$ rpki-client -vvf repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa File: 3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa (raw, json) Hash identifier: qi5yGhx2gcMV2n4PC1XlOBAz5PectwZ4F0Y4ir4K3zg= Subject key identifier: 1F:CA:A3:44:EA:CD:68:D0:B3:D7:B0:85:05:69:C4:1C:F9:44:F1:E0 Certificate issuer: /CN=A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B Certificate serial: 1A426EFF376A32B884B3C83724D130374571F375 Authority key identifier: A9:CC:5B:A1:E0:7F:95:80:AA:B2:19:DE:7D:68:1B:3E:0F:18:A8:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa Signing time: Fri 03 Apr 2026 19:00:03 +0000 ROA not before: Fri 03 Apr 2026 18:55:03 +0000 ROA not after: Fri 02 Apr 2027 19:00:03 +0000 asID: 142340 IP address blocks: 103.169.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.crl rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 14:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:42:6e:ff:37:6a:32:b8:84:b3:c8:37:24:d1:30:37:45:71:f3:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B Validity Not Before: Apr 3 18:55:03 2026 GMT Not After : Apr 2 19:00:03 2027 GMT Subject: CN=1FCAA344EACD68D0B3D7B0850569C41CF944F1E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2d:d2:8e:a3:e1:d6:66:a2:2a:59:fd:ee:81: ab:20:6d:9d:54:34:83:7d:38:72:90:24:10:2f:75: 34:0d:8c:f5:a0:32:f7:30:d1:79:e9:1b:f6:54:f1: 57:9d:58:80:6d:bb:a1:a2:34:d9:37:44:22:83:19: 83:e6:32:13:7b:7c:e1:13:bc:2a:c4:85:30:0b:29: 42:e3:d8:74:cf:67:29:0d:ee:cb:65:50:31:6f:37: 86:f2:39:c6:03:41:fc:42:96:e6:bc:04:43:5e:1b: 8e:8d:e7:78:d4:0a:0b:e4:93:3f:61:cb:7b:26:6e: b9:27:5c:85:a8:f0:31:81:31:0b:09:4b:6f:db:4a: 2b:86:f0:60:36:5f:0b:d2:90:41:8f:6e:2b:4a:e4: ca:85:b8:f8:b5:d8:96:23:02:cf:e9:40:db:df:70: ec:47:be:96:e0:bb:fa:c3:18:6c:81:fa:75:4c:e6: fb:d7:59:60:98:ec:c7:e9:ad:23:24:c1:ec:23:78: 70:8f:35:fb:41:44:54:e9:9c:dd:47:18:0f:d9:f3: 3c:84:75:00:16:90:b1:dc:02:fd:e4:11:c9:ee:7f: 90:4b:cf:20:e7:d4:4e:3d:42:f6:d2:f2:e5:a8:5c: 8c:9b:5d:4c:fd:75:1e:f3:2d:c6:4f:e8:85:4e:32: 1e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CA:A3:44:EA:CD:68:D0:B3:D7:B0:85:05:69:C4:1C:F9:44:F1:E0 X509v3 Authority Key Identifier: keyid:A9:CC:5B:A1:E0:7F:95:80:AA:B2:19:DE:7D:68:1B:3E:0F:18:A8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.130.0/23 Signature Algorithm: sha256WithRSAEncryption 11:42:79:a2:2f:c4:fc:77:2c:ea:31:0a:74:f2:70:a0:a5:93: 60:06:8b:eb:c1:95:7a:54:a5:6a:b0:fa:eb:74:53:fd:6f:dc: 82:d5:a9:ef:65:11:e1:8c:f0:59:a9:80:b0:c8:32:fd:95:99: 19:65:09:7f:75:64:2a:e8:fc:8b:90:ac:03:6b:49:6b:d1:7e: 77:4d:ad:2d:6d:4e:e8:41:e2:63:1b:3c:f3:5c:16:30:ef:c7: a9:8c:62:f8:f9:06:bc:4e:ae:ff:a0:24:56:31:4d:98:0a:a3: a7:7c:3a:93:78:97:16:b9:57:4e:ce:ae:6c:cb:1f:8e:9f:ef: 27:c8:17:42:2c:f5:f5:13:8f:f1:6d:03:de:31:ab:3d:d2:ab: b0:3d:9e:56:12:1b:15:43:a5:76:b3:08:a4:92:63:79:9a:f0: 55:c4:b2:a7:da:d0:cb:36:b4:3c:a5:f2:c0:2b:a6:d3:84:e2: 1f:37:8b:fb:ae:ed:99:c1:92:5a:95:79:2d:7b:33:b9:93:bd: 3a:3c:71:a6:34:fe:64:b4:2d:48:da:90:80:57:90:c3:98:d5: d6:11:28:8d:fd:9c:6d:4a:2a:3e:11:a1:f6:92:25:f7:0c:38: 15:2a:b0:23:66:6e:02:44:eb:8d:ee:51:e1:e3:56:f9:27:7a: 85:c6:75:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGkJu/zdqMriEs8g3JNEwN0Vx83UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzVCQTFFMDdGOTU4MEFBQjIxOURFN0Q2ODFCM0Uw RjE4QTg0QjAeFw0yNjA0MDMxODU1MDNaFw0yNzA0MDIxOTAwMDNaMDMxMTAvBgNV BAMTKDFGQ0FBMzQ0RUFDRDY4RDBCM0Q3QjA4NTA1NjlDNDFDRjk0NEYxRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrLdKOo+HWZqIqWf3ugasgbZ1U NIN9OHKQJBAvdTQNjPWgMvcw0XnpG/ZU8VedWIBtu6GiNNk3RCKDGYPmMhN7fOET vCrEhTALKULj2HTPZykN7stlUDFvN4byOcYDQfxClua8BENeG46N53jUCgvkkz9h y3smbrknXIWo8DGBMQsJS2/bSiuG8GA2XwvSkEGPbitK5MqFuPi12JYjAs/pQNvf cOxHvpbgu/rDGGyB+nVM5vvXWWCY7MfprSMkwewjeHCPNftBRFTpnN1HGA/Z8zyE dQAWkLHcAv3kEcnuf5BLzyDn1E49QvbS8uWoXIybXUz9dR7zLcZP6IVOMh5zAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUH8qjROrNaNCz17CFBWnEHPlE8eAwHwYDVR0j BBgwFoAUqcxboeB/lYCqshnefWgbPg8YqEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTNmNjZhOC1hMGZmLTQ0ZmEtYmRhNi04ZTVmMjdkNjFiM2YvMC9BOUNDNUJBMUUw N0Y5NTgwQUFCMjE5REU3RDY4MUIzRTBGMThBODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzVCQTFFMDdGOTU4MEFBQjIxOURFN0Q2ODFCM0UwRjE4 QTg0Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllM2Y2NmE4LWEwZmYtNDRmYS1i ZGE2LThlNWYyN2Q2MWIzZi8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqYIwDQYJ KoZIhvcNAQELBQADggEBABFCeaIvxPx3LOoxCnTycKClk2AGi+vBlXpUpWqw+ut0 U/1v3ILVqe9lEeGM8FmpgLDIMv2VmRllCX91ZCro/IuQrANrSWvRfndNrS1tTuhB 4mMbPPNcFjDvx6mMYvj5BrxOrv+gJFYxTZgKo6d8OpN4lxa5V07OrmzLH46f7yfI F0Is9fUTj/FtA94xqz3Sq7A9nlYSGxVDpXazCKSSY3ma8FXEsqfa0Ms2tDyl8sAr ptOE4h83i/uu7ZnBklqVeS17M7mTvTo8caY0/mS0LUjakIBXkMOY1dYRKI39nG1K Kj4RofaSJfcMOBUqsCNmbgJE643uUeHjVvkneoXGdQM= -----END CERTIFICATE-----Generated at Sun Apr 19 15:33:56 2026 by rpki-client