6c:fe:d2:0d:53:77:6b:03:d0: ea:35:2d:3d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULx7iQPFrc4k5UZVnHD3tCHqh+XQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1 NjNERkU3MjAeFw0yNjAyMjMyMzQ4NTZaFw0yNzAyMjIyMzUzNTZaMDMxMTAvBgNV BAMTKEU5QjU2QjdBM0M4QUU1NjlBNkEwOTE3NTYyNjlGMDhGNkEzMjUxQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC96l0KJLXSWbzsL+5jHgguTEi9 GQX0DpVO4mPr9A7U+a9SSCDK5cXjmaOrpXQaxt5XnfPAsoWQnlUuyBtvvSzuVtIM 7xDXL2KWH50DIad3U2PesZZLgev57krSCbmzCiqmRcqBgw+cZy4XlAIOlPmnWaHJ l6z6UFldR6BpCqTpBToCt4fzkUfLrA9d0yq2++roILhzvaE+xSTZas47J5RnYcx5 vjyJcLC0jv/VF18S+EqZo+L8BByiSrpQQkD0gZ9qntNhkFicQF2RIAb6GmyIqnHt zhu0xF/y1XQmh7l+ljgKqcuFIIvynWHsXIsjE1SkxRtmOq2a4BnT74jQz3NhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6bVrejyK5WmmoJF1Ymnwj2oyUcAwHwYDVR0j BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE RkU3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMxMzAzMzJlMzIzNDM3MmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/cNMA0GCSqG SIb3DQEBCwUAA4IBAQCqrVh4HqjYSnBqKcxVDnZlFEsVIxO/X3GOp2706rCGsWTp AahXcwPCJwVKsVQTkK3+JctudyandeOibbGzfgH0wjafPtI6OdR61qajufee+ypM UY5F9bFdVpNuF37p0NhruwwogbKyTbXAMAfH+nl2IwS1+DlKc+9qkHmlRM7fg/lK LFG6KpuDbIXZ4Y9jyMFWIe46u6PF8c0cF6lIH3GIe8RKT7Gy8pDR8lGvyh9cKie6 cGZoeJK+Q5UgRG9MdnMyuK3ZRiL2Cq4Ta8WTRgf1QUgP3IaTr0aWjgSLxev8h09U GE56r88qIvuRDe9usKbzTGps/tINU3drA9DqNS09 -----END CERTIFICATE-----Generated at Mon Mar 2 14:17:18 2026 by rpki-client