$ rpki-client -vvf repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa File: 3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa (raw, json) Hash identifier: xjxPtSW9QVDNEyfrpgBmOYq6f8YRggWfUzl7yk7Dxe4= Subject key identifier: CE:9A:55:68:10:08:36:1A:B8:03:C9:BD:CD:06:0B:48:C7:C4:E5:DE Certificate issuer: /CN=E7231D1A3E051BD903DB86D7DE0077C2333EBB58 Certificate serial: 4D2084360247F9A37DA280E45C0E5955DAD79A21 Authority key identifier: E7:23:1D:1A:3E:05:1B:D9:03:DB:86:D7:DE:00:77:C2:33:3E:BB:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa Signing time: Sun 29 Mar 2026 02:00:02 +0000 ROA not before: Sun 29 Mar 2026 01:55:02 +0000 ROA not after: Sun 28 Mar 2027 02:00:02 +0000 asID: 141913 IP address blocks: 103.164.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.crl rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 10:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:20:84:36:02:47:f9:a3:7d:a2:80:e4:5c:0e:59:55:da:d7:9a:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7231D1A3E051BD903DB86D7DE0077C2333EBB58 Validity Not Before: Mar 29 01:55:02 2026 GMT Not After : Mar 28 02:00:02 2027 GMT Subject: CN=CE9A55681008361AB803C9BDCD060B48C7C4E5DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4d:e9:aa:c7:70:ab:2a:7c:87:08:95:e5:c2: 48:92:0a:bd:0b:2a:2c:ec:42:0e:29:8f:25:08:11: 28:68:00:4c:18:ac:9e:b6:cd:e2:ba:17:35:4e:a8: 6c:23:a3:db:74:50:cf:f8:51:69:db:ee:3a:78:d7: 89:83:4b:a2:c1:04:a9:a4:44:1a:79:49:32:cd:30: 2f:4a:1d:7a:78:d6:7f:98:10:c9:0b:62:e0:ad:a9: 7a:2c:d3:52:00:fc:b0:42:13:01:a7:c8:e6:35:fb: 89:83:9d:d5:42:07:72:02:37:24:90:a3:2b:94:22: c2:e7:0e:28:0b:bc:4f:f9:6b:c6:3c:63:0a:f1:d9: 33:6e:08:aa:85:bf:e3:be:91:01:ec:e3:15:9e:0d: 82:61:ab:2f:0f:7b:41:10:37:42:5c:bd:27:48:aa: c6:01:54:77:48:bb:81:03:49:36:74:b5:78:55:cf: 58:c7:92:e4:08:2a:9e:d9:6e:d2:39:9d:2a:c7:86: 68:7e:14:7e:d0:64:b9:00:10:cf:46:97:d5:c7:f8: 14:56:2a:58:33:bb:a3:c5:e4:1f:ac:08:21:01:86: 1a:9b:cd:44:03:71:cb:a3:5f:06:db:bc:56:ed:a9: 98:da:34:7d:5c:5a:12:74:09:be:41:36:b4:be:f0: fd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9A:55:68:10:08:36:1A:B8:03:C9:BD:CD:06:0B:48:C7:C4:E5:DE X509v3 Authority Key Identifier: keyid:E7:23:1D:1A:3E:05:1B:D9:03:DB:86:D7:DE:00:77:C2:33:3E:BB:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.231.0/24 Signature Algorithm: sha256WithRSAEncryption cd:d4:8c:4d:b2:de:c5:e0:e7:2d:42:c3:77:9c:4a:70:51:de: 18:24:08:66:37:ef:c8:95:ae:63:03:b6:28:dc:f0:ff:18:65: a7:fc:20:c1:6b:63:4e:b5:8a:05:9c:14:ed:f1:aa:55:65:3b: 2b:9e:c3:93:c2:07:f5:b7:77:53:86:bd:86:e6:22:59:07:af: 3e:be:5c:70:03:60:13:dd:5d:35:d4:7a:56:4d:52:02:dc:12: 19:eb:b7:ea:2e:f5:f1:e8:9d:e5:8d:aa:ae:05:80:83:84:84: 8d:65:2f:8c:ae:02:4b:18:22:81:04:d8:6e:f5:df:52:2f:2a: b8:b4:52:ef:ef:2c:2d:57:d3:2e:55:71:d7:10:a2:0d:84:90: 85:93:47:56:dc:78:00:65:4d:22:b6:2b:03:1c:9a:2d:4f:fd: f7:05:aa:35:ad:2c:3e:e0:2d:ea:67:0b:0f:94:ee:6b:e9:6c: 80:a0:7b:8c:ba:02:f8:bf:b4:60:e1:5e:43:c4:b0:ef:c6:64: 9d:31:5a:07:27:54:77:e6:a2:a1:4d:b1:11:ff:62:60:53:53: 5a:ff:5f:a9:12:59:09:8f:f6:1a:5e:3f:f8:67:c2:37:4d:c8: 8a:77:cc:dc:41:ec:36:9e:29:58:47:e1:d7:aa:eb:f5:44:07: b6:5c:1e:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTSCENgJH+aN9ooDkXA5ZVdrXmiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcyMzFEMUEzRTA1MUJEOTAzREI4NkQ3REUwMDc3QzIz MzNFQkI1ODAeFw0yNjAzMjkwMTU1MDJaFw0yNzAzMjgwMjAwMDJaMDMxMTAvBgNV BAMTKENFOUE1NTY4MTAwODM2MUFCODAzQzlCRENEMDYwQjQ4QzdDNEU1REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVTemqx3CrKnyHCJXlwkiSCr0L KizsQg4pjyUIEShoAEwYrJ62zeK6FzVOqGwjo9t0UM/4UWnb7jp414mDS6LBBKmk RBp5STLNMC9KHXp41n+YEMkLYuCtqXos01IA/LBCEwGnyOY1+4mDndVCB3ICNySQ oyuUIsLnDigLvE/5a8Y8Ywrx2TNuCKqFv+O+kQHs4xWeDYJhqy8Pe0EQN0JcvSdI qsYBVHdIu4EDSTZ0tXhVz1jHkuQIKp7ZbtI5nSrHhmh+FH7QZLkAEM9Gl9XH+BRW Klgzu6PF5B+sCCEBhhqbzUQDccujXwbbvFbtqZjaNH1cWhJ0Cb5BNrS+8P1jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzppVaBAINhq4A8m9zQYLSMfE5d4wHwYDVR0j BBgwFoAU5yMdGj4FG9kD24bX3gB3wjM+u1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTE3OTRhYS0zMjkxLTQ4M2ItYWMwYi03YmM3YjFhNjdjYzYvMC9FNzIzMUQxQTNF MDUxQkQ5MDNEQjg2RDdERTAwNzdDMjMzM0VCQjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTcyMzFEMUEzRTA1MUJEOTAzREI4NkQ3REUwMDc3QzIzMzNF QkI1OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMTc5NGFhLTMyOTEtNDgzYi1h YzBiLTdiYzdiMWE2N2NjNi8wLzMxMzAzMzJlMzEzNjM0MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpOcwDQYJ KoZIhvcNAQELBQADggEBAM3UjE2y3sXg5y1Cw3ecSnBR3hgkCGY378iVrmMDtijc 8P8YZaf8IMFrY061igWcFO3xqlVlOyuew5PCB/W3d1OGvYbmIlkHrz6+XHADYBPd XTXUelZNUgLcEhnrt+ou9fHoneWNqq4FgIOEhI1lL4yuAksYIoEE2G7131IvKri0 Uu/vLC1X0y5VcdcQog2EkIWTR1bceABlTSK2KwMcmi1P/fcFqjWtLD7gLepnCw+U 7mvpbICge4y6Avi/tGDhXkPEsO/GZJ0xWgcnVHfmoqFNsRH/YmBTU1r/X6kSWQmP 9hpeP/hnwjdNyIp3zNxB7DaeKVhH4deq6/VEB7ZcHic= -----END CERTIFICATE-----Generated at Sat Apr 18 04:01:15 2026 by rpki-client