$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31342e302f32332d3234203d3e20313331373036.roa File: 3130332e3234372e31342e302f32332d3234203d3e20313331373036.roa (raw, json) Hash identifier: 3VPC2jTp4UheTC+oF+eJLG0wRoEjVA5eKjIxD8N5Uh0= Subject key identifier: 23:46:0E:6E:4D:FA:F6:39:4A:39:84:EA:DE:7C:F0:25:1B:DE:6F:2C Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Certificate serial: 078ED4BECD1C54B559FFE9B5994D0133F7772CCC Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31342e302f32332d3234203d3e20313331373036.roa Signing time: Mon 23 Feb 2026 23:54:21 +0000 ROA not before: Mon 23 Feb 2026 23:49:21 +0000 ROA not after: Mon 22 Feb 2027 23:54:21 +0000 asID: 131706 IP address blocks: 103.247.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8e:d4:be:cd:1c:54:b5:59:ff:e9:b5:99:4d:01:33:f7:77:2c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Validity Not Before: Feb 23 23:49:21 2026 GMT Not After : Feb 22 23:54:21 2027 GMT Subject: CN=23460E6E4DFAF6394A3984EADE7CF0251BDE6F2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a9:3c:8f:20:04:b8:af:5c:4a:56:8e:c8:07: 53:68:97:cf:a7:bf:32:96:dc:3d:f5:c2:bd:25:d9: b7:f2:f9:58:f6:8c:60:8e:be:bb:b0:95:86:ae:e0: eb:03:21:ea:f2:01:ea:07:49:1b:46:66:cd:fa:3f: 33:06:17:2a:38:2e:74:05:0e:4e:fe:c8:ac:1e:3a: dc:46:a8:ee:10:9f:26:45:60:ad:eb:06:c4:fa:18: 79:31:ee:ff:c7:a5:75:f2:d9:85:54:a1:9d:ce:88: 30:ae:a5:34:2b:d6:d0:23:bf:59:74:24:18:97:70: c7:19:7a:be:44:14:df:29:f1:fd:00:c3:0e:ba:4e: c6:d4:9e:fa:78:f2:ce:c0:31:e2:4f:9b:5c:ed:38: c9:ce:11:45:37:14:ae:48:b6:11:b3:0f:a7:e0:d5: 4e:31:de:ad:81:d1:7e:47:b4:3a:87:3d:82:e9:ea: a9:0a:fb:58:90:61:54:ae:d5:62:fc:3a:8d:16:6e: a6:0c:82:14:e8:26:fe:be:d2:a3:9b:ab:a1:d8:d5: fb:38:33:3c:5a:8a:e9:f9:a7:48:bc:52:64:7b:43: 95:e6:9e:15:de:b8:c7:a5:2b:57:dc:1f:a7:f6:b9: b6:ff:01:c0:ee:c7:c0:34:11:0a:80:a8:3c:06:86: f5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:46:0E:6E:4D:FA:F6:39:4A:39:84:EA:DE:7C:F0:25:1B:DE:6F:2C X509v3 Authority Key Identifier: keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31342e302f32332d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.14.0/23 Signature Algorithm: sha256WithRSAEncryption 55:2a:4c:6c:ac:58:c2:54:73:09:c8:fe:ec:23:91:aa:95:51: d5:e1:6f:9c:9c:88:6d:b0:91:62:fc:17:79:39:87:db:34:df: 4a:e5:e0:a6:56:79:16:17:1c:45:90:b4:c1:16:01:8f:00:58: 0e:fc:56:16:d7:9e:52:8e:fa:00:ef:c4:fe:dc:72:23:5d:0f: 61:90:8f:8f:37:1b:d8:84:02:66:27:51:f1:95:77:73:b9:97: 74:55:94:61:93:d8:d8:2c:d1:d3:c3:4d:62:4b:f1:78:be:f4: 0f:02:24:69:7a:f7:fe:8b:55:d5:11:9c:48:02:76:22:27:14: d5:cc:40:eb:53:2a:3a:2f:bb:d0:87:4f:6e:c1:26:83:68:d8: 6d:d3:de:40:84:8c:da:9f:6c:93:8f:69:cf:8e:a2:b6:c9:f2: f6:95:3c:2d:d6:b4:11:6a:52:23:63:08:df:fc:de:2d:63:c0: 27:de:af:eb:95:bf:10:13:58:ea:96:50:ad:3e:84:4e:c7:83: 81:72:ef:2c:d4:f3:25:78:f4:8a:e5:06:a8:8b:d3:22:0f:47: bd:8a:91:b8:f4:4a:0f:3e:92:1e:3b:5a:d1:d3:98:62:49:a1: 11:8b:88:63:16:3a:d3:f4:ac:0f:0b:d2:b7:c4:3b:a8:1c:17: 8f:2e:c6:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB47Uvs0cVLVZ/+m1mU0BM/d3LMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1 NjNERkU3MjAeFw0yNjAyMjMyMzQ5MjFaFw0yNzAyMjIyMzU0MjFaMDMxMTAvBgNV BAMTKDIzNDYwRTZFNERGQUY2Mzk0QTM5ODRFQURFN0NGMDI1MUJERTZGMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjqTyPIAS4r1xKVo7IB1Nol8+n vzKW3D31wr0l2bfy+Vj2jGCOvruwlYau4OsDIeryAeoHSRtGZs36PzMGFyo4LnQF Dk7+yKweOtxGqO4QnyZFYK3rBsT6GHkx7v/HpXXy2YVUoZ3OiDCupTQr1tAjv1l0 JBiXcMcZer5EFN8p8f0Aww66TsbUnvp48s7AMeJPm1ztOMnOEUU3FK5IthGzD6fg 1U4x3q2B0X5HtDqHPYLp6qkK+1iQYVSu1WL8Oo0WbqYMghToJv6+0qObq6HY1fs4 Mzxaiun5p0i8UmR7Q5XmnhXeuMelK1fcH6f2ubb/AcDux8A0EQqAqDwGhvXNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI0YObk369jlKOYTq3nzwJRvebywwHwYDVR0j BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE RkU3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMxMzAzMzJlMzIzNDM3MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/cOMA0GCSqG SIb3DQEBCwUAA4IBAQBVKkxsrFjCVHMJyP7sI5GqlVHV4W+cnIhtsJFi/Bd5OYfb NN9K5eCmVnkWFxxFkLTBFgGPAFgO/FYW155SjvoA78T+3HIjXQ9hkI+PNxvYhAJm J1HxlXdzuZd0VZRhk9jYLNHTw01iS/F4vvQPAiRpevf+i1XVEZxIAnYiJxTVzEDr Uyo6L7vQh09uwSaDaNht095AhIzan2yTj2nPjqK2yfL2lTwt1rQRalIjYwjf/N4t Y8An3q/rlb8QE1jqllCtPoROx4OBcu8s1PMlePSK5Qaoi9MiD0e9ipG49EoPPpIe O1rR05hiSaERi4hjFjrT9KwPC9K3xDuoHBePLsYT -----END CERTIFICATE-----Generated at Mon Mar 2 16:01:42 2026 by rpki-client